import { AccessLevelList } from '../../shared/access-level'; import { PolicyStatement, Operator } from '../../shared'; import { aws_iam as iam } from "aws-cdk-lib"; /** * Statement provider for service [guardduty](https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonguardduty.html). * * @param sid [SID](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_sid.html) of the statement */ export declare class Guardduty extends PolicyStatement { servicePrefix: string; /** * Grants permission to accept invitations to become a GuardDuty member account * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_AcceptAdministratorInvitation.html */ toAcceptAdministratorInvitation(): this; /** * Grants permission to accept invitations to become a GuardDuty member account * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_AcceptInvitation.html */ toAcceptInvitation(): this; /** * Grants permission to archive GuardDuty findings * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ArchiveFindings.html */ toArchiveFindings(): this; /** * Grants permission to create a detector * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsResourceTag() * - .ifAwsTagKeys() * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_CreateDetector.html */ toCreateDetector(): this; /** * Grants permission to create GuardDuty filters. A filters defines finding attributes and conditions used to filter findings * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_CreateFilter.html */ toCreateFilter(): this; /** * Grants permission to create an IPSet * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsResourceTag() * - .ifAwsTagKeys() * * Dependent actions: * - iam:DeleteRolePolicy * - iam:PutRolePolicy * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_CreateIPSet.html */ toCreateIPSet(): this; /** * Grants permission to create a new Malware Protection plan * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsResourceTag() * - .ifAwsTagKeys() * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_CreateMalwareProtectionPlan.html */ toCreateMalwareProtectionPlan(): this; /** * Grants permission to create GuardDuty member accounts, where the account used to create a member becomes the GuardDuty administrator account * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_CreateMembers.html */ toCreateMembers(): this; /** * Grants permission to create a publishing destination * * Access Level: Write * * Dependent actions: * - s3:GetObject * - s3:ListBucket * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_CreatePublishingDestination.html */ toCreatePublishingDestination(): this; /** * Grants permission to create sample findings * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_CreateSampleFindings.html */ toCreateSampleFindings(): this; /** * Grants permission to create GuardDuty ThreatIntelSets, where a ThreatIntelSet consists of known malicious IP addresses used by GuardDuty to generate findings * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_CreateThreatIntelSet.html */ toCreateThreatIntelSet(): this; /** * Grants permission to decline invitations to become a GuardDuty member account * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DeclineInvitations.html */ toDeclineInvitations(): this; /** * Grants permission to delete GuardDuty detectors * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DeleteDetector.html */ toDeleteDetector(): this; /** * Grants permission to delete GuardDuty filters * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DeleteFilter.html */ toDeleteFilter(): this; /** * Grants permission to delete GuardDuty IPSets * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DeleteIPSet.html */ toDeleteIPSet(): this; /** * Grants permission to delete invitations to become a GuardDuty member account * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DeleteInvitations.html */ toDeleteInvitations(): this; /** * Grants permission to delete a Malware Protection plan * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DeleteMalwareProtectionPlan.html */ toDeleteMalwareProtectionPlan(): this; /** * Grants permission to delete GuardDuty member accounts * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DeleteMembers.html */ toDeleteMembers(): this; /** * Grants permission to delete a publishing destination * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DeletePublishingDestination.html */ toDeletePublishingDestination(): this; /** * Grants permission to delete GuardDuty ThreatIntelSets * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DeleteThreatIntelSet.html */ toDeleteThreatIntelSet(): this; /** * Grants permission to retrieve details about malware scans * * Access Level: Read * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DescribeMalwareScans.html */ toDescribeMalwareScans(): this; /** * Grants permission to retrieve details about the delegated administrator associated with a GuardDuty detector * * Access Level: Read * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DescribeOrganizationConfiguration.html */ toDescribeOrganizationConfiguration(): this; /** * Grants permission to retrieve details about a publishing destination * * Access Level: Read * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DescribePublishingDestination.html */ toDescribePublishingDestination(): this; /** * Grants permission to disable the organization delegated administrator for GuardDuty * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DisableOrganizationAdminAccount.html */ toDisableOrganizationAdminAccount(): this; /** * Grants permission to disassociate a GuardDuty member account from its GuardDuty administrator account * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DisassociateFromAdministratorAccount.html */ toDisassociateFromAdministratorAccount(): this; /** * Grants permission to disassociate a GuardDuty member account from its GuardDuty administrator account * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DisassociateFromMasterAccount.html */ toDisassociateFromMasterAccount(): this; /** * Grants permission to disassociate GuardDuty member accounts from their administrator GuardDuty account * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DisassociateMembers.html */ toDisassociateMembers(): this; /** * Grants permission to enable an organization delegated administrator for GuardDuty * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_EnableOrganizationAdminAccount.html */ toEnableOrganizationAdminAccount(): this; /** * Grants permission to retrieve details of the GuardDuty administrator account associated with a member account * * Access Level: Read * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_GetAdministratorAccount.html */ toGetAdministratorAccount(): this; /** * Grants permission to list Amazon GuardDuty coverage statistics for the specified GuardDuty account in a Region * * Access Level: Read * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_GetCoverageStatistics.html */ toGetCoverageStatistics(): this; /** * Grants permission to retrieve GuardDuty detectors * * Access Level: Read * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_GetDetector.html */ toGetDetector(): this; /** * Grants permission to retrieve GuardDuty filters * * Access Level: Read * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_GetFilter.html */ toGetFilter(): this; /** * Grants permission to retrieve GuardDuty findings * * Access Level: Read * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_GetFindings.html */ toGetFindings(): this; /** * Grants permission to retrieve a list of GuardDuty finding statistics * * Access Level: Read * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_GetFindingsStatistics.html */ toGetFindingsStatistics(): this; /** * Grants permission to retrieve GuardDuty IPSets * * Access Level: Read * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_GetIPSet.html */ toGetIPSet(): this; /** * Grants permission to retrieve the count of all GuardDuty invitations sent to a specified account, which does not include the accepted invitation * * Access Level: Read * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_GetInvitationsCount.html */ toGetInvitationsCount(): this; /** * Grants permission to retrieve a Malware Protection plan details * * Access Level: Read * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_GetMalwareProtectionPlan.html */ toGetMalwareProtectionPlan(): this; /** * Grants permission to retrieve the malware scan settings * * Access Level: Read * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_GetMalwareScanSettings.html */ toGetMalwareScanSettings(): this; /** * Grants permission to retrieve details of the GuardDuty administrator account associated with a member account * * Access Level: Read * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_GetMasterAccount.html */ toGetMasterAccount(): this; /** * Grants permission to describe which data sources are enabled for member accounts detectors * * Access Level: Read * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_GetMemberDetectors.html */ toGetMemberDetectors(): this; /** * Grants permission to retrieve the member accounts associated with an administrator account * * Access Level: Read * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_GetMembers.html */ toGetMembers(): this; /** * Grants permission to retrieve GuardDuty protection plan coverage statistics for member accounts in a Region * * Access Level: Read * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_GetOrganizationStatistics.html */ toGetOrganizationStatistics(): this; /** * Grants permission to provide the number of days left for each data source used in the free trial period * * Access Level: Read * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_GetRemainingFreeTrialDays.html */ toGetRemainingFreeTrialDays(): this; /** * Grants permission to retrieve GuardDuty ThreatIntelSets * * Access Level: Read * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_GetThreatIntelSet.html */ toGetThreatIntelSet(): this; /** * Grants permission to list Amazon GuardDuty usage statistics over the last 30 days for the specified detector ID * * Access Level: Read * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_GetUsageStatistics.html */ toGetUsageStatistics(): this; /** * Grants permission to invite other AWS accounts to enable GuardDuty and become GuardDuty member accounts * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_InviteMembers.html */ toInviteMembers(): this; /** * Grants permission to list all the resource details for a given account in a Region * * Access Level: List * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListCoverage.html */ toListCoverage(): this; /** * Grants permission to retrieve a list of GuardDuty detectors * * Access Level: List * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListDetectors.html */ toListDetectors(): this; /** * Grants permission to retrieve a list of GuardDuty filters * * Access Level: List * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListFilters.html */ toListFilters(): this; /** * Grants permission to retrieve a list of GuardDuty findings * * Access Level: List * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListFindings.html */ toListFindings(): this; /** * Grants permission to retrieve a list of GuardDuty IPSets * * Access Level: List * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListIPSets.html */ toListIPSets(): this; /** * Grants permission to retrieve a list of all of the GuardDuty membership invitations that were sent to an AWS account * * Access Level: List * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListInvitations.html */ toListInvitations(): this; /** * Grants permission to retrieve a list of Malware Protection plans * * Access Level: List * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListMalwareProtectionPlans.html */ toListMalwareProtectionPlans(): this; /** * Grants permission to retrieve a list of GuardDuty member accounts associated with an administrator account * * Access Level: List * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListMembers.html */ toListMembers(): this; /** * Grants permission to list details about the organization delegated administrator for GuardDuty * * Access Level: List * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListOrganizationAdminAccounts.html */ toListOrganizationAdminAccounts(): this; /** * Grants permission to retrieve a list of publishing destinations * * Access Level: List * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListPublishingDestinations.html */ toListPublishingDestinations(): this; /** * Grants permission to retrieve a list of tags associated with a GuardDuty resource * * Access Level: Read * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListTagsForResource.html */ toListTagsForResource(): this; /** * Grants permission to retrieve a list of GuardDuty ThreatIntelSets * * Access Level: List * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListThreatIntelSets.html */ toListThreatIntelSets(): this; /** * Grants permission to send security telemetry for a specific GuardDuty account in a Region * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_SendSecurityTelemetry.html */ toSendSecurityTelemetry(): this; /** * Grants permission to initiate a new malware scan * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_StartMalwareScan.html */ toStartMalwareScan(): this; /** * Grants permission to a GuardDuty administrator account to monitor findings from GuardDuty member accounts * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_StartMonitoringMembers.html */ toStartMonitoringMembers(): this; /** * Grants permission to disable monitoring findings from member accounts * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_StopMonitoringMembers.html */ toStopMonitoringMembers(): this; /** * Grants permission to add tags to a GuardDuty resource * * Access Level: Tagging * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_TagResource.html */ toTagResource(): this; /** * Grants permission to unarchive GuardDuty findings * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_UnarchiveFindings.html */ toUnarchiveFindings(): this; /** * Grants permission to remove tags from a GuardDuty resource * * Access Level: Tagging * * Possible conditions: * - .ifAwsTagKeys() * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_UntagResource.html */ toUntagResource(): this; /** * Grants permission to update GuardDuty detectors * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_UpdateDetector.html */ toUpdateDetector(): this; /** * Grants permission to updates GuardDuty filters * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_UpdateFilter.html */ toUpdateFilter(): this; /** * Grants permission to update findings feedback to mark GuardDuty findings as useful or not useful * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_UpdateFindingsFeedback.html */ toUpdateFindingsFeedback(): this; /** * Grants permission to update GuardDuty IPSets * * Access Level: Write * * Dependent actions: * - iam:DeleteRolePolicy * - iam:PutRolePolicy * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_UpdateIPSet.html */ toUpdateIPSet(): this; /** * Grants permission to update the Malware Protection plan * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_UpdateMalwareProtectionPlan.html */ toUpdateMalwareProtectionPlan(): this; /** * Grants permission to update the malware scan settings * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_UpdateMalwareScanSettings.html */ toUpdateMalwareScanSettings(): this; /** * Grants permission to update which data sources are enabled for member accounts detectors * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_UpdateMemberDetectors.html */ toUpdateMemberDetectors(): this; /** * Grants permission to update the delegated administrator configuration associated with a GuardDuty detector * * Access Level: Write * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_UpdateOrganizationConfiguration.html */ toUpdateOrganizationConfiguration(): this; /** * Grants permission to update a publishing destination * * Access Level: Write * * Dependent actions: * - s3:GetObject * - s3:ListBucket * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_UpdatePublishingDestination.html */ toUpdatePublishingDestination(): this; /** * Grants permission to updates the GuardDuty ThreatIntelSets * * Access Level: Write * * Dependent actions: * - iam:DeleteRolePolicy * - iam:PutRolePolicy * * https://docs.aws.amazon.com/guardduty/latest/APIReference/API_UpdateThreatIntelSet.html */ toUpdateThreatIntelSet(): this; protected accessLevelList: AccessLevelList; /** * Adds a resource of type detector to the statement * * https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_managing_access.html#guardduty-resources * * @param detectorId - Identifier for the detectorId. * @param account - Account of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's account. * @param region - Region of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's region. * @param partition - Partition of the AWS account [aws, aws-cn, aws-us-gov]; defaults to `aws`, unless using the CDK, where the default is the current Stack's partition. * * Possible conditions: * - .ifAwsResourceTag() */ onDetector(detectorId: string, account?: string, region?: string, partition?: string): this; /** * Adds a resource of type filter to the statement * * https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_managing_access.html#guardduty-resources * * @param detectorId - Identifier for the detectorId. * @param filterName - Identifier for the filterName. * @param account - Account of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's account. * @param region - Region of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's region. * @param partition - Partition of the AWS account [aws, aws-cn, aws-us-gov]; defaults to `aws`, unless using the CDK, where the default is the current Stack's partition. * * Possible conditions: * - .ifAwsResourceTag() */ onFilter(detectorId: string, filterName: string, account?: string, region?: string, partition?: string): this; /** * Adds a resource of type ipset to the statement * * https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_managing_access.html#guardduty-resources * * @param detectorId - Identifier for the detectorId. * @param iPSetId - Identifier for the iPSetId. * @param account - Account of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's account. * @param region - Region of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's region. * @param partition - Partition of the AWS account [aws, aws-cn, aws-us-gov]; defaults to `aws`, unless using the CDK, where the default is the current Stack's partition. * * Possible conditions: * - .ifAwsResourceTag() */ onIpset(detectorId: string, iPSetId: string, account?: string, region?: string, partition?: string): this; /** * Adds a resource of type threatintelset to the statement * * https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_managing_access.html#guardduty-resources * * @param detectorId - Identifier for the detectorId. * @param threatIntelSetId - Identifier for the threatIntelSetId. * @param account - Account of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's account. * @param region - Region of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's region. * @param partition - Partition of the AWS account [aws, aws-cn, aws-us-gov]; defaults to `aws`, unless using the CDK, where the default is the current Stack's partition. * * Possible conditions: * - .ifAwsResourceTag() */ onThreatintelset(detectorId: string, threatIntelSetId: string, account?: string, region?: string, partition?: string): this; /** * Adds a resource of type publishingDestination to the statement * * https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_managing_access.html#guardduty-resources * * @param detectorId - Identifier for the detectorId. * @param publishingDestinationId - Identifier for the publishingDestinationId. * @param account - Account of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's account. * @param region - Region of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's region. * @param partition - Partition of the AWS account [aws, aws-cn, aws-us-gov]; defaults to `aws`, unless using the CDK, where the default is the current Stack's partition. */ onPublishingDestination(detectorId: string, publishingDestinationId: string, account?: string, region?: string, partition?: string): this; /** * Adds a resource of type malwareprotectionplan to the statement * * https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_managing_access.html#guardduty-resources * * @param malwareProtectionPlanId - Identifier for the malwareProtectionPlanId. * @param account - Account of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's account. * @param region - Region of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's region. * @param partition - Partition of the AWS account [aws, aws-cn, aws-us-gov]; defaults to `aws`, unless using the CDK, where the default is the current Stack's partition. * * Possible conditions: * - .ifAwsResourceTag() */ onMalwareprotectionplan(malwareProtectionPlanId: string, account?: string, region?: string, partition?: string): this; /** * Filters access by tag key-value pairs in the request * * https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_condition-keys.html#condition-keys-requesttag * * Applies to actions: * - .toCreateDetector() * - .toCreateFilter() * - .toCreateIPSet() * - .toCreateMalwareProtectionPlan() * - .toCreateThreatIntelSet() * - .toTagResource() * * @param tagKey The tag key to check * @param value The value(s) to check * @param operator Works with [string operators](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_condition_operators.html#Conditions_String). **Default:** `StringLike` */ ifAwsRequestTag(tagKey: string, value: string | string[], operator?: Operator | string): this; /** * Filters access by tag key-value pairs attached to the resource * * https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_condition-keys.html#condition-keys-resourcetag * * Applies to actions: * - .toCreateDetector() * - .toCreateIPSet() * - .toCreateMalwareProtectionPlan() * * Applies to resource types: * - detector * - filter * - ipset * - threatintelset * - malwareprotectionplan * * @param tagKey The tag key to check * @param value The value(s) to check * @param operator Works with [string operators](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_condition_operators.html#Conditions_String). **Default:** `StringLike` */ ifAwsResourceTag(tagKey: string, value: string | string[], operator?: Operator | string): this; /** * Filters access by tag keys in the request * * https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_condition-keys.html#condition-keys-tagkeys * * Applies to actions: * - .toCreateDetector() * - .toCreateFilter() * - .toCreateIPSet() * - .toCreateMalwareProtectionPlan() * - .toCreateThreatIntelSet() * - .toTagResource() * - .toUntagResource() * * @param value The value(s) to check * @param operator Works with [string operators](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_condition_operators.html#Conditions_String). **Default:** `StringLike` */ ifAwsTagKeys(value: string | string[], operator?: Operator | string): this; /** * Statement provider for service [guardduty](https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonguardduty.html). * */ constructor(props?: iam.PolicyStatementProps); }